sin/samba-mirror
1
0
Fork 0
mirror of https://github.com/samba-team/samba.git synced 2025-02-04 17:47:26 +03:00
Code
samba-mirror/source4/dsdb/samdb/ldb_modules/repl_meta_data.c

3719 lines
105 KiB
C
Raw Normal View History

r20522: make a copy of the objectguid ldb module because: - I'll add handling of replication meta data to it for orginating changes - I'll pass replication meta data via a ldb control for applying replicated changes - It will also update the replUpToDateVector attribute in in root object of the partition - It will handle deleted records by adding the isDeleted=TRUE attribute and move them to the CN=Deleted Objects container of the partition - I make a copy to play with the code without breaking the LDAP backend setup metze (This used to be commit 045ddfe1ec626fab5e8fd75c5b47f0525b7ebb01)
2007-01-04 12:10:55 +00:00
/*
ldb database library
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
Copyright (C) Simo Sorce 2004-2008
r20522: make a copy of the objectguid ldb module because: - I'll add handling of replication meta data to it for orginating changes - I'll pass replication meta data via a ldb control for applying replicated changes - It will also update the replUpToDateVector attribute in in root object of the partition - It will handle deleted records by adding the isDeleted=TRUE attribute and move them to the CN=Deleted Objects container of the partition - I make a copy to play with the code without breaking the LDAP backend setup metze (This used to be commit 045ddfe1ec626fab5e8fd75c5b47f0525b7ebb01)
2007-01-04 12:10:55 +00:00
Copyright (C) Andrew Bartlett <abartlet@samba.org> 2005
Copyright (C) Andrew Tridgell 2005
r21839: add my email address metze (This used to be commit e3be33c1d9f9e44ef37e6ef72a23576474f6e725)
2007-03-14 19:10:21 +00:00
Copyright (C) Stefan Metzmacher <metze@samba.org> 2007
r20522: make a copy of the objectguid ldb module because: - I'll add handling of replication meta data to it for orginating changes - I'll pass replication meta data via a ldb control for applying replicated changes - It will also update the replUpToDateVector attribute in in root object of the partition - It will handle deleted records by adding the isDeleted=TRUE attribute and move them to the CN=Deleted Objects container of the partition - I make a copy to play with the code without breaking the LDAP backend setup metze (This used to be commit 045ddfe1ec626fab5e8fd75c5b47f0525b7ebb01)
2007-01-04 12:10:55 +00:00
s4-samdb: internal s4 ldb modules should be GPL not LGPL I think these modules ended up LGPL because someone based the module on an existing LGPL module in the core ldb, and it spread from there. Certainly there is no reason for the ldb modules that are not distributed as part of ldb to be LGPL.
2009-09-12 11:21:21 +10:00
This program is free software; you can redistribute it and/or modify
it under the terms of the GNU General Public License as published by
the Free Software Foundation; either version 3 of the License, or
(at your option) any later version.
r20522: make a copy of the objectguid ldb module because: - I'll add handling of replication meta data to it for orginating changes - I'll pass replication meta data via a ldb control for applying replicated changes - It will also update the replUpToDateVector attribute in in root object of the partition - It will handle deleted records by adding the isDeleted=TRUE attribute and move them to the CN=Deleted Objects container of the partition - I make a copy to play with the code without breaking the LDAP backend setup metze (This used to be commit 045ddfe1ec626fab5e8fd75c5b47f0525b7ebb01)
2007-01-04 12:10:55 +00:00
s4-samdb: internal s4 ldb modules should be GPL not LGPL I think these modules ended up LGPL because someone based the module on an existing LGPL module in the core ldb, and it spread from there. Certainly there is no reason for the ldb modules that are not distributed as part of ldb to be LGPL.
2009-09-12 11:21:21 +10:00
This program is distributed in the hope that it will be useful,
r20522: make a copy of the objectguid ldb module because: - I'll add handling of replication meta data to it for orginating changes - I'll pass replication meta data via a ldb control for applying replicated changes - It will also update the replUpToDateVector attribute in in root object of the partition - It will handle deleted records by adding the isDeleted=TRUE attribute and move them to the CN=Deleted Objects container of the partition - I make a copy to play with the code without breaking the LDAP backend setup metze (This used to be commit 045ddfe1ec626fab5e8fd75c5b47f0525b7ebb01)
2007-01-04 12:10:55 +00:00
but WITHOUT ANY WARRANTY; without even the implied warranty of
s4-samdb: internal s4 ldb modules should be GPL not LGPL I think these modules ended up LGPL because someone based the module on an existing LGPL module in the core ldb, and it spread from there. Certainly there is no reason for the ldb modules that are not distributed as part of ldb to be LGPL.
2009-09-12 11:21:21 +10:00
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
GNU General Public License for more details.
You should have received a copy of the GNU General Public License
along with this program. If not, see <http://www.gnu.org/licenses/>.
r20522: make a copy of the objectguid ldb module because: - I'll add handling of replication meta data to it for orginating changes - I'll pass replication meta data via a ldb control for applying replicated changes - It will also update the replUpToDateVector attribute in in root object of the partition - It will handle deleted records by adding the isDeleted=TRUE attribute and move them to the CN=Deleted Objects container of the partition - I make a copy to play with the code without breaking the LDAP backend setup metze (This used to be commit 045ddfe1ec626fab5e8fd75c5b47f0525b7ebb01)
2007-01-04 12:10:55 +00:00
*/
/*
* Name: ldb
*
* Component: ldb repl_meta_data module
*
* Description: - add a unique objectGUID onto every new record,
* - handle whenCreated, whenChanged timestamps
* - handle uSNCreated, uSNChanged numbers
* - handle replPropertyMetaData attribute
*
* Author: Simo Sorce
* Author: Stefan Metzmacher
*/
#include "includes.h"
Fix all other modules to use ldb_module.h instead of ldb_private.h The only 2 modules escaping the rule so far are rootdse and partitions
2009-01-30 16:31:19 -05:00
#include "ldb_module.h"
r20580: pass the DSDB_CONTROL_REPLICATED_OBJECT_OID with the ldb_add request when applying replicated objects. the samldb module ignores such requests now... and the repl_meta_data module has different functions for the replicated and originating cases... metze (This used to be commit a4d5e0126cfd6135ab829f4984269e265a868a28)
2007-01-06 01:13:59 +00:00
#include "dsdb/samdb/samdb.h"
change repl_meta_data to process linked_attributes structures in end_transaction When running at functional level 2 or above, the repl_meta_data module can receive linked attribute structures from the repl replication task. These attributes can come through DRS before the associated objects have been created. To cope with this, we need to process linked attributes in the end_transaction hook.
2009-09-03 12:55:57 +10:00
#include "dsdb/common/proto.h"
libds: share UF_ flags between samba3 and 4. Guenther
2009-06-12 14:27:19 +02:00
#include "../libds/common/flags.h"
r20681: implement the DSDB_EXTENDED_REPLICATED_OBJECTS operation. the merging of existing objects is not implemented yet... there are a few ifdef REPLMD_FULL_ASYNC because we need to workarouns ldb's async infrastructure (which don't handle full async sub requests nicely) metze (This used to be commit da4ff0e7ccde47b3e092313ba22422350cf50f78)
2007-01-11 09:54:10 +00:00
#include "librpc/gen_ndr/ndr_misc.h"
r20705: store the "replUpToDateVector" attribute in DSDB_EXTENDED_REPLICATED_OBJECTS metze (This used to be commit c9e7a58f6a16dfa28323fd0fd01ad6ee516c51b0)
2007-01-12 13:17:25 +00:00
#include "librpc/gen_ndr/ndr_drsuapi.h"
r20681: implement the DSDB_EXTENDED_REPLICATED_OBJECTS operation. the merging of existing objects is not implemented yet... there are a few ifdef REPLMD_FULL_ASYNC because we need to workarouns ldb's async infrastructure (which don't handle full async sub requests nicely) metze (This used to be commit da4ff0e7ccde47b3e092313ba22422350cf50f78)
2007-01-11 09:54:10 +00:00
#include "librpc/gen_ndr/ndr_drsblobs.h"
r26638: libndr: Require explicitly specifying iconv_convenience for ndr_struct_push_blob(). (This used to be commit 61ad78ac98937ef7a9aa32075a91a1c95b7606b3)
2008-01-01 22:05:05 -06:00
#include "param/param.h"
change repl_meta_data to process linked_attributes structures in end_transaction When running at functional level 2 or above, the repl_meta_data module can receive linked attribute structures from the repl replication task. These attributes can come through DRS before the associated objects have been created. To cope with this, we need to process linked attributes in the end_transaction hook.
2009-09-03 12:55:57 +10:00
#include "libcli/security/dom_sid.h"
repl_meta_data: Fix include path when building with standalone ldb.
2009-09-12 00:49:51 +02:00
#include "lib/util/dlinklist.h"
s4-dsdb: use dsdb_module_search_dn in repl_meta_data This allows us to search below the current module. That will be important when we start using the results of this search to get the linked attributes meta data right
2009-12-09 14:35:46 +11:00
#include "dsdb/samdb/ldb_modules/util.h"
s4-dsdb: add support for storing linked attribute meta data in extended DNs When in functional levels above w2k, we need to store much richer meta data about linkked attributes. We also need to keep deleted linked attributes around to allow the deletion to be propogated to other DCs. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-10 23:48:30 +11:00
#include "lib/util/binsearch.h"
#define W2K3_LINKED_ATTRIBUTES 1
change repl_meta_data to process linked_attributes structures in end_transaction When running at functional level 2 or above, the repl_meta_data module can receive linked attribute structures from the repl replication task. These attributes can come through DRS before the associated objects have been created. To cope with this, we need to process linked attributes in the end_transaction hook.
2009-09-03 12:55:57 +10:00
struct replmd_private {
s4-repl: fixed a memory error handling linked attributes We could get a double free with multiple linked attributes in a message
2009-09-14 03:44:10 -07:00
TALLOC_CTX *la_ctx;
change repl_meta_data to process linked_attributes structures in end_transaction When running at functional level 2 or above, the repl_meta_data module can receive linked attribute structures from the repl replication task. These attributes can come through DRS before the associated objects have been created. To cope with this, we need to process linked attributes in the end_transaction hook.
2009-09-03 12:55:57 +10:00
struct la_entry *la_list;
s4-dsdb: added support for backlinks in repl_meta_data backlinks need more careful handling now that we store the additional meta data for deleted links. It is easier to handle this in repl_meta_data than in linked_attributes. Eventually linked_attributes will disappear, with the functionality moved into repl_meta_data. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-16 11:34:33 +11:00
TALLOC_CTX *bl_ctx;
struct la_backlink *la_backlinks;
s4-repl: keep a @REPLCHANGED object on each partition This object tracks the highest uSN in each partition. It will be used to allow us to efficiently detect changes in a partition for sending DsReplicaSync messages to our replication partners.
2009-09-13 14:24:08 +10:00
struct nc_entry {
s4:dsdb Use 'partition modified' information to update @REPLCHANGED This major rework of repl_meta_data changes it from using a static list of partitions to a dynamic list created from the controls placed on returned ldb results. To process these in one place, the similar but distinct callbacks are combined into a single replmd_op_callback(), which handles both the 'normal operation' and 'inbound replication' case. This allows new partitions to be created, and replication events for these new partitions to be scheduled immediately. Also in this commit: We no longer specify the target partition for new or modified objects - instead we allow the partitions module to use the DN as normal. THis avoids the issue where we would create two partition head records. Andrew Bartlett
2009-10-16 16:20:15 +11:00
struct nc_entry *prev, *next;
s4-repl: keep a @REPLCHANGED object on each partition This object tracks the highest uSN in each partition. It will be used to allow us to efficiently detect changes in a partition for sending DsReplicaSync messages to our replication partners.
2009-09-13 14:24:08 +10:00
struct ldb_dn *dn;
uint64_t mod_usn;
} *ncs;
change repl_meta_data to process linked_attributes structures in end_transaction When running at functional level 2 or above, the repl_meta_data module can receive linked attribute structures from the repl replication task. These attributes can come through DRS before the associated objects have been created. To cope with this, we need to process linked attributes in the end_transaction hook.
2009-09-03 12:55:57 +10:00
};
struct la_entry {
struct la_entry *next, *prev;
struct drsuapi_DsReplicaLinkedAttribute *la;
};
r20681: implement the DSDB_EXTENDED_REPLICATED_OBJECTS operation. the merging of existing objects is not implemented yet... there are a few ifdef REPLMD_FULL_ASYNC because we need to workarouns ldb's async infrastructure (which don't handle full async sub requests nicely) metze (This used to be commit da4ff0e7ccde47b3e092313ba22422350cf50f78)
2007-01-11 09:54:10 +00:00
struct replmd_replicated_request {
struct ldb_module *module;
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
struct ldb_request *req;
r20681: implement the DSDB_EXTENDED_REPLICATED_OBJECTS operation. the merging of existing objects is not implemented yet... there are a few ifdef REPLMD_FULL_ASYNC because we need to workarouns ldb's async infrastructure (which don't handle full async sub requests nicely) metze (This used to be commit da4ff0e7ccde47b3e092313ba22422350cf50f78)
2007-01-11 09:54:10 +00:00
r20968: - add functions to sort the meta data and attribute arrays - we should use them before we store records to disk metze (This used to be commit a5200ef0cae5e8b0cedf196c9d76afc46e08c316)
2007-01-23 10:21:14 +00:00
const struct dsdb_schema *schema;
s4:dsdb: passdown DSDB_CONTROL_REPLICATED_UPDATE_OID for replicated updates We need to make sure replicated updates are handled differently in some situations, e.g. we should bypass the schema checks. metze
2008-09-27 02:27:54 +02:00
/* the controls we pass down */
struct ldb_control **controls;
s4:dsdb Use 'partition modified' information to update @REPLCHANGED This major rework of repl_meta_data changes it from using a static list of partitions to a dynamic list created from the controls placed on returned ldb results. To process these in one place, the similar but distinct callbacks are combined into a single replmd_op_callback(), which handles both the 'normal operation' and 'inbound replication' case. This allows new partitions to be created, and replication events for these new partitions to be scheduled immediately. Also in this commit: We no longer specify the target partition for new or modified objects - instead we allow the partitions module to use the DN as normal. THis avoids the issue where we would create two partition head records. Andrew Bartlett
2009-10-16 16:20:15 +11:00
/* details for the mode where we apply a bunch of inbound replication meessages */
bool apply_mode;
r20681: implement the DSDB_EXTENDED_REPLICATED_OBJECTS operation. the merging of existing objects is not implemented yet... there are a few ifdef REPLMD_FULL_ASYNC because we need to workarouns ldb's async infrastructure (which don't handle full async sub requests nicely) metze (This used to be commit da4ff0e7ccde47b3e092313ba22422350cf50f78)
2007-01-11 09:54:10 +00:00
uint32_t index_current;
s4:dsdb Use 'partition modified' information to update @REPLCHANGED This major rework of repl_meta_data changes it from using a static list of partitions to a dynamic list created from the controls placed on returned ldb results. To process these in one place, the similar but distinct callbacks are combined into a single replmd_op_callback(), which handles both the 'normal operation' and 'inbound replication' case. This allows new partitions to be created, and replication events for these new partitions to be scheduled immediately. Also in this commit: We no longer specify the target partition for new or modified objects - instead we allow the partitions module to use the DN as normal. THis avoids the issue where we would create two partition head records. Andrew Bartlett
2009-10-16 16:20:15 +11:00
struct dsdb_extended_replicated_objects *objs;
r20681: implement the DSDB_EXTENDED_REPLICATED_OBJECTS operation. the merging of existing objects is not implemented yet... there are a few ifdef REPLMD_FULL_ASYNC because we need to workarouns ldb's async infrastructure (which don't handle full async sub requests nicely) metze (This used to be commit da4ff0e7ccde47b3e092313ba22422350cf50f78)
2007-01-11 09:54:10 +00:00
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
struct ldb_message *search_msg;
s4:dsdb Set 'notification' after the success of a change. This allows the partition to be created before we try and set a notification on it. (perhaps extra work required here for partition heads). Andrew Bartlett
2009-10-10 09:36:44 +11:00
uint64_t seq_num;
s4:dsdb Use 'partition modified' information to update @REPLCHANGED This major rework of repl_meta_data changes it from using a static list of partitions to a dynamic list created from the controls placed on returned ldb results. To process these in one place, the similar but distinct callbacks are combined into a single replmd_op_callback(), which handles both the 'normal operation' and 'inbound replication' case. This allows new partitions to be created, and replication events for these new partitions to be scheduled immediately. Also in this commit: We no longer specify the target partition for new or modified objects - instead we allow the partitions module to use the DN as normal. THis avoids the issue where we would create two partition head records. Andrew Bartlett
2009-10-16 16:20:15 +11:00
r20681: implement the DSDB_EXTENDED_REPLICATED_OBJECTS operation. the merging of existing objects is not implemented yet... there are a few ifdef REPLMD_FULL_ASYNC because we need to workarouns ldb's async infrastructure (which don't handle full async sub requests nicely) metze (This used to be commit da4ff0e7ccde47b3e092313ba22422350cf50f78)
2007-01-11 09:54:10 +00:00
};
s4:dsdb Use 'partition modified' information to update @REPLCHANGED This major rework of repl_meta_data changes it from using a static list of partitions to a dynamic list created from the controls placed on returned ldb results. To process these in one place, the similar but distinct callbacks are combined into a single replmd_op_callback(), which handles both the 'normal operation' and 'inbound replication' case. This allows new partitions to be created, and replication events for these new partitions to be scheduled immediately. Also in this commit: We no longer specify the target partition for new or modified objects - instead we allow the partitions module to use the DN as normal. THis avoids the issue where we would create two partition head records. Andrew Bartlett
2009-10-16 16:20:15 +11:00
static int replmd_replicated_apply_next(struct replmd_replicated_request *ar);
s4-repl: keep a @REPLCHANGED object on each partition This object tracks the highest uSN in each partition. It will be used to allow us to efficiently detect changes in a partition for sending DsReplicaSync messages to our replication partners.
2009-09-13 14:24:08 +10:00
s4-dsdb: added support for backlinks in repl_meta_data backlinks need more careful handling now that we store the additional meta data for deleted links. It is easier to handle this in repl_meta_data than in linked_attributes. Eventually linked_attributes will disappear, with the functionality moved into repl_meta_data. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-16 11:34:33 +11:00
s4-repl: keep a @REPLCHANGED object on each partition This object tracks the highest uSN in each partition. It will be used to allow us to efficiently detect changes in a partition for sending DsReplicaSync messages to our replication partners.
2009-09-13 14:24:08 +10:00
/*
initialise the module
allocate the private structure and build the list
of partition DNs for use by replmd_notify()
*/
static int replmd_init(struct ldb_module *module)
{
struct replmd_private *replmd_private;
struct ldb_context *ldb = ldb_module_get_ctx(module);
replmd_private = talloc_zero(module, struct replmd_private);
if (replmd_private == NULL) {
ldb_oom(ldb);
return LDB_ERR_OPERATIONS_ERROR;
}
ldb_module_set_private(module, replmd_private);
return ldb_next_init(module);
}
s4-dsdb: added support for backlinks in repl_meta_data backlinks need more careful handling now that we store the additional meta data for deleted links. It is easier to handle this in repl_meta_data than in linked_attributes. Eventually linked_attributes will disappear, with the functionality moved into repl_meta_data. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-16 11:34:33 +11:00
/*
cleanup our per-transaction contexts
*/
static void replmd_txn_cleanup(struct replmd_private *replmd_private)
{
talloc_free(replmd_private->la_ctx);
replmd_private->la_list = NULL;
replmd_private->la_ctx = NULL;
talloc_free(replmd_private->bl_ctx);
replmd_private->la_backlinks = NULL;
replmd_private->bl_ctx = NULL;
}
struct la_backlink {
struct la_backlink *next, *prev;
const char *attr_name;
struct GUID forward_guid, target_guid;
bool active;
};
/*
s4-dsdb: some backlinks can be processed immediately backlinks in add and delete operations can be processed immediately, rather than at the end of a transaction. This can save on backlink list processing time.
2009-12-17 10:50:34 +11:00
process a backlinks we accumulated during a transaction, adding and
deleting the backlinks from the target objects
s4-dsdb: added support for backlinks in repl_meta_data backlinks need more careful handling now that we store the additional meta data for deleted links. It is easier to handle this in repl_meta_data than in linked_attributes. Eventually linked_attributes will disappear, with the functionality moved into repl_meta_data. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-16 11:34:33 +11:00
*/
static int replmd_process_backlink(struct ldb_module *module, struct la_backlink *bl)
{
struct ldb_dn *target_dn, *source_dn;
int ret;
struct ldb_context *ldb = ldb_module_get_ctx(module);
struct ldb_message *msg;
TALLOC_CTX *tmp_ctx = talloc_new(bl);
char *dn_string;
/*
- find DN of target
- find DN of source
- construct ldb_message
- either an add or a delete
*/
ret = dsdb_module_dn_by_guid(module, tmp_ctx, &bl->target_guid, &target_dn);
if (ret != LDB_SUCCESS) {
ldb_asprintf_errstring(ldb, "Failed to find target DN for linked attribute with GUID %s\n",
GUID_string(bl, &bl->target_guid));
talloc_free(tmp_ctx);
return ret;
}
ret = dsdb_module_dn_by_guid(module, tmp_ctx, &bl->forward_guid, &source_dn);
if (ret != LDB_SUCCESS) {
ldb_asprintf_errstring(ldb, "Failed to find source DN for linked attribute with GUID %s\n",
GUID_string(bl, &bl->forward_guid));
talloc_free(tmp_ctx);
return ret;
}
msg = ldb_msg_new(tmp_ctx);
if (msg == NULL) {
ldb_module_oom(module);
talloc_free(tmp_ctx);
return LDB_ERR_OPERATIONS_ERROR;
}
/* construct a ldb_message for adding/deleting the backlink */
msg->dn = target_dn;
dn_string = ldb_dn_get_extended_linearized(tmp_ctx, source_dn, 1);
if (!dn_string) {
ldb_module_oom(module);
talloc_free(tmp_ctx);
return LDB_ERR_OPERATIONS_ERROR;
}
ret = ldb_msg_add_steal_string(msg, bl->attr_name, dn_string);
if (ret != LDB_SUCCESS) {
talloc_free(tmp_ctx);
return ret;
}
msg->elements[0].flags = bl->active?LDB_FLAG_MOD_ADD:LDB_FLAG_MOD_DELETE;
ret = dsdb_module_modify(module, msg, 0);
if (ret != LDB_SUCCESS) {
ldb_asprintf_errstring(ldb, "Failed to %s backlink from %s to %s - %s",
bl->active?"add":"remove",
ldb_dn_get_linearized(source_dn),
ldb_dn_get_linearized(target_dn),
ldb_errstring(ldb));
talloc_free(tmp_ctx);
return ret;
}
talloc_free(tmp_ctx);
return ret;
}
s4-dsdb: some backlinks can be processed immediately backlinks in add and delete operations can be processed immediately, rather than at the end of a transaction. This can save on backlink list processing time.
2009-12-17 10:50:34 +11:00
/*
add a backlink to the list of backlinks to add/delete in the prepare
commit
*/
static int replmd_add_backlink(struct ldb_module *module, const struct dsdb_schema *schema,
struct GUID *forward_guid, struct GUID *target_guid,
bool active, const struct dsdb_attribute *schema_attr, bool immediate)
{
const struct dsdb_attribute *target_attr;
struct la_backlink *bl;
struct replmd_private *replmd_private =
talloc_get_type_abort(ldb_module_get_private(module), struct replmd_private);
s4-dsdb: use a common method for finding a link pair Use ^1 everywhere, to ensure it works for both forward and backward links
2009-12-20 11:53:09 +11:00
target_attr = dsdb_attribute_by_linkID(schema, schema_attr->linkID ^ 1);
s4-dsdb: some backlinks can be processed immediately backlinks in add and delete operations can be processed immediately, rather than at the end of a transaction. This can save on backlink list processing time.
2009-12-17 10:50:34 +11:00
if (!target_attr) {
/*
* windows 2003 has a broken schema where the
* definition of msDS-IsDomainFor is missing (which is
* supposed to be the backlink of the
* msDS-HasDomainNCs attribute
*/
return LDB_SUCCESS;
}
/* see if its already in the list */
for (bl=replmd_private->la_backlinks; bl; bl=bl->next) {
if (GUID_equal(forward_guid, &bl->forward_guid) &&
GUID_equal(target_guid, &bl->target_guid) &&
(target_attr->lDAPDisplayName == bl->attr_name ||
strcmp(target_attr->lDAPDisplayName, bl->attr_name) == 0)) {
break;
}
}
if (bl) {
/* we found an existing one */
if (bl->active == active) {
return LDB_SUCCESS;
}
DLIST_REMOVE(replmd_private->la_backlinks, bl);
talloc_free(bl);
return LDB_SUCCESS;
}
if (replmd_private->bl_ctx == NULL) {
replmd_private->bl_ctx = talloc_new(replmd_private);
if (replmd_private->bl_ctx == NULL) {
ldb_module_oom(module);
return LDB_ERR_OPERATIONS_ERROR;
}
}
/* its a new one */
bl = talloc(replmd_private->bl_ctx, struct la_backlink);
if (bl == NULL) {
ldb_module_oom(module);
return LDB_ERR_OPERATIONS_ERROR;
}
bl->attr_name = target_attr->lDAPDisplayName;
bl->forward_guid = *forward_guid;
bl->target_guid = *target_guid;
bl->active = active;
/* the caller may ask for this backlink to be processed
immediately */
if (immediate) {
int ret = replmd_process_backlink(module, bl);
talloc_free(bl);
return ret;
}
DLIST_ADD(replmd_private->la_backlinks, bl);
return LDB_SUCCESS;
}
s4-repl: keep a @REPLCHANGED object on each partition This object tracks the highest uSN in each partition. It will be used to allow us to efficiently detect changes in a partition for sending DsReplicaSync messages to our replication partners.
2009-09-13 14:24:08 +10:00
/*
s4:dsdb Use 'partition modified' information to update @REPLCHANGED This major rework of repl_meta_data changes it from using a static list of partitions to a dynamic list created from the controls placed on returned ldb results. To process these in one place, the similar but distinct callbacks are combined into a single replmd_op_callback(), which handles both the 'normal operation' and 'inbound replication' case. This allows new partitions to be created, and replication events for these new partitions to be scheduled immediately. Also in this commit: We no longer specify the target partition for new or modified objects - instead we allow the partitions module to use the DN as normal. THis avoids the issue where we would create two partition head records. Andrew Bartlett
2009-10-16 16:20:15 +11:00
* Callback for most write operations in this module:
*
* notify the repl task that a object has changed. The notifies are
* gathered up in the replmd_private structure then written to the
* @REPLCHANGED object in each partition during the prepare_commit
s4-repl: keep a @REPLCHANGED object on each partition This object tracks the highest uSN in each partition. It will be used to allow us to efficiently detect changes in a partition for sending DsReplicaSync messages to our replication partners.
2009-09-13 14:24:08 +10:00
*/
s4:dsdb Use 'partition modified' information to update @REPLCHANGED This major rework of repl_meta_data changes it from using a static list of partitions to a dynamic list created from the controls placed on returned ldb results. To process these in one place, the similar but distinct callbacks are combined into a single replmd_op_callback(), which handles both the 'normal operation' and 'inbound replication' case. This allows new partitions to be created, and replication events for these new partitions to be scheduled immediately. Also in this commit: We no longer specify the target partition for new or modified objects - instead we allow the partitions module to use the DN as normal. THis avoids the issue where we would create two partition head records. Andrew Bartlett
2009-10-16 16:20:15 +11:00
static int replmd_op_callback(struct ldb_request *req, struct ldb_reply *ares)
s4-repl: keep a @REPLCHANGED object on each partition This object tracks the highest uSN in each partition. It will be used to allow us to efficiently detect changes in a partition for sending DsReplicaSync messages to our replication partners.
2009-09-13 14:24:08 +10:00
{
s4:dsdb Use 'partition modified' information to update @REPLCHANGED This major rework of repl_meta_data changes it from using a static list of partitions to a dynamic list created from the controls placed on returned ldb results. To process these in one place, the similar but distinct callbacks are combined into a single replmd_op_callback(), which handles both the 'normal operation' and 'inbound replication' case. This allows new partitions to be created, and replication events for these new partitions to be scheduled immediately. Also in this commit: We no longer specify the target partition for new or modified objects - instead we allow the partitions module to use the DN as normal. THis avoids the issue where we would create two partition head records. Andrew Bartlett
2009-10-16 16:20:15 +11:00
int ret;
struct replmd_replicated_request *ac =
talloc_get_type_abort(req->context, struct replmd_replicated_request);
s4-repl: keep a @REPLCHANGED object on each partition This object tracks the highest uSN in each partition. It will be used to allow us to efficiently detect changes in a partition for sending DsReplicaSync messages to our replication partners.
2009-09-13 14:24:08 +10:00
struct replmd_private *replmd_private =
s4:dsdb Use 'partition modified' information to update @REPLCHANGED This major rework of repl_meta_data changes it from using a static list of partitions to a dynamic list created from the controls placed on returned ldb results. To process these in one place, the similar but distinct callbacks are combined into a single replmd_op_callback(), which handles both the 'normal operation' and 'inbound replication' case. This allows new partitions to be created, and replication events for these new partitions to be scheduled immediately. Also in this commit: We no longer specify the target partition for new or modified objects - instead we allow the partitions module to use the DN as normal. THis avoids the issue where we would create two partition head records. Andrew Bartlett
2009-10-16 16:20:15 +11:00
talloc_get_type_abort(ldb_module_get_private(ac->module), struct replmd_private);
struct nc_entry *modified_partition;
struct ldb_control *partition_ctrl;
const struct dsdb_control_current_partition *partition;
s4-repl: keep a @REPLCHANGED object on each partition This object tracks the highest uSN in each partition. It will be used to allow us to efficiently detect changes in a partition for sending DsReplicaSync messages to our replication partners.
2009-09-13 14:24:08 +10:00
s4:dsdb Remove potentially confusing 'partition' control from result This ensures that the partition control, needed here for repl_meta_data's internal work, is not pushed up to other callers. Andrew Bartlett
2009-10-21 15:21:21 +11:00
struct ldb_control **controls;
partition_ctrl = ldb_reply_get_control(ares, DSDB_CONTROL_CURRENT_PARTITION_OID);
/* Remove the 'partition' control from what we pass up the chain */
controls = controls_except_specified(ares->controls, ares, partition_ctrl);
s4:dsdb Use 'partition modified' information to update @REPLCHANGED This major rework of repl_meta_data changes it from using a static list of partitions to a dynamic list created from the controls placed on returned ldb results. To process these in one place, the similar but distinct callbacks are combined into a single replmd_op_callback(), which handles both the 'normal operation' and 'inbound replication' case. This allows new partitions to be created, and replication events for these new partitions to be scheduled immediately. Also in this commit: We no longer specify the target partition for new or modified objects - instead we allow the partitions module to use the DN as normal. THis avoids the issue where we would create two partition head records. Andrew Bartlett
2009-10-16 16:20:15 +11:00
if (ares->error != LDB_SUCCESS) {
s4:dsdb Remove potentially confusing 'partition' control from result This ensures that the partition control, needed here for repl_meta_data's internal work, is not pushed up to other callers. Andrew Bartlett
2009-10-21 15:21:21 +11:00
return ldb_module_done(ac->req, controls,
s4:dsdb Use 'partition modified' information to update @REPLCHANGED This major rework of repl_meta_data changes it from using a static list of partitions to a dynamic list created from the controls placed on returned ldb results. To process these in one place, the similar but distinct callbacks are combined into a single replmd_op_callback(), which handles both the 'normal operation' and 'inbound replication' case. This allows new partitions to be created, and replication events for these new partitions to be scheduled immediately. Also in this commit: We no longer specify the target partition for new or modified objects - instead we allow the partitions module to use the DN as normal. THis avoids the issue where we would create two partition head records. Andrew Bartlett
2009-10-16 16:20:15 +11:00
ares->response, ares->error);
s4-repl: keep a @REPLCHANGED object on each partition This object tracks the highest uSN in each partition. It will be used to allow us to efficiently detect changes in a partition for sending DsReplicaSync messages to our replication partners.
2009-09-13 14:24:08 +10:00
}
s4:dsdb Use 'partition modified' information to update @REPLCHANGED This major rework of repl_meta_data changes it from using a static list of partitions to a dynamic list created from the controls placed on returned ldb results. To process these in one place, the similar but distinct callbacks are combined into a single replmd_op_callback(), which handles both the 'normal operation' and 'inbound replication' case. This allows new partitions to be created, and replication events for these new partitions to be scheduled immediately. Also in this commit: We no longer specify the target partition for new or modified objects - instead we allow the partitions module to use the DN as normal. THis avoids the issue where we would create two partition head records. Andrew Bartlett
2009-10-16 16:20:15 +11:00
if (ares->type != LDB_REPLY_DONE) {
ldb_set_errstring(ldb_module_get_ctx(ac->module), "Invalid reply type for notify\n!");
return ldb_module_done(ac->req, NULL,
NULL, LDB_ERR_OPERATIONS_ERROR);
s4-repl: keep a @REPLCHANGED object on each partition This object tracks the highest uSN in each partition. It will be used to allow us to efficiently detect changes in a partition for sending DsReplicaSync messages to our replication partners.
2009-09-13 14:24:08 +10:00
}
s4:dsdb Use 'partition modified' information to update @REPLCHANGED This major rework of repl_meta_data changes it from using a static list of partitions to a dynamic list created from the controls placed on returned ldb results. To process these in one place, the similar but distinct callbacks are combined into a single replmd_op_callback(), which handles both the 'normal operation' and 'inbound replication' case. This allows new partitions to be created, and replication events for these new partitions to be scheduled immediately. Also in this commit: We no longer specify the target partition for new or modified objects - instead we allow the partitions module to use the DN as normal. THis avoids the issue where we would create two partition head records. Andrew Bartlett
2009-10-16 16:20:15 +11:00
if (!partition_ctrl) {
s4-drs: give an error message in repl_meta_data if we don't get a partition control
2009-12-21 21:19:55 +11:00
ldb_set_errstring(ldb_module_get_ctx(ac->module),"No partition control on reply");
s4:dsdb Use 'partition modified' information to update @REPLCHANGED This major rework of repl_meta_data changes it from using a static list of partitions to a dynamic list created from the controls placed on returned ldb results. To process these in one place, the similar but distinct callbacks are combined into a single replmd_op_callback(), which handles both the 'normal operation' and 'inbound replication' case. This allows new partitions to be created, and replication events for these new partitions to be scheduled immediately. Also in this commit: We no longer specify the target partition for new or modified objects - instead we allow the partitions module to use the DN as normal. THis avoids the issue where we would create two partition head records. Andrew Bartlett
2009-10-16 16:20:15 +11:00
return ldb_module_done(ac->req, NULL,
NULL, LDB_ERR_OPERATIONS_ERROR);
s4-repl: keep a @REPLCHANGED object on each partition This object tracks the highest uSN in each partition. It will be used to allow us to efficiently detect changes in a partition for sending DsReplicaSync messages to our replication partners.
2009-09-13 14:24:08 +10:00
}
s4:dsdb Remove potentially confusing 'partition' control from result This ensures that the partition control, needed here for repl_meta_data's internal work, is not pushed up to other callers. Andrew Bartlett
2009-10-21 15:21:21 +11:00
s4:dsdb Use 'partition modified' information to update @REPLCHANGED This major rework of repl_meta_data changes it from using a static list of partitions to a dynamic list created from the controls placed on returned ldb results. To process these in one place, the similar but distinct callbacks are combined into a single replmd_op_callback(), which handles both the 'normal operation' and 'inbound replication' case. This allows new partitions to be created, and replication events for these new partitions to be scheduled immediately. Also in this commit: We no longer specify the target partition for new or modified objects - instead we allow the partitions module to use the DN as normal. THis avoids the issue where we would create two partition head records. Andrew Bartlett
2009-10-16 16:20:15 +11:00
partition = talloc_get_type_abort(partition_ctrl->data,
struct dsdb_control_current_partition);
s4-repl: keep a @REPLCHANGED object on each partition This object tracks the highest uSN in each partition. It will be used to allow us to efficiently detect changes in a partition for sending DsReplicaSync messages to our replication partners.
2009-09-13 14:24:08 +10:00
s4:dsdb Use 'partition modified' information to update @REPLCHANGED This major rework of repl_meta_data changes it from using a static list of partitions to a dynamic list created from the controls placed on returned ldb results. To process these in one place, the similar but distinct callbacks are combined into a single replmd_op_callback(), which handles both the 'normal operation' and 'inbound replication' case. This allows new partitions to be created, and replication events for these new partitions to be scheduled immediately. Also in this commit: We no longer specify the target partition for new or modified objects - instead we allow the partitions module to use the DN as normal. THis avoids the issue where we would create two partition head records. Andrew Bartlett
2009-10-16 16:20:15 +11:00
if (ac->seq_num > 0) {
for (modified_partition = replmd_private->ncs; modified_partition;
modified_partition = modified_partition->next) {
if (ldb_dn_compare(modified_partition->dn, partition->dn) == 0) {
break;
}
}
if (modified_partition == NULL) {
modified_partition = talloc_zero(replmd_private, struct nc_entry);
if (!modified_partition) {
ldb_oom(ldb_module_get_ctx(ac->module));
return ldb_module_done(ac->req, NULL,
NULL, LDB_ERR_OPERATIONS_ERROR);
}
modified_partition->dn = ldb_dn_copy(modified_partition, partition->dn);
if (!modified_partition->dn) {
ldb_oom(ldb_module_get_ctx(ac->module));
return ldb_module_done(ac->req, NULL,
NULL, LDB_ERR_OPERATIONS_ERROR);
}
DLIST_ADD(replmd_private->ncs, modified_partition);
}
s4-repl: keep a @REPLCHANGED object on each partition This object tracks the highest uSN in each partition. It will be used to allow us to efficiently detect changes in a partition for sending DsReplicaSync messages to our replication partners.
2009-09-13 14:24:08 +10:00
s4:dsdb Use 'partition modified' information to update @REPLCHANGED This major rework of repl_meta_data changes it from using a static list of partitions to a dynamic list created from the controls placed on returned ldb results. To process these in one place, the similar but distinct callbacks are combined into a single replmd_op_callback(), which handles both the 'normal operation' and 'inbound replication' case. This allows new partitions to be created, and replication events for these new partitions to be scheduled immediately. Also in this commit: We no longer specify the target partition for new or modified objects - instead we allow the partitions module to use the DN as normal. THis avoids the issue where we would create two partition head records. Andrew Bartlett
2009-10-16 16:20:15 +11:00
if (ac->seq_num > modified_partition->mod_usn) {
modified_partition->mod_usn = ac->seq_num;
s4-repl: keep a @REPLCHANGED object on each partition This object tracks the highest uSN in each partition. It will be used to allow us to efficiently detect changes in a partition for sending DsReplicaSync messages to our replication partners.
2009-09-13 14:24:08 +10:00
}
}
s4:dsdb Use 'partition modified' information to update @REPLCHANGED This major rework of repl_meta_data changes it from using a static list of partitions to a dynamic list created from the controls placed on returned ldb results. To process these in one place, the similar but distinct callbacks are combined into a single replmd_op_callback(), which handles both the 'normal operation' and 'inbound replication' case. This allows new partitions to be created, and replication events for these new partitions to be scheduled immediately. Also in this commit: We no longer specify the target partition for new or modified objects - instead we allow the partitions module to use the DN as normal. THis avoids the issue where we would create two partition head records. Andrew Bartlett
2009-10-16 16:20:15 +11:00
if (ac->apply_mode) {
talloc_free(ares);
ac->index_current++;
ret = replmd_replicated_apply_next(ac);
if (ret != LDB_SUCCESS) {
return ldb_module_done(ac->req, NULL, NULL, ret);
}
return ret;
} else {
s4:dsdb Remove potentially confusing 'partition' control from result This ensures that the partition control, needed here for repl_meta_data's internal work, is not pushed up to other callers. Andrew Bartlett
2009-10-21 15:21:21 +11:00
/* free the partition control container here, for the
* common path. Other cases will have it cleaned up
* eventually with the ares */
talloc_free(partition_ctrl);
return ldb_module_done(ac->req,
controls_except_specified(controls, ares, partition_ctrl),
s4:dsdb Use 'partition modified' information to update @REPLCHANGED This major rework of repl_meta_data changes it from using a static list of partitions to a dynamic list created from the controls placed on returned ldb results. To process these in one place, the similar but distinct callbacks are combined into a single replmd_op_callback(), which handles both the 'normal operation' and 'inbound replication' case. This allows new partitions to be created, and replication events for these new partitions to be scheduled immediately. Also in this commit: We no longer specify the target partition for new or modified objects - instead we allow the partitions module to use the DN as normal. THis avoids the issue where we would create two partition head records. Andrew Bartlett
2009-10-16 16:20:15 +11:00
ares->response, LDB_SUCCESS);
s4-repl: keep a @REPLCHANGED object on each partition This object tracks the highest uSN in each partition. It will be used to allow us to efficiently detect changes in a partition for sending DsReplicaSync messages to our replication partners.
2009-09-13 14:24:08 +10:00
}
}
/*
* update a @REPLCHANGED record in each partition if there have been
* any writes of replicated data in the partition
*/
static int replmd_notify_store(struct ldb_module *module)
{
struct replmd_private *replmd_private =
talloc_get_type(ldb_module_get_private(module), struct replmd_private);
struct ldb_context *ldb = ldb_module_get_ctx(module);
s4-dsdb: make sure mod_usn list is zeroed on each transaction
2009-11-20 12:09:24 +11:00
while (replmd_private->ncs) {
s4-repl: use the new dsdb partition uSN helper fns
2009-09-13 18:13:56 +10:00
int ret;
s4-dsdb: make sure mod_usn list is zeroed on each transaction
2009-11-20 12:09:24 +11:00
struct nc_entry *modified_partition = replmd_private->ncs;
s4-repl: keep a @REPLCHANGED object on each partition This object tracks the highest uSN in each partition. It will be used to allow us to efficiently detect changes in a partition for sending DsReplicaSync messages to our replication partners.
2009-09-13 14:24:08 +10:00
s4:dsdb Use 'partition modified' information to update @REPLCHANGED This major rework of repl_meta_data changes it from using a static list of partitions to a dynamic list created from the controls placed on returned ldb results. To process these in one place, the similar but distinct callbacks are combined into a single replmd_op_callback(), which handles both the 'normal operation' and 'inbound replication' case. This allows new partitions to be created, and replication events for these new partitions to be scheduled immediately. Also in this commit: We no longer specify the target partition for new or modified objects - instead we allow the partitions module to use the DN as normal. THis avoids the issue where we would create two partition head records. Andrew Bartlett
2009-10-16 16:20:15 +11:00
ret = dsdb_save_partition_usn(ldb, modified_partition->dn, modified_partition->mod_usn);
s4-repl: keep a @REPLCHANGED object on each partition This object tracks the highest uSN in each partition. It will be used to allow us to efficiently detect changes in a partition for sending DsReplicaSync messages to our replication partners.
2009-09-13 14:24:08 +10:00
if (ret != LDB_SUCCESS) {
s4-repl: use the new dsdb partition uSN helper fns
2009-09-13 18:13:56 +10:00
DEBUG(0,(__location__ ": Failed to save partition uSN for %s\n",
s4:dsdb Use 'partition modified' information to update @REPLCHANGED This major rework of repl_meta_data changes it from using a static list of partitions to a dynamic list created from the controls placed on returned ldb results. To process these in one place, the similar but distinct callbacks are combined into a single replmd_op_callback(), which handles both the 'normal operation' and 'inbound replication' case. This allows new partitions to be created, and replication events for these new partitions to be scheduled immediately. Also in this commit: We no longer specify the target partition for new or modified objects - instead we allow the partitions module to use the DN as normal. THis avoids the issue where we would create two partition head records. Andrew Bartlett
2009-10-16 16:20:15 +11:00
ldb_dn_get_linearized(modified_partition->dn)));
s4-repl: keep a @REPLCHANGED object on each partition This object tracks the highest uSN in each partition. It will be used to allow us to efficiently detect changes in a partition for sending DsReplicaSync messages to our replication partners.
2009-09-13 14:24:08 +10:00
return ret;
}
s4-dsdb: make sure mod_usn list is zeroed on each transaction
2009-11-20 12:09:24 +11:00
DLIST_REMOVE(replmd_private->ncs, modified_partition);
talloc_free(modified_partition);
s4-repl: keep a @REPLCHANGED object on each partition This object tracks the highest uSN in each partition. It will be used to allow us to efficiently detect changes in a partition for sending DsReplicaSync messages to our replication partners.
2009-09-13 14:24:08 +10:00
}
return LDB_SUCCESS;
}
change repl_meta_data to process linked_attributes structures in end_transaction When running at functional level 2 or above, the repl_meta_data module can receive linked attribute structures from the repl replication task. These attributes can come through DRS before the associated objects have been created. To cope with this, we need to process linked attributes in the end_transaction hook.
2009-09-03 12:55:57 +10:00
/*
created a replmd_replicated_request context
*/
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
static struct replmd_replicated_request *replmd_ctx_init(struct ldb_module *module,
change repl_meta_data to process linked_attributes structures in end_transaction When running at functional level 2 or above, the repl_meta_data module can receive linked attribute structures from the repl replication task. These attributes can come through DRS before the associated objects have been created. To cope with this, we need to process linked attributes in the end_transaction hook.
2009-09-03 12:55:57 +10:00
struct ldb_request *req)
r20681: implement the DSDB_EXTENDED_REPLICATED_OBJECTS operation. the merging of existing objects is not implemented yet... there are a few ifdef REPLMD_FULL_ASYNC because we need to workarouns ldb's async infrastructure (which don't handle full async sub requests nicely) metze (This used to be commit da4ff0e7ccde47b3e092313ba22422350cf50f78)
2007-01-11 09:54:10 +00:00
{
Fix all other modules to use ldb_module.h instead of ldb_private.h The only 2 modules escaping the rule so far are rootdse and partitions
2009-01-30 16:31:19 -05:00
struct ldb_context *ldb;
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
struct replmd_replicated_request *ac;
r20681: implement the DSDB_EXTENDED_REPLICATED_OBJECTS operation. the merging of existing objects is not implemented yet... there are a few ifdef REPLMD_FULL_ASYNC because we need to workarouns ldb's async infrastructure (which don't handle full async sub requests nicely) metze (This used to be commit da4ff0e7ccde47b3e092313ba22422350cf50f78)
2007-01-11 09:54:10 +00:00
Fix all other modules to use ldb_module.h instead of ldb_private.h The only 2 modules escaping the rule so far are rootdse and partitions
2009-01-30 16:31:19 -05:00
ldb = ldb_module_get_ctx(module);
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
ac = talloc_zero(req, struct replmd_replicated_request);
if (ac == NULL) {
Fix all other modules to use ldb_module.h instead of ldb_private.h The only 2 modules escaping the rule so far are rootdse and partitions
2009-01-30 16:31:19 -05:00
ldb_oom(ldb);
r20681: implement the DSDB_EXTENDED_REPLICATED_OBJECTS operation. the merging of existing objects is not implemented yet... there are a few ifdef REPLMD_FULL_ASYNC because we need to workarouns ldb's async infrastructure (which don't handle full async sub requests nicely) metze (This used to be commit da4ff0e7ccde47b3e092313ba22422350cf50f78)
2007-01-11 09:54:10 +00:00
return NULL;
}
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
ac->module = module;
ac->req = req;
s4:dsdb Use 'partition modified' information to update @REPLCHANGED This major rework of repl_meta_data changes it from using a static list of partitions to a dynamic list created from the controls placed on returned ldb results. To process these in one place, the similar but distinct callbacks are combined into a single replmd_op_callback(), which handles both the 'normal operation' and 'inbound replication' case. This allows new partitions to be created, and replication events for these new partitions to be scheduled immediately. Also in this commit: We no longer specify the target partition for new or modified objects - instead we allow the partitions module to use the DN as normal. THis avoids the issue where we would create two partition head records. Andrew Bartlett
2009-10-16 16:20:15 +11:00
ac->schema = dsdb_get_schema(ldb);
if (!ac->schema) {
ldb_debug_set(ldb, LDB_DEBUG_FATAL,
"replmd_modify: no dsdb_schema loaded");
DEBUG(0,(__location__ ": %s\n", ldb_errstring(ldb)));
return NULL;
}
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
return ac;
r20681: implement the DSDB_EXTENDED_REPLICATED_OBJECTS operation. the merging of existing objects is not implemented yet... there are a few ifdef REPLMD_FULL_ASYNC because we need to workarouns ldb's async infrastructure (which don't handle full async sub requests nicely) metze (This used to be commit da4ff0e7ccde47b3e092313ba22422350cf50f78)
2007-01-11 09:54:10 +00:00
}
r20522: make a copy of the objectguid ldb module because: - I'll add handling of replication meta data to it for orginating changes - I'll pass replication meta data via a ldb control for applying replicated changes - It will also update the replUpToDateVector attribute in in root object of the partition - It will handle deleted records by adding the isDeleted=TRUE attribute and move them to the CN=Deleted Objects container of the partition - I make a copy to play with the code without breaking the LDAP backend setup metze (This used to be commit 045ddfe1ec626fab5e8fd75c5b47f0525b7ebb01)
2007-01-04 12:10:55 +00:00
/*
add a time element to a record
*/
static int add_time_element(struct ldb_message *msg, const char *attr, time_t t)
{
struct ldb_message_element *el;
char *s;
if (ldb_msg_find_element(msg, attr) != NULL) {
Cosmetic corrections for the DSDB module This commit applies some cosmetic corrections for the DSDB (Directory Server Database).
2008-09-09 15:06:13 +02:00
return LDB_SUCCESS;
r20522: make a copy of the objectguid ldb module because: - I'll add handling of replication meta data to it for orginating changes - I'll pass replication meta data via a ldb control for applying replicated changes - It will also update the replUpToDateVector attribute in in root object of the partition - It will handle deleted records by adding the isDeleted=TRUE attribute and move them to the CN=Deleted Objects container of the partition - I make a copy to play with the code without breaking the LDAP backend setup metze (This used to be commit 045ddfe1ec626fab5e8fd75c5b47f0525b7ebb01)
2007-01-04 12:10:55 +00:00
}
s = ldb_timestring(msg, t);
if (s == NULL) {
Cosmetic corrections for the DSDB module This commit applies some cosmetic corrections for the DSDB (Directory Server Database).
2008-09-09 15:06:13 +02:00
return LDB_ERR_OPERATIONS_ERROR;
r20522: make a copy of the objectguid ldb module because: - I'll add handling of replication meta data to it for orginating changes - I'll pass replication meta data via a ldb control for applying replicated changes - It will also update the replUpToDateVector attribute in in root object of the partition - It will handle deleted records by adding the isDeleted=TRUE attribute and move them to the CN=Deleted Objects container of the partition - I make a copy to play with the code without breaking the LDAP backend setup metze (This used to be commit 045ddfe1ec626fab5e8fd75c5b47f0525b7ebb01)
2007-01-04 12:10:55 +00:00
}
DSDB cosmetic patches: Some enhancements Also, use the constants more in the "ldif_handlers" module.
2008-09-25 12:21:28 +02:00
if (ldb_msg_add_string(msg, attr, s) != LDB_SUCCESS) {
Cosmetic corrections for the DSDB module This commit applies some cosmetic corrections for the DSDB (Directory Server Database).
2008-09-09 15:06:13 +02:00
return LDB_ERR_OPERATIONS_ERROR;
r20522: make a copy of the objectguid ldb module because: - I'll add handling of replication meta data to it for orginating changes - I'll pass replication meta data via a ldb control for applying replicated changes - It will also update the replUpToDateVector attribute in in root object of the partition - It will handle deleted records by adding the isDeleted=TRUE attribute and move them to the CN=Deleted Objects container of the partition - I make a copy to play with the code without breaking the LDAP backend setup metze (This used to be commit 045ddfe1ec626fab5e8fd75c5b47f0525b7ebb01)
2007-01-04 12:10:55 +00:00
}
el = ldb_msg_find_element(msg, attr);
/* always set as replace. This works because on add ops, the flag
is ignored */
el->flags = LDB_FLAG_MOD_REPLACE;
Cosmetic corrections for the DSDB module This commit applies some cosmetic corrections for the DSDB (Directory Server Database).
2008-09-09 15:06:13 +02:00
return LDB_SUCCESS;
r20522: make a copy of the objectguid ldb module because: - I'll add handling of replication meta data to it for orginating changes - I'll pass replication meta data via a ldb control for applying replicated changes - It will also update the replUpToDateVector attribute in in root object of the partition - It will handle deleted records by adding the isDeleted=TRUE attribute and move them to the CN=Deleted Objects container of the partition - I make a copy to play with the code without breaking the LDAP backend setup metze (This used to be commit 045ddfe1ec626fab5e8fd75c5b47f0525b7ebb01)
2007-01-04 12:10:55 +00:00
}
/*
add a uint64_t element to a record
*/
static int add_uint64_element(struct ldb_message *msg, const char *attr, uint64_t v)
{
struct ldb_message_element *el;
if (ldb_msg_find_element(msg, attr) != NULL) {
Cosmetic corrections for the DSDB module This commit applies some cosmetic corrections for the DSDB (Directory Server Database).
2008-09-09 15:06:13 +02:00
return LDB_SUCCESS;
r20522: make a copy of the objectguid ldb module because: - I'll add handling of replication meta data to it for orginating changes - I'll pass replication meta data via a ldb control for applying replicated changes - It will also update the replUpToDateVector attribute in in root object of the partition - It will handle deleted records by adding the isDeleted=TRUE attribute and move them to the CN=Deleted Objects container of the partition - I make a copy to play with the code without breaking the LDAP backend setup metze (This used to be commit 045ddfe1ec626fab5e8fd75c5b47f0525b7ebb01)
2007-01-04 12:10:55 +00:00
}
DSDB cosmetic patches: Some enhancements Also, use the constants more in the "ldif_handlers" module.
2008-09-25 12:21:28 +02:00
if (ldb_msg_add_fmt(msg, attr, "%llu", (unsigned long long)v) != LDB_SUCCESS) {
Cosmetic corrections for the DSDB module This commit applies some cosmetic corrections for the DSDB (Directory Server Database).
2008-09-09 15:06:13 +02:00
return LDB_ERR_OPERATIONS_ERROR;
r20522: make a copy of the objectguid ldb module because: - I'll add handling of replication meta data to it for orginating changes - I'll pass replication meta data via a ldb control for applying replicated changes - It will also update the replUpToDateVector attribute in in root object of the partition - It will handle deleted records by adding the isDeleted=TRUE attribute and move them to the CN=Deleted Objects container of the partition - I make a copy to play with the code without breaking the LDAP backend setup metze (This used to be commit 045ddfe1ec626fab5e8fd75c5b47f0525b7ebb01)
2007-01-04 12:10:55 +00:00
}
el = ldb_msg_find_element(msg, attr);
/* always set as replace. This works because on add ops, the flag
is ignored */
el->flags = LDB_FLAG_MOD_REPLACE;
Cosmetic corrections for the DSDB module This commit applies some cosmetic corrections for the DSDB (Directory Server Database).
2008-09-09 15:06:13 +02:00
return LDB_SUCCESS;
r20522: make a copy of the objectguid ldb module because: - I'll add handling of replication meta data to it for orginating changes - I'll pass replication meta data via a ldb control for applying replicated changes - It will also update the replUpToDateVector attribute in in root object of the partition - It will handle deleted records by adding the isDeleted=TRUE attribute and move them to the CN=Deleted Objects container of the partition - I make a copy to play with the code without breaking the LDAP backend setup metze (This used to be commit 045ddfe1ec626fab5e8fd75c5b47f0525b7ebb01)
2007-01-04 12:10:55 +00:00
}
r20968: - add functions to sort the meta data and attribute arrays - we should use them before we store records to disk metze (This used to be commit a5200ef0cae5e8b0cedf196c9d76afc46e08c316)
2007-01-23 10:21:14 +00:00
static int replmd_replPropertyMetaData1_attid_sort(const struct replPropertyMetaData1 *m1,
const struct replPropertyMetaData1 *m2,
const uint32_t *rdn_attid)
{
if (m1->attid == m2->attid) {
return 0;
}
/*
* the rdn attribute should be at the end!
* so we need to return a value greater than zero
* which means m1 is greater than m2
*/
if (m1->attid == *rdn_attid) {
return 1;
}
/*
* the rdn attribute should be at the end!
* so we need to return a value less than zero
* which means m2 is greater than m1
*/
if (m2->attid == *rdn_attid) {
return -1;
}
s4-drs: another two unsigned comparison bugs
2009-12-20 10:26:06 +11:00
return m1->attid > m2->attid ? 1 : -1;
r20968: - add functions to sort the meta data and attribute arrays - we should use them before we store records to disk metze (This used to be commit a5200ef0cae5e8b0cedf196c9d76afc46e08c316)
2007-01-23 10:21:14 +00:00
}
s4-drs: fixed sorting of replPropertyMetaData This also ensures we add the SHOW_DELETED control on searches for old replPropertyMetaData attributes
2009-09-24 16:50:59 -07:00
static int replmd_replPropertyMetaDataCtr1_sort(struct replPropertyMetaDataCtr1 *ctr1,
const struct dsdb_schema *schema,
struct ldb_dn *dn)
r20968: - add functions to sort the meta data and attribute arrays - we should use them before we store records to disk metze (This used to be commit a5200ef0cae5e8b0cedf196c9d76afc46e08c316)
2007-01-23 10:21:14 +00:00
{
s4-drs: fixed sorting of replPropertyMetaData This also ensures we add the SHOW_DELETED control on searches for old replPropertyMetaData attributes
2009-09-24 16:50:59 -07:00
const char *rdn_name;
const struct dsdb_attribute *rdn_sa;
rdn_name = ldb_dn_get_rdn_name(dn);
if (!rdn_name) {
DEBUG(0,(__location__ ": No rDN for %s?\n", ldb_dn_get_linearized(dn)));
return LDB_ERR_OPERATIONS_ERROR;
}
rdn_sa = dsdb_attribute_by_lDAPDisplayName(schema, rdn_name);
if (rdn_sa == NULL) {
DEBUG(0,(__location__ ": No sa found for rDN %s for %s\n", rdn_name, ldb_dn_get_linearized(dn)));
return LDB_ERR_OPERATIONS_ERROR;
}
DEBUG(6,("Sorting rpmd with attid exception %u rDN=%s DN=%s\n",
rdn_sa->attributeID_id, rdn_name, ldb_dn_get_linearized(dn)));
r20968: - add functions to sort the meta data and attribute arrays - we should use them before we store records to disk metze (This used to be commit a5200ef0cae5e8b0cedf196c9d76afc46e08c316)
2007-01-23 10:21:14 +00:00
ldb_qsort(ctr1->array, ctr1->count, sizeof(struct replPropertyMetaData1),
s4-drs: fixed sorting of replPropertyMetaData This also ensures we add the SHOW_DELETED control on searches for old replPropertyMetaData attributes
2009-09-24 16:50:59 -07:00
discard_const_p(void, &rdn_sa->attributeID_id),
(ldb_qsort_cmp_fn_t)replmd_replPropertyMetaData1_attid_sort);
return LDB_SUCCESS;
r20968: - add functions to sort the meta data and attribute arrays - we should use them before we store records to disk metze (This used to be commit a5200ef0cae5e8b0cedf196c9d76afc46e08c316)
2007-01-23 10:21:14 +00:00
}
static int replmd_ldb_message_element_attid_sort(const struct ldb_message_element *e1,
const struct ldb_message_element *e2,
const struct dsdb_schema *schema)
{
const struct dsdb_attribute *a1;
const struct dsdb_attribute *a2;
/*
* TODO: make this faster by caching the dsdb_attribute pointer
* on the ldb_messag_element
*/
a1 = dsdb_attribute_by_lDAPDisplayName(schema, e1->name);
a2 = dsdb_attribute_by_lDAPDisplayName(schema, e2->name);
/*
* TODO: remove this check, we should rely on e1 and e2 having valid attribute names
* in the schema
*/
if (!a1 || !a2) {
return strcasecmp(e1->name, e2->name);
}
s4-drs: another two unsigned comparison bugs
2009-12-20 10:26:06 +11:00
if (a1->attributeID_id == a2->attributeID_id) {
return 0;
}
return a1->attributeID_id > a2->attributeID_id ? 1 : -1;
r20968: - add functions to sort the meta data and attribute arrays - we should use them before we store records to disk metze (This used to be commit a5200ef0cae5e8b0cedf196c9d76afc46e08c316)
2007-01-23 10:21:14 +00:00
}
static void replmd_ldb_message_sort(struct ldb_message *msg,
const struct dsdb_schema *schema)
{
ldb_qsort(msg->elements, msg->num_elements, sizeof(struct ldb_message_element),
discard_const_p(void, schema), (ldb_qsort_cmp_fn_t)replmd_ldb_message_element_attid_sort);
}
s4-dsdb: add linked attributes meta_data handling to replmd_add This also handles the backlink creation that was previously in the linked_attributes module Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-17 10:42:15 +11:00
static int replmd_build_la_val(TALLOC_CTX *mem_ctx, struct ldb_val *v, struct dsdb_dn *dsdb_dn,
s4-dsdb: store full meta data from DRS for linked attributes Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-18 20:57:21 +11:00
const struct GUID *invocation_id, uint64_t seq_num,
s4-dsdb: fill in the correct version number of links that come over DRS
2009-12-20 00:10:40 +11:00
uint64_t local_usn, NTTIME nttime, uint32_t version, bool deleted);
s4-dsdb: store full meta data from DRS for linked attributes Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-18 20:57:21 +11:00
s4-dsdb: add linked attributes meta_data handling to replmd_add This also handles the backlink creation that was previously in the linked_attributes module Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-17 10:42:15 +11:00
/*
fix up linked attributes in replmd_add.
This involves setting up the right meta-data in extended DN
components, and creating backlinks to the object
*/
static int replmd_add_fix_la(struct ldb_module *module, struct ldb_message_element *el,
uint64_t seq_num, const struct GUID *invocationId, time_t t,
struct GUID *guid, const struct dsdb_attribute *sa)
{
int i;
TALLOC_CTX *tmp_ctx = talloc_new(el->values);
struct ldb_context *ldb = ldb_module_get_ctx(module);
struct dsdb_schema *schema = dsdb_get_schema(ldb);
s4-dsdb: store full meta data from DRS for linked attributes Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-18 20:57:21 +11:00
NTTIME now;
unix_to_nt_time(&now, t);
s4-dsdb: add linked attributes meta_data handling to replmd_add This also handles the backlink creation that was previously in the linked_attributes module Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-17 10:42:15 +11:00
for (i=0; i<el->num_values; i++) {
struct ldb_val *v = &el->values[i];
struct dsdb_dn *dsdb_dn = dsdb_dn_parse(tmp_ctx, ldb, v, sa->syntax->ldap_oid);
struct GUID target_guid;
NTSTATUS status;
int ret;
s4-dsdb: store full meta data from DRS for linked attributes Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-18 20:57:21 +11:00
ret = replmd_build_la_val(el->values, v, dsdb_dn, invocationId,
s4-dsdb: fill in the correct version number of links that come over DRS
2009-12-20 00:10:40 +11:00
seq_num, seq_num, now, 0, false);
s4-dsdb: add linked attributes meta_data handling to replmd_add This also handles the backlink creation that was previously in the linked_attributes module Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-17 10:42:15 +11:00
if (ret != LDB_SUCCESS) {
talloc_free(tmp_ctx);
return ret;
}
/* note that the DN already has the extended
components from the extended_dn_store module */
s4-dsdb: store full meta data from DRS for linked attributes Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-18 20:57:21 +11:00
status = dsdb_get_extended_dn_guid(dsdb_dn->dn, &target_guid, "GUID");
s4-drs: treat a zero GUID as not present in replmd_add_fix_la Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-21 21:18:31 +11:00
if (!NT_STATUS_IS_OK(status) || GUID_all_zero(&target_guid)) {
ret = dsdb_module_guid_by_dn(module, dsdb_dn->dn, &target_guid);
if (ret != LDB_SUCCESS) {
talloc_free(tmp_ctx);
return ret;
}
s4-dsdb: add linked attributes meta_data handling to replmd_add This also handles the backlink creation that was previously in the linked_attributes module Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-17 10:42:15 +11:00
}
s4-dsdb: do the rename after the modify in replmd_delete This makes updating the links a bit easier
2009-12-17 23:00:16 +11:00
ret = replmd_add_backlink(module, schema, guid, &target_guid, true, sa, false);
s4-dsdb: add linked attributes meta_data handling to replmd_add This also handles the backlink creation that was previously in the linked_attributes module Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-17 10:42:15 +11:00
if (ret != LDB_SUCCESS) {
talloc_free(tmp_ctx);
return ret;
}
}
talloc_free(tmp_ctx);
return LDB_SUCCESS;
}
/*
intercept add requests
*/
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
static int replmd_add(struct ldb_module *module, struct ldb_request *req)
r20522: make a copy of the objectguid ldb module because: - I'll add handling of replication meta data to it for orginating changes - I'll pass replication meta data via a ldb control for applying replicated changes - It will also update the replUpToDateVector attribute in in root object of the partition - It will handle deleted records by adding the isDeleted=TRUE attribute and move them to the CN=Deleted Objects container of the partition - I make a copy to play with the code without breaking the LDAP backend setup metze (This used to be commit 045ddfe1ec626fab5e8fd75c5b47f0525b7ebb01)
2007-01-04 12:10:55 +00:00
{
Fix all other modules to use ldb_module.h instead of ldb_private.h The only 2 modules escaping the rule so far are rootdse and partitions
2009-01-30 16:31:19 -05:00
struct ldb_context *ldb;
s4-ldb: Use relax control to check in replace metadata module if we accept request that specify objectGUID attribute.
2009-09-23 13:36:40 +04:00
struct ldb_control *control;
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
struct replmd_replicated_request *ac;
r25920: ndr: change NTSTAUS into enum ndr_err_code (samba4 callers) lib/messaging/ lib/registry/ lib/ldb-samba/ librpc/rpc/ auth/auth_winbind.c auth/gensec/ auth/kerberos/ dsdb/repl/ dsdb/samdb/ dsdb/schema/ torture/ cluster/ctdb/ kdc/ ntvfs/ipc/ torture/rap/ ntvfs/ utils/getntacl.c ntptr/ smb_server/ libcli/wrepl/ wrepl_server/ libcli/cldap/ libcli/dgram/ libcli/ldap/ libcli/raw/ libcli/nbt/ libnet/ winbind/ rpc_server/ metze (This used to be commit 6223c7fddc972687eb577e04fc1c8e0604c35435)
2007-11-09 19:24:51 +01:00
enum ndr_err_code ndr_err;
r20522: make a copy of the objectguid ldb module because: - I'll add handling of replication meta data to it for orginating changes - I'll pass replication meta data via a ldb control for applying replicated changes - It will also update the replUpToDateVector attribute in in root object of the partition - It will handle deleted records by adding the isDeleted=TRUE attribute and move them to the CN=Deleted Objects container of the partition - I make a copy to play with the code without breaking the LDAP backend setup metze (This used to be commit 045ddfe1ec626fab5e8fd75c5b47f0525b7ebb01)
2007-01-04 12:10:55 +00:00
struct ldb_request *down_req;
struct ldb_message *msg;
s4-ldb: Use relax control to check in replace metadata module if we accept request that specify objectGUID attribute.
2009-09-23 13:36:40 +04:00
const DATA_BLOB *guid_blob;
r20522: make a copy of the objectguid ldb module because: - I'll add handling of replication meta data to it for orginating changes - I'll pass replication meta data via a ldb control for applying replicated changes - It will also update the replUpToDateVector attribute in in root object of the partition - It will handle deleted records by adding the isDeleted=TRUE attribute and move them to the CN=Deleted Objects container of the partition - I make a copy to play with the code without breaking the LDAP backend setup metze (This used to be commit 045ddfe1ec626fab5e8fd75c5b47f0525b7ebb01)
2007-01-04 12:10:55 +00:00
struct GUID guid;
r20975: - implement handling of meta data an on originating add there're a few things TODO, but it's a good start we need to research if an originating change causes the replUpToDateVector attribute to change...(I assume it, but needs testing) metze (This used to be commit fde0aabd9ae79fcefbcba34e6f9143f93ffcf96c)
2007-01-23 16:18:45 +00:00
struct replPropertyMetaDataBlob nmd;
struct ldb_val nmd_value;
const struct GUID *our_invocation_id;
r20522: make a copy of the objectguid ldb module because: - I'll add handling of replication meta data to it for orginating changes - I'll pass replication meta data via a ldb control for applying replicated changes - It will also update the replUpToDateVector attribute in in root object of the partition - It will handle deleted records by adding the isDeleted=TRUE attribute and move them to the CN=Deleted Objects container of the partition - I make a copy to play with the code without breaking the LDAP backend setup metze (This used to be commit 045ddfe1ec626fab5e8fd75c5b47f0525b7ebb01)
2007-01-04 12:10:55 +00:00
time_t t = time(NULL);
r20975: - implement handling of meta data an on originating add there're a few things TODO, but it's a good start we need to research if an originating change causes the replUpToDateVector attribute to change...(I assume it, but needs testing) metze (This used to be commit fde0aabd9ae79fcefbcba34e6f9143f93ffcf96c)
2007-01-23 16:18:45 +00:00
NTTIME now;
char *time_str;
int ret;
uint32_t i, ni=0;
s4:dsdb Don't allow creation of systemOnly objectclasses (except as part of the provision, which specifies the 'relax' control) Andrew Bartlett
2009-10-03 10:52:53 +02:00
bool allow_add_guid = false;
bool remove_current_guid = false;
s4-ldb: Use relax control to check in replace metadata module if we accept request that specify objectGUID attribute.
2009-09-23 13:36:40 +04:00
s4:dsdb Don't allow creation of systemOnly objectclasses (except as part of the provision, which specifies the 'relax' control) Andrew Bartlett
2009-10-03 10:52:53 +02:00
/* check if there's a show relax control (used by provision to say 'I know what I'm doing') */
s4-ldb: Use relax control to check in replace metadata module if we accept request that specify objectGUID attribute.
2009-09-23 13:36:40 +04:00
control = ldb_request_get_control(req, LDB_CONTROL_RELAX_OID);
if (control) {
allow_add_guid = 1;
}
r20522: make a copy of the objectguid ldb module because: - I'll add handling of replication meta data to it for orginating changes - I'll pass replication meta data via a ldb control for applying replicated changes - It will also update the replUpToDateVector attribute in in root object of the partition - It will handle deleted records by adding the isDeleted=TRUE attribute and move them to the CN=Deleted Objects container of the partition - I make a copy to play with the code without breaking the LDAP backend setup metze (This used to be commit 045ddfe1ec626fab5e8fd75c5b47f0525b7ebb01)
2007-01-04 12:10:55 +00:00
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
/* do not manipulate our control entries */
if (ldb_dn_is_special(req->op.add.message->dn)) {
return ldb_next_request(module, req);
}
s4:repl_meta_data: fix segfault after ldb changes metze
2009-01-31 09:44:27 +01:00
ldb = ldb_module_get_ctx(module);
Fix all other modules to use ldb_module.h instead of ldb_private.h The only 2 modules escaping the rule so far are rootdse and partitions
2009-01-30 16:31:19 -05:00
ldb_debug(ldb, LDB_DEBUG_TRACE, "replmd_add\n");
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
ac = replmd_ctx_init(module, req);
if (!ac) {
return LDB_ERR_OPERATIONS_ERROR;
}
s4-ldb: Use relax control to check in replace metadata module if we accept request that specify objectGUID attribute.
2009-09-23 13:36:40 +04:00
guid_blob = ldb_msg_find_ldb_val(req->op.add.message, "objectGUID");
if ( guid_blob != NULL ) {
if( !allow_add_guid ) {
ldb_debug_set(ldb, LDB_DEBUG_ERROR,
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
"replmd_add: it's not allowed to add an object with objectGUID\n");
s4:repl_meta_data - various - Add more "talloc_free"s and right error values where needed - Add a pre-lookup for entries before searching for metadata attribute (also suggested by TODO list) - Now the most part of "ldap.py" works again
2009-10-02 23:26:35 +02:00
talloc_free(ac);
s4-ldb: Use relax control to check in replace metadata module if we accept request that specify objectGUID attribute.
2009-09-23 13:36:40 +04:00
return LDB_ERR_UNWILLING_TO_PERFORM;
} else {
NTSTATUS status = GUID_from_data_blob(guid_blob,&guid);
if ( !NT_STATUS_IS_OK(status)) {
ldb_debug_set(ldb, LDB_DEBUG_ERROR,
"replmd_add: Unable to parse as a GUID the attribute objectGUID\n");
s4:repl_meta_data - various - Add more "talloc_free"s and right error values where needed - Add a pre-lookup for entries before searching for metadata attribute (also suggested by TODO list) - Now the most part of "ldap.py" works again
2009-10-02 23:26:35 +02:00
talloc_free(ac);
s4-ldb: Use relax control to check in replace metadata module if we accept request that specify objectGUID attribute.
2009-09-23 13:36:40 +04:00
return LDB_ERR_UNWILLING_TO_PERFORM;
}
/* we remove this attribute as it can be a string and will not be treated
correctly and then we will readd it latter on in the good format*/
s4:dsdb Don't allow creation of systemOnly objectclasses (except as part of the provision, which specifies the 'relax' control) Andrew Bartlett
2009-10-03 10:52:53 +02:00
remove_current_guid = true;
s4-ldb: Use relax control to check in replace metadata module if we accept request that specify objectGUID attribute.
2009-09-23 13:36:40 +04:00
}
} else {
/* a new GUID */
guid = GUID_random();
r20975: - implement handling of meta data an on originating add there're a few things TODO, but it's a good start we need to research if an originating change causes the replUpToDateVector attribute to change...(I assume it, but needs testing) metze (This used to be commit fde0aabd9ae79fcefbcba34e6f9143f93ffcf96c)
2007-01-23 16:18:45 +00:00
}
/* Get a sequence number from the backend */
s4:dsdb Set 'notification' after the success of a change. This allows the partition to be created before we try and set a notification on it. (perhaps extra work required here for partition heads). Andrew Bartlett
2009-10-10 09:36:44 +11:00
ret = ldb_sequence_number(ldb, LDB_SEQ_NEXT, &ac->seq_num);
r20975: - implement handling of meta data an on originating add there're a few things TODO, but it's a good start we need to research if an originating change causes the replUpToDateVector attribute to change...(I assume it, but needs testing) metze (This used to be commit fde0aabd9ae79fcefbcba34e6f9143f93ffcf96c)
2007-01-23 16:18:45 +00:00
if (ret != LDB_SUCCESS) {
s4:repl_meta_data - various - Add more "talloc_free"s and right error values where needed - Add a pre-lookup for entries before searching for metadata attribute (also suggested by TODO list) - Now the most part of "ldap.py" works again
2009-10-02 23:26:35 +02:00
talloc_free(ac);
r20975: - implement handling of meta data an on originating add there're a few things TODO, but it's a good start we need to research if an originating change causes the replUpToDateVector attribute to change...(I assume it, but needs testing) metze (This used to be commit fde0aabd9ae79fcefbcba34e6f9143f93ffcf96c)
2007-01-23 16:18:45 +00:00
return ret;
r20522: make a copy of the objectguid ldb module because: - I'll add handling of replication meta data to it for orginating changes - I'll pass replication meta data via a ldb control for applying replicated changes - It will also update the replUpToDateVector attribute in in root object of the partition - It will handle deleted records by adding the isDeleted=TRUE attribute and move them to the CN=Deleted Objects container of the partition - I make a copy to play with the code without breaking the LDAP backend setup metze (This used to be commit 045ddfe1ec626fab5e8fd75c5b47f0525b7ebb01)
2007-01-04 12:10:55 +00:00
}
change repl_meta_data to process linked_attributes structures in end_transaction When running at functional level 2 or above, the repl_meta_data module can receive linked attribute structures from the repl replication task. These attributes can come through DRS before the associated objects have been created. To cope with this, we need to process linked attributes in the end_transaction hook.
2009-09-03 12:55:57 +10:00
/* get our invocationId */
Fix all other modules to use ldb_module.h instead of ldb_private.h The only 2 modules escaping the rule so far are rootdse and partitions
2009-01-30 16:31:19 -05:00
our_invocation_id = samdb_ntds_invocation_id(ldb);
r20975: - implement handling of meta data an on originating add there're a few things TODO, but it's a good start we need to research if an originating change causes the replUpToDateVector attribute to change...(I assume it, but needs testing) metze (This used to be commit fde0aabd9ae79fcefbcba34e6f9143f93ffcf96c)
2007-01-23 16:18:45 +00:00
if (!our_invocation_id) {
Fix all other modules to use ldb_module.h instead of ldb_private.h The only 2 modules escaping the rule so far are rootdse and partitions
2009-01-30 16:31:19 -05:00
ldb_debug_set(ldb, LDB_DEBUG_ERROR,
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
"replmd_add: unable to find invocationId\n");
s4:repl_meta_data - various - Add more "talloc_free"s and right error values where needed - Add a pre-lookup for entries before searching for metadata attribute (also suggested by TODO list) - Now the most part of "ldap.py" works again
2009-10-02 23:26:35 +02:00
talloc_free(ac);
r20522: make a copy of the objectguid ldb module because: - I'll add handling of replication meta data to it for orginating changes - I'll pass replication meta data via a ldb control for applying replicated changes - It will also update the replUpToDateVector attribute in in root object of the partition - It will handle deleted records by adding the isDeleted=TRUE attribute and move them to the CN=Deleted Objects container of the partition - I make a copy to play with the code without breaking the LDAP backend setup metze (This used to be commit 045ddfe1ec626fab5e8fd75c5b47f0525b7ebb01)
2007-01-04 12:10:55 +00:00
return LDB_ERR_OPERATIONS_ERROR;
}
/* we have to copy the message as the caller might have it as a const */
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
msg = ldb_msg_copy_shallow(ac, req->op.add.message);
r20522: make a copy of the objectguid ldb module because: - I'll add handling of replication meta data to it for orginating changes - I'll pass replication meta data via a ldb control for applying replicated changes - It will also update the replUpToDateVector attribute in in root object of the partition - It will handle deleted records by adding the isDeleted=TRUE attribute and move them to the CN=Deleted Objects container of the partition - I make a copy to play with the code without breaking the LDAP backend setup metze (This used to be commit 045ddfe1ec626fab5e8fd75c5b47f0525b7ebb01)
2007-01-04 12:10:55 +00:00
if (msg == NULL) {
Fix all other modules to use ldb_module.h instead of ldb_private.h The only 2 modules escaping the rule so far are rootdse and partitions
2009-01-30 16:31:19 -05:00
ldb_oom(ldb);
s4:repl_meta_data - various - Add more "talloc_free"s and right error values where needed - Add a pre-lookup for entries before searching for metadata attribute (also suggested by TODO list) - Now the most part of "ldap.py" works again
2009-10-02 23:26:35 +02:00
talloc_free(ac);
r20522: make a copy of the objectguid ldb module because: - I'll add handling of replication meta data to it for orginating changes - I'll pass replication meta data via a ldb control for applying replicated changes - It will also update the replUpToDateVector attribute in in root object of the partition - It will handle deleted records by adding the isDeleted=TRUE attribute and move them to the CN=Deleted Objects container of the partition - I make a copy to play with the code without breaking the LDAP backend setup metze (This used to be commit 045ddfe1ec626fab5e8fd75c5b47f0525b7ebb01)
2007-01-04 12:10:55 +00:00
return LDB_ERR_OPERATIONS_ERROR;
}
r20975: - implement handling of meta data an on originating add there're a few things TODO, but it's a good start we need to research if an originating change causes the replUpToDateVector attribute to change...(I assume it, but needs testing) metze (This used to be commit fde0aabd9ae79fcefbcba34e6f9143f93ffcf96c)
2007-01-23 16:18:45 +00:00
/* generated times */
unix_to_nt_time(&now, t);
time_str = ldb_timestring(msg, t);
if (!time_str) {
s4:repl_meta_data - various - Add more "talloc_free"s and right error values where needed - Add a pre-lookup for entries before searching for metadata attribute (also suggested by TODO list) - Now the most part of "ldap.py" works again
2009-10-02 23:26:35 +02:00
ldb_oom(ldb);
talloc_free(ac);
r20975: - implement handling of meta data an on originating add there're a few things TODO, but it's a good start we need to research if an originating change causes the replUpToDateVector attribute to change...(I assume it, but needs testing) metze (This used to be commit fde0aabd9ae79fcefbcba34e6f9143f93ffcf96c)
2007-01-23 16:18:45 +00:00
return LDB_ERR_OPERATIONS_ERROR;
}
s4-ldb: Use relax control to check in replace metadata module if we accept request that specify objectGUID attribute.
2009-09-23 13:36:40 +04:00
if (remove_current_guid) {
ldb_msg_remove_attr(msg,"objectGUID");
}
r20522: make a copy of the objectguid ldb module because: - I'll add handling of replication meta data to it for orginating changes - I'll pass replication meta data via a ldb control for applying replicated changes - It will also update the replUpToDateVector attribute in in root object of the partition - It will handle deleted records by adding the isDeleted=TRUE attribute and move them to the CN=Deleted Objects container of the partition - I make a copy to play with the code without breaking the LDAP backend setup metze (This used to be commit 045ddfe1ec626fab5e8fd75c5b47f0525b7ebb01)
2007-01-04 12:10:55 +00:00
r20975: - implement handling of meta data an on originating add there're a few things TODO, but it's a good start we need to research if an originating change causes the replUpToDateVector attribute to change...(I assume it, but needs testing) metze (This used to be commit fde0aabd9ae79fcefbcba34e6f9143f93ffcf96c)
2007-01-23 16:18:45 +00:00
/*
* remove autogenerated attributes
*/
ldb_msg_remove_attr(msg, "whenCreated");
ldb_msg_remove_attr(msg, "whenChanged");
ldb_msg_remove_attr(msg, "uSNCreated");
ldb_msg_remove_attr(msg, "uSNChanged");
ldb_msg_remove_attr(msg, "replPropertyMetaData");
/*
* readd replicated attributes
*/
ret = ldb_msg_add_string(msg, "whenCreated", time_str);
if (ret != LDB_SUCCESS) {
Fix all other modules to use ldb_module.h instead of ldb_private.h The only 2 modules escaping the rule so far are rootdse and partitions
2009-01-30 16:31:19 -05:00
ldb_oom(ldb);
s4:repl_meta_data - various - Add more "talloc_free"s and right error values where needed - Add a pre-lookup for entries before searching for metadata attribute (also suggested by TODO list) - Now the most part of "ldap.py" works again
2009-10-02 23:26:35 +02:00
talloc_free(ac);
return ret;
r20975: - implement handling of meta data an on originating add there're a few things TODO, but it's a good start we need to research if an originating change causes the replUpToDateVector attribute to change...(I assume it, but needs testing) metze (This used to be commit fde0aabd9ae79fcefbcba34e6f9143f93ffcf96c)
2007-01-23 16:18:45 +00:00
}
/* build the replication meta_data */
ZERO_STRUCT(nmd);
nmd.version = 1;
nmd.ctr.ctr1.count = msg->num_elements;
nmd.ctr.ctr1.array = talloc_array(msg,
struct replPropertyMetaData1,
nmd.ctr.ctr1.count);
if (!nmd.ctr.ctr1.array) {
Fix all other modules to use ldb_module.h instead of ldb_private.h The only 2 modules escaping the rule so far are rootdse and partitions
2009-01-30 16:31:19 -05:00
ldb_oom(ldb);
s4:repl_meta_data - various - Add more "talloc_free"s and right error values where needed - Add a pre-lookup for entries before searching for metadata attribute (also suggested by TODO list) - Now the most part of "ldap.py" works again
2009-10-02 23:26:35 +02:00
talloc_free(ac);
r20975: - implement handling of meta data an on originating add there're a few things TODO, but it's a good start we need to research if an originating change causes the replUpToDateVector attribute to change...(I assume it, but needs testing) metze (This used to be commit fde0aabd9ae79fcefbcba34e6f9143f93ffcf96c)
2007-01-23 16:18:45 +00:00
return LDB_ERR_OPERATIONS_ERROR;
}
for (i=0; i < msg->num_elements; i++) {
struct ldb_message_element *e = &msg->elements[i];
struct replPropertyMetaData1 *m = &nmd.ctr.ctr1.array[ni];
const struct dsdb_attribute *sa;
r22991: ignore '@foo' attributes in the repl_meta_data module metze (This used to be commit b592ac1c2c91a72a8aae8ed11d74cba3ce0778c5)
2007-05-18 08:09:51 +00:00
if (e->name[0] == '@') continue;
s4:dsdb Use 'partition modified' information to update @REPLCHANGED This major rework of repl_meta_data changes it from using a static list of partitions to a dynamic list created from the controls placed on returned ldb results. To process these in one place, the similar but distinct callbacks are combined into a single replmd_op_callback(), which handles both the 'normal operation' and 'inbound replication' case. This allows new partitions to be created, and replication events for these new partitions to be scheduled immediately. Also in this commit: We no longer specify the target partition for new or modified objects - instead we allow the partitions module to use the DN as normal. THis avoids the issue where we would create two partition head records. Andrew Bartlett
2009-10-16 16:20:15 +11:00
sa = dsdb_attribute_by_lDAPDisplayName(ac->schema, e->name);
r20975: - implement handling of meta data an on originating add there're a few things TODO, but it's a good start we need to research if an originating change causes the replUpToDateVector attribute to change...(I assume it, but needs testing) metze (This used to be commit fde0aabd9ae79fcefbcba34e6f9143f93ffcf96c)
2007-01-23 16:18:45 +00:00
if (!sa) {
Fix all other modules to use ldb_module.h instead of ldb_private.h The only 2 modules escaping the rule so far are rootdse and partitions
2009-01-30 16:31:19 -05:00
ldb_debug_set(ldb, LDB_DEBUG_ERROR,
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
"replmd_add: attribute '%s' not defined in schema\n",
r20975: - implement handling of meta data an on originating add there're a few things TODO, but it's a good start we need to research if an originating change causes the replUpToDateVector attribute to change...(I assume it, but needs testing) metze (This used to be commit fde0aabd9ae79fcefbcba34e6f9143f93ffcf96c)
2007-01-23 16:18:45 +00:00
e->name);
s4:repl_meta_data - various - Add more "talloc_free"s and right error values where needed - Add a pre-lookup for entries before searching for metadata attribute (also suggested by TODO list) - Now the most part of "ldap.py" works again
2009-10-02 23:26:35 +02:00
talloc_free(ac);
r20975: - implement handling of meta data an on originating add there're a few things TODO, but it's a good start we need to research if an originating change causes the replUpToDateVector attribute to change...(I assume it, but needs testing) metze (This used to be commit fde0aabd9ae79fcefbcba34e6f9143f93ffcf96c)
2007-01-23 16:18:45 +00:00
return LDB_ERR_NO_SUCH_ATTRIBUTE;
}
s4-drs: add defines for replication flags on attributes
2009-09-24 07:19:01 -07:00
if ((sa->systemFlags & DS_FLAG_ATTR_NOT_REPLICATED) || (sa->systemFlags & DS_FLAG_ATTR_IS_CONSTRUCTED)) {
r21838: generate no metadata for constructed attributes metze (This used to be commit 7e0620e524886a66dbdb16f35fee4f51f2867a2a)
2007-03-14 12:07:56 +00:00
/* if the attribute is not replicated (0x00000001)
* or constructed (0x00000004) it has no metadata
*/
r20975: - implement handling of meta data an on originating add there're a few things TODO, but it's a good start we need to research if an originating change causes the replUpToDateVector attribute to change...(I assume it, but needs testing) metze (This used to be commit fde0aabd9ae79fcefbcba34e6f9143f93ffcf96c)
2007-01-23 16:18:45 +00:00
continue;
r20522: make a copy of the objectguid ldb module because: - I'll add handling of replication meta data to it for orginating changes - I'll pass replication meta data via a ldb control for applying replicated changes - It will also update the replUpToDateVector attribute in in root object of the partition - It will handle deleted records by adding the isDeleted=TRUE attribute and move them to the CN=Deleted Objects container of the partition - I make a copy to play with the code without breaking the LDAP backend setup metze (This used to be commit 045ddfe1ec626fab5e8fd75c5b47f0525b7ebb01)
2007-01-04 12:10:55 +00:00
}
r20975: - implement handling of meta data an on originating add there're a few things TODO, but it's a good start we need to research if an originating change causes the replUpToDateVector attribute to change...(I assume it, but needs testing) metze (This used to be commit fde0aabd9ae79fcefbcba34e6f9143f93ffcf96c)
2007-01-23 16:18:45 +00:00
s4-dsdb: add linked attributes meta_data handling to replmd_add This also handles the backlink creation that was previously in the linked_attributes module Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-17 10:42:15 +11:00
#if W2K3_LINKED_ATTRIBUTES
if (sa->linkID != 0 && dsdb_functional_level(ldb) > DS_DOMAIN_FUNCTION_2000) {
ret = replmd_add_fix_la(module, e, ac->seq_num, our_invocation_id, t, &guid, sa);
if (ret != LDB_SUCCESS) {
talloc_free(ac);
return ret;
}
/* linked attributes are not stored in
replPropertyMetaData in FL above w2k */
continue;
}
#endif
r20975: - implement handling of meta data an on originating add there're a few things TODO, but it's a good start we need to research if an originating change causes the replUpToDateVector attribute to change...(I assume it, but needs testing) metze (This used to be commit fde0aabd9ae79fcefbcba34e6f9143f93ffcf96c)
2007-01-23 16:18:45 +00:00
m->attid = sa->attributeID_id;
m->version = 1;
r21773: fix typo orginating -> originating and use the struct member names in all cases metze (This used to be commit c543ee57454d006c545e3e9e20c9ac0114081d3d)
2007-03-09 10:09:37 +00:00
m->originating_change_time = now;
m->originating_invocation_id = *our_invocation_id;
s4:dsdb Set 'notification' after the success of a change. This allows the partition to be created before we try and set a notification on it. (perhaps extra work required here for partition heads). Andrew Bartlett
2009-10-10 09:36:44 +11:00
m->originating_usn = ac->seq_num;
m->local_usn = ac->seq_num;
r20975: - implement handling of meta data an on originating add there're a few things TODO, but it's a good start we need to research if an originating change causes the replUpToDateVector attribute to change...(I assume it, but needs testing) metze (This used to be commit fde0aabd9ae79fcefbcba34e6f9143f93ffcf96c)
2007-01-23 16:18:45 +00:00
ni++;
}
/* fix meta data count */
nmd.ctr.ctr1.count = ni;
/*
* sort meta data array, and move the rdn attribute entry to the end
*/
s4:dsdb Use 'partition modified' information to update @REPLCHANGED This major rework of repl_meta_data changes it from using a static list of partitions to a dynamic list created from the controls placed on returned ldb results. To process these in one place, the similar but distinct callbacks are combined into a single replmd_op_callback(), which handles both the 'normal operation' and 'inbound replication' case. This allows new partitions to be created, and replication events for these new partitions to be scheduled immediately. Also in this commit: We no longer specify the target partition for new or modified objects - instead we allow the partitions module to use the DN as normal. THis avoids the issue where we would create two partition head records. Andrew Bartlett
2009-10-16 16:20:15 +11:00
ret = replmd_replPropertyMetaDataCtr1_sort(&nmd.ctr.ctr1, ac->schema, msg->dn);
s4-drs: fixed sorting of replPropertyMetaData This also ensures we add the SHOW_DELETED control on searches for old replPropertyMetaData attributes
2009-09-24 16:50:59 -07:00
if (ret != LDB_SUCCESS) {
s4:repl_meta_data - various - Add more "talloc_free"s and right error values where needed - Add a pre-lookup for entries before searching for metadata attribute (also suggested by TODO list) - Now the most part of "ldap.py" works again
2009-10-02 23:26:35 +02:00
talloc_free(ac);
s4-drs: fixed sorting of replPropertyMetaData This also ensures we add the SHOW_DELETED control on searches for old replPropertyMetaData attributes
2009-09-24 16:50:59 -07:00
return ret;
}
r20975: - implement handling of meta data an on originating add there're a few things TODO, but it's a good start we need to research if an originating change causes the replUpToDateVector attribute to change...(I assume it, but needs testing) metze (This used to be commit fde0aabd9ae79fcefbcba34e6f9143f93ffcf96c)
2007-01-23 16:18:45 +00:00
/* generated NDR encoded values */
r26638: libndr: Require explicitly specifying iconv_convenience for ndr_struct_push_blob(). (This used to be commit 61ad78ac98937ef7a9aa32075a91a1c95b7606b3)
2008-01-01 22:05:05 -06:00
ndr_err = ndr_push_struct_blob(&nmd_value, msg,
Fix all other modules to use ldb_module.h instead of ldb_private.h The only 2 modules escaping the rule so far are rootdse and partitions
2009-01-30 16:31:19 -05:00
lp_iconv_convenience(ldb_get_opaque(ldb, "loadparm")),
r26638: libndr: Require explicitly specifying iconv_convenience for ndr_struct_push_blob(). (This used to be commit 61ad78ac98937ef7a9aa32075a91a1c95b7606b3)
2008-01-01 22:05:05 -06:00
&nmd,
r25920: ndr: change NTSTAUS into enum ndr_err_code (samba4 callers) lib/messaging/ lib/registry/ lib/ldb-samba/ librpc/rpc/ auth/auth_winbind.c auth/gensec/ auth/kerberos/ dsdb/repl/ dsdb/samdb/ dsdb/schema/ torture/ cluster/ctdb/ kdc/ ntvfs/ipc/ torture/rap/ ntvfs/ utils/getntacl.c ntptr/ smb_server/ libcli/wrepl/ wrepl_server/ libcli/cldap/ libcli/dgram/ libcli/ldap/ libcli/raw/ libcli/nbt/ libnet/ winbind/ rpc_server/ metze (This used to be commit 6223c7fddc972687eb577e04fc1c8e0604c35435)
2007-11-09 19:24:51 +01:00
(ndr_push_flags_fn_t)ndr_push_replPropertyMetaDataBlob);
if (!NDR_ERR_CODE_IS_SUCCESS(ndr_err)) {
Fix all other modules to use ldb_module.h instead of ldb_private.h The only 2 modules escaping the rule so far are rootdse and partitions
2009-01-30 16:31:19 -05:00
ldb_oom(ldb);
s4:repl_meta_data - various - Add more "talloc_free"s and right error values where needed - Add a pre-lookup for entries before searching for metadata attribute (also suggested by TODO list) - Now the most part of "ldap.py" works again
2009-10-02 23:26:35 +02:00
talloc_free(ac);
r20975: - implement handling of meta data an on originating add there're a few things TODO, but it's a good start we need to research if an originating change causes the replUpToDateVector attribute to change...(I assume it, but needs testing) metze (This used to be commit fde0aabd9ae79fcefbcba34e6f9143f93ffcf96c)
2007-01-23 16:18:45 +00:00
return LDB_ERR_OPERATIONS_ERROR;
r20522: make a copy of the objectguid ldb module because: - I'll add handling of replication meta data to it for orginating changes - I'll pass replication meta data via a ldb control for applying replicated changes - It will also update the replUpToDateVector attribute in in root object of the partition - It will handle deleted records by adding the isDeleted=TRUE attribute and move them to the CN=Deleted Objects container of the partition - I make a copy to play with the code without breaking the LDAP backend setup metze (This used to be commit 045ddfe1ec626fab5e8fd75c5b47f0525b7ebb01)
2007-01-04 12:10:55 +00:00
}
r20975: - implement handling of meta data an on originating add there're a few things TODO, but it's a good start we need to research if an originating change causes the replUpToDateVector attribute to change...(I assume it, but needs testing) metze (This used to be commit fde0aabd9ae79fcefbcba34e6f9143f93ffcf96c)
2007-01-23 16:18:45 +00:00
/*
* add the autogenerated values
*/
s4-drs: Using dsdb_msg_add_guid() utility function Uses the dsdb_msg_add_guid() to add any kind of GUID attribute to a ldb_message in several places of samba4 code. Signed-off-by: Andrew Tridgell <tridge@samba.org>
2009-11-25 17:01:55 -03:00
ret = dsdb_msg_add_guid(msg, &guid, "objectGUID");
r20975: - implement handling of meta data an on originating add there're a few things TODO, but it's a good start we need to research if an originating change causes the replUpToDateVector attribute to change...(I assume it, but needs testing) metze (This used to be commit fde0aabd9ae79fcefbcba34e6f9143f93ffcf96c)
2007-01-23 16:18:45 +00:00
if (ret != LDB_SUCCESS) {
Fix all other modules to use ldb_module.h instead of ldb_private.h The only 2 modules escaping the rule so far are rootdse and partitions
2009-01-30 16:31:19 -05:00
ldb_oom(ldb);
s4:repl_meta_data - various - Add more "talloc_free"s and right error values where needed - Add a pre-lookup for entries before searching for metadata attribute (also suggested by TODO list) - Now the most part of "ldap.py" works again
2009-10-02 23:26:35 +02:00
talloc_free(ac);
s4:dsdb Pass down the exact error code on failure in repl_meta_data
2009-09-23 21:13:22 -07:00
return ret;
r20975: - implement handling of meta data an on originating add there're a few things TODO, but it's a good start we need to research if an originating change causes the replUpToDateVector attribute to change...(I assume it, but needs testing) metze (This used to be commit fde0aabd9ae79fcefbcba34e6f9143f93ffcf96c)
2007-01-23 16:18:45 +00:00
}
ret = ldb_msg_add_string(msg, "whenChanged", time_str);
if (ret != LDB_SUCCESS) {
Fix all other modules to use ldb_module.h instead of ldb_private.h The only 2 modules escaping the rule so far are rootdse and partitions
2009-01-30 16:31:19 -05:00
ldb_oom(ldb);
s4:repl_meta_data - various - Add more "talloc_free"s and right error values where needed - Add a pre-lookup for entries before searching for metadata attribute (also suggested by TODO list) - Now the most part of "ldap.py" works again
2009-10-02 23:26:35 +02:00
talloc_free(ac);
s4:dsdb Pass down the exact error code on failure in repl_meta_data
2009-09-23 21:13:22 -07:00
return ret;
r20975: - implement handling of meta data an on originating add there're a few things TODO, but it's a good start we need to research if an originating change causes the replUpToDateVector attribute to change...(I assume it, but needs testing) metze (This used to be commit fde0aabd9ae79fcefbcba34e6f9143f93ffcf96c)
2007-01-23 16:18:45 +00:00
}
s4:dsdb Set 'notification' after the success of a change. This allows the partition to be created before we try and set a notification on it. (perhaps extra work required here for partition heads). Andrew Bartlett
2009-10-10 09:36:44 +11:00
ret = samdb_msg_add_uint64(ldb, msg, msg, "uSNCreated", ac->seq_num);
r20975: - implement handling of meta data an on originating add there're a few things TODO, but it's a good start we need to research if an originating change causes the replUpToDateVector attribute to change...(I assume it, but needs testing) metze (This used to be commit fde0aabd9ae79fcefbcba34e6f9143f93ffcf96c)
2007-01-23 16:18:45 +00:00
if (ret != LDB_SUCCESS) {
Fix all other modules to use ldb_module.h instead of ldb_private.h The only 2 modules escaping the rule so far are rootdse and partitions
2009-01-30 16:31:19 -05:00
ldb_oom(ldb);
s4:repl_meta_data - various - Add more "talloc_free"s and right error values where needed - Add a pre-lookup for entries before searching for metadata attribute (also suggested by TODO list) - Now the most part of "ldap.py" works again
2009-10-02 23:26:35 +02:00
talloc_free(ac);
s4:dsdb Pass down the exact error code on failure in repl_meta_data
2009-09-23 21:13:22 -07:00
return ret;
r20975: - implement handling of meta data an on originating add there're a few things TODO, but it's a good start we need to research if an originating change causes the replUpToDateVector attribute to change...(I assume it, but needs testing) metze (This used to be commit fde0aabd9ae79fcefbcba34e6f9143f93ffcf96c)
2007-01-23 16:18:45 +00:00
}
s4:dsdb Set 'notification' after the success of a change. This allows the partition to be created before we try and set a notification on it. (perhaps extra work required here for partition heads). Andrew Bartlett
2009-10-10 09:36:44 +11:00
ret = samdb_msg_add_uint64(ldb, msg, msg, "uSNChanged", ac->seq_num);
r20975: - implement handling of meta data an on originating add there're a few things TODO, but it's a good start we need to research if an originating change causes the replUpToDateVector attribute to change...(I assume it, but needs testing) metze (This used to be commit fde0aabd9ae79fcefbcba34e6f9143f93ffcf96c)
2007-01-23 16:18:45 +00:00
if (ret != LDB_SUCCESS) {
Fix all other modules to use ldb_module.h instead of ldb_private.h The only 2 modules escaping the rule so far are rootdse and partitions
2009-01-30 16:31:19 -05:00
ldb_oom(ldb);
s4:repl_meta_data - various - Add more "talloc_free"s and right error values where needed - Add a pre-lookup for entries before searching for metadata attribute (also suggested by TODO list) - Now the most part of "ldap.py" works again
2009-10-02 23:26:35 +02:00
talloc_free(ac);
s4:dsdb Pass down the exact error code on failure in repl_meta_data
2009-09-23 21:13:22 -07:00
return ret;
r20975: - implement handling of meta data an on originating add there're a few things TODO, but it's a good start we need to research if an originating change causes the replUpToDateVector attribute to change...(I assume it, but needs testing) metze (This used to be commit fde0aabd9ae79fcefbcba34e6f9143f93ffcf96c)
2007-01-23 16:18:45 +00:00
}
ret = ldb_msg_add_value(msg, "replPropertyMetaData", &nmd_value, NULL);
if (ret != LDB_SUCCESS) {
Fix all other modules to use ldb_module.h instead of ldb_private.h The only 2 modules escaping the rule so far are rootdse and partitions
2009-01-30 16:31:19 -05:00
ldb_oom(ldb);
s4:repl_meta_data - various - Add more "talloc_free"s and right error values where needed - Add a pre-lookup for entries before searching for metadata attribute (also suggested by TODO list) - Now the most part of "ldap.py" works again
2009-10-02 23:26:35 +02:00
talloc_free(ac);
s4:dsdb Pass down the exact error code on failure in repl_meta_data
2009-09-23 21:13:22 -07:00
return ret;
r20975: - implement handling of meta data an on originating add there're a few things TODO, but it's a good start we need to research if an originating change causes the replUpToDateVector attribute to change...(I assume it, but needs testing) metze (This used to be commit fde0aabd9ae79fcefbcba34e6f9143f93ffcf96c)
2007-01-23 16:18:45 +00:00
}
/*
* sort the attributes by attid before storing the object
*/
s4:dsdb Use 'partition modified' information to update @REPLCHANGED This major rework of repl_meta_data changes it from using a static list of partitions to a dynamic list created from the controls placed on returned ldb results. To process these in one place, the similar but distinct callbacks are combined into a single replmd_op_callback(), which handles both the 'normal operation' and 'inbound replication' case. This allows new partitions to be created, and replication events for these new partitions to be scheduled immediately. Also in this commit: We no longer specify the target partition for new or modified objects - instead we allow the partitions module to use the DN as normal. THis avoids the issue where we would create two partition head records. Andrew Bartlett
2009-10-16 16:20:15 +11:00
replmd_ldb_message_sort(msg, ac->schema);
r20975: - implement handling of meta data an on originating add there're a few things TODO, but it's a good start we need to research if an originating change causes the replUpToDateVector attribute to change...(I assume it, but needs testing) metze (This used to be commit fde0aabd9ae79fcefbcba34e6f9143f93ffcf96c)
2007-01-23 16:18:45 +00:00
Fix all other modules to use ldb_module.h instead of ldb_private.h The only 2 modules escaping the rule so far are rootdse and partitions
2009-01-30 16:31:19 -05:00
ret = ldb_build_add_req(&down_req, ldb, ac,
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
msg,
req->controls,
ac, replmd_op_callback,
req);
if (ret != LDB_SUCCESS) {
s4:repl_meta_data - various - Add more "talloc_free"s and right error values where needed - Add a pre-lookup for entries before searching for metadata attribute (also suggested by TODO list) - Now the most part of "ldap.py" works again
2009-10-02 23:26:35 +02:00
talloc_free(ac);
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
return ret;
r20522: make a copy of the objectguid ldb module because: - I'll add handling of replication meta data to it for orginating changes - I'll pass replication meta data via a ldb control for applying replicated changes - It will also update the replUpToDateVector attribute in in root object of the partition - It will handle deleted records by adding the isDeleted=TRUE attribute and move them to the CN=Deleted Objects container of the partition - I make a copy to play with the code without breaking the LDAP backend setup metze (This used to be commit 045ddfe1ec626fab5e8fd75c5b47f0525b7ebb01)
2007-01-04 12:10:55 +00:00
}
s4-dsdb: also mark the relax control non-critical when done
2009-12-16 20:45:40 +11:00
/* mark the control done */
if (control) {
control->critical = 0;
s4-ldb: Use relax control to check in replace metadata module if we accept request that specify objectGUID attribute.
2009-09-23 13:36:40 +04:00
}
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
/* go on with the call chain */
return ldb_next_request(module, down_req);
r20580: pass the DSDB_CONTROL_REPLICATED_OBJECT_OID with the ldb_add request when applying replicated objects. the samldb module ignores such requests now... and the repl_meta_data module has different functions for the replicated and originating cases... metze (This used to be commit a4d5e0126cfd6135ab829f4984269e265a868a28)
2007-01-06 01:13:59 +00:00
}
s4-repl: on every ldb modify we need to update replPropertyMetaData Every time we change a ldb object with the repl_meta_data module loaded we need to update the replPropertyMetaData attribute to fix the timestamps and USNs of the attributes being changed.
2009-09-11 19:07:38 +10:00
/*
* update the replPropertyMetaData for one element
*/
static int replmd_update_rpmd_element(struct ldb_context *ldb,
struct ldb_message *msg,
struct ldb_message_element *el,
struct replPropertyMetaDataBlob *omd,
s4:dsdb Use 'partition modified' information to update @REPLCHANGED This major rework of repl_meta_data changes it from using a static list of partitions to a dynamic list created from the controls placed on returned ldb results. To process these in one place, the similar but distinct callbacks are combined into a single replmd_op_callback(), which handles both the 'normal operation' and 'inbound replication' case. This allows new partitions to be created, and replication events for these new partitions to be scheduled immediately. Also in this commit: We no longer specify the target partition for new or modified objects - instead we allow the partitions module to use the DN as normal. THis avoids the issue where we would create two partition head records. Andrew Bartlett
2009-10-16 16:20:15 +11:00
const struct dsdb_schema *schema,
s4-repl: we should only update uSNChanged when replication data changes When changing non-replicated attributes we should not update the uSNChanged attribute on the record, otherwise the DRS server will think this record needs replicating.
2009-09-12 11:10:19 +10:00
uint64_t *seq_num,
s4-repl: on every ldb modify we need to update replPropertyMetaData Every time we change a ldb object with the repl_meta_data module loaded we need to update the replPropertyMetaData attribute to fix the timestamps and USNs of the attributes being changed.
2009-09-11 19:07:38 +10:00
const struct GUID *our_invocation_id,
s4-repl: we should only update uSNChanged when replication data changes When changing non-replicated attributes we should not update the uSNChanged attribute on the record, otherwise the DRS server will think this record needs replicating.
2009-09-12 11:10:19 +10:00
NTTIME now)
s4-repl: on every ldb modify we need to update replPropertyMetaData Every time we change a ldb object with the repl_meta_data module loaded we need to update the replPropertyMetaData attribute to fix the timestamps and USNs of the attributes being changed.
2009-09-11 19:07:38 +10:00
{
int i;
const struct dsdb_attribute *a;
struct replPropertyMetaData1 *md1;
a = dsdb_attribute_by_lDAPDisplayName(schema, el->name);
if (a == NULL) {
DEBUG(0,(__location__ ": Unable to find attribute %s in schema\n",
el->name));
return LDB_ERR_OPERATIONS_ERROR;
}
s4-drs: add defines for replication flags on attributes
2009-09-24 07:19:01 -07:00
if ((a->systemFlags & DS_FLAG_ATTR_NOT_REPLICATED) || (a->systemFlags & DS_FLAG_ATTR_IS_CONSTRUCTED)) {
s4-repl: don't update replPropertyMetaData for non-replicated attributes thanks to Metze for spotting this
2009-09-11 21:45:35 +10:00
return LDB_SUCCESS;
}
s4-repl: on every ldb modify we need to update replPropertyMetaData Every time we change a ldb object with the repl_meta_data module loaded we need to update the replPropertyMetaData attribute to fix the timestamps and USNs of the attributes being changed.
2009-09-11 19:07:38 +10:00
for (i=0; i<omd->ctr.ctr1.count; i++) {
if (a->attributeID_id == omd->ctr.ctr1.array[i].attid) break;
}
s4-dsdb: add support for storing linked attribute meta data in extended DNs When in functional levels above w2k, we need to store much richer meta data about linkked attributes. We also need to keep deleted linked attributes around to allow the deletion to be propogated to other DCs. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-10 23:48:30 +11:00
#if W2K3_LINKED_ATTRIBUTES
if (a->linkID != 0 && dsdb_functional_level(ldb) > DS_DOMAIN_FUNCTION_2000) {
/* linked attributes are not stored in
replPropertyMetaData in FL above w2k, but we do
raise the seqnum for the object */
if (*seq_num == 0 &&
ldb_sequence_number(ldb, LDB_SEQ_NEXT, seq_num) != LDB_SUCCESS) {
return LDB_ERR_OPERATIONS_ERROR;
}
return LDB_SUCCESS;
}
#endif
s4-repl: on every ldb modify we need to update replPropertyMetaData Every time we change a ldb object with the repl_meta_data module loaded we need to update the replPropertyMetaData attribute to fix the timestamps and USNs of the attributes being changed.
2009-09-11 19:07:38 +10:00
if (i == omd->ctr.ctr1.count) {
/* we need to add a new one */
omd->ctr.ctr1.array = talloc_realloc(msg, omd->ctr.ctr1.array,
struct replPropertyMetaData1, omd->ctr.ctr1.count+1);
if (omd->ctr.ctr1.array == NULL) {
ldb_oom(ldb);
return LDB_ERR_OPERATIONS_ERROR;
}
omd->ctr.ctr1.count++;
s4:repl_meta_data: increment the attribute version with each change metze
2009-09-12 09:32:24 +02:00
ZERO_STRUCT(omd->ctr.ctr1.array[i]);
s4-repl: on every ldb modify we need to update replPropertyMetaData Every time we change a ldb object with the repl_meta_data module loaded we need to update the replPropertyMetaData attribute to fix the timestamps and USNs of the attributes being changed.
2009-09-11 19:07:38 +10:00
}
s4-repl: we should only update uSNChanged when replication data changes When changing non-replicated attributes we should not update the uSNChanged attribute on the record, otherwise the DRS server will think this record needs replicating.
2009-09-12 11:10:19 +10:00
/* Get a new sequence number from the backend. We only do this
* if we have a change that requires a new
* replPropertyMetaData element
*/
if (*seq_num == 0) {
int ret = ldb_sequence_number(ldb, LDB_SEQ_NEXT, seq_num);
if (ret != LDB_SUCCESS) {
return LDB_ERR_OPERATIONS_ERROR;
}
}
s4-repl: on every ldb modify we need to update replPropertyMetaData Every time we change a ldb object with the repl_meta_data module loaded we need to update the replPropertyMetaData attribute to fix the timestamps and USNs of the attributes being changed.
2009-09-11 19:07:38 +10:00
md1 = &omd->ctr.ctr1.array[i];
s4:repl_meta_data: increment the attribute version with each change metze
2009-09-12 09:32:24 +02:00
md1->version++;
s4-repl: on every ldb modify we need to update replPropertyMetaData Every time we change a ldb object with the repl_meta_data module loaded we need to update the replPropertyMetaData attribute to fix the timestamps and USNs of the attributes being changed.
2009-09-11 19:07:38 +10:00
md1->attid = a->attributeID_id;
md1->originating_change_time = now;
md1->originating_invocation_id = *our_invocation_id;
s4-repl: we should only update uSNChanged when replication data changes When changing non-replicated attributes we should not update the uSNChanged attribute on the record, otherwise the DRS server will think this record needs replicating.
2009-09-12 11:10:19 +10:00
md1->originating_usn = *seq_num;
md1->local_usn = *seq_num;
s4-repl: on every ldb modify we need to update replPropertyMetaData Every time we change a ldb object with the repl_meta_data module loaded we need to update the replPropertyMetaData attribute to fix the timestamps and USNs of the attributes being changed.
2009-09-11 19:07:38 +10:00
return LDB_SUCCESS;
}
/*
* update the replPropertyMetaData object each time we modify an
* object. This is needed for DRS replication, as the merge on the
* client is based on this object
*/
s4-repl: keep a @REPLCHANGED object on each partition This object tracks the highest uSN in each partition. It will be used to allow us to efficiently detect changes in a partition for sending DsReplicaSync messages to our replication partners.
2009-09-13 14:24:08 +10:00
static int replmd_update_rpmd(struct ldb_module *module,
s4:dsdb Use 'partition modified' information to update @REPLCHANGED This major rework of repl_meta_data changes it from using a static list of partitions to a dynamic list created from the controls placed on returned ldb results. To process these in one place, the similar but distinct callbacks are combined into a single replmd_op_callback(), which handles both the 'normal operation' and 'inbound replication' case. This allows new partitions to be created, and replication events for these new partitions to be scheduled immediately. Also in this commit: We no longer specify the target partition for new or modified objects - instead we allow the partitions module to use the DN as normal. THis avoids the issue where we would create two partition head records. Andrew Bartlett
2009-10-16 16:20:15 +11:00
const struct dsdb_schema *schema,
s4-dsdb: add support for storing linked attribute meta data in extended DNs When in functional levels above w2k, we need to store much richer meta data about linkked attributes. We also need to keep deleted linked attributes around to allow the deletion to be propogated to other DCs. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-10 23:48:30 +11:00
struct ldb_message *msg, uint64_t *seq_num,
time_t t)
s4-repl: on every ldb modify we need to update replPropertyMetaData Every time we change a ldb object with the repl_meta_data module loaded we need to update the replPropertyMetaData attribute to fix the timestamps and USNs of the attributes being changed.
2009-09-11 19:07:38 +10:00
{
const struct ldb_val *omd_value;
enum ndr_err_code ndr_err;
struct replPropertyMetaDataBlob omd;
int i;
NTTIME now;
const struct GUID *our_invocation_id;
int ret;
const char *attrs[] = { "replPropertyMetaData" , NULL };
struct ldb_result *res;
s4-repl: keep a @REPLCHANGED object on each partition This object tracks the highest uSN in each partition. It will be used to allow us to efficiently detect changes in a partition for sending DsReplicaSync messages to our replication partners.
2009-09-13 14:24:08 +10:00
struct ldb_context *ldb;
ldb = ldb_module_get_ctx(module);
s4-repl: on every ldb modify we need to update replPropertyMetaData Every time we change a ldb object with the repl_meta_data module loaded we need to update the replPropertyMetaData attribute to fix the timestamps and USNs of the attributes being changed.
2009-09-11 19:07:38 +10:00
our_invocation_id = samdb_ntds_invocation_id(ldb);
if (!our_invocation_id) {
s4-vampire: cope with no invocationID when vampiring the schema
2009-09-11 23:26:39 +10:00
/* this happens during an initial vampire while
updating the schema */
DEBUG(5,("No invocationID - skipping replPropertyMetaData update\n"));
return LDB_SUCCESS;
s4-repl: on every ldb modify we need to update replPropertyMetaData Every time we change a ldb object with the repl_meta_data module loaded we need to update the replPropertyMetaData attribute to fix the timestamps and USNs of the attributes being changed.
2009-09-11 19:07:38 +10:00
}
unix_to_nt_time(&now, t);
/* search for the existing replPropertyMetaDataBlob */
s4-drs: fixed sorting of replPropertyMetaData This also ensures we add the SHOW_DELETED control on searches for old replPropertyMetaData attributes
2009-09-24 16:50:59 -07:00
ret = dsdb_search_dn_with_deleted(ldb, msg, &res, msg->dn, attrs);
s4:repl_meta_data - various - Add more "talloc_free"s and right error values where needed - Add a pre-lookup for entries before searching for metadata attribute (also suggested by TODO list) - Now the most part of "ldap.py" works again
2009-10-02 23:26:35 +02:00
if (ret != LDB_SUCCESS || res->count != 1) {
s4-repl: on every ldb modify we need to update replPropertyMetaData Every time we change a ldb object with the repl_meta_data module loaded we need to update the replPropertyMetaData attribute to fix the timestamps and USNs of the attributes being changed.
2009-09-11 19:07:38 +10:00
DEBUG(0,(__location__ ": Object %s failed to find replPropertyMetaData\n",
ldb_dn_get_linearized(msg->dn)));
return LDB_ERR_OPERATIONS_ERROR;
}
omd_value = ldb_msg_find_ldb_val(res->msgs[0], "replPropertyMetaData");
if (!omd_value) {
DEBUG(0,(__location__ ": Object %s does not have a replPropertyMetaData attribute\n",
ldb_dn_get_linearized(msg->dn)));
return LDB_ERR_OPERATIONS_ERROR;
}
ndr_err = ndr_pull_struct_blob(omd_value, msg,
lp_iconv_convenience(ldb_get_opaque(ldb, "loadparm")), &omd,
(ndr_pull_flags_fn_t)ndr_pull_replPropertyMetaDataBlob);
if (!NDR_ERR_CODE_IS_SUCCESS(ndr_err)) {
DEBUG(0,(__location__ ": Failed to parse replPropertyMetaData for %s\n",
ldb_dn_get_linearized(msg->dn)));
return LDB_ERR_OPERATIONS_ERROR;
}
if (omd.version != 1) {
DEBUG(0,(__location__ ": bad version %u in replPropertyMetaData for %s\n",
omd.version, ldb_dn_get_linearized(msg->dn)));
return LDB_ERR_OPERATIONS_ERROR;
}
for (i=0; i<msg->num_elements; i++) {
ret = replmd_update_rpmd_element(ldb, msg, &msg->elements[i], &omd, schema, seq_num,
s4-repl: we should only update uSNChanged when replication data changes When changing non-replicated attributes we should not update the uSNChanged attribute on the record, otherwise the DRS server will think this record needs replicating.
2009-09-12 11:10:19 +10:00
our_invocation_id, now);
s4-repl: on every ldb modify we need to update replPropertyMetaData Every time we change a ldb object with the repl_meta_data module loaded we need to update the replPropertyMetaData attribute to fix the timestamps and USNs of the attributes being changed.
2009-09-11 19:07:38 +10:00
if (ret != LDB_SUCCESS) {
return ret;
}
}
s4-repl: we should only update uSNChanged when replication data changes When changing non-replicated attributes we should not update the uSNChanged attribute on the record, otherwise the DRS server will think this record needs replicating.
2009-09-12 11:10:19 +10:00
/*
* replmd_update_rpmd_element has done an update if the
* seq_num is set
*/
if (*seq_num != 0) {
s4-repl: on every ldb modify we need to update replPropertyMetaData Every time we change a ldb object with the repl_meta_data module loaded we need to update the replPropertyMetaData attribute to fix the timestamps and USNs of the attributes being changed.
2009-09-11 19:07:38 +10:00
struct ldb_val *md_value;
struct ldb_message_element *el;
md_value = talloc(msg, struct ldb_val);
if (md_value == NULL) {
ldb_oom(ldb);
return LDB_ERR_OPERATIONS_ERROR;
}
s4-drs: fixed sorting of replPropertyMetaData This also ensures we add the SHOW_DELETED control on searches for old replPropertyMetaData attributes
2009-09-24 16:50:59 -07:00
ret = replmd_replPropertyMetaDataCtr1_sort(&omd.ctr.ctr1, schema, msg->dn);
if (ret != LDB_SUCCESS) {
return ret;
}
s4-ldb: sort replPropertyMetaData by attid We need to sort on both module add and modify
2009-09-24 07:18:21 -07:00
s4-repl: on every ldb modify we need to update replPropertyMetaData Every time we change a ldb object with the repl_meta_data module loaded we need to update the replPropertyMetaData attribute to fix the timestamps and USNs of the attributes being changed.
2009-09-11 19:07:38 +10:00
ndr_err = ndr_push_struct_blob(md_value, msg,
lp_iconv_convenience(ldb_get_opaque(ldb, "loadparm")),
&omd,
(ndr_push_flags_fn_t)ndr_push_replPropertyMetaDataBlob);
if (!NDR_ERR_CODE_IS_SUCCESS(ndr_err)) {
DEBUG(0,(__location__ ": Failed to marshall replPropertyMetaData for %s\n",
ldb_dn_get_linearized(msg->dn)));
return LDB_ERR_OPERATIONS_ERROR;
}
ret = ldb_msg_add_empty(msg, "replPropertyMetaData", LDB_FLAG_MOD_REPLACE, &el);
if (ret != LDB_SUCCESS) {
DEBUG(0,(__location__ ": Failed to add updated replPropertyMetaData %s\n",
ldb_dn_get_linearized(msg->dn)));
return ret;
}
el->num_values = 1;
el->values = md_value;
}
return LDB_SUCCESS;
}
s4-dsdb: add support for storing linked attribute meta data in extended DNs When in functional levels above w2k, we need to store much richer meta data about linkked attributes. We also need to keep deleted linked attributes around to allow the deletion to be propogated to other DCs. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-10 23:48:30 +11:00
struct parsed_dn {
struct dsdb_dn *dsdb_dn;
struct GUID *guid;
struct ldb_val *v;
};
static int parsed_dn_compare(struct parsed_dn *pdn1, struct parsed_dn *pdn2)
{
return GUID_compare(pdn1->guid, pdn2->guid);
}
s4-drs: cope better with NULL GUIDS from DRS It is valid to get a NULL GUID over DRS for a deleted forward link. We need to match by DN if possible when seeing if we should update an existing link. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-21 21:21:55 +11:00
static struct parsed_dn *parsed_dn_find(struct parsed_dn *pdn, int count, struct GUID *guid, struct ldb_dn *dn)
s4-dsdb: add support for storing linked attribute meta data in extended DNs When in functional levels above w2k, we need to store much richer meta data about linkked attributes. We also need to keep deleted linked attributes around to allow the deletion to be propogated to other DCs. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-10 23:48:30 +11:00
{
struct parsed_dn *ret;
s4-drs: cope better with NULL GUIDS from DRS It is valid to get a NULL GUID over DRS for a deleted forward link. We need to match by DN if possible when seeing if we should update an existing link. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-21 21:21:55 +11:00
if (dn && GUID_all_zero(guid)) {
/* when updating a link using DRS, we sometimes get a
NULL GUID. We then need to try and match by DN */
int i;
for (i=0; i<count; i++) {
if (ldb_dn_compare(pdn[i].dsdb_dn->dn, dn) == 0) {
dsdb_get_extended_dn_guid(pdn[i].dsdb_dn->dn, guid, "GUID");
return &pdn[i];
}
}
return NULL;
}
s4-dsdb: add support for storing linked attribute meta data in extended DNs When in functional levels above w2k, we need to store much richer meta data about linkked attributes. We also need to keep deleted linked attributes around to allow the deletion to be propogated to other DCs. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-10 23:48:30 +11:00
BINARY_ARRAY_SEARCH(pdn, count, guid, guid, GUID_compare, ret);
return ret;
}
/*
get a series of message element values as an array of DNs and GUIDs
the result is sorted by GUID
*/
static int get_parsed_dns(struct ldb_module *module, TALLOC_CTX *mem_ctx,
struct ldb_message_element *el, struct parsed_dn **pdn,
const char *ldap_oid)
{
int i;
struct ldb_context *ldb = ldb_module_get_ctx(module);
if (el == NULL) {
*pdn = NULL;
return LDB_SUCCESS;
}
(*pdn) = talloc_array(mem_ctx, struct parsed_dn, el->num_values);
if (!*pdn) {
ldb_module_oom(module);
return LDB_ERR_OPERATIONS_ERROR;
}
for (i=0; i<el->num_values; i++) {
struct ldb_val *v = &el->values[i];
NTSTATUS status;
struct ldb_dn *dn;
struct parsed_dn *p;
p = &(*pdn)[i];
p->dsdb_dn = dsdb_dn_parse(*pdn, ldb, v, ldap_oid);
if (p->dsdb_dn == NULL) {
return LDB_ERR_INVALID_DN_SYNTAX;
}
dn = p->dsdb_dn->dn;
p->guid = talloc(*pdn, struct GUID);
if (p->guid == NULL) {
ldb_module_oom(module);
return LDB_ERR_OPERATIONS_ERROR;
}
s4-dsdb: store full meta data from DRS for linked attributes Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-18 20:57:21 +11:00
status = dsdb_get_extended_dn_guid(dn, p->guid, "GUID");
s4-dsdb: add support for storing linked attribute meta data in extended DNs When in functional levels above w2k, we need to store much richer meta data about linkked attributes. We also need to keep deleted linked attributes around to allow the deletion to be propogated to other DCs. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-10 23:48:30 +11:00
if (NT_STATUS_EQUAL(status, NT_STATUS_OBJECT_NAME_NOT_FOUND)) {
/* we got a DN without a GUID - go find the GUID */
s4-drs: use dsdb_module_guid_by_dn() We should not be going to the top of the module stack
2009-12-21 21:23:18 +11:00
int ret = dsdb_module_guid_by_dn(module, dn, p->guid);
s4-dsdb: add support for storing linked attribute meta data in extended DNs When in functional levels above w2k, we need to store much richer meta data about linkked attributes. We also need to keep deleted linked attributes around to allow the deletion to be propogated to other DCs. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-10 23:48:30 +11:00
if (ret != LDB_SUCCESS) {
ldb_asprintf_errstring(ldb, "Unable to find GUID for DN %s\n",
ldb_dn_get_linearized(dn));
return ret;
}
} else if (!NT_STATUS_IS_OK(status)) {
return LDB_ERR_OPERATIONS_ERROR;
}
/* keep a pointer to the original ldb_val */
p->v = v;
}
qsort(*pdn, el->num_values, sizeof((*pdn)[0]), (comparison_fn_t)parsed_dn_compare);
return LDB_SUCCESS;
}
/*
build a new extended DN, including all meta data fields
s4-dsdb: split RMD_USN into RMD_LOCAL_USN and RMD_ORIGINATING_USN We need a separate RMD_LOCAL_USN to allow us to tell what attributes need to be sent in a getncchanges request. Thanks to Metze for pointing this out. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-18 12:47:31 +11:00
DELETED = 1 or missing
RMD_ADDTIME = originating_add_time
RMD_INVOCID = originating_invocation_id
RMD_CHANGETIME = originating_change_time
RMD_ORIGINATING_USN = originating_usn
RMD_LOCAL_USN = local_usn
RMD_VERSION = version
s4-dsdb: add support for storing linked attribute meta data in extended DNs When in functional levels above w2k, we need to store much richer meta data about linkked attributes. We also need to keep deleted linked attributes around to allow the deletion to be propogated to other DCs. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-10 23:48:30 +11:00
*/
s4-dsdb: add linked attributes meta_data handling to replmd_add This also handles the backlink creation that was previously in the linked_attributes module Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-17 10:42:15 +11:00
static int replmd_build_la_val(TALLOC_CTX *mem_ctx, struct ldb_val *v, struct dsdb_dn *dsdb_dn,
s4-dsdb: store full meta data from DRS for linked attributes Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-18 20:57:21 +11:00
const struct GUID *invocation_id, uint64_t seq_num,
s4-dsdb: fill in the correct version number of links that come over DRS
2009-12-20 00:10:40 +11:00
uint64_t local_usn, NTTIME nttime, uint32_t version, bool deleted)
s4-dsdb: add support for storing linked attribute meta data in extended DNs When in functional levels above w2k, we need to store much richer meta data about linkked attributes. We also need to keep deleted linked attributes around to allow the deletion to be propogated to other DCs. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-10 23:48:30 +11:00
{
s4-dsdb: add linked attributes meta_data handling to replmd_add This also handles the backlink creation that was previously in the linked_attributes module Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-17 10:42:15 +11:00
struct ldb_dn *dn = dsdb_dn->dn;
s4-dsdb: add support for storing linked attribute meta data in extended DNs When in functional levels above w2k, we need to store much richer meta data about linkked attributes. We also need to keep deleted linked attributes around to allow the deletion to be propogated to other DCs. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-10 23:48:30 +11:00
const char *tstring, *usn_string;
struct ldb_val tval;
struct ldb_val iid;
s4-dsdb: store full meta data from DRS for linked attributes Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-18 20:57:21 +11:00
struct ldb_val usnv, local_usnv;
s4-dsdb: add support for storing linked attribute meta data in extended DNs When in functional levels above w2k, we need to store much richer meta data about linkked attributes. We also need to keep deleted linked attributes around to allow the deletion to be propogated to other DCs. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-10 23:48:30 +11:00
struct ldb_val vers;
NTSTATUS status;
int ret;
const char *dnstring;
s4-dsdb: fill in the correct version number of links that come over DRS
2009-12-20 00:10:40 +11:00
char *vstring;
s4-dsdb: add support for storing linked attribute meta data in extended DNs When in functional levels above w2k, we need to store much richer meta data about linkked attributes. We also need to keep deleted linked attributes around to allow the deletion to be propogated to other DCs. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-10 23:48:30 +11:00
s4-dsdb: store full meta data from DRS for linked attributes Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-18 20:57:21 +11:00
tstring = talloc_asprintf(mem_ctx, "%llu", (unsigned long long)nttime);
s4-dsdb: add support for storing linked attribute meta data in extended DNs When in functional levels above w2k, we need to store much richer meta data about linkked attributes. We also need to keep deleted linked attributes around to allow the deletion to be propogated to other DCs. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-10 23:48:30 +11:00
if (!tstring) {
return LDB_ERR_OPERATIONS_ERROR;
}
tval = data_blob_string_const(tstring);
usn_string = talloc_asprintf(mem_ctx, "%llu", (unsigned long long)seq_num);
if (!usn_string) {
return LDB_ERR_OPERATIONS_ERROR;
}
usnv = data_blob_string_const(usn_string);
s4-dsdb: store full meta data from DRS for linked attributes Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-18 20:57:21 +11:00
usn_string = talloc_asprintf(mem_ctx, "%llu", (unsigned long long)local_usn);
if (!usn_string) {
return LDB_ERR_OPERATIONS_ERROR;
}
local_usnv = data_blob_string_const(usn_string);
s4-dsdb: fill in the correct version number of links that come over DRS
2009-12-20 00:10:40 +11:00
vstring = talloc_asprintf(mem_ctx, "%lu", (unsigned long)version);
vers = data_blob_string_const(vstring);
s4-dsdb: add support for storing linked attribute meta data in extended DNs When in functional levels above w2k, we need to store much richer meta data about linkked attributes. We also need to keep deleted linked attributes around to allow the deletion to be propogated to other DCs. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-10 23:48:30 +11:00
status = GUID_to_ndr_blob(invocation_id, dn, &iid);
if (!NT_STATUS_IS_OK(status)) {
return LDB_ERR_OPERATIONS_ERROR;
}
s4-dsdb: store full meta data from DRS for linked attributes Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-18 20:57:21 +11:00
if (deleted) {
struct ldb_val dv;
dv = data_blob_string_const("1");
ret = ldb_dn_set_extended_component(dn, "DELETED", &dv);
} else {
ret = ldb_dn_set_extended_component(dn, "DELETED", NULL);
}
s4-dsdb: add support for storing linked attribute meta data in extended DNs When in functional levels above w2k, we need to store much richer meta data about linkked attributes. We also need to keep deleted linked attributes around to allow the deletion to be propogated to other DCs. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-10 23:48:30 +11:00
if (ret != LDB_SUCCESS) return ret;
ret = ldb_dn_set_extended_component(dn, "RMD_ADDTIME", &tval);
if (ret != LDB_SUCCESS) return ret;
ret = ldb_dn_set_extended_component(dn, "RMD_INVOCID", &iid);
if (ret != LDB_SUCCESS) return ret;
ret = ldb_dn_set_extended_component(dn, "RMD_CHANGETIME", &tval);
if (ret != LDB_SUCCESS) return ret;
s4-dsdb: store full meta data from DRS for linked attributes Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-18 20:57:21 +11:00
ret = ldb_dn_set_extended_component(dn, "RMD_LOCAL_USN", &local_usnv);
s4-dsdb: split RMD_USN into RMD_LOCAL_USN and RMD_ORIGINATING_USN We need a separate RMD_LOCAL_USN to allow us to tell what attributes need to be sent in a getncchanges request. Thanks to Metze for pointing this out. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-18 12:47:31 +11:00
if (ret != LDB_SUCCESS) return ret;
ret = ldb_dn_set_extended_component(dn, "RMD_ORIGINATING_USN", &usnv);
s4-dsdb: add support for storing linked attribute meta data in extended DNs When in functional levels above w2k, we need to store much richer meta data about linkked attributes. We also need to keep deleted linked attributes around to allow the deletion to be propogated to other DCs. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-10 23:48:30 +11:00
if (ret != LDB_SUCCESS) return ret;
ret = ldb_dn_set_extended_component(dn, "RMD_VERSION", &vers);
if (ret != LDB_SUCCESS) return ret;
s4-dsdb: add linked attributes meta_data handling to replmd_add This also handles the backlink creation that was previously in the linked_attributes module Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-17 10:42:15 +11:00
dnstring = dsdb_dn_get_extended_linearized(mem_ctx, dsdb_dn, 1);
s4-dsdb: add support for storing linked attribute meta data in extended DNs When in functional levels above w2k, we need to store much richer meta data about linkked attributes. We also need to keep deleted linked attributes around to allow the deletion to be propogated to other DCs. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-10 23:48:30 +11:00
if (dnstring == NULL) {
return LDB_ERR_OPERATIONS_ERROR;
}
*v = data_blob_string_const(dnstring);
return LDB_SUCCESS;
}
s4-dsdb: auto-upgrade w2k formatted linked attributes when modified When any value of a w2k formatted linked attribute is modified, upgrade the links.
2009-12-19 19:57:37 +11:00
static int replmd_update_la_val(TALLOC_CTX *mem_ctx, struct ldb_val *v, struct dsdb_dn *dsdb_dn,
struct dsdb_dn *old_dsdb_dn, const struct GUID *invocation_id,
s4-dsdb: fill in the correct version number of links that come over DRS
2009-12-20 00:10:40 +11:00
uint64_t seq_num, uint64_t local_usn, NTTIME nttime,
uint32_t version, bool deleted);
s4-dsdb: auto-upgrade w2k formatted linked attributes when modified When any value of a w2k formatted linked attribute is modified, upgrade the links.
2009-12-19 19:57:37 +11:00
/*
check if any links need upgrading from w2k format
*/
static int replmd_check_upgrade_links(struct parsed_dn *dns, uint32_t count, const struct GUID *invocation_id)
{
int i;
for (i=0; i<count; i++) {
NTSTATUS status;
uint32_t version;
int ret;
status = dsdb_get_extended_dn_uint32(dns[i].dsdb_dn->dn, &version, "RMD_VERSION");
if (!NT_STATUS_EQUAL(status, NT_STATUS_OBJECT_NAME_NOT_FOUND)) {
continue;
}
/* it's an old one that needs upgrading */
ret = replmd_update_la_val(dns, dns[i].v, dns[i].dsdb_dn, dns[i].dsdb_dn, invocation_id,
s4-dsdb: fill in the correct version number of links that come over DRS
2009-12-20 00:10:40 +11:00
1, 1, 0, 0, false);
s4-dsdb: auto-upgrade w2k formatted linked attributes when modified When any value of a w2k formatted linked attribute is modified, upgrade the links.
2009-12-19 19:57:37 +11:00
if (ret != LDB_SUCCESS) {
return ret;
}
}
return LDB_SUCCESS;
}
s4-dsdb: add support for storing linked attribute meta data in extended DNs When in functional levels above w2k, we need to store much richer meta data about linkked attributes. We also need to keep deleted linked attributes around to allow the deletion to be propogated to other DCs. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-10 23:48:30 +11:00
/*
update an extended DN, including all meta data fields
see replmd_build_la_val for value names
*/
s4-dsdb: add linked attributes meta_data handling to replmd_add This also handles the backlink creation that was previously in the linked_attributes module Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-17 10:42:15 +11:00
static int replmd_update_la_val(TALLOC_CTX *mem_ctx, struct ldb_val *v, struct dsdb_dn *dsdb_dn,
struct dsdb_dn *old_dsdb_dn, const struct GUID *invocation_id,
s4-dsdb: fill in the correct version number of links that come over DRS
2009-12-20 00:10:40 +11:00
uint64_t seq_num, uint64_t local_usn, NTTIME nttime,
uint32_t version, bool deleted)
s4-dsdb: add support for storing linked attribute meta data in extended DNs When in functional levels above w2k, we need to store much richer meta data about linkked attributes. We also need to keep deleted linked attributes around to allow the deletion to be propogated to other DCs. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-10 23:48:30 +11:00
{
s4-dsdb: add linked attributes meta_data handling to replmd_add This also handles the backlink creation that was previously in the linked_attributes module Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-17 10:42:15 +11:00
struct ldb_dn *dn = dsdb_dn->dn;
s4-dsdb: add support for storing linked attribute meta data in extended DNs When in functional levels above w2k, we need to store much richer meta data about linkked attributes. We also need to keep deleted linked attributes around to allow the deletion to be propogated to other DCs. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-10 23:48:30 +11:00
const char *tstring, *usn_string;
struct ldb_val tval;
struct ldb_val iid;
s4-dsdb: store full meta data from DRS for linked attributes Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-18 20:57:21 +11:00
struct ldb_val usnv, local_usnv;
s4-dsdb: add support for storing linked attribute meta data in extended DNs When in functional levels above w2k, we need to store much richer meta data about linkked attributes. We also need to keep deleted linked attributes around to allow the deletion to be propogated to other DCs. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-10 23:48:30 +11:00
struct ldb_val vers;
s4-dsdb: fill in the correct version number of links that come over DRS
2009-12-20 00:10:40 +11:00
const struct ldb_val *old_addtime;
uint32_t old_version;
s4-dsdb: add support for storing linked attribute meta data in extended DNs When in functional levels above w2k, we need to store much richer meta data about linkked attributes. We also need to keep deleted linked attributes around to allow the deletion to be propogated to other DCs. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-10 23:48:30 +11:00
NTSTATUS status;
int ret;
const char *dnstring;
s4-dsdb: fill in the correct version number of links that come over DRS
2009-12-20 00:10:40 +11:00
char *vstring;
s4-dsdb: add support for storing linked attribute meta data in extended DNs When in functional levels above w2k, we need to store much richer meta data about linkked attributes. We also need to keep deleted linked attributes around to allow the deletion to be propogated to other DCs. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-10 23:48:30 +11:00
s4-dsdb: store full meta data from DRS for linked attributes Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-18 20:57:21 +11:00
tstring = talloc_asprintf(mem_ctx, "%llu", (unsigned long long)nttime);
s4-dsdb: add support for storing linked attribute meta data in extended DNs When in functional levels above w2k, we need to store much richer meta data about linkked attributes. We also need to keep deleted linked attributes around to allow the deletion to be propogated to other DCs. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-10 23:48:30 +11:00
if (!tstring) {
return LDB_ERR_OPERATIONS_ERROR;
}
tval = data_blob_string_const(tstring);
usn_string = talloc_asprintf(mem_ctx, "%llu", (unsigned long long)seq_num);
if (!usn_string) {
return LDB_ERR_OPERATIONS_ERROR;
}
usnv = data_blob_string_const(usn_string);
s4-dsdb: store full meta data from DRS for linked attributes Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-18 20:57:21 +11:00
usn_string = talloc_asprintf(mem_ctx, "%llu", (unsigned long long)local_usn);
if (!usn_string) {
return LDB_ERR_OPERATIONS_ERROR;
}
local_usnv = data_blob_string_const(usn_string);
s4-dsdb: add support for storing linked attribute meta data in extended DNs When in functional levels above w2k, we need to store much richer meta data about linkked attributes. We also need to keep deleted linked attributes around to allow the deletion to be propogated to other DCs. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-10 23:48:30 +11:00
status = GUID_to_ndr_blob(invocation_id, dn, &iid);
if (!NT_STATUS_IS_OK(status)) {
return LDB_ERR_OPERATIONS_ERROR;
}
if (deleted) {
struct ldb_val dv;
dv = data_blob_string_const("1");
ret = ldb_dn_set_extended_component(dn, "DELETED", &dv);
} else {
ret = ldb_dn_set_extended_component(dn, "DELETED", NULL);
}
if (ret != LDB_SUCCESS) return ret;
/* get the ADDTIME from the original */
s4-dsdb: add linked attributes meta_data handling to replmd_add This also handles the backlink creation that was previously in the linked_attributes module Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-17 10:42:15 +11:00
old_addtime = ldb_dn_get_extended_component(old_dsdb_dn->dn, "RMD_ADDTIME");
s4-dsdb: add support for storing linked attribute meta data in extended DNs When in functional levels above w2k, we need to store much richer meta data about linkked attributes. We also need to keep deleted linked attributes around to allow the deletion to be propogated to other DCs. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-10 23:48:30 +11:00
if (old_addtime == NULL) {
old_addtime = &tval;
}
s4-dsdb: add linked attributes meta_data handling to replmd_add This also handles the backlink creation that was previously in the linked_attributes module Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-17 10:42:15 +11:00
if (dsdb_dn != old_dsdb_dn) {
s4-dsdb: add support for storing linked attribute meta data in extended DNs When in functional levels above w2k, we need to store much richer meta data about linkked attributes. We also need to keep deleted linked attributes around to allow the deletion to be propogated to other DCs. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-10 23:48:30 +11:00
ret = ldb_dn_set_extended_component(dn, "RMD_ADDTIME", old_addtime);
if (ret != LDB_SUCCESS) return ret;
}
/* use our invocation id */
ret = ldb_dn_set_extended_component(dn, "RMD_INVOCID", &iid);
if (ret != LDB_SUCCESS) return ret;
/* changetime is the current time */
ret = ldb_dn_set_extended_component(dn, "RMD_CHANGETIME", &tval);
if (ret != LDB_SUCCESS) return ret;
/* update the USN */
s4-dsdb: split RMD_USN into RMD_LOCAL_USN and RMD_ORIGINATING_USN We need a separate RMD_LOCAL_USN to allow us to tell what attributes need to be sent in a getncchanges request. Thanks to Metze for pointing this out. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-18 12:47:31 +11:00
ret = ldb_dn_set_extended_component(dn, "RMD_ORIGINATING_USN", &usnv);
if (ret != LDB_SUCCESS) return ret;
s4-dsdb: store full meta data from DRS for linked attributes Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-18 20:57:21 +11:00
ret = ldb_dn_set_extended_component(dn, "RMD_LOCAL_USN", &local_usnv);
s4-dsdb: add support for storing linked attribute meta data in extended DNs When in functional levels above w2k, we need to store much richer meta data about linkked attributes. We also need to keep deleted linked attributes around to allow the deletion to be propogated to other DCs. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-10 23:48:30 +11:00
if (ret != LDB_SUCCESS) return ret;
/* increase the version by 1 */
s4-dsdb: fill in the correct version number of links that come over DRS
2009-12-20 00:10:40 +11:00
status = dsdb_get_extended_dn_uint32(old_dsdb_dn->dn, &old_version, "RMD_VERSION");
if (NT_STATUS_IS_OK(status) && old_version >= version) {
version = old_version+1;
s4-dsdb: add support for storing linked attribute meta data in extended DNs When in functional levels above w2k, we need to store much richer meta data about linkked attributes. We also need to keep deleted linked attributes around to allow the deletion to be propogated to other DCs. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-10 23:48:30 +11:00
}
s4-dsdb: fill in the correct version number of links that come over DRS
2009-12-20 00:10:40 +11:00
vstring = talloc_asprintf(dn, "%lu", (unsigned long)version);
vers = data_blob_string_const(vstring);
s4-dsdb: add support for storing linked attribute meta data in extended DNs When in functional levels above w2k, we need to store much richer meta data about linkked attributes. We also need to keep deleted linked attributes around to allow the deletion to be propogated to other DCs. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-10 23:48:30 +11:00
ret = ldb_dn_set_extended_component(dn, "RMD_VERSION", &vers);
if (ret != LDB_SUCCESS) return ret;
s4-dsdb: add linked attributes meta_data handling to replmd_add This also handles the backlink creation that was previously in the linked_attributes module Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-17 10:42:15 +11:00
dnstring = dsdb_dn_get_extended_linearized(mem_ctx, dsdb_dn, 1);
s4-dsdb: add support for storing linked attribute meta data in extended DNs When in functional levels above w2k, we need to store much richer meta data about linkked attributes. We also need to keep deleted linked attributes around to allow the deletion to be propogated to other DCs. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-10 23:48:30 +11:00
if (dnstring == NULL) {
return LDB_ERR_OPERATIONS_ERROR;
}
*v = data_blob_string_const(dnstring);
return LDB_SUCCESS;
}
/*
handle adding a linked attribute
*/
static int replmd_modify_la_add(struct ldb_module *module,
s4-dsdb: added support for backlinks in repl_meta_data backlinks need more careful handling now that we store the additional meta data for deleted links. It is easier to handle this in repl_meta_data than in linked_attributes. Eventually linked_attributes will disappear, with the functionality moved into repl_meta_data. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-16 11:34:33 +11:00
struct dsdb_schema *schema,
s4-dsdb: add support for storing linked attribute meta data in extended DNs When in functional levels above w2k, we need to store much richer meta data about linkked attributes. We also need to keep deleted linked attributes around to allow the deletion to be propogated to other DCs. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-10 23:48:30 +11:00
struct ldb_message *msg,
struct ldb_message_element *el,
struct ldb_message_element *old_el,
const struct dsdb_attribute *schema_attr,
uint64_t seq_num,
s4-dsdb: added support for backlinks in repl_meta_data backlinks need more careful handling now that we store the additional meta data for deleted links. It is easier to handle this in repl_meta_data than in linked_attributes. Eventually linked_attributes will disappear, with the functionality moved into repl_meta_data. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-16 11:34:33 +11:00
time_t t,
struct GUID *msg_guid)
s4-dsdb: add support for storing linked attribute meta data in extended DNs When in functional levels above w2k, we need to store much richer meta data about linkked attributes. We also need to keep deleted linked attributes around to allow the deletion to be propogated to other DCs. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-10 23:48:30 +11:00
{
int i;
struct parsed_dn *dns, *old_dns;
TALLOC_CTX *tmp_ctx = talloc_new(msg);
int ret;
struct ldb_val *new_values = NULL;
unsigned int num_new_values = 0;
unsigned old_num_values = old_el?old_el->num_values:0;
const struct GUID *invocation_id;
struct ldb_context *ldb = ldb_module_get_ctx(module);
s4-dsdb: store full meta data from DRS for linked attributes Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-18 20:57:21 +11:00
NTTIME now;
unix_to_nt_time(&now, t);
s4-dsdb: add support for storing linked attribute meta data in extended DNs When in functional levels above w2k, we need to store much richer meta data about linkked attributes. We also need to keep deleted linked attributes around to allow the deletion to be propogated to other DCs. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-10 23:48:30 +11:00
ret = get_parsed_dns(module, tmp_ctx, el, &dns, schema_attr->syntax->ldap_oid);
if (ret != LDB_SUCCESS) {
talloc_free(tmp_ctx);
return ret;
}
ret = get_parsed_dns(module, tmp_ctx, old_el, &old_dns, schema_attr->syntax->ldap_oid);
if (ret != LDB_SUCCESS) {
talloc_free(tmp_ctx);
return ret;
}
invocation_id = samdb_ntds_invocation_id(ldb);
if (!invocation_id) {
s4-dsdb: auto-upgrade w2k formatted linked attributes when modified When any value of a w2k formatted linked attribute is modified, upgrade the links.
2009-12-19 19:57:37 +11:00
talloc_free(tmp_ctx);
s4-dsdb: add support for storing linked attribute meta data in extended DNs When in functional levels above w2k, we need to store much richer meta data about linkked attributes. We also need to keep deleted linked attributes around to allow the deletion to be propogated to other DCs. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-10 23:48:30 +11:00
return LDB_ERR_OPERATIONS_ERROR;
}
s4-dsdb: auto-upgrade w2k formatted linked attributes when modified When any value of a w2k formatted linked attribute is modified, upgrade the links.
2009-12-19 19:57:37 +11:00
ret = replmd_check_upgrade_links(old_dns, old_num_values, invocation_id);
if (ret != LDB_SUCCESS) {
talloc_free(tmp_ctx);
return ret;
}
s4-dsdb: add support for storing linked attribute meta data in extended DNs When in functional levels above w2k, we need to store much richer meta data about linkked attributes. We also need to keep deleted linked attributes around to allow the deletion to be propogated to other DCs. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-10 23:48:30 +11:00
/* for each new value, see if it exists already with the same GUID */
for (i=0; i<el->num_values; i++) {
s4-drs: cope better with NULL GUIDS from DRS It is valid to get a NULL GUID over DRS for a deleted forward link. We need to match by DN if possible when seeing if we should update an existing link. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-21 21:21:55 +11:00
struct parsed_dn *p = parsed_dn_find(old_dns, old_num_values, dns[i].guid, NULL);
s4-dsdb: add support for storing linked attribute meta data in extended DNs When in functional levels above w2k, we need to store much richer meta data about linkked attributes. We also need to keep deleted linked attributes around to allow the deletion to be propogated to other DCs. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-10 23:48:30 +11:00
if (p == NULL) {
/* this is a new linked attribute value */
new_values = talloc_realloc(tmp_ctx, new_values, struct ldb_val, num_new_values+1);
if (new_values == NULL) {
ldb_module_oom(module);
talloc_free(tmp_ctx);
return LDB_ERR_OPERATIONS_ERROR;
}
s4-dsdb: add linked attributes meta_data handling to replmd_add This also handles the backlink creation that was previously in the linked_attributes module Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-17 10:42:15 +11:00
ret = replmd_build_la_val(new_values, &new_values[num_new_values], dns[i].dsdb_dn,
s4-dsdb: fill in the correct version number of links that come over DRS
2009-12-20 00:10:40 +11:00
invocation_id, seq_num, seq_num, now, 0, false);
s4-dsdb: add support for storing linked attribute meta data in extended DNs When in functional levels above w2k, we need to store much richer meta data about linkked attributes. We also need to keep deleted linked attributes around to allow the deletion to be propogated to other DCs. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-10 23:48:30 +11:00
if (ret != LDB_SUCCESS) {
talloc_free(tmp_ctx);
return ret;
}
num_new_values++;
} else {
/* this is only allowed if the GUID was
previously deleted. */
const struct ldb_val *v;
v = ldb_dn_get_extended_component(p->dsdb_dn->dn, "DELETED");
if (v == NULL) {
ldb_asprintf_errstring(ldb, "Attribute %s already exists for target GUID %s",
el->name, GUID_string(tmp_ctx, p->guid));
talloc_free(tmp_ctx);
return LDB_ERR_ATTRIBUTE_OR_VALUE_EXISTS;
}
s4-dsdb: add linked attributes meta_data handling to replmd_add This also handles the backlink creation that was previously in the linked_attributes module Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-17 10:42:15 +11:00
ret = replmd_update_la_val(old_el->values, p->v, dns[i].dsdb_dn, p->dsdb_dn,
s4-dsdb: fill in the correct version number of links that come over DRS
2009-12-20 00:10:40 +11:00
invocation_id, seq_num, seq_num, now, 0, false);
s4-dsdb: add support for storing linked attribute meta data in extended DNs When in functional levels above w2k, we need to store much richer meta data about linkked attributes. We also need to keep deleted linked attributes around to allow the deletion to be propogated to other DCs. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-10 23:48:30 +11:00
if (ret != LDB_SUCCESS) {
talloc_free(tmp_ctx);
return ret;
}
}
s4-dsdb: added support for backlinks in repl_meta_data backlinks need more careful handling now that we store the additional meta data for deleted links. It is easier to handle this in repl_meta_data than in linked_attributes. Eventually linked_attributes will disappear, with the functionality moved into repl_meta_data. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-16 11:34:33 +11:00
s4-dsdb: some backlinks can be processed immediately backlinks in add and delete operations can be processed immediately, rather than at the end of a transaction. This can save on backlink list processing time.
2009-12-17 10:50:34 +11:00
ret = replmd_add_backlink(module, schema, msg_guid, dns[i].guid, true, schema_attr, true);
s4-dsdb: added support for backlinks in repl_meta_data backlinks need more careful handling now that we store the additional meta data for deleted links. It is easier to handle this in repl_meta_data than in linked_attributes. Eventually linked_attributes will disappear, with the functionality moved into repl_meta_data. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-16 11:34:33 +11:00
if (ret != LDB_SUCCESS) {
talloc_free(tmp_ctx);
return ret;
}
s4-dsdb: add support for storing linked attribute meta data in extended DNs When in functional levels above w2k, we need to store much richer meta data about linkked attributes. We also need to keep deleted linked attributes around to allow the deletion to be propogated to other DCs. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-10 23:48:30 +11:00
}
/* add the new ones on to the end of the old values, constructing a new el->values */
el->values = talloc_realloc(msg->elements, old_el?old_el->values:NULL,
s4-dsdb: implemeneted replmd_modify_la_replace() We now have the core code for handling storage of linked attribute meta-data with local modifies Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-14 21:54:41 +11:00
struct ldb_val,
old_num_values+num_new_values);
s4-dsdb: add support for storing linked attribute meta data in extended DNs When in functional levels above w2k, we need to store much richer meta data about linkked attributes. We also need to keep deleted linked attributes around to allow the deletion to be propogated to other DCs. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-10 23:48:30 +11:00
if (el->values == NULL) {
ldb_module_oom(module);
return LDB_ERR_OPERATIONS_ERROR;
}
memcpy(&el->values[old_num_values], new_values, num_new_values*sizeof(struct ldb_val));
el->num_values = old_num_values + num_new_values;
talloc_steal(msg->elements, el->values);
talloc_steal(el->values, new_values);
talloc_free(tmp_ctx);
/* we now tell the backend to replace all existing values
with the one we have constructed */
el->flags = LDB_FLAG_MOD_REPLACE;
return LDB_SUCCESS;
}
/*
handle deleting all active linked attributes
*/
static int replmd_modify_la_delete(struct ldb_module *module,
s4-dsdb: added support for backlinks in repl_meta_data backlinks need more careful handling now that we store the additional meta data for deleted links. It is easier to handle this in repl_meta_data than in linked_attributes. Eventually linked_attributes will disappear, with the functionality moved into repl_meta_data. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-16 11:34:33 +11:00
struct dsdb_schema *schema,
s4-dsdb: add support for storing linked attribute meta data in extended DNs When in functional levels above w2k, we need to store much richer meta data about linkked attributes. We also need to keep deleted linked attributes around to allow the deletion to be propogated to other DCs. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-10 23:48:30 +11:00
struct ldb_message *msg,
struct ldb_message_element *el,
struct ldb_message_element *old_el,
const struct dsdb_attribute *schema_attr,
uint64_t seq_num,
s4-dsdb: added support for backlinks in repl_meta_data backlinks need more careful handling now that we store the additional meta data for deleted links. It is easier to handle this in repl_meta_data than in linked_attributes. Eventually linked_attributes will disappear, with the functionality moved into repl_meta_data. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-16 11:34:33 +11:00
time_t t,
struct GUID *msg_guid)
s4-dsdb: add support for storing linked attribute meta data in extended DNs When in functional levels above w2k, we need to store much richer meta data about linkked attributes. We also need to keep deleted linked attributes around to allow the deletion to be propogated to other DCs. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-10 23:48:30 +11:00
{
int i;
struct parsed_dn *dns, *old_dns;
TALLOC_CTX *tmp_ctx = talloc_new(msg);
int ret;
const struct GUID *invocation_id;
struct ldb_context *ldb = ldb_module_get_ctx(module);
s4-dsdb: store full meta data from DRS for linked attributes Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-18 20:57:21 +11:00
NTTIME now;
unix_to_nt_time(&now, t);
s4-dsdb: add support for storing linked attribute meta data in extended DNs When in functional levels above w2k, we need to store much richer meta data about linkked attributes. We also need to keep deleted linked attributes around to allow the deletion to be propogated to other DCs. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-10 23:48:30 +11:00
/* check if there is nothing to delete */
if ((!old_el || old_el->num_values == 0) &&
el->num_values == 0) {
return LDB_SUCCESS;
}
if (!old_el || old_el->num_values == 0) {
return LDB_ERR_NO_SUCH_ATTRIBUTE;
}
ret = get_parsed_dns(module, tmp_ctx, el, &dns, schema_attr->syntax->ldap_oid);
if (ret != LDB_SUCCESS) {
talloc_free(tmp_ctx);
return ret;
}
ret = get_parsed_dns(module, tmp_ctx, old_el, &old_dns, schema_attr->syntax->ldap_oid);
if (ret != LDB_SUCCESS) {
talloc_free(tmp_ctx);
return ret;
}
invocation_id = samdb_ntds_invocation_id(ldb);
if (!invocation_id) {
return LDB_ERR_OPERATIONS_ERROR;
}
s4-dsdb: auto-upgrade w2k formatted linked attributes when modified When any value of a w2k formatted linked attribute is modified, upgrade the links.
2009-12-19 19:57:37 +11:00
ret = replmd_check_upgrade_links(old_dns, old_el->num_values, invocation_id);
if (ret != LDB_SUCCESS) {
talloc_free(tmp_ctx);
return ret;
}
s4-dsdb: add support for storing linked attribute meta data in extended DNs When in functional levels above w2k, we need to store much richer meta data about linkked attributes. We also need to keep deleted linked attributes around to allow the deletion to be propogated to other DCs. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-10 23:48:30 +11:00
el->values = NULL;
/* see if we are being asked to delete any links that
don't exist or are already deleted */
for (i=0; i<el->num_values; i++) {
struct parsed_dn *p = &dns[i];
struct parsed_dn *p2;
const struct ldb_val *v;
s4-drs: cope better with NULL GUIDS from DRS It is valid to get a NULL GUID over DRS for a deleted forward link. We need to match by DN if possible when seeing if we should update an existing link. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-21 21:21:55 +11:00
p2 = parsed_dn_find(old_dns, old_el->num_values, p->guid, NULL);
s4-dsdb: add support for storing linked attribute meta data in extended DNs When in functional levels above w2k, we need to store much richer meta data about linkked attributes. We also need to keep deleted linked attributes around to allow the deletion to be propogated to other DCs. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-10 23:48:30 +11:00
if (!p2) {
ldb_asprintf_errstring(ldb, "Attribute %s doesn't exist for target GUID %s",
el->name, GUID_string(tmp_ctx, p->guid));
return LDB_ERR_NO_SUCH_ATTRIBUTE;
}
s4-dsdb: implemeneted replmd_modify_la_replace() We now have the core code for handling storage of linked attribute meta-data with local modifies Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-14 21:54:41 +11:00
v = ldb_dn_get_extended_component(p2->dsdb_dn->dn, "DELETED");
s4-dsdb: add support for storing linked attribute meta data in extended DNs When in functional levels above w2k, we need to store much richer meta data about linkked attributes. We also need to keep deleted linked attributes around to allow the deletion to be propogated to other DCs. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-10 23:48:30 +11:00
if (v) {
ldb_asprintf_errstring(ldb, "Attribute %s already deleted for target GUID %s",
el->name, GUID_string(tmp_ctx, p->guid));
return LDB_ERR_NO_SUCH_ATTRIBUTE;
}
}
/* for each new value, see if it exists already with the same GUID
if it is not already deleted and matches the delete list then delete it
*/
for (i=0; i<old_el->num_values; i++) {
struct parsed_dn *p = &old_dns[i];
const struct ldb_val *v;
s4-drs: cope better with NULL GUIDS from DRS It is valid to get a NULL GUID over DRS for a deleted forward link. We need to match by DN if possible when seeing if we should update an existing link. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-21 21:21:55 +11:00
if (el->num_values && parsed_dn_find(dns, el->num_values, p->guid, NULL) == NULL) {
s4-dsdb: add support for storing linked attribute meta data in extended DNs When in functional levels above w2k, we need to store much richer meta data about linkked attributes. We also need to keep deleted linked attributes around to allow the deletion to be propogated to other DCs. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-10 23:48:30 +11:00
continue;
}
v = ldb_dn_get_extended_component(p->dsdb_dn->dn, "DELETED");
if (v != NULL) continue;
s4-dsdb: add linked attributes meta_data handling to replmd_add This also handles the backlink creation that was previously in the linked_attributes module Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-17 10:42:15 +11:00
ret = replmd_update_la_val(old_el->values, p->v, p->dsdb_dn, p->dsdb_dn,
s4-dsdb: fill in the correct version number of links that come over DRS
2009-12-20 00:10:40 +11:00
invocation_id, seq_num, seq_num, now, 0, true);
s4-dsdb: add support for storing linked attribute meta data in extended DNs When in functional levels above w2k, we need to store much richer meta data about linkked attributes. We also need to keep deleted linked attributes around to allow the deletion to be propogated to other DCs. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-10 23:48:30 +11:00
if (ret != LDB_SUCCESS) {
talloc_free(tmp_ctx);
return ret;
}
s4-dsdb: added support for backlinks in repl_meta_data backlinks need more careful handling now that we store the additional meta data for deleted links. It is easier to handle this in repl_meta_data than in linked_attributes. Eventually linked_attributes will disappear, with the functionality moved into repl_meta_data. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-16 11:34:33 +11:00
s4-dsdb: some backlinks can be processed immediately backlinks in add and delete operations can be processed immediately, rather than at the end of a transaction. This can save on backlink list processing time.
2009-12-17 10:50:34 +11:00
ret = replmd_add_backlink(module, schema, msg_guid, old_dns[i].guid, false, schema_attr, true);
s4-dsdb: added support for backlinks in repl_meta_data backlinks need more careful handling now that we store the additional meta data for deleted links. It is easier to handle this in repl_meta_data than in linked_attributes. Eventually linked_attributes will disappear, with the functionality moved into repl_meta_data. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-16 11:34:33 +11:00
if (ret != LDB_SUCCESS) {
talloc_free(tmp_ctx);
return ret;
}
s4-dsdb: add support for storing linked attribute meta data in extended DNs When in functional levels above w2k, we need to store much richer meta data about linkked attributes. We also need to keep deleted linked attributes around to allow the deletion to be propogated to other DCs. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-10 23:48:30 +11:00
}
el->values = talloc_steal(msg->elements, old_el->values);
el->num_values = old_el->num_values;
talloc_free(tmp_ctx);
/* we now tell the backend to replace all existing values
with the one we have constructed */
el->flags = LDB_FLAG_MOD_REPLACE;
return LDB_SUCCESS;
}
s4-dsdb: implemeneted replmd_modify_la_replace() We now have the core code for handling storage of linked attribute meta-data with local modifies Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-14 21:54:41 +11:00
/*
handle replacing a linked attribute
*/
static int replmd_modify_la_replace(struct ldb_module *module,
s4-dsdb: added support for backlinks in repl_meta_data backlinks need more careful handling now that we store the additional meta data for deleted links. It is easier to handle this in repl_meta_data than in linked_attributes. Eventually linked_attributes will disappear, with the functionality moved into repl_meta_data. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-16 11:34:33 +11:00
struct dsdb_schema *schema,
s4-dsdb: implemeneted replmd_modify_la_replace() We now have the core code for handling storage of linked attribute meta-data with local modifies Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-14 21:54:41 +11:00
struct ldb_message *msg,
struct ldb_message_element *el,
struct ldb_message_element *old_el,
const struct dsdb_attribute *schema_attr,
uint64_t seq_num,
s4-dsdb: added support for backlinks in repl_meta_data backlinks need more careful handling now that we store the additional meta data for deleted links. It is easier to handle this in repl_meta_data than in linked_attributes. Eventually linked_attributes will disappear, with the functionality moved into repl_meta_data. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-16 11:34:33 +11:00
time_t t,
struct GUID *msg_guid)
s4-dsdb: implemeneted replmd_modify_la_replace() We now have the core code for handling storage of linked attribute meta-data with local modifies Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-14 21:54:41 +11:00
{
int i;
struct parsed_dn *dns, *old_dns;
TALLOC_CTX *tmp_ctx = talloc_new(msg);
int ret;
const struct GUID *invocation_id;
struct ldb_context *ldb = ldb_module_get_ctx(module);
struct ldb_val *new_values = NULL;
uint32_t num_new_values = 0;
unsigned old_num_values = old_el?old_el->num_values:0;
s4-dsdb: store full meta data from DRS for linked attributes Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-18 20:57:21 +11:00
NTTIME now;
unix_to_nt_time(&now, t);
s4-dsdb: implemeneted replmd_modify_la_replace() We now have the core code for handling storage of linked attribute meta-data with local modifies Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-14 21:54:41 +11:00
/* check if there is nothing to replace */
if ((!old_el || old_el->num_values == 0) &&
el->num_values == 0) {
return LDB_SUCCESS;
}
ret = get_parsed_dns(module, tmp_ctx, el, &dns, schema_attr->syntax->ldap_oid);
if (ret != LDB_SUCCESS) {
talloc_free(tmp_ctx);
return ret;
}
ret = get_parsed_dns(module, tmp_ctx, old_el, &old_dns, schema_attr->syntax->ldap_oid);
if (ret != LDB_SUCCESS) {
talloc_free(tmp_ctx);
return ret;
}
invocation_id = samdb_ntds_invocation_id(ldb);
if (!invocation_id) {
return LDB_ERR_OPERATIONS_ERROR;
}
s4-dsdb: auto-upgrade w2k formatted linked attributes when modified When any value of a w2k formatted linked attribute is modified, upgrade the links.
2009-12-19 19:57:37 +11:00
ret = replmd_check_upgrade_links(old_dns, old_num_values, invocation_id);
if (ret != LDB_SUCCESS) {
talloc_free(tmp_ctx);
return ret;
}
s4-dsdb: implemeneted replmd_modify_la_replace() We now have the core code for handling storage of linked attribute meta-data with local modifies Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-14 21:54:41 +11:00
/* mark all the old ones as deleted */
for (i=0; i<old_num_values; i++) {
struct parsed_dn *old_p = &old_dns[i];
struct parsed_dn *p;
const struct ldb_val *v;
s4-dsdb: added support for backlinks in repl_meta_data backlinks need more careful handling now that we store the additional meta data for deleted links. It is easier to handle this in repl_meta_data than in linked_attributes. Eventually linked_attributes will disappear, with the functionality moved into repl_meta_data. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-16 11:34:33 +11:00
v = ldb_dn_get_extended_component(old_p->dsdb_dn->dn, "DELETED");
if (v) continue;
s4-dsdb: some backlinks can be processed immediately backlinks in add and delete operations can be processed immediately, rather than at the end of a transaction. This can save on backlink list processing time.
2009-12-17 10:50:34 +11:00
ret = replmd_add_backlink(module, schema, msg_guid, old_dns[i].guid, false, schema_attr, false);
s4-dsdb: added support for backlinks in repl_meta_data backlinks need more careful handling now that we store the additional meta data for deleted links. It is easier to handle this in repl_meta_data than in linked_attributes. Eventually linked_attributes will disappear, with the functionality moved into repl_meta_data. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-16 11:34:33 +11:00
if (ret != LDB_SUCCESS) {
talloc_free(tmp_ctx);
return ret;
}
s4-drs: cope better with NULL GUIDS from DRS It is valid to get a NULL GUID over DRS for a deleted forward link. We need to match by DN if possible when seeing if we should update an existing link. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-21 21:21:55 +11:00
p = parsed_dn_find(dns, el->num_values, old_p->guid, NULL);
s4-dsdb: implemeneted replmd_modify_la_replace() We now have the core code for handling storage of linked attribute meta-data with local modifies Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-14 21:54:41 +11:00
if (p) {
/* we don't delete it if we are re-adding it */
continue;
}
s4-dsdb: add linked attributes meta_data handling to replmd_add This also handles the backlink creation that was previously in the linked_attributes module Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-17 10:42:15 +11:00
ret = replmd_update_la_val(old_el->values, old_p->v, old_p->dsdb_dn, old_p->dsdb_dn,
s4-dsdb: fill in the correct version number of links that come over DRS
2009-12-20 00:10:40 +11:00
invocation_id, seq_num, seq_num, now, 0, true);
s4-dsdb: implemeneted replmd_modify_la_replace() We now have the core code for handling storage of linked attribute meta-data with local modifies Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-14 21:54:41 +11:00
if (ret != LDB_SUCCESS) {
talloc_free(tmp_ctx);
return ret;
}
}
/* for each new value, either update its meta-data, or add it
* to old_el
*/
for (i=0; i<el->num_values; i++) {
struct parsed_dn *p = &dns[i], *old_p;
if (old_dns &&
(old_p = parsed_dn_find(old_dns,
s4-drs: cope better with NULL GUIDS from DRS It is valid to get a NULL GUID over DRS for a deleted forward link. We need to match by DN if possible when seeing if we should update an existing link. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-21 21:21:55 +11:00
old_num_values, p->guid, NULL)) != NULL) {
s4-dsdb: implemeneted replmd_modify_la_replace() We now have the core code for handling storage of linked attribute meta-data with local modifies Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-14 21:54:41 +11:00
/* update in place */
s4-dsdb: add linked attributes meta_data handling to replmd_add This also handles the backlink creation that was previously in the linked_attributes module Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-17 10:42:15 +11:00
ret = replmd_update_la_val(old_el->values, old_p->v, old_p->dsdb_dn,
old_p->dsdb_dn, invocation_id,
s4-dsdb: fill in the correct version number of links that come over DRS
2009-12-20 00:10:40 +11:00
seq_num, seq_num, now, 0, false);
s4-dsdb: implemeneted replmd_modify_la_replace() We now have the core code for handling storage of linked attribute meta-data with local modifies Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-14 21:54:41 +11:00
if (ret != LDB_SUCCESS) {
talloc_free(tmp_ctx);
return ret;
}
} else {
/* add a new one */
new_values = talloc_realloc(tmp_ctx, new_values, struct ldb_val,
num_new_values+1);
if (new_values == NULL) {
ldb_module_oom(module);
talloc_free(tmp_ctx);
return LDB_ERR_OPERATIONS_ERROR;
}
s4-dsdb: add linked attributes meta_data handling to replmd_add This also handles the backlink creation that was previously in the linked_attributes module Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-17 10:42:15 +11:00
ret = replmd_build_la_val(new_values, &new_values[num_new_values], dns[i].dsdb_dn,
s4-dsdb: fill in the correct version number of links that come over DRS
2009-12-20 00:10:40 +11:00
invocation_id, seq_num, seq_num, now, 0, false);
s4-dsdb: implemeneted replmd_modify_la_replace() We now have the core code for handling storage of linked attribute meta-data with local modifies Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-14 21:54:41 +11:00
if (ret != LDB_SUCCESS) {
talloc_free(tmp_ctx);
return ret;
}
num_new_values++;
}
s4-dsdb: added support for backlinks in repl_meta_data backlinks need more careful handling now that we store the additional meta data for deleted links. It is easier to handle this in repl_meta_data than in linked_attributes. Eventually linked_attributes will disappear, with the functionality moved into repl_meta_data. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-16 11:34:33 +11:00
s4-dsdb: some backlinks can be processed immediately backlinks in add and delete operations can be processed immediately, rather than at the end of a transaction. This can save on backlink list processing time.
2009-12-17 10:50:34 +11:00
ret = replmd_add_backlink(module, schema, msg_guid, dns[i].guid, true, schema_attr, false);
s4-dsdb: added support for backlinks in repl_meta_data backlinks need more careful handling now that we store the additional meta data for deleted links. It is easier to handle this in repl_meta_data than in linked_attributes. Eventually linked_attributes will disappear, with the functionality moved into repl_meta_data. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-16 11:34:33 +11:00
if (ret != LDB_SUCCESS) {
talloc_free(tmp_ctx);
return ret;
}
s4-dsdb: implemeneted replmd_modify_la_replace() We now have the core code for handling storage of linked attribute meta-data with local modifies Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-14 21:54:41 +11:00
}
/* add the new values to the end of old_el */
if (num_new_values != 0) {
el->values = talloc_realloc(msg->elements, old_el?old_el->values:NULL,
struct ldb_val, old_num_values+num_new_values);
if (el->values == NULL) {
ldb_module_oom(module);
return LDB_ERR_OPERATIONS_ERROR;
}
memcpy(&el->values[old_num_values], &new_values[0],
sizeof(struct ldb_val)*num_new_values);
el->num_values = old_num_values + num_new_values;
talloc_steal(msg->elements, new_values);
} else {
el->values = old_el->values;
el->num_values = old_el->num_values;
talloc_steal(msg->elements, el->values);
}
talloc_free(tmp_ctx);
/* we now tell the backend to replace all existing values
with the one we have constructed */
el->flags = LDB_FLAG_MOD_REPLACE;
return LDB_SUCCESS;
}
s4-dsdb: add support for storing linked attribute meta data in extended DNs When in functional levels above w2k, we need to store much richer meta data about linkked attributes. We also need to keep deleted linked attributes around to allow the deletion to be propogated to other DCs. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-10 23:48:30 +11:00
/*
handle linked attributes in modify requests
*/
static int replmd_modify_handle_linked_attribs(struct ldb_module *module,
struct ldb_message *msg,
uint64_t seq_num, time_t t)
{
struct ldb_result *res;
int ret, i;
struct ldb_context *ldb = ldb_module_get_ctx(module);
struct ldb_message *old_msg;
struct dsdb_schema *schema = dsdb_get_schema(ldb);
s4-dsdb: added support for backlinks in repl_meta_data backlinks need more careful handling now that we store the additional meta data for deleted links. It is easier to handle this in repl_meta_data than in linked_attributes. Eventually linked_attributes will disappear, with the functionality moved into repl_meta_data. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-16 11:34:33 +11:00
struct GUID old_guid;
s4-dsdb: add support for storing linked attribute meta data in extended DNs When in functional levels above w2k, we need to store much richer meta data about linkked attributes. We also need to keep deleted linked attributes around to allow the deletion to be propogated to other DCs. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-10 23:48:30 +11:00
if (seq_num == 0) {
/* there the replmd_update_rpmd code has already
* checked and saw that there are no linked
* attributes */
return LDB_SUCCESS;
}
#if !W2K3_LINKED_ATTRIBUTES
return LDB_SUCCESS;
#endif
if (dsdb_functional_level(ldb) == DS_DOMAIN_FUNCTION_2000) {
/* don't do anything special for linked attributes */
return LDB_SUCCESS;
}
ret = dsdb_module_search_dn(module, msg, &res, msg->dn, NULL,
DSDB_SEARCH_SHOW_DELETED |
s4-dsdb: implemeneted replmd_modify_la_replace() We now have the core code for handling storage of linked attribute meta-data with local modifies Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-14 21:54:41 +11:00
DSDB_SEARCH_REVEAL_INTERNALS |
s4-dsdb: add support for storing linked attribute meta data in extended DNs When in functional levels above w2k, we need to store much richer meta data about linkked attributes. We also need to keep deleted linked attributes around to allow the deletion to be propogated to other DCs. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-10 23:48:30 +11:00
DSDB_SEARCH_SHOW_DN_IN_STORAGE_FORMAT);
if (ret != LDB_SUCCESS) {
return ret;
}
old_msg = res->msgs[0];
s4-dsdb: added support for backlinks in repl_meta_data backlinks need more careful handling now that we store the additional meta data for deleted links. It is easier to handle this in repl_meta_data than in linked_attributes. Eventually linked_attributes will disappear, with the functionality moved into repl_meta_data. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-16 11:34:33 +11:00
old_guid = samdb_result_guid(old_msg, "objectGUID");
s4-dsdb: add support for storing linked attribute meta data in extended DNs When in functional levels above w2k, we need to store much richer meta data about linkked attributes. We also need to keep deleted linked attributes around to allow the deletion to be propogated to other DCs. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-10 23:48:30 +11:00
for (i=0; i<msg->num_elements; i++) {
struct ldb_message_element *el = &msg->elements[i];
s4-dsdb: implemeneted replmd_modify_la_replace() We now have the core code for handling storage of linked attribute meta-data with local modifies Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-14 21:54:41 +11:00
struct ldb_message_element *old_el, *new_el;
s4-dsdb: add support for storing linked attribute meta data in extended DNs When in functional levels above w2k, we need to store much richer meta data about linkked attributes. We also need to keep deleted linked attributes around to allow the deletion to be propogated to other DCs. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-10 23:48:30 +11:00
const struct dsdb_attribute *schema_attr
= dsdb_attribute_by_lDAPDisplayName(schema, el->name);
if (!schema_attr) {
ldb_asprintf_errstring(ldb,
"attribute %s is not a valid attribute in schema", el->name);
return LDB_ERR_OBJECT_CLASS_VIOLATION;
}
if (schema_attr->linkID == 0) {
continue;
}
if ((schema_attr->linkID & 1) == 1) {
/* Odd is for the target. Illegal to modify */
ldb_asprintf_errstring(ldb,
"attribute %s must not be modified directly, it is a linked attribute", el->name);
return LDB_ERR_UNWILLING_TO_PERFORM;
}
old_el = ldb_msg_find_element(old_msg, el->name);
s4-dsdb: implemeneted replmd_modify_la_replace() We now have the core code for handling storage of linked attribute meta-data with local modifies Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-14 21:54:41 +11:00
switch (el->flags & LDB_FLAG_MOD_MASK) {
s4-dsdb: add support for storing linked attribute meta data in extended DNs When in functional levels above w2k, we need to store much richer meta data about linkked attributes. We also need to keep deleted linked attributes around to allow the deletion to be propogated to other DCs. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-10 23:48:30 +11:00
case LDB_FLAG_MOD_REPLACE:
s4-dsdb: added support for backlinks in repl_meta_data backlinks need more careful handling now that we store the additional meta data for deleted links. It is easier to handle this in repl_meta_data than in linked_attributes. Eventually linked_attributes will disappear, with the functionality moved into repl_meta_data. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-16 11:34:33 +11:00
ret = replmd_modify_la_replace(module, schema, msg, el, old_el, schema_attr, seq_num, t, &old_guid);
s4-dsdb: add support for storing linked attribute meta data in extended DNs When in functional levels above w2k, we need to store much richer meta data about linkked attributes. We also need to keep deleted linked attributes around to allow the deletion to be propogated to other DCs. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-10 23:48:30 +11:00
break;
case LDB_FLAG_MOD_DELETE:
s4-dsdb: added support for backlinks in repl_meta_data backlinks need more careful handling now that we store the additional meta data for deleted links. It is easier to handle this in repl_meta_data than in linked_attributes. Eventually linked_attributes will disappear, with the functionality moved into repl_meta_data. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-16 11:34:33 +11:00
ret = replmd_modify_la_delete(module, schema, msg, el, old_el, schema_attr, seq_num, t, &old_guid);
s4-dsdb: add support for storing linked attribute meta data in extended DNs When in functional levels above w2k, we need to store much richer meta data about linkked attributes. We also need to keep deleted linked attributes around to allow the deletion to be propogated to other DCs. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-10 23:48:30 +11:00
break;
case LDB_FLAG_MOD_ADD:
s4-dsdb: added support for backlinks in repl_meta_data backlinks need more careful handling now that we store the additional meta data for deleted links. It is easier to handle this in repl_meta_data than in linked_attributes. Eventually linked_attributes will disappear, with the functionality moved into repl_meta_data. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-16 11:34:33 +11:00
ret = replmd_modify_la_add(module, schema, msg, el, old_el, schema_attr, seq_num, t, &old_guid);
s4-dsdb: add support for storing linked attribute meta data in extended DNs When in functional levels above w2k, we need to store much richer meta data about linkked attributes. We also need to keep deleted linked attributes around to allow the deletion to be propogated to other DCs. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-10 23:48:30 +11:00
break;
default:
ldb_asprintf_errstring(ldb,
"invalid flags 0x%x for %s linked attribute",
el->flags, el->name);
return LDB_ERR_UNWILLING_TO_PERFORM;
}
s4-dsdb: implemeneted replmd_modify_la_replace() We now have the core code for handling storage of linked attribute meta-data with local modifies Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-14 21:54:41 +11:00
if (ret != LDB_SUCCESS) {
return ret;
}
if (old_el) {
ldb_msg_remove_attr(old_msg, el->name);
}
ldb_msg_add_empty(old_msg, el->name, 0, &new_el);
new_el->num_values = el->num_values;
s4-dsdb: fixed valgrind error in replmd modify We are using the values from a search result, so we need to steal them onto the msg before we free the search results Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-22 12:21:02 +11:00
new_el->values = talloc_steal(msg->elements, el->values);
s4-dsdb: implemeneted replmd_modify_la_replace() We now have the core code for handling storage of linked attribute meta-data with local modifies Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-14 21:54:41 +11:00
/* TODO: this relises a bit too heavily on the exact
behaviour of ldb_msg_find_element and
ldb_msg_remove_element */
old_el = ldb_msg_find_element(msg, el->name);
if (old_el != el) {
ldb_msg_remove_element(msg, old_el);
i--;
}
s4-dsdb: add support for storing linked attribute meta data in extended DNs When in functional levels above w2k, we need to store much richer meta data about linkked attributes. We also need to keep deleted linked attributes around to allow the deletion to be propogated to other DCs. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-10 23:48:30 +11:00
}
talloc_free(res);
return ret;
}
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
static int replmd_modify(struct ldb_module *module, struct ldb_request *req)
r20522: make a copy of the objectguid ldb module because: - I'll add handling of replication meta data to it for orginating changes - I'll pass replication meta data via a ldb control for applying replicated changes - It will also update the replUpToDateVector attribute in in root object of the partition - It will handle deleted records by adding the isDeleted=TRUE attribute and move them to the CN=Deleted Objects container of the partition - I make a copy to play with the code without breaking the LDAP backend setup metze (This used to be commit 045ddfe1ec626fab5e8fd75c5b47f0525b7ebb01)
2007-01-04 12:10:55 +00:00
{
Fix all other modules to use ldb_module.h instead of ldb_private.h The only 2 modules escaping the rule so far are rootdse and partitions
2009-01-30 16:31:19 -05:00
struct ldb_context *ldb;
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
struct replmd_replicated_request *ac;
r20522: make a copy of the objectguid ldb module because: - I'll add handling of replication meta data to it for orginating changes - I'll pass replication meta data via a ldb control for applying replicated changes - It will also update the replUpToDateVector attribute in in root object of the partition - It will handle deleted records by adding the isDeleted=TRUE attribute and move them to the CN=Deleted Objects container of the partition - I make a copy to play with the code without breaking the LDAP backend setup metze (This used to be commit 045ddfe1ec626fab5e8fd75c5b47f0525b7ebb01)
2007-01-04 12:10:55 +00:00
struct ldb_request *down_req;
struct ldb_message *msg;
time_t t = time(NULL);
s4:repl_meta_data - various - Add more "talloc_free"s and right error values where needed - Add a pre-lookup for entries before searching for metadata attribute (also suggested by TODO list) - Now the most part of "ldap.py" works again
2009-10-02 23:26:35 +02:00
int ret;
r20522: make a copy of the objectguid ldb module because: - I'll add handling of replication meta data to it for orginating changes - I'll pass replication meta data via a ldb control for applying replicated changes - It will also update the replUpToDateVector attribute in in root object of the partition - It will handle deleted records by adding the isDeleted=TRUE attribute and move them to the CN=Deleted Objects container of the partition - I make a copy to play with the code without breaking the LDAP backend setup metze (This used to be commit 045ddfe1ec626fab5e8fd75c5b47f0525b7ebb01)
2007-01-04 12:10:55 +00:00
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
/* do not manipulate our control entries */
if (ldb_dn_is_special(req->op.mod.message->dn)) {
return ldb_next_request(module, req);
}
Fix all other modules to use ldb_module.h instead of ldb_private.h The only 2 modules escaping the rule so far are rootdse and partitions
2009-01-30 16:31:19 -05:00
ldb = ldb_module_get_ctx(module);
ldb_debug(ldb, LDB_DEBUG_TRACE, "replmd_modify\n");
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
ac = replmd_ctx_init(module, req);
if (!ac) {
r20522: make a copy of the objectguid ldb module because: - I'll add handling of replication meta data to it for orginating changes - I'll pass replication meta data via a ldb control for applying replicated changes - It will also update the replUpToDateVector attribute in in root object of the partition - It will handle deleted records by adding the isDeleted=TRUE attribute and move them to the CN=Deleted Objects container of the partition - I make a copy to play with the code without breaking the LDAP backend setup metze (This used to be commit 045ddfe1ec626fab5e8fd75c5b47f0525b7ebb01)
2007-01-04 12:10:55 +00:00
return LDB_ERR_OPERATIONS_ERROR;
}
/* we have to copy the message as the caller might have it as a const */
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
msg = ldb_msg_copy_shallow(ac, req->op.mod.message);
r20522: make a copy of the objectguid ldb module because: - I'll add handling of replication meta data to it for orginating changes - I'll pass replication meta data via a ldb control for applying replicated changes - It will also update the replUpToDateVector attribute in in root object of the partition - It will handle deleted records by adding the isDeleted=TRUE attribute and move them to the CN=Deleted Objects container of the partition - I make a copy to play with the code without breaking the LDAP backend setup metze (This used to be commit 045ddfe1ec626fab5e8fd75c5b47f0525b7ebb01)
2007-01-04 12:10:55 +00:00
if (msg == NULL) {
s4:repl_meta_data - various - Add more "talloc_free"s and right error values where needed - Add a pre-lookup for entries before searching for metadata attribute (also suggested by TODO list) - Now the most part of "ldap.py" works again
2009-10-02 23:26:35 +02:00
ldb_oom(ldb);
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
talloc_free(ac);
r20522: make a copy of the objectguid ldb module because: - I'll add handling of replication meta data to it for orginating changes - I'll pass replication meta data via a ldb control for applying replicated changes - It will also update the replUpToDateVector attribute in in root object of the partition - It will handle deleted records by adding the isDeleted=TRUE attribute and move them to the CN=Deleted Objects container of the partition - I make a copy to play with the code without breaking the LDAP backend setup metze (This used to be commit 045ddfe1ec626fab5e8fd75c5b47f0525b7ebb01)
2007-01-04 12:10:55 +00:00
return LDB_ERR_OPERATIONS_ERROR;
}
s4-dsdb: add support for storing linked attribute meta data in extended DNs When in functional levels above w2k, we need to store much richer meta data about linkked attributes. We also need to keep deleted linked attributes around to allow the deletion to be propogated to other DCs. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-10 23:48:30 +11:00
ret = replmd_update_rpmd(module, ac->schema, msg, &ac->seq_num, t);
s4:repl_meta_data - various - Add more "talloc_free"s and right error values where needed - Add a pre-lookup for entries before searching for metadata attribute (also suggested by TODO list) - Now the most part of "ldap.py" works again
2009-10-02 23:26:35 +02:00
if (ret != LDB_SUCCESS) {
talloc_free(ac);
return ret;
}
s4-dsdb: add support for storing linked attribute meta data in extended DNs When in functional levels above w2k, we need to store much richer meta data about linkked attributes. We also need to keep deleted linked attributes around to allow the deletion to be propogated to other DCs. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-10 23:48:30 +11:00
ret = replmd_modify_handle_linked_attribs(module, msg, ac->seq_num, t);
s4-repl: on every ldb modify we need to update replPropertyMetaData Every time we change a ldb object with the repl_meta_data module loaded we need to update the replPropertyMetaData attribute to fix the timestamps and USNs of the attributes being changed.
2009-09-11 19:07:38 +10:00
if (ret != LDB_SUCCESS) {
s4:repl_meta_data - various - Add more "talloc_free"s and right error values where needed - Add a pre-lookup for entries before searching for metadata attribute (also suggested by TODO list) - Now the most part of "ldap.py" works again
2009-10-02 23:26:35 +02:00
talloc_free(ac);
s4-repl: on every ldb modify we need to update replPropertyMetaData Every time we change a ldb object with the repl_meta_data module loaded we need to update the replPropertyMetaData attribute to fix the timestamps and USNs of the attributes being changed.
2009-09-11 19:07:38 +10:00
return ret;
}
repl_meta_data: add some TODOs to replmd_modify_originating() metze (This used to be commit ba495f9d19e7c7cfc9135a5d40e1050dd8f9ebc6)
2008-01-25 08:08:33 +01:00
/* TODO:
* - replace the old object with the newly constructed one
*/
Fix all other modules to use ldb_module.h instead of ldb_private.h The only 2 modules escaping the rule so far are rootdse and partitions
2009-01-30 16:31:19 -05:00
ret = ldb_build_mod_req(&down_req, ldb, ac,
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
msg,
req->controls,
ac, replmd_op_callback,
req);
if (ret != LDB_SUCCESS) {
s4:repl_meta_data - various - Add more "talloc_free"s and right error values where needed - Add a pre-lookup for entries before searching for metadata attribute (also suggested by TODO list) - Now the most part of "ldap.py" works again
2009-10-02 23:26:35 +02:00
talloc_free(ac);
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
return ret;
r20681: implement the DSDB_EXTENDED_REPLICATED_OBJECTS operation. the merging of existing objects is not implemented yet... there are a few ifdef REPLMD_FULL_ASYNC because we need to workarouns ldb's async infrastructure (which don't handle full async sub requests nicely) metze (This used to be commit da4ff0e7ccde47b3e092313ba22422350cf50f78)
2007-01-11 09:54:10 +00:00
}
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
talloc_steal(down_req, msg);
r20681: implement the DSDB_EXTENDED_REPLICATED_OBJECTS operation. the merging of existing objects is not implemented yet... there are a few ifdef REPLMD_FULL_ASYNC because we need to workarouns ldb's async infrastructure (which don't handle full async sub requests nicely) metze (This used to be commit da4ff0e7ccde47b3e092313ba22422350cf50f78)
2007-01-11 09:54:10 +00:00
s4-repl: we should only update uSNChanged when replication data changes When changing non-replicated attributes we should not update the uSNChanged attribute on the record, otherwise the DRS server will think this record needs replicating.
2009-09-12 11:10:19 +10:00
/* we only change whenChanged and uSNChanged if the seq_num
has changed */
s4-drs: fixed updating of uSNChanged in replmd_modify Updating of uSNChanged broke in a recent change
2009-12-02 17:14:40 +11:00
if (ac->seq_num != 0) {
s4-repl: we should only update uSNChanged when replication data changes When changing non-replicated attributes we should not update the uSNChanged attribute on the record, otherwise the DRS server will think this record needs replicating.
2009-09-12 11:10:19 +10:00
if (add_time_element(msg, "whenChanged", t) != LDB_SUCCESS) {
talloc_free(ac);
s4:repl_meta_data - various - Add more "talloc_free"s and right error values where needed - Add a pre-lookup for entries before searching for metadata attribute (also suggested by TODO list) - Now the most part of "ldap.py" works again
2009-10-02 23:26:35 +02:00
return ret;
s4-repl: we should only update uSNChanged when replication data changes When changing non-replicated attributes we should not update the uSNChanged attribute on the record, otherwise the DRS server will think this record needs replicating.
2009-09-12 11:10:19 +10:00
}
s4-drs: fixed updating of uSNChanged in replmd_modify Updating of uSNChanged broke in a recent change
2009-12-02 17:14:40 +11:00
if (add_uint64_element(msg, "uSNChanged", ac->seq_num) != LDB_SUCCESS) {
s4-repl: we should only update uSNChanged when replication data changes When changing non-replicated attributes we should not update the uSNChanged attribute on the record, otherwise the DRS server will think this record needs replicating.
2009-09-12 11:10:19 +10:00
talloc_free(ac);
s4:repl_meta_data - various - Add more "talloc_free"s and right error values where needed - Add a pre-lookup for entries before searching for metadata attribute (also suggested by TODO list) - Now the most part of "ldap.py" works again
2009-10-02 23:26:35 +02:00
return ret;
s4-repl: we should only update uSNChanged when replication data changes When changing non-replicated attributes we should not update the uSNChanged attribute on the record, otherwise the DRS server will think this record needs replicating.
2009-09-12 11:10:19 +10:00
}
}
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
/* go on with the call chain */
return ldb_next_request(module, down_req);
r20681: implement the DSDB_EXTENDED_REPLICATED_OBJECTS operation. the merging of existing objects is not implemented yet... there are a few ifdef REPLMD_FULL_ASYNC because we need to workarouns ldb's async infrastructure (which don't handle full async sub requests nicely) metze (This used to be commit da4ff0e7ccde47b3e092313ba22422350cf50f78)
2007-01-11 09:54:10 +00:00
}
s4:dsdb Use 'partition modified' information to update @REPLCHANGED This major rework of repl_meta_data changes it from using a static list of partitions to a dynamic list created from the controls placed on returned ldb results. To process these in one place, the similar but distinct callbacks are combined into a single replmd_op_callback(), which handles both the 'normal operation' and 'inbound replication' case. This allows new partitions to be created, and replication events for these new partitions to be scheduled immediately. Also in this commit: We no longer specify the target partition for new or modified objects - instead we allow the partitions module to use the DN as normal. THis avoids the issue where we would create two partition head records. Andrew Bartlett
2009-10-16 16:20:15 +11:00
static int replmd_rename_callback(struct ldb_request *req, struct ldb_reply *ares);
s4-repl: handle rename in repl_meta_data On a rename we need to update uSNChanged, and the max uSN for the partition
2009-09-14 13:13:12 -07:00
/*
handle a rename request
On a rename we need to do an extra ldb_modify which sets the
s4:dsdb Use 'partition modified' information to update @REPLCHANGED This major rework of repl_meta_data changes it from using a static list of partitions to a dynamic list created from the controls placed on returned ldb results. To process these in one place, the similar but distinct callbacks are combined into a single replmd_op_callback(), which handles both the 'normal operation' and 'inbound replication' case. This allows new partitions to be created, and replication events for these new partitions to be scheduled immediately. Also in this commit: We no longer specify the target partition for new or modified objects - instead we allow the partitions module to use the DN as normal. THis avoids the issue where we would create two partition head records. Andrew Bartlett
2009-10-16 16:20:15 +11:00
whenChanged and uSNChanged attributes. We do this in a callback after the success.
s4-repl: handle rename in repl_meta_data On a rename we need to update uSNChanged, and the max uSN for the partition
2009-09-14 13:13:12 -07:00
*/
static int replmd_rename(struct ldb_module *module, struct ldb_request *req)
{
struct ldb_context *ldb;
s4:dsdb Use 'partition modified' information to update @REPLCHANGED This major rework of repl_meta_data changes it from using a static list of partitions to a dynamic list created from the controls placed on returned ldb results. To process these in one place, the similar but distinct callbacks are combined into a single replmd_op_callback(), which handles both the 'normal operation' and 'inbound replication' case. This allows new partitions to be created, and replication events for these new partitions to be scheduled immediately. Also in this commit: We no longer specify the target partition for new or modified objects - instead we allow the partitions module to use the DN as normal. THis avoids the issue where we would create two partition head records. Andrew Bartlett
2009-10-16 16:20:15 +11:00
struct replmd_replicated_request *ac;
int ret;
struct ldb_request *down_req;
s4-repl: handle rename in repl_meta_data On a rename we need to update uSNChanged, and the max uSN for the partition
2009-09-14 13:13:12 -07:00
/* do not manipulate our control entries */
if (ldb_dn_is_special(req->op.mod.message->dn)) {
return ldb_next_request(module, req);
}
ldb = ldb_module_get_ctx(module);
ldb_debug(ldb, LDB_DEBUG_TRACE, "replmd_rename\n");
s4:dsdb Use 'partition modified' information to update @REPLCHANGED This major rework of repl_meta_data changes it from using a static list of partitions to a dynamic list created from the controls placed on returned ldb results. To process these in one place, the similar but distinct callbacks are combined into a single replmd_op_callback(), which handles both the 'normal operation' and 'inbound replication' case. This allows new partitions to be created, and replication events for these new partitions to be scheduled immediately. Also in this commit: We no longer specify the target partition for new or modified objects - instead we allow the partitions module to use the DN as normal. THis avoids the issue where we would create two partition head records. Andrew Bartlett
2009-10-16 16:20:15 +11:00
ac = replmd_ctx_init(module, req);
if (!ac) {
return LDB_ERR_OPERATIONS_ERROR;
}
ret = ldb_build_rename_req(&down_req, ldb, ac,
ac->req->op.rename.olddn,
ac->req->op.rename.newdn,
ac->req->controls,
ac, replmd_rename_callback,
ac->req);
s4-repl: handle rename in repl_meta_data On a rename we need to update uSNChanged, and the max uSN for the partition
2009-09-14 13:13:12 -07:00
if (ret != LDB_SUCCESS) {
s4:dsdb Use 'partition modified' information to update @REPLCHANGED This major rework of repl_meta_data changes it from using a static list of partitions to a dynamic list created from the controls placed on returned ldb results. To process these in one place, the similar but distinct callbacks are combined into a single replmd_op_callback(), which handles both the 'normal operation' and 'inbound replication' case. This allows new partitions to be created, and replication events for these new partitions to be scheduled immediately. Also in this commit: We no longer specify the target partition for new or modified objects - instead we allow the partitions module to use the DN as normal. THis avoids the issue where we would create two partition head records. Andrew Bartlett
2009-10-16 16:20:15 +11:00
talloc_free(ac);
s4-repl: handle rename in repl_meta_data On a rename we need to update uSNChanged, and the max uSN for the partition
2009-09-14 13:13:12 -07:00
return ret;
}
s4:dsdb Use 'partition modified' information to update @REPLCHANGED This major rework of repl_meta_data changes it from using a static list of partitions to a dynamic list created from the controls placed on returned ldb results. To process these in one place, the similar but distinct callbacks are combined into a single replmd_op_callback(), which handles both the 'normal operation' and 'inbound replication' case. This allows new partitions to be created, and replication events for these new partitions to be scheduled immediately. Also in this commit: We no longer specify the target partition for new or modified objects - instead we allow the partitions module to use the DN as normal. THis avoids the issue where we would create two partition head records. Andrew Bartlett
2009-10-16 16:20:15 +11:00
/* go on with the call chain */
return ldb_next_request(module, down_req);
}
s4-repl: handle rename in repl_meta_data On a rename we need to update uSNChanged, and the max uSN for the partition
2009-09-14 13:13:12 -07:00
s4:dsdb Use 'partition modified' information to update @REPLCHANGED This major rework of repl_meta_data changes it from using a static list of partitions to a dynamic list created from the controls placed on returned ldb results. To process these in one place, the similar but distinct callbacks are combined into a single replmd_op_callback(), which handles both the 'normal operation' and 'inbound replication' case. This allows new partitions to be created, and replication events for these new partitions to be scheduled immediately. Also in this commit: We no longer specify the target partition for new or modified objects - instead we allow the partitions module to use the DN as normal. THis avoids the issue where we would create two partition head records. Andrew Bartlett
2009-10-16 16:20:15 +11:00
/* After the rename is compleated, update the whenchanged etc */
static int replmd_rename_callback(struct ldb_request *req, struct ldb_reply *ares)
{
struct ldb_context *ldb;
struct replmd_replicated_request *ac;
struct ldb_request *down_req;
struct ldb_message *msg;
time_t t = time(NULL);
int ret;
s4-repl: handle rename in repl_meta_data On a rename we need to update uSNChanged, and the max uSN for the partition
2009-09-14 13:13:12 -07:00
s4:dsdb Use 'partition modified' information to update @REPLCHANGED This major rework of repl_meta_data changes it from using a static list of partitions to a dynamic list created from the controls placed on returned ldb results. To process these in one place, the similar but distinct callbacks are combined into a single replmd_op_callback(), which handles both the 'normal operation' and 'inbound replication' case. This allows new partitions to be created, and replication events for these new partitions to be scheduled immediately. Also in this commit: We no longer specify the target partition for new or modified objects - instead we allow the partitions module to use the DN as normal. THis avoids the issue where we would create two partition head records. Andrew Bartlett
2009-10-16 16:20:15 +11:00
ac = talloc_get_type(req->context, struct replmd_replicated_request);
ldb = ldb_module_get_ctx(ac->module);
if (ares->error != LDB_SUCCESS) {
return ldb_module_done(ac->req, ares->controls,
ares->response, ares->error);
s4-repl: handle rename in repl_meta_data On a rename we need to update uSNChanged, and the max uSN for the partition
2009-09-14 13:13:12 -07:00
}
s4:dsdb Use 'partition modified' information to update @REPLCHANGED This major rework of repl_meta_data changes it from using a static list of partitions to a dynamic list created from the controls placed on returned ldb results. To process these in one place, the similar but distinct callbacks are combined into a single replmd_op_callback(), which handles both the 'normal operation' and 'inbound replication' case. This allows new partitions to be created, and replication events for these new partitions to be scheduled immediately. Also in this commit: We no longer specify the target partition for new or modified objects - instead we allow the partitions module to use the DN as normal. THis avoids the issue where we would create two partition head records. Andrew Bartlett
2009-10-16 16:20:15 +11:00
if (ares->type != LDB_REPLY_DONE) {
ldb_set_errstring(ldb,
"invalid ldb_reply_type in callback");
talloc_free(ares);
return ldb_module_done(ac->req, NULL, NULL,
LDB_ERR_OPERATIONS_ERROR);
s4-repl: handle rename in repl_meta_data On a rename we need to update uSNChanged, and the max uSN for the partition
2009-09-14 13:13:12 -07:00
}
s4:dsdb Use 'partition modified' information to update @REPLCHANGED This major rework of repl_meta_data changes it from using a static list of partitions to a dynamic list created from the controls placed on returned ldb results. To process these in one place, the similar but distinct callbacks are combined into a single replmd_op_callback(), which handles both the 'normal operation' and 'inbound replication' case. This allows new partitions to be created, and replication events for these new partitions to be scheduled immediately. Also in this commit: We no longer specify the target partition for new or modified objects - instead we allow the partitions module to use the DN as normal. THis avoids the issue where we would create two partition head records. Andrew Bartlett
2009-10-16 16:20:15 +11:00
/* Get a sequence number from the backend */
ret = ldb_sequence_number(ldb, LDB_SEQ_NEXT, &ac->seq_num);
s4-repl: handle rename in repl_meta_data On a rename we need to update uSNChanged, and the max uSN for the partition
2009-09-14 13:13:12 -07:00
if (ret != LDB_SUCCESS) {
return ret;
}
s4:dsdb Use 'partition modified' information to update @REPLCHANGED This major rework of repl_meta_data changes it from using a static list of partitions to a dynamic list created from the controls placed on returned ldb results. To process these in one place, the similar but distinct callbacks are combined into a single replmd_op_callback(), which handles both the 'normal operation' and 'inbound replication' case. This allows new partitions to be created, and replication events for these new partitions to be scheduled immediately. Also in this commit: We no longer specify the target partition for new or modified objects - instead we allow the partitions module to use the DN as normal. THis avoids the issue where we would create two partition head records. Andrew Bartlett
2009-10-16 16:20:15 +11:00
/* TODO:
* - replace the old object with the newly constructed one
*/
s4-repl: handle rename in repl_meta_data On a rename we need to update uSNChanged, and the max uSN for the partition
2009-09-14 13:13:12 -07:00
s4:dsdb Use 'partition modified' information to update @REPLCHANGED This major rework of repl_meta_data changes it from using a static list of partitions to a dynamic list created from the controls placed on returned ldb results. To process these in one place, the similar but distinct callbacks are combined into a single replmd_op_callback(), which handles both the 'normal operation' and 'inbound replication' case. This allows new partitions to be created, and replication events for these new partitions to be scheduled immediately. Also in this commit: We no longer specify the target partition for new or modified objects - instead we allow the partitions module to use the DN as normal. THis avoids the issue where we would create two partition head records. Andrew Bartlett
2009-10-16 16:20:15 +11:00
msg = ldb_msg_new(ac);
if (msg == NULL) {
ldb_oom(ldb);
s4-repl: handle rename in repl_meta_data On a rename we need to update uSNChanged, and the max uSN for the partition
2009-09-14 13:13:12 -07:00
return LDB_ERR_OPERATIONS_ERROR;
}
s4:dsdb Use 'partition modified' information to update @REPLCHANGED This major rework of repl_meta_data changes it from using a static list of partitions to a dynamic list created from the controls placed on returned ldb results. To process these in one place, the similar but distinct callbacks are combined into a single replmd_op_callback(), which handles both the 'normal operation' and 'inbound replication' case. This allows new partitions to be created, and replication events for these new partitions to be scheduled immediately. Also in this commit: We no longer specify the target partition for new or modified objects - instead we allow the partitions module to use the DN as normal. THis avoids the issue where we would create two partition head records. Andrew Bartlett
2009-10-16 16:20:15 +11:00
msg->dn = ac->req->op.rename.newdn;
ret = ldb_build_mod_req(&down_req, ldb, ac,
msg,
req->controls,
ac, replmd_op_callback,
req);
if (ret != LDB_SUCCESS) {
talloc_free(ac);
return ret;
s4-repl: handle rename in repl_meta_data On a rename we need to update uSNChanged, and the max uSN for the partition
2009-09-14 13:13:12 -07:00
}
s4:dsdb Use 'partition modified' information to update @REPLCHANGED This major rework of repl_meta_data changes it from using a static list of partitions to a dynamic list created from the controls placed on returned ldb results. To process these in one place, the similar but distinct callbacks are combined into a single replmd_op_callback(), which handles both the 'normal operation' and 'inbound replication' case. This allows new partitions to be created, and replication events for these new partitions to be scheduled immediately. Also in this commit: We no longer specify the target partition for new or modified objects - instead we allow the partitions module to use the DN as normal. THis avoids the issue where we would create two partition head records. Andrew Bartlett
2009-10-16 16:20:15 +11:00
talloc_steal(down_req, msg);
if (add_time_element(msg, "whenChanged", t) != LDB_SUCCESS) {
talloc_free(ac);
return ret;
s4-repl: handle rename in repl_meta_data On a rename we need to update uSNChanged, and the max uSN for the partition
2009-09-14 13:13:12 -07:00
}
s4:dsdb Use 'partition modified' information to update @REPLCHANGED This major rework of repl_meta_data changes it from using a static list of partitions to a dynamic list created from the controls placed on returned ldb results. To process these in one place, the similar but distinct callbacks are combined into a single replmd_op_callback(), which handles both the 'normal operation' and 'inbound replication' case. This allows new partitions to be created, and replication events for these new partitions to be scheduled immediately. Also in this commit: We no longer specify the target partition for new or modified objects - instead we allow the partitions module to use the DN as normal. THis avoids the issue where we would create two partition head records. Andrew Bartlett
2009-10-16 16:20:15 +11:00
if (add_uint64_element(msg, "uSNChanged", ac->seq_num) != LDB_SUCCESS) {
talloc_free(ac);
return ret;
}
/* go on with the call chain - do the modify after the rename */
return ldb_next_request(ac->module, down_req);
s4-repl: handle rename in repl_meta_data On a rename we need to update uSNChanged, and the max uSN for the partition
2009-09-14 13:13:12 -07:00
}
s4-drs: update comment to refect only forward link in this fn This function only update forward links Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-21 21:25:27 +11:00
/*
remove links from objects that point at this object when an object
is deleted
*/
s4-dsdb: added replmd_delete, based on Eduardos work This implements repmld_delete(), which handles the meta_data updates for an object when deleting. A delete gets mapped to a combination of a rename followed by a modify request, which has the effect of moving the object into the Deleted Objects container. This is based on the code from Eduardo Lima <eduardoll@gmail.com>. Eduardo's code was modified to take account of the linked attributes changes that Andrew and I have been working on. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-16 17:24:21 +11:00
static int replmd_delete_remove_link(struct ldb_module *module,
struct dsdb_schema *schema,
struct ldb_dn *dn,
struct ldb_message_element *el,
const struct dsdb_attribute *sa)
{
int i;
TALLOC_CTX *tmp_ctx = talloc_new(module);
struct ldb_context *ldb = ldb_module_get_ctx(module);
for (i=0; i<el->num_values; i++) {
struct dsdb_dn *dsdb_dn;
NTSTATUS status;
int ret;
struct GUID guid2;
struct ldb_message *msg;
const struct dsdb_attribute *target_attr;
struct ldb_message_element *el2;
struct ldb_val dn_val;
if (dsdb_dn_is_deleted_val(&el->values[i])) {
continue;
}
dsdb_dn = dsdb_dn_parse(tmp_ctx, ldb, &el->values[i], sa->syntax->ldap_oid);
if (!dsdb_dn) {
talloc_free(tmp_ctx);
return LDB_ERR_OPERATIONS_ERROR;
}
s4-dsdb: store full meta data from DRS for linked attributes Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-18 20:57:21 +11:00
status = dsdb_get_extended_dn_guid(dsdb_dn->dn, &guid2, "GUID");
s4-dsdb: added replmd_delete, based on Eduardos work This implements repmld_delete(), which handles the meta_data updates for an object when deleting. A delete gets mapped to a combination of a rename followed by a modify request, which has the effect of moving the object into the Deleted Objects container. This is based on the code from Eduardo Lima <eduardoll@gmail.com>. Eduardo's code was modified to take account of the linked attributes changes that Andrew and I have been working on. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-16 17:24:21 +11:00
if (!NT_STATUS_IS_OK(status)) {
talloc_free(tmp_ctx);
return LDB_ERR_OPERATIONS_ERROR;
}
/* remove the link */
msg = ldb_msg_new(tmp_ctx);
if (!msg) {
ldb_module_oom(module);
talloc_free(tmp_ctx);
return LDB_ERR_OPERATIONS_ERROR;
}
msg->dn = dsdb_dn->dn;
s4-dsdb: handle links with no backlinks in replmd_delete
2009-12-17 23:50:41 +11:00
target_attr = dsdb_attribute_by_linkID(schema, sa->linkID ^ 1);
if (target_attr == NULL) {
continue;
s4-dsdb: added replmd_delete, based on Eduardos work This implements repmld_delete(), which handles the meta_data updates for an object when deleting. A delete gets mapped to a combination of a rename followed by a modify request, which has the effect of moving the object into the Deleted Objects container. This is based on the code from Eduardo Lima <eduardoll@gmail.com>. Eduardo's code was modified to take account of the linked attributes changes that Andrew and I have been working on. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-16 17:24:21 +11:00
}
ret = ldb_msg_add_empty(msg, target_attr->lDAPDisplayName, LDB_FLAG_MOD_DELETE, &el2);
if (ret != LDB_SUCCESS) {
ldb_module_oom(module);
talloc_free(tmp_ctx);
return LDB_ERR_OPERATIONS_ERROR;
}
dn_val = data_blob_string_const(ldb_dn_get_linearized(dn));
el2->values = &dn_val;
el2->num_values = 1;
s4-drs: use DSDB_FLAG_OWN_MODULE We need DRS driven replication changes to update replPropertyMetaData, so it needs to call into the repl_meta_data module logic Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-21 21:26:15 +11:00
ret = dsdb_module_modify(module, msg, DSDB_FLAG_OWN_MODULE);
s4-dsdb: added replmd_delete, based on Eduardos work This implements repmld_delete(), which handles the meta_data updates for an object when deleting. A delete gets mapped to a combination of a rename followed by a modify request, which has the effect of moving the object into the Deleted Objects container. This is based on the code from Eduardo Lima <eduardoll@gmail.com>. Eduardo's code was modified to take account of the linked attributes changes that Andrew and I have been working on. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-16 17:24:21 +11:00
if (ret != LDB_SUCCESS) {
talloc_free(tmp_ctx);
return ret;
}
}
talloc_free(tmp_ctx);
return LDB_SUCCESS;
}
/*
handle update of replication meta data for deletion of objects
This also handles the mapping of delete to a rename operation
to allow deletes to be replicated.
*/
static int replmd_delete(struct ldb_module *module, struct ldb_request *req)
{
int ret = LDB_ERR_OTHER;
bool retb;
struct ldb_dn *old_dn, *new_dn;
const char *rdn_name;
const struct ldb_val *rdn_value, *new_rdn_value;
struct GUID guid;
struct ldb_context *ldb = ldb_module_get_ctx(module);
struct dsdb_schema *schema = dsdb_get_schema(ldb);
struct ldb_message *msg, *old_msg;
struct ldb_message_element *el;
TALLOC_CTX *tmp_ctx;
struct ldb_result *res, *parent_res;
const char *preserved_attrs[] = {
/* yes, this really is a hard coded list. See MS-ADTS
section 3.1.1.5.5.1.1 */
"nTSecurityDescriptor", "attributeID", "attributeSyntax", "dNReferenceUpdate", "dNSHostName",
"flatName", "governsID", "groupType", "instanceType", "lDAPDisplayName", "legacyExchangeDN",
"isDeleted", "isRecycled", "lastKnownParent", "msDS-LastKnownRDN", "mS-DS-CreatorSID",
"mSMQOwnerID", "nCName", "objectClass", "distinguishedName", "objectGUID", "objectSid",
"oMSyntax", "proxiedObjectName", "name", "replPropertyMetaData", "sAMAccountName",
"securityIdentifier", "sIDHistory", "subClassOf", "systemFlags", "trustPartner", "trustDirection",
s4-drs: fixed typo for uSNCreated This broke DRS replication from samba to windows Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-21 21:24:18 +11:00
"trustType", "trustAttributes", "userAccountControl", "uSNChanged", "uSNCreated", "whenCreated",
s4-dsdb: added replmd_delete, based on Eduardos work This implements repmld_delete(), which handles the meta_data updates for an object when deleting. A delete gets mapped to a combination of a rename followed by a modify request, which has the effect of moving the object into the Deleted Objects container. This is based on the code from Eduardo Lima <eduardoll@gmail.com>. Eduardo's code was modified to take account of the linked attributes changes that Andrew and I have been working on. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-16 17:24:21 +11:00
NULL};
uint32_t el_count = 0;
int i;
tmp_ctx = talloc_new(ldb);
old_dn = ldb_dn_copy(tmp_ctx, req->op.del.dn);
/* we need the complete msg off disk, so we can work out which
attributes need to be removed */
ret = dsdb_module_search_dn(module, tmp_ctx, &res, old_dn, NULL,
DSDB_SEARCH_SHOW_DELETED |
DSDB_SEARCH_REVEAL_INTERNALS |
DSDB_SEARCH_SHOW_DN_IN_STORAGE_FORMAT);
if (ret != LDB_SUCCESS) {
talloc_free(tmp_ctx);
return ret;
}
old_msg = res->msgs[0];
/* work out where we will be renaming this object to */
ret = dsdb_get_deleted_objects_dn(ldb, tmp_ctx, old_dn, &new_dn);
if (ret != LDB_SUCCESS) {
/* this is probably an attempted delete on a partition
* that doesn't allow delete operations, such as the
* schema partition */
ldb_asprintf_errstring(ldb, "No Deleted Objects container for DN %s",
ldb_dn_get_linearized(old_dn));
talloc_free(tmp_ctx);
return LDB_ERR_UNWILLING_TO_PERFORM;
}
rdn_name = ldb_dn_get_rdn_name(old_dn);
rdn_value = ldb_dn_get_rdn_val(old_dn);
/* get the objects GUID from the search we just did */
guid = samdb_result_guid(old_msg, "objectGUID");
/* Add a formatted child */
retb = ldb_dn_add_child_fmt(new_dn, "%s=%s\\0ADEL:%s",
rdn_name,
rdn_value->data,
GUID_string(tmp_ctx, &guid));
if (!retb) {
DEBUG(0,(__location__ ": Unable to add a formatted child to dn: %s",
ldb_dn_get_linearized(new_dn)));
talloc_free(tmp_ctx);
return LDB_ERR_OPERATIONS_ERROR;
}
/*
now we need to modify the object in the following ways:
- add isDeleted=TRUE
- update rDN and name, with new rDN
- remove linked attributes
- remove objectCategory and sAMAccountType
- remove attribs not on the preserved list
- preserved if in above list, or is rDN
- remove all linked attribs from this object
- remove all links from other objects to this object
- add lastKnownParent
- update replPropertyMetaData?
see MS-ADTS "Tombstone Requirements" section 3.1.1.5.5.1.1
*/
msg = ldb_msg_new(tmp_ctx);
if (msg == NULL) {
ldb_module_oom(module);
talloc_free(tmp_ctx);
return LDB_ERR_OPERATIONS_ERROR;
}
s4-dsdb: do the rename after the modify in replmd_delete This makes updating the links a bit easier
2009-12-17 23:00:16 +11:00
msg->dn = old_dn;
s4-dsdb: added replmd_delete, based on Eduardos work This implements repmld_delete(), which handles the meta_data updates for an object when deleting. A delete gets mapped to a combination of a rename followed by a modify request, which has the effect of moving the object into the Deleted Objects container. This is based on the code from Eduardo Lima <eduardoll@gmail.com>. Eduardo's code was modified to take account of the linked attributes changes that Andrew and I have been working on. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-16 17:24:21 +11:00
ret = ldb_msg_add_string(msg, "isDeleted", "TRUE");
if (ret != LDB_SUCCESS) {
DEBUG(0,(__location__ ": Failed to add isDeleted string to the msg\n"));
ldb_module_oom(module);
talloc_free(tmp_ctx);
return ret;
}
msg->elements[el_count++].flags = LDB_FLAG_MOD_ADD;
s4-drs: isRecycled only exists in FL W2K8-R2 Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-21 21:27:16 +11:00
/* we also mark it as recycled, meaning this object can't be
recovered (we are stripping its attributes) */
if (dsdb_functional_level(ldb) >= DS_DOMAIN_FUNCTION_2008_R2) {
ret = ldb_msg_add_string(msg, "isRecycled", "TRUE");
if (ret != LDB_SUCCESS) {
DEBUG(0,(__location__ ": Failed to add isRecycled string to the msg\n"));
ldb_module_oom(module);
talloc_free(tmp_ctx);
return ret;
}
msg->elements[el_count++].flags = LDB_FLAG_MOD_ADD;
}
s4-dsdb: added replmd_delete, based on Eduardos work This implements repmld_delete(), which handles the meta_data updates for an object when deleting. A delete gets mapped to a combination of a rename followed by a modify request, which has the effect of moving the object into the Deleted Objects container. This is based on the code from Eduardo Lima <eduardoll@gmail.com>. Eduardo's code was modified to take account of the linked attributes changes that Andrew and I have been working on. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-16 17:24:21 +11:00
/* we need the storage form of the parent GUID */
ret = dsdb_module_search_dn(module, tmp_ctx, &parent_res,
ldb_dn_get_parent(tmp_ctx, old_dn), NULL,
s4-dsdb: store full meta data from DRS for linked attributes Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-18 20:57:21 +11:00
DSDB_SEARCH_SHOW_DN_IN_STORAGE_FORMAT |
DSDB_SEARCH_REVEAL_INTERNALS);
s4-dsdb: added replmd_delete, based on Eduardos work This implements repmld_delete(), which handles the meta_data updates for an object when deleting. A delete gets mapped to a combination of a rename followed by a modify request, which has the effect of moving the object into the Deleted Objects container. This is based on the code from Eduardo Lima <eduardoll@gmail.com>. Eduardo's code was modified to take account of the linked attributes changes that Andrew and I have been working on. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-16 17:24:21 +11:00
if (ret != LDB_SUCCESS) {
talloc_free(tmp_ctx);
return ret;
}
ret = ldb_msg_add_steal_string(msg, "lastKnownParent",
ldb_dn_get_extended_linearized(tmp_ctx, parent_res->msgs[0]->dn, 1));
if (ret != LDB_SUCCESS) {
DEBUG(0,(__location__ ": Failed to add lastKnownParent string to the msg\n"));
ldb_module_oom(module);
talloc_free(tmp_ctx);
return ret;
}
msg->elements[el_count++].flags = LDB_FLAG_MOD_ADD;
/* work out which of the old attributes we will be removing */
for (i=0; i<old_msg->num_elements; i++) {
const struct dsdb_attribute *sa;
el = &old_msg->elements[i];
sa = dsdb_attribute_by_lDAPDisplayName(schema, el->name);
if (!sa) {
talloc_free(tmp_ctx);
return LDB_ERR_OPERATIONS_ERROR;
}
if (ldb_attr_cmp(el->name, rdn_name) == 0) {
/* don't remove the rDN */
continue;
}
s4-drs: don't try to remove backlinks directly backlinks need to be removed as a side effect of removing the forward link Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-21 21:28:04 +11:00
if (sa->linkID && sa->linkID & 1) {
s4-dsdb: added replmd_delete, based on Eduardos work This implements repmld_delete(), which handles the meta_data updates for an object when deleting. A delete gets mapped to a combination of a rename followed by a modify request, which has the effect of moving the object into the Deleted Objects container. This is based on the code from Eduardo Lima <eduardoll@gmail.com>. Eduardo's code was modified to take account of the linked attributes changes that Andrew and I have been working on. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-16 17:24:21 +11:00
ret = replmd_delete_remove_link(module, schema, old_dn, el, sa);
if (ret != LDB_SUCCESS) {
talloc_free(tmp_ctx);
return LDB_ERR_OPERATIONS_ERROR;
}
s4-drs: don't try to remove backlinks directly backlinks need to be removed as a side effect of removing the forward link Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-21 21:28:04 +11:00
continue;
s4-dsdb: added replmd_delete, based on Eduardos work This implements repmld_delete(), which handles the meta_data updates for an object when deleting. A delete gets mapped to a combination of a rename followed by a modify request, which has the effect of moving the object into the Deleted Objects container. This is based on the code from Eduardo Lima <eduardoll@gmail.com>. Eduardo's code was modified to take account of the linked attributes changes that Andrew and I have been working on. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-16 17:24:21 +11:00
}
if (!sa->linkID && ldb_attr_in_list(preserved_attrs, el->name)) {
continue;
}
ret = ldb_msg_add_empty(msg, el->name, LDB_FLAG_MOD_DELETE, &el);
if (ret != LDB_SUCCESS) {
talloc_free(tmp_ctx);
ldb_module_oom(module);
return ret;
}
}
/* work out what the new rdn value is, for updating the
rDN and name fields */
new_rdn_value = ldb_dn_get_rdn_val(new_dn);
ret = ldb_msg_add_value(msg, rdn_name, new_rdn_value, &el);
if (ret != LDB_SUCCESS) {
talloc_free(tmp_ctx);
return ret;
}
el->flags = LDB_FLAG_MOD_REPLACE;
el = ldb_msg_find_element(old_msg, "name");
if (el) {
ret = ldb_msg_add_value(msg, "name", new_rdn_value, &el);
if (ret != LDB_SUCCESS) {
talloc_free(tmp_ctx);
return ret;
}
el->flags = LDB_FLAG_MOD_REPLACE;
}
s4-drs: use DSDB_FLAG_OWN_MODULE We need DRS driven replication changes to update replPropertyMetaData, so it needs to call into the repl_meta_data module logic Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-21 21:26:15 +11:00
ret = dsdb_module_modify(module, msg, DSDB_FLAG_OWN_MODULE);
if (ret != LDB_SUCCESS) {
s4-dsdb: added replmd_delete, based on Eduardos work This implements repmld_delete(), which handles the meta_data updates for an object when deleting. A delete gets mapped to a combination of a rename followed by a modify request, which has the effect of moving the object into the Deleted Objects container. This is based on the code from Eduardo Lima <eduardoll@gmail.com>. Eduardo's code was modified to take account of the linked attributes changes that Andrew and I have been working on. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-16 17:24:21 +11:00
ldb_asprintf_errstring(ldb, "replmd_delete: Failed to modify object %s in delete - %s",
ldb_dn_get_linearized(old_dn), ldb_errstring(ldb));
talloc_free(tmp_ctx);
return ret;
}
s4-dsdb: do the rename after the modify in replmd_delete This makes updating the links a bit easier
2009-12-17 23:00:16 +11:00
/* now rename onto the new DN */
ret = dsdb_module_rename(module, old_dn, new_dn, 0);
if (ret != LDB_SUCCESS){
DEBUG(0,(__location__ ": Failed to rename object from '%s' to '%s' - %s\n",
ldb_dn_get_linearized(old_dn),
ldb_dn_get_linearized(new_dn),
ldb_errstring(ldb)));
talloc_free(tmp_ctx);
return ret;
}
s4-dsdb: added replmd_delete, based on Eduardos work This implements repmld_delete(), which handles the meta_data updates for an object when deleting. A delete gets mapped to a combination of a rename followed by a modify request, which has the effect of moving the object into the Deleted Objects container. This is based on the code from Eduardo Lima <eduardoll@gmail.com>. Eduardo's code was modified to take account of the linked attributes changes that Andrew and I have been working on. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-16 17:24:21 +11:00
talloc_free(tmp_ctx);
return ldb_module_done(req, NULL, NULL, LDB_SUCCESS);
}
s4-repl: handle rename in repl_meta_data On a rename we need to update uSNChanged, and the max uSN for the partition
2009-09-14 13:13:12 -07:00
r20681: implement the DSDB_EXTENDED_REPLICATED_OBJECTS operation. the merging of existing objects is not implemented yet... there are a few ifdef REPLMD_FULL_ASYNC because we need to workarouns ldb's async infrastructure (which don't handle full async sub requests nicely) metze (This used to be commit da4ff0e7ccde47b3e092313ba22422350cf50f78)
2007-01-11 09:54:10 +00:00
static int replmd_replicated_request_error(struct replmd_replicated_request *ar, int ret)
{
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
return ret;
r20681: implement the DSDB_EXTENDED_REPLICATED_OBJECTS operation. the merging of existing objects is not implemented yet... there are a few ifdef REPLMD_FULL_ASYNC because we need to workarouns ldb's async infrastructure (which don't handle full async sub requests nicely) metze (This used to be commit da4ff0e7ccde47b3e092313ba22422350cf50f78)
2007-01-11 09:54:10 +00:00
}
static int replmd_replicated_request_werror(struct replmd_replicated_request *ar, WERROR status)
{
int ret = LDB_ERR_OTHER;
/* TODO: do some error mapping */
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
return ret;
r20681: implement the DSDB_EXTENDED_REPLICATED_OBJECTS operation. the merging of existing objects is not implemented yet... there are a few ifdef REPLMD_FULL_ASYNC because we need to workarouns ldb's async infrastructure (which don't handle full async sub requests nicely) metze (This used to be commit da4ff0e7ccde47b3e092313ba22422350cf50f78)
2007-01-11 09:54:10 +00:00
}
static int replmd_replicated_apply_add(struct replmd_replicated_request *ar)
{
Fix all other modules to use ldb_module.h instead of ldb_private.h The only 2 modules escaping the rule so far are rootdse and partitions
2009-01-30 16:31:19 -05:00
struct ldb_context *ldb;
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
struct ldb_request *change_req;
r25920: ndr: change NTSTAUS into enum ndr_err_code (samba4 callers) lib/messaging/ lib/registry/ lib/ldb-samba/ librpc/rpc/ auth/auth_winbind.c auth/gensec/ auth/kerberos/ dsdb/repl/ dsdb/samdb/ dsdb/schema/ torture/ cluster/ctdb/ kdc/ ntvfs/ipc/ torture/rap/ ntvfs/ utils/getntacl.c ntptr/ smb_server/ libcli/wrepl/ wrepl_server/ libcli/cldap/ libcli/dgram/ libcli/ldap/ libcli/raw/ libcli/nbt/ libnet/ winbind/ rpc_server/ metze (This used to be commit 6223c7fddc972687eb577e04fc1c8e0604c35435)
2007-11-09 19:24:51 +01:00
enum ndr_err_code ndr_err;
r20681: implement the DSDB_EXTENDED_REPLICATED_OBJECTS operation. the merging of existing objects is not implemented yet... there are a few ifdef REPLMD_FULL_ASYNC because we need to workarouns ldb's async infrastructure (which don't handle full async sub requests nicely) metze (This used to be commit da4ff0e7ccde47b3e092313ba22422350cf50f78)
2007-01-11 09:54:10 +00:00
struct ldb_message *msg;
struct replPropertyMetaDataBlob *md;
struct ldb_val md_value;
uint32_t i;
int ret;
r20726: - only add the rdn attribute and it's meta_data when the 'name' attribute is there - add the values for objectGUID and whenChanged inside the ldb module, so that the ldb module has only replicated attributes as input metze (This used to be commit 0ecb07e0526462529fb21cec30e789a9002b30a1)
2007-01-13 10:53:12 +00:00
/*
* TODO: check if the parent object exist
*/
/*
* TODO: handle the conflict case where an object with the
* same name exist
*/
Fix all other modules to use ldb_module.h instead of ldb_private.h The only 2 modules escaping the rule so far are rootdse and partitions
2009-01-30 16:31:19 -05:00
ldb = ldb_module_get_ctx(ar->module);
r20681: implement the DSDB_EXTENDED_REPLICATED_OBJECTS operation. the merging of existing objects is not implemented yet... there are a few ifdef REPLMD_FULL_ASYNC because we need to workarouns ldb's async infrastructure (which don't handle full async sub requests nicely) metze (This used to be commit da4ff0e7ccde47b3e092313ba22422350cf50f78)
2007-01-11 09:54:10 +00:00
msg = ar->objs->objects[ar->index_current].msg;
md = ar->objs->objects[ar->index_current].meta_data;
s4:dsdb Use 'partition modified' information to update @REPLCHANGED This major rework of repl_meta_data changes it from using a static list of partitions to a dynamic list created from the controls placed on returned ldb results. To process these in one place, the similar but distinct callbacks are combined into a single replmd_op_callback(), which handles both the 'normal operation' and 'inbound replication' case. This allows new partitions to be created, and replication events for these new partitions to be scheduled immediately. Also in this commit: We no longer specify the target partition for new or modified objects - instead we allow the partitions module to use the DN as normal. THis avoids the issue where we would create two partition head records. Andrew Bartlett
2009-10-16 16:20:15 +11:00
ret = ldb_sequence_number(ldb, LDB_SEQ_NEXT, &ar->seq_num);
r20681: implement the DSDB_EXTENDED_REPLICATED_OBJECTS operation. the merging of existing objects is not implemented yet... there are a few ifdef REPLMD_FULL_ASYNC because we need to workarouns ldb's async infrastructure (which don't handle full async sub requests nicely) metze (This used to be commit da4ff0e7ccde47b3e092313ba22422350cf50f78)
2007-01-11 09:54:10 +00:00
if (ret != LDB_SUCCESS) {
return replmd_replicated_request_error(ar, ret);
}
r20726: - only add the rdn attribute and it's meta_data when the 'name' attribute is there - add the values for objectGUID and whenChanged inside the ldb module, so that the ldb module has only replicated attributes as input metze (This used to be commit 0ecb07e0526462529fb21cec30e789a9002b30a1)
2007-01-13 10:53:12 +00:00
ret = ldb_msg_add_value(msg, "objectGUID", &ar->objs->objects[ar->index_current].guid_value, NULL);
if (ret != LDB_SUCCESS) {
return replmd_replicated_request_error(ar, ret);
}
ret = ldb_msg_add_string(msg, "whenChanged", ar->objs->objects[ar->index_current].when_changed);
if (ret != LDB_SUCCESS) {
return replmd_replicated_request_error(ar, ret);
}
s4:dsdb Use 'partition modified' information to update @REPLCHANGED This major rework of repl_meta_data changes it from using a static list of partitions to a dynamic list created from the controls placed on returned ldb results. To process these in one place, the similar but distinct callbacks are combined into a single replmd_op_callback(), which handles both the 'normal operation' and 'inbound replication' case. This allows new partitions to be created, and replication events for these new partitions to be scheduled immediately. Also in this commit: We no longer specify the target partition for new or modified objects - instead we allow the partitions module to use the DN as normal. THis avoids the issue where we would create two partition head records. Andrew Bartlett
2009-10-16 16:20:15 +11:00
ret = samdb_msg_add_uint64(ldb, msg, msg, "uSNCreated", ar->seq_num);
r20681: implement the DSDB_EXTENDED_REPLICATED_OBJECTS operation. the merging of existing objects is not implemented yet... there are a few ifdef REPLMD_FULL_ASYNC because we need to workarouns ldb's async infrastructure (which don't handle full async sub requests nicely) metze (This used to be commit da4ff0e7ccde47b3e092313ba22422350cf50f78)
2007-01-11 09:54:10 +00:00
if (ret != LDB_SUCCESS) {
return replmd_replicated_request_error(ar, ret);
}
s4:dsdb Use 'partition modified' information to update @REPLCHANGED This major rework of repl_meta_data changes it from using a static list of partitions to a dynamic list created from the controls placed on returned ldb results. To process these in one place, the similar but distinct callbacks are combined into a single replmd_op_callback(), which handles both the 'normal operation' and 'inbound replication' case. This allows new partitions to be created, and replication events for these new partitions to be scheduled immediately. Also in this commit: We no longer specify the target partition for new or modified objects - instead we allow the partitions module to use the DN as normal. THis avoids the issue where we would create two partition head records. Andrew Bartlett
2009-10-16 16:20:15 +11:00
ret = samdb_msg_add_uint64(ldb, msg, msg, "uSNChanged", ar->seq_num);
s4-repl: keep a @REPLCHANGED object on each partition This object tracks the highest uSN in each partition. It will be used to allow us to efficiently detect changes in a partition for sending DsReplicaSync messages to our replication partners.
2009-09-13 14:24:08 +10:00
if (ret != LDB_SUCCESS) {
return replmd_replicated_request_error(ar, ret);
}
s4-drs: ignore zero value elements in DRS add operations w2k8 sometimes sends us a new object via DRS with an attribute with no values
2009-09-22 20:56:32 -07:00
/* remove any message elements that have zero values */
for (i=0; i<msg->num_elements; i++) {
s4-dsdb: minor cleanup in DRS replicated objects code
2009-12-19 12:23:22 +11:00
struct ldb_message_element *el = &msg->elements[i];
if (el->num_values == 0) {
s4-drs: ignore zero value elements in DRS add operations w2k8 sometimes sends us a new object via DRS with an attribute with no values
2009-09-22 20:56:32 -07:00
DEBUG(4,(__location__ ": Removing attribute %s with num_values==0\n",
s4-dsdb: minor cleanup in DRS replicated objects code
2009-12-19 12:23:22 +11:00
el->name));
memmove(el, el+1, sizeof(*el)*(msg->num_elements - (i+1)));
s4-drs: ignore zero value elements in DRS add operations w2k8 sometimes sends us a new object via DRS with an attribute with no values
2009-09-22 20:56:32 -07:00
msg->num_elements--;
i--;
s4-dsdb: minor cleanup in DRS replicated objects code
2009-12-19 12:23:22 +11:00
continue;
s4-drs: ignore zero value elements in DRS add operations w2k8 sometimes sends us a new object via DRS with an attribute with no values
2009-09-22 20:56:32 -07:00
}
}
r20968: - add functions to sort the meta data and attribute arrays - we should use them before we store records to disk metze (This used to be commit a5200ef0cae5e8b0cedf196c9d76afc46e08c316)
2007-01-23 10:21:14 +00:00
/*
* the meta data array is already sorted by the caller
*/
r20681: implement the DSDB_EXTENDED_REPLICATED_OBJECTS operation. the merging of existing objects is not implemented yet... there are a few ifdef REPLMD_FULL_ASYNC because we need to workarouns ldb's async infrastructure (which don't handle full async sub requests nicely) metze (This used to be commit da4ff0e7ccde47b3e092313ba22422350cf50f78)
2007-01-11 09:54:10 +00:00
for (i=0; i < md->ctr.ctr1.count; i++) {
s4:dsdb Use 'partition modified' information to update @REPLCHANGED This major rework of repl_meta_data changes it from using a static list of partitions to a dynamic list created from the controls placed on returned ldb results. To process these in one place, the similar but distinct callbacks are combined into a single replmd_op_callback(), which handles both the 'normal operation' and 'inbound replication' case. This allows new partitions to be created, and replication events for these new partitions to be scheduled immediately. Also in this commit: We no longer specify the target partition for new or modified objects - instead we allow the partitions module to use the DN as normal. THis avoids the issue where we would create two partition head records. Andrew Bartlett
2009-10-16 16:20:15 +11:00
md->ctr.ctr1.array[i].local_usn = ar->seq_num;
r20681: implement the DSDB_EXTENDED_REPLICATED_OBJECTS operation. the merging of existing objects is not implemented yet... there are a few ifdef REPLMD_FULL_ASYNC because we need to workarouns ldb's async infrastructure (which don't handle full async sub requests nicely) metze (This used to be commit da4ff0e7ccde47b3e092313ba22422350cf50f78)
2007-01-11 09:54:10 +00:00
}
r26638: libndr: Require explicitly specifying iconv_convenience for ndr_struct_push_blob(). (This used to be commit 61ad78ac98937ef7a9aa32075a91a1c95b7606b3)
2008-01-01 22:05:05 -06:00
ndr_err = ndr_push_struct_blob(&md_value, msg,
Fix all other modules to use ldb_module.h instead of ldb_private.h The only 2 modules escaping the rule so far are rootdse and partitions
2009-01-30 16:31:19 -05:00
lp_iconv_convenience(ldb_get_opaque(ldb, "loadparm")),
r26638: libndr: Require explicitly specifying iconv_convenience for ndr_struct_push_blob(). (This used to be commit 61ad78ac98937ef7a9aa32075a91a1c95b7606b3)
2008-01-01 22:05:05 -06:00
md,
r25920: ndr: change NTSTAUS into enum ndr_err_code (samba4 callers) lib/messaging/ lib/registry/ lib/ldb-samba/ librpc/rpc/ auth/auth_winbind.c auth/gensec/ auth/kerberos/ dsdb/repl/ dsdb/samdb/ dsdb/schema/ torture/ cluster/ctdb/ kdc/ ntvfs/ipc/ torture/rap/ ntvfs/ utils/getntacl.c ntptr/ smb_server/ libcli/wrepl/ wrepl_server/ libcli/cldap/ libcli/dgram/ libcli/ldap/ libcli/raw/ libcli/nbt/ libnet/ winbind/ rpc_server/ metze (This used to be commit 6223c7fddc972687eb577e04fc1c8e0604c35435)
2007-11-09 19:24:51 +01:00
(ndr_push_flags_fn_t)ndr_push_replPropertyMetaDataBlob);
if (!NDR_ERR_CODE_IS_SUCCESS(ndr_err)) {
NTSTATUS nt_status = ndr_map_error2ntstatus(ndr_err);
r20681: implement the DSDB_EXTENDED_REPLICATED_OBJECTS operation. the merging of existing objects is not implemented yet... there are a few ifdef REPLMD_FULL_ASYNC because we need to workarouns ldb's async infrastructure (which don't handle full async sub requests nicely) metze (This used to be commit da4ff0e7ccde47b3e092313ba22422350cf50f78)
2007-01-11 09:54:10 +00:00
return replmd_replicated_request_werror(ar, ntstatus_to_werror(nt_status));
}
ret = ldb_msg_add_value(msg, "replPropertyMetaData", &md_value, NULL);
if (ret != LDB_SUCCESS) {
return replmd_replicated_request_error(ar, ret);
}
r20968: - add functions to sort the meta data and attribute arrays - we should use them before we store records to disk metze (This used to be commit a5200ef0cae5e8b0cedf196c9d76afc46e08c316)
2007-01-23 10:21:14 +00:00
replmd_ldb_message_sort(msg, ar->schema);
Display ldif formatted versions of all DRS changes at log level 4 This helps a lot with debugging the DRS replication code
2009-09-02 11:20:26 +10:00
if (DEBUGLVL(4)) {
char *s = ldb_ldif_message_string(ldb, ar, LDB_CHANGETYPE_ADD, msg);
DEBUG(4, ("DRS replication add message:\n%s\n", s));
talloc_free(s);
}
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
ret = ldb_build_add_req(&change_req,
Fix all other modules to use ldb_module.h instead of ldb_private.h The only 2 modules escaping the rule so far are rootdse and partitions
2009-01-30 16:31:19 -05:00
ldb,
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
ar,
r20681: implement the DSDB_EXTENDED_REPLICATED_OBJECTS operation. the merging of existing objects is not implemented yet... there are a few ifdef REPLMD_FULL_ASYNC because we need to workarouns ldb's async infrastructure (which don't handle full async sub requests nicely) metze (This used to be commit da4ff0e7ccde47b3e092313ba22422350cf50f78)
2007-01-11 09:54:10 +00:00
msg,
s4:dsdb: passdown DSDB_CONTROL_REPLICATED_UPDATE_OID for replicated updates We need to make sure replicated updates are handled differently in some situations, e.g. we should bypass the schema checks. metze
2008-09-27 02:27:54 +02:00
ar->controls,
r20681: implement the DSDB_EXTENDED_REPLICATED_OBJECTS operation. the merging of existing objects is not implemented yet... there are a few ifdef REPLMD_FULL_ASYNC because we need to workarouns ldb's async infrastructure (which don't handle full async sub requests nicely) metze (This used to be commit da4ff0e7ccde47b3e092313ba22422350cf50f78)
2007-01-11 09:54:10 +00:00
ar,
s4:dsdb Use 'partition modified' information to update @REPLCHANGED This major rework of repl_meta_data changes it from using a static list of partitions to a dynamic list created from the controls placed on returned ldb results. To process these in one place, the similar but distinct callbacks are combined into a single replmd_op_callback(), which handles both the 'normal operation' and 'inbound replication' case. This allows new partitions to be created, and replication events for these new partitions to be scheduled immediately. Also in this commit: We no longer specify the target partition for new or modified objects - instead we allow the partitions module to use the DN as normal. THis avoids the issue where we would create two partition head records. Andrew Bartlett
2009-10-16 16:20:15 +11:00
replmd_op_callback,
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
ar->req);
r20681: implement the DSDB_EXTENDED_REPLICATED_OBJECTS operation. the merging of existing objects is not implemented yet... there are a few ifdef REPLMD_FULL_ASYNC because we need to workarouns ldb's async infrastructure (which don't handle full async sub requests nicely) metze (This used to be commit da4ff0e7ccde47b3e092313ba22422350cf50f78)
2007-01-11 09:54:10 +00:00
if (ret != LDB_SUCCESS) return replmd_replicated_request_error(ar, ret);
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
return ldb_next_request(ar->module, change_req);
r20681: implement the DSDB_EXTENDED_REPLICATED_OBJECTS operation. the merging of existing objects is not implemented yet... there are a few ifdef REPLMD_FULL_ASYNC because we need to workarouns ldb's async infrastructure (which don't handle full async sub requests nicely) metze (This used to be commit da4ff0e7ccde47b3e092313ba22422350cf50f78)
2007-01-11 09:54:10 +00:00
}
s4-dsdb: store full meta data from DRS for linked attributes Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-18 20:57:21 +11:00
/*
return true if an update is newer than an existing entry
see section 5.11 of MS-ADTS
*/
static bool replmd_update_is_newer(const struct GUID *current_invocation_id,
const struct GUID *update_invocation_id,
uint32_t current_version,
uint32_t update_version,
NTTIME current_change_time,
NTTIME update_change_time)
r20727: implement basic merging of replicated objects when it already exist in the ldb metze (This used to be commit 262e42123d0bca77560fbb5a33c13a9c275ba3ec)
2007-01-13 11:17:27 +00:00
{
s4-dsdb: store full meta data from DRS for linked attributes Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-18 20:57:21 +11:00
if (update_version != current_version) {
return update_version > current_version;
r20727: implement basic merging of replicated objects when it already exist in the ldb metze (This used to be commit 262e42123d0bca77560fbb5a33c13a9c275ba3ec)
2007-01-13 11:17:27 +00:00
}
s4-dsdb: store full meta data from DRS for linked attributes Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-18 20:57:21 +11:00
if (update_change_time > current_change_time) {
return true;
r20727: implement basic merging of replicated objects when it already exist in the ldb metze (This used to be commit 262e42123d0bca77560fbb5a33c13a9c275ba3ec)
2007-01-13 11:17:27 +00:00
}
s4-dsdb: store full meta data from DRS for linked attributes Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-18 20:57:21 +11:00
if (update_change_time == current_change_time) {
return GUID_compare(update_invocation_id, current_invocation_id) > 0;
r20727: implement basic merging of replicated objects when it already exist in the ldb metze (This used to be commit 262e42123d0bca77560fbb5a33c13a9c275ba3ec)
2007-01-13 11:17:27 +00:00
}
s4-dsdb: store full meta data from DRS for linked attributes Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-18 20:57:21 +11:00
return false;
}
r20727: implement basic merging of replicated objects when it already exist in the ldb metze (This used to be commit 262e42123d0bca77560fbb5a33c13a9c275ba3ec)
2007-01-13 11:17:27 +00:00
s4-dsdb: store full meta data from DRS for linked attributes Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-18 20:57:21 +11:00
static bool replmd_replPropertyMetaData1_is_newer(struct replPropertyMetaData1 *cur_m,
struct replPropertyMetaData1 *new_m)
{
return replmd_update_is_newer(&cur_m->originating_invocation_id,
&new_m->originating_invocation_id,
cur_m->version,
new_m->version,
cur_m->originating_change_time,
new_m->originating_change_time);
r20727: implement basic merging of replicated objects when it already exist in the ldb metze (This used to be commit 262e42123d0bca77560fbb5a33c13a9c275ba3ec)
2007-01-13 11:17:27 +00:00
}
r20681: implement the DSDB_EXTENDED_REPLICATED_OBJECTS operation. the merging of existing objects is not implemented yet... there are a few ifdef REPLMD_FULL_ASYNC because we need to workarouns ldb's async infrastructure (which don't handle full async sub requests nicely) metze (This used to be commit da4ff0e7ccde47b3e092313ba22422350cf50f78)
2007-01-11 09:54:10 +00:00
static int replmd_replicated_apply_merge(struct replmd_replicated_request *ar)
{
Fix all other modules to use ldb_module.h instead of ldb_private.h The only 2 modules escaping the rule so far are rootdse and partitions
2009-01-30 16:31:19 -05:00
struct ldb_context *ldb;
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
struct ldb_request *change_req;
r25920: ndr: change NTSTAUS into enum ndr_err_code (samba4 callers) lib/messaging/ lib/registry/ lib/ldb-samba/ librpc/rpc/ auth/auth_winbind.c auth/gensec/ auth/kerberos/ dsdb/repl/ dsdb/samdb/ dsdb/schema/ torture/ cluster/ctdb/ kdc/ ntvfs/ipc/ torture/rap/ ntvfs/ utils/getntacl.c ntptr/ smb_server/ libcli/wrepl/ wrepl_server/ libcli/cldap/ libcli/dgram/ libcli/ldap/ libcli/raw/ libcli/nbt/ libnet/ winbind/ rpc_server/ metze (This used to be commit 6223c7fddc972687eb577e04fc1c8e0604c35435)
2007-11-09 19:24:51 +01:00
enum ndr_err_code ndr_err;
r20727: implement basic merging of replicated objects when it already exist in the ldb metze (This used to be commit 262e42123d0bca77560fbb5a33c13a9c275ba3ec)
2007-01-13 11:17:27 +00:00
struct ldb_message *msg;
struct replPropertyMetaDataBlob *rmd;
struct replPropertyMetaDataBlob omd;
const struct ldb_val *omd_value;
struct replPropertyMetaDataBlob nmd;
struct ldb_val nmd_value;
uint32_t i,j,ni=0;
uint32_t removed_attrs = 0;
int ret;
Fix all other modules to use ldb_module.h instead of ldb_private.h The only 2 modules escaping the rule so far are rootdse and partitions
2009-01-30 16:31:19 -05:00
ldb = ldb_module_get_ctx(ar->module);
r20727: implement basic merging of replicated objects when it already exist in the ldb metze (This used to be commit 262e42123d0bca77560fbb5a33c13a9c275ba3ec)
2007-01-13 11:17:27 +00:00
msg = ar->objs->objects[ar->index_current].msg;
rmd = ar->objs->objects[ar->index_current].meta_data;
ZERO_STRUCT(omd);
omd.version = 1;
/*
added basic support for rename in DRS replication Added simple DRS rename support in replication. This should be done async, and I'm not sure if we should also do any repl data updates to indicate the rename. I'm still learning how this stuff works, but at least this allows a rename on a DC to propogate correctly
2009-08-19 15:53:19 +10:00
* TODO: check repl data is correct after a rename
r20727: implement basic merging of replicated objects when it already exist in the ldb metze (This used to be commit 262e42123d0bca77560fbb5a33c13a9c275ba3ec)
2007-01-13 11:17:27 +00:00
*/
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
if (ldb_dn_compare(msg->dn, ar->search_msg->dn) != 0) {
added basic support for rename in DRS replication Added simple DRS rename support in replication. This should be done async, and I'm not sure if we should also do any repl data updates to indicate the rename. I'm still learning how this stuff works, but at least this allows a rename on a DC to propogate correctly
2009-08-19 15:53:19 +10:00
ldb_debug(ldb, LDB_DEBUG_TRACE, "replmd_replicated_request rename %s => %s\n",
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
ldb_dn_get_linearized(ar->search_msg->dn),
r20727: implement basic merging of replicated objects when it already exist in the ldb metze (This used to be commit 262e42123d0bca77560fbb5a33c13a9c275ba3ec)
2007-01-13 11:17:27 +00:00
ldb_dn_get_linearized(msg->dn));
s4-drs: use dsdb_module_rename() Use the new dsdb_module_rename() for DRS rename handling, instead of ldb_rename(). This stops us going to the top of the module stack on a rename.
2009-12-28 17:20:13 +11:00
if (dsdb_module_rename(ar->module,
ar->search_msg->dn, msg->dn,
DSDB_FLAG_OWN_MODULE) != LDB_SUCCESS) {
added basic support for rename in DRS replication Added simple DRS rename support in replication. This should be done async, and I'm not sure if we should also do any repl data updates to indicate the rename. I'm still learning how this stuff works, but at least this allows a rename on a DC to propogate correctly
2009-08-19 15:53:19 +10:00
ldb_debug(ldb, LDB_DEBUG_FATAL, "replmd_replicated_request rename %s => %s failed - %s\n",
ldb_dn_get_linearized(ar->search_msg->dn),
ldb_dn_get_linearized(msg->dn),
ldb_errstring(ldb));
return replmd_replicated_request_werror(ar, WERR_DS_DRA_DB_ERROR);
}
r20727: implement basic merging of replicated objects when it already exist in the ldb metze (This used to be commit 262e42123d0bca77560fbb5a33c13a9c275ba3ec)
2007-01-13 11:17:27 +00:00
}
/* find existing meta data */
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
omd_value = ldb_msg_find_ldb_val(ar->search_msg, "replPropertyMetaData");
r20727: implement basic merging of replicated objects when it already exist in the ldb metze (This used to be commit 262e42123d0bca77560fbb5a33c13a9c275ba3ec)
2007-01-13 11:17:27 +00:00
if (omd_value) {
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
ndr_err = ndr_pull_struct_blob(omd_value, ar,
Fix all other modules to use ldb_module.h instead of ldb_private.h The only 2 modules escaping the rule so far are rootdse and partitions
2009-01-30 16:31:19 -05:00
lp_iconv_convenience(ldb_get_opaque(ldb, "loadparm")), &omd,
r25920: ndr: change NTSTAUS into enum ndr_err_code (samba4 callers) lib/messaging/ lib/registry/ lib/ldb-samba/ librpc/rpc/ auth/auth_winbind.c auth/gensec/ auth/kerberos/ dsdb/repl/ dsdb/samdb/ dsdb/schema/ torture/ cluster/ctdb/ kdc/ ntvfs/ipc/ torture/rap/ ntvfs/ utils/getntacl.c ntptr/ smb_server/ libcli/wrepl/ wrepl_server/ libcli/cldap/ libcli/dgram/ libcli/ldap/ libcli/raw/ libcli/nbt/ libnet/ winbind/ rpc_server/ metze (This used to be commit 6223c7fddc972687eb577e04fc1c8e0604c35435)
2007-11-09 19:24:51 +01:00
(ndr_pull_flags_fn_t)ndr_pull_replPropertyMetaDataBlob);
if (!NDR_ERR_CODE_IS_SUCCESS(ndr_err)) {
NTSTATUS nt_status = ndr_map_error2ntstatus(ndr_err);
r20727: implement basic merging of replicated objects when it already exist in the ldb metze (This used to be commit 262e42123d0bca77560fbb5a33c13a9c275ba3ec)
2007-01-13 11:17:27 +00:00
return replmd_replicated_request_werror(ar, ntstatus_to_werror(nt_status));
}
if (omd.version != 1) {
return replmd_replicated_request_werror(ar, WERR_DS_DRA_INTERNAL_ERROR);
}
}
ZERO_STRUCT(nmd);
nmd.version = 1;
nmd.ctr.ctr1.count = omd.ctr.ctr1.count + rmd->ctr.ctr1.count;
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
nmd.ctr.ctr1.array = talloc_array(ar,
r20727: implement basic merging of replicated objects when it already exist in the ldb metze (This used to be commit 262e42123d0bca77560fbb5a33c13a9c275ba3ec)
2007-01-13 11:17:27 +00:00
struct replPropertyMetaData1,
nmd.ctr.ctr1.count);
if (!nmd.ctr.ctr1.array) return replmd_replicated_request_werror(ar, WERR_NOMEM);
/* first copy the old meta data */
for (i=0; i < omd.ctr.ctr1.count; i++) {
nmd.ctr.ctr1.array[ni] = omd.ctr.ctr1.array[i];
ni++;
}
/* now merge in the new meta data */
for (i=0; i < rmd->ctr.ctr1.count; i++) {
bool found = false;
for (j=0; j < ni; j++) {
s4-dsdb: store full meta data from DRS for linked attributes Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-18 20:57:21 +11:00
bool cmp;
r20727: implement basic merging of replicated objects when it already exist in the ldb metze (This used to be commit 262e42123d0bca77560fbb5a33c13a9c275ba3ec)
2007-01-13 11:17:27 +00:00
if (rmd->ctr.ctr1.array[i].attid != nmd.ctr.ctr1.array[j].attid) {
continue;
}
s4-dsdb: store full meta data from DRS for linked attributes Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-18 20:57:21 +11:00
cmp = replmd_replPropertyMetaData1_is_newer(&nmd.ctr.ctr1.array[j],
&rmd->ctr.ctr1.array[i]);
if (cmp) {
r20727: implement basic merging of replicated objects when it already exist in the ldb metze (This used to be commit 262e42123d0bca77560fbb5a33c13a9c275ba3ec)
2007-01-13 11:17:27 +00:00
/* replace the entry */
nmd.ctr.ctr1.array[j] = rmd->ctr.ctr1.array[i];
found = true;
break;
}
s4-dsdb: store full meta data from DRS for linked attributes Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-18 20:57:21 +11:00
DEBUG(1,("Discarding older DRS attribute update to %s on %s from %s\n",
msg->elements[i-removed_attrs].name,
ldb_dn_get_linearized(msg->dn),
GUID_string(ar, &rmd->ctr.ctr1.array[i].originating_invocation_id)));
r20727: implement basic merging of replicated objects when it already exist in the ldb metze (This used to be commit 262e42123d0bca77560fbb5a33c13a9c275ba3ec)
2007-01-13 11:17:27 +00:00
/* we don't want to apply this change so remove the attribute */
ldb_msg_remove_element(msg, &msg->elements[i-removed_attrs]);
removed_attrs++;
found = true;
break;
}
if (found) continue;
nmd.ctr.ctr1.array[ni] = rmd->ctr.ctr1.array[i];
ni++;
}
/*
* finally correct the size of the meta_data array
*/
nmd.ctr.ctr1.count = ni;
/*
* the rdn attribute (the alias for the name attribute),
* 'cn' for most objects is the last entry in the meta data array
* we have stored
*
r20968: - add functions to sort the meta data and attribute arrays - we should use them before we store records to disk metze (This used to be commit a5200ef0cae5e8b0cedf196c9d76afc46e08c316)
2007-01-23 10:21:14 +00:00
* sort the new meta data array
r20727: implement basic merging of replicated objects when it already exist in the ldb metze (This used to be commit 262e42123d0bca77560fbb5a33c13a9c275ba3ec)
2007-01-13 11:17:27 +00:00
*/
s4-drs: fixed sorting of replPropertyMetaData This also ensures we add the SHOW_DELETED control on searches for old replPropertyMetaData attributes
2009-09-24 16:50:59 -07:00
ret = replmd_replPropertyMetaDataCtr1_sort(&nmd.ctr.ctr1, ar->schema, msg->dn);
if (ret != LDB_SUCCESS) {
return ret;
r20727: implement basic merging of replicated objects when it already exist in the ldb metze (This used to be commit 262e42123d0bca77560fbb5a33c13a9c275ba3ec)
2007-01-13 11:17:27 +00:00
}
/*
* check if some replicated attributes left, otherwise skip the ldb_modify() call
*/
if (msg->num_elements == 0) {
Fix all other modules to use ldb_module.h instead of ldb_private.h The only 2 modules escaping the rule so far are rootdse and partitions
2009-01-30 16:31:19 -05:00
ldb_debug(ldb, LDB_DEBUG_TRACE, "replmd_replicated_apply_merge[%u]: skip replace\n",
r20727: implement basic merging of replicated objects when it already exist in the ldb metze (This used to be commit 262e42123d0bca77560fbb5a33c13a9c275ba3ec)
2007-01-13 11:17:27 +00:00
ar->index_current);
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
ar->index_current++;
return replmd_replicated_apply_next(ar);
r20727: implement basic merging of replicated objects when it already exist in the ldb metze (This used to be commit 262e42123d0bca77560fbb5a33c13a9c275ba3ec)
2007-01-13 11:17:27 +00:00
}
Fix all other modules to use ldb_module.h instead of ldb_private.h The only 2 modules escaping the rule so far are rootdse and partitions
2009-01-30 16:31:19 -05:00
ldb_debug(ldb, LDB_DEBUG_TRACE, "replmd_replicated_apply_merge[%u]: replace %u attributes\n",
r20727: implement basic merging of replicated objects when it already exist in the ldb metze (This used to be commit 262e42123d0bca77560fbb5a33c13a9c275ba3ec)
2007-01-13 11:17:27 +00:00
ar->index_current, msg->num_elements);
s4:dsdb Use 'partition modified' information to update @REPLCHANGED This major rework of repl_meta_data changes it from using a static list of partitions to a dynamic list created from the controls placed on returned ldb results. To process these in one place, the similar but distinct callbacks are combined into a single replmd_op_callback(), which handles both the 'normal operation' and 'inbound replication' case. This allows new partitions to be created, and replication events for these new partitions to be scheduled immediately. Also in this commit: We no longer specify the target partition for new or modified objects - instead we allow the partitions module to use the DN as normal. THis avoids the issue where we would create two partition head records. Andrew Bartlett
2009-10-16 16:20:15 +11:00
ret = ldb_sequence_number(ldb, LDB_SEQ_NEXT, &ar->seq_num);
s4-repl: don't be too eager to allocate new sequence numbers we only need to allocate a new sequence number when replPropertyMetaData is changing or being created on an object
2009-09-12 12:07:06 +10:00
if (ret != LDB_SUCCESS) {
return replmd_replicated_request_error(ar, ret);
}
for (i=0; i<ni; i++) {
s4:dsdb Use 'partition modified' information to update @REPLCHANGED This major rework of repl_meta_data changes it from using a static list of partitions to a dynamic list created from the controls placed on returned ldb results. To process these in one place, the similar but distinct callbacks are combined into a single replmd_op_callback(), which handles both the 'normal operation' and 'inbound replication' case. This allows new partitions to be created, and replication events for these new partitions to be scheduled immediately. Also in this commit: We no longer specify the target partition for new or modified objects - instead we allow the partitions module to use the DN as normal. THis avoids the issue where we would create two partition head records. Andrew Bartlett
2009-10-16 16:20:15 +11:00
nmd.ctr.ctr1.array[i].local_usn = ar->seq_num;
s4-repl: don't be too eager to allocate new sequence numbers we only need to allocate a new sequence number when replPropertyMetaData is changing or being created on an object
2009-09-12 12:07:06 +10:00
}
s4-repl: make sure we marshal the replPropertyMetaData after the last change we were setting local_usn after the marshall, so it wasn't going into the object
2009-09-15 11:46:59 -07:00
/* create the meta data value */
ndr_err = ndr_push_struct_blob(&nmd_value, msg,
lp_iconv_convenience(ldb_get_opaque(ldb, "loadparm")),
&nmd,
(ndr_push_flags_fn_t)ndr_push_replPropertyMetaDataBlob);
if (!NDR_ERR_CODE_IS_SUCCESS(ndr_err)) {
NTSTATUS nt_status = ndr_map_error2ntstatus(ndr_err);
return replmd_replicated_request_werror(ar, ntstatus_to_werror(nt_status));
}
r20727: implement basic merging of replicated objects when it already exist in the ldb metze (This used to be commit 262e42123d0bca77560fbb5a33c13a9c275ba3ec)
2007-01-13 11:17:27 +00:00
/*
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
* when we know that we'll modify the record, add the whenChanged, uSNChanged
r20727: implement basic merging of replicated objects when it already exist in the ldb metze (This used to be commit 262e42123d0bca77560fbb5a33c13a9c275ba3ec)
2007-01-13 11:17:27 +00:00
* and replPopertyMetaData attributes
*/
ret = ldb_msg_add_string(msg, "whenChanged", ar->objs->objects[ar->index_current].when_changed);
if (ret != LDB_SUCCESS) {
return replmd_replicated_request_error(ar, ret);
}
s4:dsdb Use 'partition modified' information to update @REPLCHANGED This major rework of repl_meta_data changes it from using a static list of partitions to a dynamic list created from the controls placed on returned ldb results. To process these in one place, the similar but distinct callbacks are combined into a single replmd_op_callback(), which handles both the 'normal operation' and 'inbound replication' case. This allows new partitions to be created, and replication events for these new partitions to be scheduled immediately. Also in this commit: We no longer specify the target partition for new or modified objects - instead we allow the partitions module to use the DN as normal. THis avoids the issue where we would create two partition head records. Andrew Bartlett
2009-10-16 16:20:15 +11:00
ret = samdb_msg_add_uint64(ldb, msg, msg, "uSNChanged", ar->seq_num);
r20727: implement basic merging of replicated objects when it already exist in the ldb metze (This used to be commit 262e42123d0bca77560fbb5a33c13a9c275ba3ec)
2007-01-13 11:17:27 +00:00
if (ret != LDB_SUCCESS) {
return replmd_replicated_request_error(ar, ret);
}
ret = ldb_msg_add_value(msg, "replPropertyMetaData", &nmd_value, NULL);
if (ret != LDB_SUCCESS) {
return replmd_replicated_request_error(ar, ret);
}
r20968: - add functions to sort the meta data and attribute arrays - we should use them before we store records to disk metze (This used to be commit a5200ef0cae5e8b0cedf196c9d76afc46e08c316)
2007-01-23 10:21:14 +00:00
replmd_ldb_message_sort(msg, ar->schema);
r20727: implement basic merging of replicated objects when it already exist in the ldb metze (This used to be commit 262e42123d0bca77560fbb5a33c13a9c275ba3ec)
2007-01-13 11:17:27 +00:00
/* we want to replace the old values */
for (i=0; i < msg->num_elements; i++) {
msg->elements[i].flags = LDB_FLAG_MOD_REPLACE;
}
Display ldif formatted versions of all DRS changes at log level 4 This helps a lot with debugging the DRS replication code
2009-09-02 11:20:26 +10:00
if (DEBUGLVL(4)) {
char *s = ldb_ldif_message_string(ldb, ar, LDB_CHANGETYPE_MODIFY, msg);
DEBUG(4, ("DRS replication modify message:\n%s\n", s));
talloc_free(s);
}
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
ret = ldb_build_mod_req(&change_req,
Fix all other modules to use ldb_module.h instead of ldb_private.h The only 2 modules escaping the rule so far are rootdse and partitions
2009-01-30 16:31:19 -05:00
ldb,
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
ar,
r20727: implement basic merging of replicated objects when it already exist in the ldb metze (This used to be commit 262e42123d0bca77560fbb5a33c13a9c275ba3ec)
2007-01-13 11:17:27 +00:00
msg,
s4:dsdb: passdown DSDB_CONTROL_REPLICATED_UPDATE_OID for replicated updates We need to make sure replicated updates are handled differently in some situations, e.g. we should bypass the schema checks. metze
2008-09-27 02:27:54 +02:00
ar->controls,
r20727: implement basic merging of replicated objects when it already exist in the ldb metze (This used to be commit 262e42123d0bca77560fbb5a33c13a9c275ba3ec)
2007-01-13 11:17:27 +00:00
ar,
s4:dsdb Use 'partition modified' information to update @REPLCHANGED This major rework of repl_meta_data changes it from using a static list of partitions to a dynamic list created from the controls placed on returned ldb results. To process these in one place, the similar but distinct callbacks are combined into a single replmd_op_callback(), which handles both the 'normal operation' and 'inbound replication' case. This allows new partitions to be created, and replication events for these new partitions to be scheduled immediately. Also in this commit: We no longer specify the target partition for new or modified objects - instead we allow the partitions module to use the DN as normal. THis avoids the issue where we would create two partition head records. Andrew Bartlett
2009-10-16 16:20:15 +11:00
replmd_op_callback,
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
ar->req);
r20727: implement basic merging of replicated objects when it already exist in the ldb metze (This used to be commit 262e42123d0bca77560fbb5a33c13a9c275ba3ec)
2007-01-13 11:17:27 +00:00
if (ret != LDB_SUCCESS) return replmd_replicated_request_error(ar, ret);
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
return ldb_next_request(ar->module, change_req);
r20681: implement the DSDB_EXTENDED_REPLICATED_OBJECTS operation. the merging of existing objects is not implemented yet... there are a few ifdef REPLMD_FULL_ASYNC because we need to workarouns ldb's async infrastructure (which don't handle full async sub requests nicely) metze (This used to be commit da4ff0e7ccde47b3e092313ba22422350cf50f78)
2007-01-11 09:54:10 +00:00
}
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
static int replmd_replicated_apply_search_callback(struct ldb_request *req,
r20681: implement the DSDB_EXTENDED_REPLICATED_OBJECTS operation. the merging of existing objects is not implemented yet... there are a few ifdef REPLMD_FULL_ASYNC because we need to workarouns ldb's async infrastructure (which don't handle full async sub requests nicely) metze (This used to be commit da4ff0e7ccde47b3e092313ba22422350cf50f78)
2007-01-11 09:54:10 +00:00
struct ldb_reply *ares)
{
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
struct replmd_replicated_request *ar = talloc_get_type(req->context,
r20681: implement the DSDB_EXTENDED_REPLICATED_OBJECTS operation. the merging of existing objects is not implemented yet... there are a few ifdef REPLMD_FULL_ASYNC because we need to workarouns ldb's async infrastructure (which don't handle full async sub requests nicely) metze (This used to be commit da4ff0e7ccde47b3e092313ba22422350cf50f78)
2007-01-11 09:54:10 +00:00
struct replmd_replicated_request);
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
int ret;
if (!ares) {
return ldb_module_done(ar->req, NULL, NULL,
LDB_ERR_OPERATIONS_ERROR);
}
if (ares->error != LDB_SUCCESS &&
ares->error != LDB_ERR_NO_SUCH_OBJECT) {
return ldb_module_done(ar->req, ares->controls,
ares->response, ares->error);
}
r20681: implement the DSDB_EXTENDED_REPLICATED_OBJECTS operation. the merging of existing objects is not implemented yet... there are a few ifdef REPLMD_FULL_ASYNC because we need to workarouns ldb's async infrastructure (which don't handle full async sub requests nicely) metze (This used to be commit da4ff0e7ccde47b3e092313ba22422350cf50f78)
2007-01-11 09:54:10 +00:00
switch (ares->type) {
case LDB_REPLY_ENTRY:
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
ar->search_msg = talloc_steal(ar, ares->message);
r20681: implement the DSDB_EXTENDED_REPLICATED_OBJECTS operation. the merging of existing objects is not implemented yet... there are a few ifdef REPLMD_FULL_ASYNC because we need to workarouns ldb's async infrastructure (which don't handle full async sub requests nicely) metze (This used to be commit da4ff0e7ccde47b3e092313ba22422350cf50f78)
2007-01-11 09:54:10 +00:00
break;
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
r20681: implement the DSDB_EXTENDED_REPLICATED_OBJECTS operation. the merging of existing objects is not implemented yet... there are a few ifdef REPLMD_FULL_ASYNC because we need to workarouns ldb's async infrastructure (which don't handle full async sub requests nicely) metze (This used to be commit da4ff0e7ccde47b3e092313ba22422350cf50f78)
2007-01-11 09:54:10 +00:00
case LDB_REPLY_REFERRAL:
/* we ignore referrals */
break;
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
case LDB_REPLY_DONE:
if (ar->search_msg != NULL) {
ret = replmd_replicated_apply_merge(ar);
} else {
ret = replmd_replicated_apply_add(ar);
r20681: implement the DSDB_EXTENDED_REPLICATED_OBJECTS operation. the merging of existing objects is not implemented yet... there are a few ifdef REPLMD_FULL_ASYNC because we need to workarouns ldb's async infrastructure (which don't handle full async sub requests nicely) metze (This used to be commit da4ff0e7ccde47b3e092313ba22422350cf50f78)
2007-01-11 09:54:10 +00:00
}
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
if (ret != LDB_SUCCESS) {
return ldb_module_done(ar->req, NULL, NULL, ret);
r20681: implement the DSDB_EXTENDED_REPLICATED_OBJECTS operation. the merging of existing objects is not implemented yet... there are a few ifdef REPLMD_FULL_ASYNC because we need to workarouns ldb's async infrastructure (which don't handle full async sub requests nicely) metze (This used to be commit da4ff0e7ccde47b3e092313ba22422350cf50f78)
2007-01-11 09:54:10 +00:00
}
}
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
talloc_free(ares);
r20681: implement the DSDB_EXTENDED_REPLICATED_OBJECTS operation. the merging of existing objects is not implemented yet... there are a few ifdef REPLMD_FULL_ASYNC because we need to workarouns ldb's async infrastructure (which don't handle full async sub requests nicely) metze (This used to be commit da4ff0e7ccde47b3e092313ba22422350cf50f78)
2007-01-11 09:54:10 +00:00
return LDB_SUCCESS;
}
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
static int replmd_replicated_uptodate_vector(struct replmd_replicated_request *ar);
static int replmd_replicated_apply_next(struct replmd_replicated_request *ar)
r20681: implement the DSDB_EXTENDED_REPLICATED_OBJECTS operation. the merging of existing objects is not implemented yet... there are a few ifdef REPLMD_FULL_ASYNC because we need to workarouns ldb's async infrastructure (which don't handle full async sub requests nicely) metze (This used to be commit da4ff0e7ccde47b3e092313ba22422350cf50f78)
2007-01-11 09:54:10 +00:00
{
Fix all other modules to use ldb_module.h instead of ldb_private.h The only 2 modules escaping the rule so far are rootdse and partitions
2009-01-30 16:31:19 -05:00
struct ldb_context *ldb;
r20681: implement the DSDB_EXTENDED_REPLICATED_OBJECTS operation. the merging of existing objects is not implemented yet... there are a few ifdef REPLMD_FULL_ASYNC because we need to workarouns ldb's async infrastructure (which don't handle full async sub requests nicely) metze (This used to be commit da4ff0e7ccde47b3e092313ba22422350cf50f78)
2007-01-11 09:54:10 +00:00
int ret;
char *tmp_str;
char *filter;
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
struct ldb_request *search_req;
s4:dsdb Use 'partition modified' information to update @REPLCHANGED This major rework of repl_meta_data changes it from using a static list of partitions to a dynamic list created from the controls placed on returned ldb results. To process these in one place, the similar but distinct callbacks are combined into a single replmd_op_callback(), which handles both the 'normal operation' and 'inbound replication' case. This allows new partitions to be created, and replication events for these new partitions to be scheduled immediately. Also in this commit: We no longer specify the target partition for new or modified objects - instead we allow the partitions module to use the DN as normal. THis avoids the issue where we would create two partition head records. Andrew Bartlett
2009-10-16 16:20:15 +11:00
struct ldb_search_options_control *options;
r20681: implement the DSDB_EXTENDED_REPLICATED_OBJECTS operation. the merging of existing objects is not implemented yet... there are a few ifdef REPLMD_FULL_ASYNC because we need to workarouns ldb's async infrastructure (which don't handle full async sub requests nicely) metze (This used to be commit da4ff0e7ccde47b3e092313ba22422350cf50f78)
2007-01-11 09:54:10 +00:00
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
if (ar->index_current >= ar->objs->num_objects) {
change repl_meta_data to process linked_attributes structures in end_transaction When running at functional level 2 or above, the repl_meta_data module can receive linked attribute structures from the repl replication task. These attributes can come through DRS before the associated objects have been created. To cope with this, we need to process linked attributes in the end_transaction hook.
2009-09-03 12:55:57 +10:00
/* done with it, go to next stage */
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
return replmd_replicated_uptodate_vector(ar);
}
Fix all other modules to use ldb_module.h instead of ldb_private.h The only 2 modules escaping the rule so far are rootdse and partitions
2009-01-30 16:31:19 -05:00
ldb = ldb_module_get_ctx(ar->module);
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
ar->search_msg = NULL;
tmp_str = ldb_binary_encode(ar, ar->objs->objects[ar->index_current].guid_value);
r20681: implement the DSDB_EXTENDED_REPLICATED_OBJECTS operation. the merging of existing objects is not implemented yet... there are a few ifdef REPLMD_FULL_ASYNC because we need to workarouns ldb's async infrastructure (which don't handle full async sub requests nicely) metze (This used to be commit da4ff0e7ccde47b3e092313ba22422350cf50f78)
2007-01-11 09:54:10 +00:00
if (!tmp_str) return replmd_replicated_request_werror(ar, WERR_NOMEM);
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
filter = talloc_asprintf(ar, "(objectGUID=%s)", tmp_str);
r20681: implement the DSDB_EXTENDED_REPLICATED_OBJECTS operation. the merging of existing objects is not implemented yet... there are a few ifdef REPLMD_FULL_ASYNC because we need to workarouns ldb's async infrastructure (which don't handle full async sub requests nicely) metze (This used to be commit da4ff0e7ccde47b3e092313ba22422350cf50f78)
2007-01-11 09:54:10 +00:00
if (!filter) return replmd_replicated_request_werror(ar, WERR_NOMEM);
talloc_free(tmp_str);
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
ret = ldb_build_search_req(&search_req,
Fix all other modules to use ldb_module.h instead of ldb_private.h The only 2 modules escaping the rule so far are rootdse and partitions
2009-01-30 16:31:19 -05:00
ldb,
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
ar,
s4:dsdb Use 'partition modified' information to update @REPLCHANGED This major rework of repl_meta_data changes it from using a static list of partitions to a dynamic list created from the controls placed on returned ldb results. To process these in one place, the similar but distinct callbacks are combined into a single replmd_op_callback(), which handles both the 'normal operation' and 'inbound replication' case. This allows new partitions to be created, and replication events for these new partitions to be scheduled immediately. Also in this commit: We no longer specify the target partition for new or modified objects - instead we allow the partitions module to use the DN as normal. THis avoids the issue where we would create two partition head records. Andrew Bartlett
2009-10-16 16:20:15 +11:00
NULL,
r20681: implement the DSDB_EXTENDED_REPLICATED_OBJECTS operation. the merging of existing objects is not implemented yet... there are a few ifdef REPLMD_FULL_ASYNC because we need to workarouns ldb's async infrastructure (which don't handle full async sub requests nicely) metze (This used to be commit da4ff0e7ccde47b3e092313ba22422350cf50f78)
2007-01-11 09:54:10 +00:00
LDB_SCOPE_SUBTREE,
filter,
NULL,
NULL,
ar,
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
replmd_replicated_apply_search_callback,
ar->req);
s4-drs: fixed sorting of replPropertyMetaData This also ensures we add the SHOW_DELETED control on searches for old replPropertyMetaData attributes
2009-09-24 16:50:59 -07:00
ret = ldb_request_add_control(search_req, LDB_CONTROL_SHOW_DELETED_OID, true, NULL);
if (ret != LDB_SUCCESS) {
return ret;
}
s4:dsdb Use 'partition modified' information to update @REPLCHANGED This major rework of repl_meta_data changes it from using a static list of partitions to a dynamic list created from the controls placed on returned ldb results. To process these in one place, the similar but distinct callbacks are combined into a single replmd_op_callback(), which handles both the 'normal operation' and 'inbound replication' case. This allows new partitions to be created, and replication events for these new partitions to be scheduled immediately. Also in this commit: We no longer specify the target partition for new or modified objects - instead we allow the partitions module to use the DN as normal. THis avoids the issue where we would create two partition head records. Andrew Bartlett
2009-10-16 16:20:15 +11:00
/* we need to cope with cross-partition links, so search for
the GUID over all partitions */
options = talloc(search_req, struct ldb_search_options_control);
if (options == NULL) {
DEBUG(0, (__location__ ": out of memory\n"));
return LDB_ERR_OPERATIONS_ERROR;
}
options->search_options = LDB_SEARCH_OPTION_PHANTOM_ROOT;
ret = ldb_request_add_control(search_req,
LDB_CONTROL_SEARCH_OPTIONS_OID,
true, options);
if (ret != LDB_SUCCESS) {
return ret;
}
s4-drs: fixed sorting of replPropertyMetaData This also ensures we add the SHOW_DELETED control on searches for old replPropertyMetaData attributes
2009-09-24 16:50:59 -07:00
r20681: implement the DSDB_EXTENDED_REPLICATED_OBJECTS operation. the merging of existing objects is not implemented yet... there are a few ifdef REPLMD_FULL_ASYNC because we need to workarouns ldb's async infrastructure (which don't handle full async sub requests nicely) metze (This used to be commit da4ff0e7ccde47b3e092313ba22422350cf50f78)
2007-01-11 09:54:10 +00:00
if (ret != LDB_SUCCESS) return replmd_replicated_request_error(ar, ret);
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
return ldb_next_request(ar->module, search_req);
r20681: implement the DSDB_EXTENDED_REPLICATED_OBJECTS operation. the merging of existing objects is not implemented yet... there are a few ifdef REPLMD_FULL_ASYNC because we need to workarouns ldb's async infrastructure (which don't handle full async sub requests nicely) metze (This used to be commit da4ff0e7ccde47b3e092313ba22422350cf50f78)
2007-01-11 09:54:10 +00:00
}
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
static int replmd_replicated_uptodate_modify_callback(struct ldb_request *req,
r20705: store the "replUpToDateVector" attribute in DSDB_EXTENDED_REPLICATED_OBJECTS metze (This used to be commit c9e7a58f6a16dfa28323fd0fd01ad6ee516c51b0)
2007-01-12 13:17:25 +00:00
struct ldb_reply *ares)
{
Fix all other modules to use ldb_module.h instead of ldb_private.h The only 2 modules escaping the rule so far are rootdse and partitions
2009-01-30 16:31:19 -05:00
struct ldb_context *ldb;
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
struct replmd_replicated_request *ar = talloc_get_type(req->context,
r20705: store the "replUpToDateVector" attribute in DSDB_EXTENDED_REPLICATED_OBJECTS metze (This used to be commit c9e7a58f6a16dfa28323fd0fd01ad6ee516c51b0)
2007-01-12 13:17:25 +00:00
struct replmd_replicated_request);
Fix all other modules to use ldb_module.h instead of ldb_private.h The only 2 modules escaping the rule so far are rootdse and partitions
2009-01-30 16:31:19 -05:00
ldb = ldb_module_get_ctx(ar->module);
r20705: store the "replUpToDateVector" attribute in DSDB_EXTENDED_REPLICATED_OBJECTS metze (This used to be commit c9e7a58f6a16dfa28323fd0fd01ad6ee516c51b0)
2007-01-12 13:17:25 +00:00
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
if (!ares) {
return ldb_module_done(ar->req, NULL, NULL,
LDB_ERR_OPERATIONS_ERROR);
}
if (ares->error != LDB_SUCCESS) {
return ldb_module_done(ar->req, ares->controls,
ares->response, ares->error);
r20705: store the "replUpToDateVector" attribute in DSDB_EXTENDED_REPLICATED_OBJECTS metze (This used to be commit c9e7a58f6a16dfa28323fd0fd01ad6ee516c51b0)
2007-01-12 13:17:25 +00:00
}
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
if (ares->type != LDB_REPLY_DONE) {
Fix all other modules to use ldb_module.h instead of ldb_private.h The only 2 modules escaping the rule so far are rootdse and partitions
2009-01-30 16:31:19 -05:00
ldb_set_errstring(ldb, "Invalid reply type\n!");
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
return ldb_module_done(ar->req, NULL, NULL,
LDB_ERR_OPERATIONS_ERROR);
}
r20705: store the "replUpToDateVector" attribute in DSDB_EXTENDED_REPLICATED_OBJECTS metze (This used to be commit c9e7a58f6a16dfa28323fd0fd01ad6ee516c51b0)
2007-01-12 13:17:25 +00:00
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
talloc_free(ares);
return ldb_module_done(ar->req, NULL, NULL, LDB_SUCCESS);
r20705: store the "replUpToDateVector" attribute in DSDB_EXTENDED_REPLICATED_OBJECTS metze (This used to be commit c9e7a58f6a16dfa28323fd0fd01ad6ee516c51b0)
2007-01-12 13:17:25 +00:00
}
static int replmd_replicated_uptodate_modify(struct replmd_replicated_request *ar)
{
Fix all other modules to use ldb_module.h instead of ldb_private.h The only 2 modules escaping the rule so far are rootdse and partitions
2009-01-30 16:31:19 -05:00
struct ldb_context *ldb;
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
struct ldb_request *change_req;
r25920: ndr: change NTSTAUS into enum ndr_err_code (samba4 callers) lib/messaging/ lib/registry/ lib/ldb-samba/ librpc/rpc/ auth/auth_winbind.c auth/gensec/ auth/kerberos/ dsdb/repl/ dsdb/samdb/ dsdb/schema/ torture/ cluster/ctdb/ kdc/ ntvfs/ipc/ torture/rap/ ntvfs/ utils/getntacl.c ntptr/ smb_server/ libcli/wrepl/ wrepl_server/ libcli/cldap/ libcli/dgram/ libcli/ldap/ libcli/raw/ libcli/nbt/ libnet/ winbind/ rpc_server/ metze (This used to be commit 6223c7fddc972687eb577e04fc1c8e0604c35435)
2007-11-09 19:24:51 +01:00
enum ndr_err_code ndr_err;
r20705: store the "replUpToDateVector" attribute in DSDB_EXTENDED_REPLICATED_OBJECTS metze (This used to be commit c9e7a58f6a16dfa28323fd0fd01ad6ee516c51b0)
2007-01-12 13:17:25 +00:00
struct ldb_message *msg;
struct replUpToDateVectorBlob ouv;
const struct ldb_val *ouv_value;
const struct drsuapi_DsReplicaCursor2CtrEx *ruv;
struct replUpToDateVectorBlob nuv;
struct ldb_val nuv_value;
struct ldb_message_element *nuv_el = NULL;
r20710: update or create the "repsFrom" values after applying replicated objects metze (This used to be commit 665d8f9626f8ef1c64f6fac79bdc40d14330f126)
2007-01-12 17:02:55 +00:00
const struct GUID *our_invocation_id;
struct ldb_message_element *orf_el = NULL;
struct repsFromToBlob nrf;
struct ldb_val *nrf_value = NULL;
struct ldb_message_element *nrf_el = NULL;
r20705: store the "replUpToDateVector" attribute in DSDB_EXTENDED_REPLICATED_OBJECTS metze (This used to be commit c9e7a58f6a16dfa28323fd0fd01ad6ee516c51b0)
2007-01-12 13:17:25 +00:00
uint32_t i,j,ni=0;
bool found = false;
time_t t = time(NULL);
NTTIME now;
int ret;
Fix all other modules to use ldb_module.h instead of ldb_private.h The only 2 modules escaping the rule so far are rootdse and partitions
2009-01-30 16:31:19 -05:00
ldb = ldb_module_get_ctx(ar->module);
r20705: store the "replUpToDateVector" attribute in DSDB_EXTENDED_REPLICATED_OBJECTS metze (This used to be commit c9e7a58f6a16dfa28323fd0fd01ad6ee516c51b0)
2007-01-12 13:17:25 +00:00
ruv = ar->objs->uptodateness_vector;
ZERO_STRUCT(ouv);
ouv.version = 2;
ZERO_STRUCT(nuv);
nuv.version = 2;
unix_to_nt_time(&now, t);
r20709: pass a repsFromTo1 struct down as it contains all needed info for the source dsa and the highwater mark vector metze (This used to be commit a31e017e5388e5abd6ed9d09adcf26d2527954a6)
2007-01-12 16:02:10 +00:00
/*
* first create the new replUpToDateVector
*/
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
ouv_value = ldb_msg_find_ldb_val(ar->search_msg, "replUpToDateVector");
r20705: store the "replUpToDateVector" attribute in DSDB_EXTENDED_REPLICATED_OBJECTS metze (This used to be commit c9e7a58f6a16dfa28323fd0fd01ad6ee516c51b0)
2007-01-12 13:17:25 +00:00
if (ouv_value) {
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
ndr_err = ndr_pull_struct_blob(ouv_value, ar,
Fix all other modules to use ldb_module.h instead of ldb_private.h The only 2 modules escaping the rule so far are rootdse and partitions
2009-01-30 16:31:19 -05:00
lp_iconv_convenience(ldb_get_opaque(ldb, "loadparm")), &ouv,
r25920: ndr: change NTSTAUS into enum ndr_err_code (samba4 callers) lib/messaging/ lib/registry/ lib/ldb-samba/ librpc/rpc/ auth/auth_winbind.c auth/gensec/ auth/kerberos/ dsdb/repl/ dsdb/samdb/ dsdb/schema/ torture/ cluster/ctdb/ kdc/ ntvfs/ipc/ torture/rap/ ntvfs/ utils/getntacl.c ntptr/ smb_server/ libcli/wrepl/ wrepl_server/ libcli/cldap/ libcli/dgram/ libcli/ldap/ libcli/raw/ libcli/nbt/ libnet/ winbind/ rpc_server/ metze (This used to be commit 6223c7fddc972687eb577e04fc1c8e0604c35435)
2007-11-09 19:24:51 +01:00
(ndr_pull_flags_fn_t)ndr_pull_replUpToDateVectorBlob);
if (!NDR_ERR_CODE_IS_SUCCESS(ndr_err)) {
NTSTATUS nt_status = ndr_map_error2ntstatus(ndr_err);
r20705: store the "replUpToDateVector" attribute in DSDB_EXTENDED_REPLICATED_OBJECTS metze (This used to be commit c9e7a58f6a16dfa28323fd0fd01ad6ee516c51b0)
2007-01-12 13:17:25 +00:00
return replmd_replicated_request_werror(ar, ntstatus_to_werror(nt_status));
}
if (ouv.version != 2) {
return replmd_replicated_request_werror(ar, WERR_DS_DRA_INTERNAL_ERROR);
}
}
/*
* the new uptodateness vector will at least
r21465: the LDAP-UPTODATEVECTOR test shows that the replUpToDateVector doesn't contain an entry for the local invocation_id metze (This used to be commit 4bd0ddeb80b0a6695a457434594c0240c8880d9f)
2007-02-20 14:56:45 +00:00
* contain 1 entry, one for the source_dsa
r20705: store the "replUpToDateVector" attribute in DSDB_EXTENDED_REPLICATED_OBJECTS metze (This used to be commit c9e7a58f6a16dfa28323fd0fd01ad6ee516c51b0)
2007-01-12 13:17:25 +00:00
*
* plus optional values from our old vector and the one from the source_dsa
*/
r21465: the LDAP-UPTODATEVECTOR test shows that the replUpToDateVector doesn't contain an entry for the local invocation_id metze (This used to be commit 4bd0ddeb80b0a6695a457434594c0240c8880d9f)
2007-02-20 14:56:45 +00:00
nuv.ctr.ctr2.count = 1 + ouv.ctr.ctr2.count;
r20705: store the "replUpToDateVector" attribute in DSDB_EXTENDED_REPLICATED_OBJECTS metze (This used to be commit c9e7a58f6a16dfa28323fd0fd01ad6ee516c51b0)
2007-01-12 13:17:25 +00:00
if (ruv) nuv.ctr.ctr2.count += ruv->count;
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
nuv.ctr.ctr2.cursors = talloc_array(ar,
r20705: store the "replUpToDateVector" attribute in DSDB_EXTENDED_REPLICATED_OBJECTS metze (This used to be commit c9e7a58f6a16dfa28323fd0fd01ad6ee516c51b0)
2007-01-12 13:17:25 +00:00
struct drsuapi_DsReplicaCursor2,
nuv.ctr.ctr2.count);
if (!nuv.ctr.ctr2.cursors) return replmd_replicated_request_werror(ar, WERR_NOMEM);
/* first copy the old vector */
for (i=0; i < ouv.ctr.ctr2.count; i++) {
nuv.ctr.ctr2.cursors[ni] = ouv.ctr.ctr2.cursors[i];
ni++;
}
r21465: the LDAP-UPTODATEVECTOR test shows that the replUpToDateVector doesn't contain an entry for the local invocation_id metze (This used to be commit 4bd0ddeb80b0a6695a457434594c0240c8880d9f)
2007-02-20 14:56:45 +00:00
/* get our invocation_id if we have one already attached to the ldb */
Fix all other modules to use ldb_module.h instead of ldb_private.h The only 2 modules escaping the rule so far are rootdse and partitions
2009-01-30 16:31:19 -05:00
our_invocation_id = samdb_ntds_invocation_id(ldb);
r21465: the LDAP-UPTODATEVECTOR test shows that the replUpToDateVector doesn't contain an entry for the local invocation_id metze (This used to be commit 4bd0ddeb80b0a6695a457434594c0240c8880d9f)
2007-02-20 14:56:45 +00:00
r20705: store the "replUpToDateVector" attribute in DSDB_EXTENDED_REPLICATED_OBJECTS metze (This used to be commit c9e7a58f6a16dfa28323fd0fd01ad6ee516c51b0)
2007-01-12 13:17:25 +00:00
/* merge in the source_dsa vector is available */
for (i=0; (ruv && i < ruv->count); i++) {
found = false;
r21465: the LDAP-UPTODATEVECTOR test shows that the replUpToDateVector doesn't contain an entry for the local invocation_id metze (This used to be commit 4bd0ddeb80b0a6695a457434594c0240c8880d9f)
2007-02-20 14:56:45 +00:00
if (our_invocation_id &&
GUID_equal(&ruv->cursors[i].source_dsa_invocation_id,
our_invocation_id)) {
continue;
}
r20705: store the "replUpToDateVector" attribute in DSDB_EXTENDED_REPLICATED_OBJECTS metze (This used to be commit c9e7a58f6a16dfa28323fd0fd01ad6ee516c51b0)
2007-01-12 13:17:25 +00:00
for (j=0; j < ni; j++) {
if (!GUID_equal(&ruv->cursors[i].source_dsa_invocation_id,
&nuv.ctr.ctr2.cursors[j].source_dsa_invocation_id)) {
continue;
}
found = true;
/*
* we update only the highest_usn and not the latest_sync_success time,
* because the last success stands for direct replication
*/
if (ruv->cursors[i].highest_usn > nuv.ctr.ctr2.cursors[j].highest_usn) {
nuv.ctr.ctr2.cursors[j].highest_usn = ruv->cursors[i].highest_usn;
}
break;
}
if (found) continue;
/* if it's not there yet, add it */
nuv.ctr.ctr2.cursors[ni] = ruv->cursors[i];
ni++;
}
/*
* merge in the current highwatermark for the source_dsa
*/
found = false;
for (j=0; j < ni; j++) {
r20709: pass a repsFromTo1 struct down as it contains all needed info for the source dsa and the highwater mark vector metze (This used to be commit a31e017e5388e5abd6ed9d09adcf26d2527954a6)
2007-01-12 16:02:10 +00:00
if (!GUID_equal(&ar->objs->source_dsa->source_dsa_invocation_id,
r20705: store the "replUpToDateVector" attribute in DSDB_EXTENDED_REPLICATED_OBJECTS metze (This used to be commit c9e7a58f6a16dfa28323fd0fd01ad6ee516c51b0)
2007-01-12 13:17:25 +00:00
&nuv.ctr.ctr2.cursors[j].source_dsa_invocation_id)) {
continue;
}
found = true;
/*
* here we update the highest_usn and last_sync_success time
* because we're directly replicating from the source_dsa
*
* and use the tmp_highest_usn because this is what we have just applied
* to our ldb
*/
r20709: pass a repsFromTo1 struct down as it contains all needed info for the source dsa and the highwater mark vector metze (This used to be commit a31e017e5388e5abd6ed9d09adcf26d2527954a6)
2007-01-12 16:02:10 +00:00
nuv.ctr.ctr2.cursors[j].highest_usn = ar->objs->source_dsa->highwatermark.tmp_highest_usn;
r20705: store the "replUpToDateVector" attribute in DSDB_EXTENDED_REPLICATED_OBJECTS metze (This used to be commit c9e7a58f6a16dfa28323fd0fd01ad6ee516c51b0)
2007-01-12 13:17:25 +00:00
nuv.ctr.ctr2.cursors[j].last_sync_success = now;
break;
}
if (!found) {
/*
* here we update the highest_usn and last_sync_success time
* because we're directly replicating from the source_dsa
*
* and use the tmp_highest_usn because this is what we have just applied
* to our ldb
*/
r20709: pass a repsFromTo1 struct down as it contains all needed info for the source dsa and the highwater mark vector metze (This used to be commit a31e017e5388e5abd6ed9d09adcf26d2527954a6)
2007-01-12 16:02:10 +00:00
nuv.ctr.ctr2.cursors[ni].source_dsa_invocation_id= ar->objs->source_dsa->source_dsa_invocation_id;
nuv.ctr.ctr2.cursors[ni].highest_usn = ar->objs->source_dsa->highwatermark.tmp_highest_usn;
r20705: store the "replUpToDateVector" attribute in DSDB_EXTENDED_REPLICATED_OBJECTS metze (This used to be commit c9e7a58f6a16dfa28323fd0fd01ad6ee516c51b0)
2007-01-12 13:17:25 +00:00
nuv.ctr.ctr2.cursors[ni].last_sync_success = now;
ni++;
}
/*
* finally correct the size of the cursors array
*/
nuv.ctr.ctr2.count = ni;
r20713: sort the cursors in replUpToDateVector by source_dsa_invocation_id, w2k3 seems to do the same. It's later useful, when we would have a large array be could use a binary search metze (This used to be commit cd654f20e16c32f82ceb2b66453ce8d1be7020dd)
2007-01-12 17:19:48 +00:00
/*
* sort the cursors
*/
qsort(nuv.ctr.ctr2.cursors, nuv.ctr.ctr2.count,
sizeof(struct drsuapi_DsReplicaCursor2),
Move replmd_drsuapi_DsReplicaCursor2_compare to a common place.
2009-09-14 11:46:59 -07:00
(comparison_fn_t)drsuapi_DsReplicaCursor2_compare);
r20713: sort the cursors in replUpToDateVector by source_dsa_invocation_id, w2k3 seems to do the same. It's later useful, when we would have a large array be could use a binary search metze (This used to be commit cd654f20e16c32f82ceb2b66453ce8d1be7020dd)
2007-01-12 17:19:48 +00:00
r20705: store the "replUpToDateVector" attribute in DSDB_EXTENDED_REPLICATED_OBJECTS metze (This used to be commit c9e7a58f6a16dfa28323fd0fd01ad6ee516c51b0)
2007-01-12 13:17:25 +00:00
/*
* create the change ldb_message
*/
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
msg = ldb_msg_new(ar);
r20705: store the "replUpToDateVector" attribute in DSDB_EXTENDED_REPLICATED_OBJECTS metze (This used to be commit c9e7a58f6a16dfa28323fd0fd01ad6ee516c51b0)
2007-01-12 13:17:25 +00:00
if (!msg) return replmd_replicated_request_werror(ar, WERR_NOMEM);
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
msg->dn = ar->search_msg->dn;
r20705: store the "replUpToDateVector" attribute in DSDB_EXTENDED_REPLICATED_OBJECTS metze (This used to be commit c9e7a58f6a16dfa28323fd0fd01ad6ee516c51b0)
2007-01-12 13:17:25 +00:00
r26638: libndr: Require explicitly specifying iconv_convenience for ndr_struct_push_blob(). (This used to be commit 61ad78ac98937ef7a9aa32075a91a1c95b7606b3)
2008-01-01 22:05:05 -06:00
ndr_err = ndr_push_struct_blob(&nuv_value, msg,
Fix all other modules to use ldb_module.h instead of ldb_private.h The only 2 modules escaping the rule so far are rootdse and partitions
2009-01-30 16:31:19 -05:00
lp_iconv_convenience(ldb_get_opaque(ldb, "loadparm")),
r26638: libndr: Require explicitly specifying iconv_convenience for ndr_struct_push_blob(). (This used to be commit 61ad78ac98937ef7a9aa32075a91a1c95b7606b3)
2008-01-01 22:05:05 -06:00
&nuv,
r25920: ndr: change NTSTAUS into enum ndr_err_code (samba4 callers) lib/messaging/ lib/registry/ lib/ldb-samba/ librpc/rpc/ auth/auth_winbind.c auth/gensec/ auth/kerberos/ dsdb/repl/ dsdb/samdb/ dsdb/schema/ torture/ cluster/ctdb/ kdc/ ntvfs/ipc/ torture/rap/ ntvfs/ utils/getntacl.c ntptr/ smb_server/ libcli/wrepl/ wrepl_server/ libcli/cldap/ libcli/dgram/ libcli/ldap/ libcli/raw/ libcli/nbt/ libnet/ winbind/ rpc_server/ metze (This used to be commit 6223c7fddc972687eb577e04fc1c8e0604c35435)
2007-11-09 19:24:51 +01:00
(ndr_push_flags_fn_t)ndr_push_replUpToDateVectorBlob);
if (!NDR_ERR_CODE_IS_SUCCESS(ndr_err)) {
NTSTATUS nt_status = ndr_map_error2ntstatus(ndr_err);
r20705: store the "replUpToDateVector" attribute in DSDB_EXTENDED_REPLICATED_OBJECTS metze (This used to be commit c9e7a58f6a16dfa28323fd0fd01ad6ee516c51b0)
2007-01-12 13:17:25 +00:00
return replmd_replicated_request_werror(ar, ntstatus_to_werror(nt_status));
}
ret = ldb_msg_add_value(msg, "replUpToDateVector", &nuv_value, &nuv_el);
if (ret != LDB_SUCCESS) {
return replmd_replicated_request_error(ar, ret);
}
nuv_el->flags = LDB_FLAG_MOD_REPLACE;
r20710: update or create the "repsFrom" values after applying replicated objects metze (This used to be commit 665d8f9626f8ef1c64f6fac79bdc40d14330f126)
2007-01-12 17:02:55 +00:00
/*
* now create the new repsFrom value from the given repsFromTo1 structure
*/
ZERO_STRUCT(nrf);
nrf.version = 1;
nrf.ctr.ctr1 = *ar->objs->source_dsa;
/* and fix some values... */
nrf.ctr.ctr1.consecutive_sync_failures = 0;
nrf.ctr.ctr1.last_success = now;
nrf.ctr.ctr1.last_attempt = now;
nrf.ctr.ctr1.result_last_attempt = WERR_OK;
nrf.ctr.ctr1.highwatermark.highest_usn = nrf.ctr.ctr1.highwatermark.tmp_highest_usn;
/*
* first see if we already have a repsFrom value for the current source dsa
* if so we'll later replace this value
*/
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
orf_el = ldb_msg_find_element(ar->search_msg, "repsFrom");
r20710: update or create the "repsFrom" values after applying replicated objects metze (This used to be commit 665d8f9626f8ef1c64f6fac79bdc40d14330f126)
2007-01-12 17:02:55 +00:00
if (orf_el) {
for (i=0; i < orf_el->num_values; i++) {
struct repsFromToBlob *trf;
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
trf = talloc(ar, struct repsFromToBlob);
r20710: update or create the "repsFrom" values after applying replicated objects metze (This used to be commit 665d8f9626f8ef1c64f6fac79bdc40d14330f126)
2007-01-12 17:02:55 +00:00
if (!trf) return replmd_replicated_request_werror(ar, WERR_NOMEM);
Fix all other modules to use ldb_module.h instead of ldb_private.h The only 2 modules escaping the rule so far are rootdse and partitions
2009-01-30 16:31:19 -05:00
ndr_err = ndr_pull_struct_blob(&orf_el->values[i], trf, lp_iconv_convenience(ldb_get_opaque(ldb, "loadparm")), trf,
r25920: ndr: change NTSTAUS into enum ndr_err_code (samba4 callers) lib/messaging/ lib/registry/ lib/ldb-samba/ librpc/rpc/ auth/auth_winbind.c auth/gensec/ auth/kerberos/ dsdb/repl/ dsdb/samdb/ dsdb/schema/ torture/ cluster/ctdb/ kdc/ ntvfs/ipc/ torture/rap/ ntvfs/ utils/getntacl.c ntptr/ smb_server/ libcli/wrepl/ wrepl_server/ libcli/cldap/ libcli/dgram/ libcli/ldap/ libcli/raw/ libcli/nbt/ libnet/ winbind/ rpc_server/ metze (This used to be commit 6223c7fddc972687eb577e04fc1c8e0604c35435)
2007-11-09 19:24:51 +01:00
(ndr_pull_flags_fn_t)ndr_pull_repsFromToBlob);
if (!NDR_ERR_CODE_IS_SUCCESS(ndr_err)) {
NTSTATUS nt_status = ndr_map_error2ntstatus(ndr_err);
r20710: update or create the "repsFrom" values after applying replicated objects metze (This used to be commit 665d8f9626f8ef1c64f6fac79bdc40d14330f126)
2007-01-12 17:02:55 +00:00
return replmd_replicated_request_werror(ar, ntstatus_to_werror(nt_status));
}
if (trf->version != 1) {
return replmd_replicated_request_werror(ar, WERR_DS_DRA_INTERNAL_ERROR);
}
/*
* we compare the source dsa objectGUID not the invocation_id
* because we want only one repsFrom value per source dsa
* and when the invocation_id of the source dsa has changed we don't need
* the old repsFrom with the old invocation_id
*/
if (!GUID_equal(&trf->ctr.ctr1.source_dsa_obj_guid,
&ar->objs->source_dsa->source_dsa_obj_guid)) {
talloc_free(trf);
continue;
}
talloc_free(trf);
nrf_value = &orf_el->values[i];
break;
}
/*
* copy over all old values to the new ldb_message
*/
ret = ldb_msg_add_empty(msg, "repsFrom", 0, &nrf_el);
if (ret != LDB_SUCCESS) return replmd_replicated_request_error(ar, ret);
*nrf_el = *orf_el;
}
/*
* if we haven't found an old repsFrom value for the current source dsa
* we'll add a new value
*/
if (!nrf_value) {
struct ldb_val zero_value;
ZERO_STRUCT(zero_value);
ret = ldb_msg_add_value(msg, "repsFrom", &zero_value, &nrf_el);
if (ret != LDB_SUCCESS) return replmd_replicated_request_error(ar, ret);
nrf_value = &nrf_el->values[nrf_el->num_values - 1];
}
/* we now fill the value which is already attached to ldb_message */
r26638: libndr: Require explicitly specifying iconv_convenience for ndr_struct_push_blob(). (This used to be commit 61ad78ac98937ef7a9aa32075a91a1c95b7606b3)
2008-01-01 22:05:05 -06:00
ndr_err = ndr_push_struct_blob(nrf_value, msg,
Fix all other modules to use ldb_module.h instead of ldb_private.h The only 2 modules escaping the rule so far are rootdse and partitions
2009-01-30 16:31:19 -05:00
lp_iconv_convenience(ldb_get_opaque(ldb, "loadparm")),
r26638: libndr: Require explicitly specifying iconv_convenience for ndr_struct_push_blob(). (This used to be commit 61ad78ac98937ef7a9aa32075a91a1c95b7606b3)
2008-01-01 22:05:05 -06:00
&nrf,
r25920: ndr: change NTSTAUS into enum ndr_err_code (samba4 callers) lib/messaging/ lib/registry/ lib/ldb-samba/ librpc/rpc/ auth/auth_winbind.c auth/gensec/ auth/kerberos/ dsdb/repl/ dsdb/samdb/ dsdb/schema/ torture/ cluster/ctdb/ kdc/ ntvfs/ipc/ torture/rap/ ntvfs/ utils/getntacl.c ntptr/ smb_server/ libcli/wrepl/ wrepl_server/ libcli/cldap/ libcli/dgram/ libcli/ldap/ libcli/raw/ libcli/nbt/ libnet/ winbind/ rpc_server/ metze (This used to be commit 6223c7fddc972687eb577e04fc1c8e0604c35435)
2007-11-09 19:24:51 +01:00
(ndr_push_flags_fn_t)ndr_push_repsFromToBlob);
if (!NDR_ERR_CODE_IS_SUCCESS(ndr_err)) {
NTSTATUS nt_status = ndr_map_error2ntstatus(ndr_err);
r20710: update or create the "repsFrom" values after applying replicated objects metze (This used to be commit 665d8f9626f8ef1c64f6fac79bdc40d14330f126)
2007-01-12 17:02:55 +00:00
return replmd_replicated_request_werror(ar, ntstatus_to_werror(nt_status));
}
/*
* the ldb_message_element for the attribute, has all the old values and the new one
* so we'll replace the whole attribute with all values
*/
nrf_el->flags = LDB_FLAG_MOD_REPLACE;
Display ldif formatted versions of all DRS changes at log level 4 This helps a lot with debugging the DRS replication code
2009-09-02 11:20:26 +10:00
if (DEBUGLVL(4)) {
char *s = ldb_ldif_message_string(ldb, ar, LDB_CHANGETYPE_MODIFY, msg);
DEBUG(4, ("DRS replication uptodate modify message:\n%s\n", s));
talloc_free(s);
}
r20710: update or create the "repsFrom" values after applying replicated objects metze (This used to be commit 665d8f9626f8ef1c64f6fac79bdc40d14330f126)
2007-01-12 17:02:55 +00:00
/* prepare the ldb_modify() request */
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
ret = ldb_build_mod_req(&change_req,
Fix all other modules to use ldb_module.h instead of ldb_private.h The only 2 modules escaping the rule so far are rootdse and partitions
2009-01-30 16:31:19 -05:00
ldb,
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
ar,
r20705: store the "replUpToDateVector" attribute in DSDB_EXTENDED_REPLICATED_OBJECTS metze (This used to be commit c9e7a58f6a16dfa28323fd0fd01ad6ee516c51b0)
2007-01-12 13:17:25 +00:00
msg,
s4:dsdb: passdown DSDB_CONTROL_REPLICATED_UPDATE_OID for replicated updates We need to make sure replicated updates are handled differently in some situations, e.g. we should bypass the schema checks. metze
2008-09-27 02:27:54 +02:00
ar->controls,
r20705: store the "replUpToDateVector" attribute in DSDB_EXTENDED_REPLICATED_OBJECTS metze (This used to be commit c9e7a58f6a16dfa28323fd0fd01ad6ee516c51b0)
2007-01-12 13:17:25 +00:00
ar,
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
replmd_replicated_uptodate_modify_callback,
ar->req);
r20705: store the "replUpToDateVector" attribute in DSDB_EXTENDED_REPLICATED_OBJECTS metze (This used to be commit c9e7a58f6a16dfa28323fd0fd01ad6ee516c51b0)
2007-01-12 13:17:25 +00:00
if (ret != LDB_SUCCESS) return replmd_replicated_request_error(ar, ret);
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
return ldb_next_request(ar->module, change_req);
r20705: store the "replUpToDateVector" attribute in DSDB_EXTENDED_REPLICATED_OBJECTS metze (This used to be commit c9e7a58f6a16dfa28323fd0fd01ad6ee516c51b0)
2007-01-12 13:17:25 +00:00
}
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
static int replmd_replicated_uptodate_search_callback(struct ldb_request *req,
r20705: store the "replUpToDateVector" attribute in DSDB_EXTENDED_REPLICATED_OBJECTS metze (This used to be commit c9e7a58f6a16dfa28323fd0fd01ad6ee516c51b0)
2007-01-12 13:17:25 +00:00
struct ldb_reply *ares)
{
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
struct replmd_replicated_request *ar = talloc_get_type(req->context,
r20705: store the "replUpToDateVector" attribute in DSDB_EXTENDED_REPLICATED_OBJECTS metze (This used to be commit c9e7a58f6a16dfa28323fd0fd01ad6ee516c51b0)
2007-01-12 13:17:25 +00:00
struct replmd_replicated_request);
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
int ret;
if (!ares) {
return ldb_module_done(ar->req, NULL, NULL,
LDB_ERR_OPERATIONS_ERROR);
}
if (ares->error != LDB_SUCCESS &&
ares->error != LDB_ERR_NO_SUCH_OBJECT) {
return ldb_module_done(ar->req, ares->controls,
ares->response, ares->error);
}
r20705: store the "replUpToDateVector" attribute in DSDB_EXTENDED_REPLICATED_OBJECTS metze (This used to be commit c9e7a58f6a16dfa28323fd0fd01ad6ee516c51b0)
2007-01-12 13:17:25 +00:00
switch (ares->type) {
case LDB_REPLY_ENTRY:
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
ar->search_msg = talloc_steal(ar, ares->message);
r20705: store the "replUpToDateVector" attribute in DSDB_EXTENDED_REPLICATED_OBJECTS metze (This used to be commit c9e7a58f6a16dfa28323fd0fd01ad6ee516c51b0)
2007-01-12 13:17:25 +00:00
break;
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
r20705: store the "replUpToDateVector" attribute in DSDB_EXTENDED_REPLICATED_OBJECTS metze (This used to be commit c9e7a58f6a16dfa28323fd0fd01ad6ee516c51b0)
2007-01-12 13:17:25 +00:00
case LDB_REPLY_REFERRAL:
/* we ignore referrals */
break;
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
case LDB_REPLY_DONE:
if (ar->search_msg == NULL) {
ret = replmd_replicated_request_werror(ar, WERR_DS_DRA_INTERNAL_ERROR);
} else {
ret = replmd_replicated_uptodate_modify(ar);
r20705: store the "replUpToDateVector" attribute in DSDB_EXTENDED_REPLICATED_OBJECTS metze (This used to be commit c9e7a58f6a16dfa28323fd0fd01ad6ee516c51b0)
2007-01-12 13:17:25 +00:00
}
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
if (ret != LDB_SUCCESS) {
return ldb_module_done(ar->req, NULL, NULL, ret);
r20705: store the "replUpToDateVector" attribute in DSDB_EXTENDED_REPLICATED_OBJECTS metze (This used to be commit c9e7a58f6a16dfa28323fd0fd01ad6ee516c51b0)
2007-01-12 13:17:25 +00:00
}
}
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
talloc_free(ares);
r20705: store the "replUpToDateVector" attribute in DSDB_EXTENDED_REPLICATED_OBJECTS metze (This used to be commit c9e7a58f6a16dfa28323fd0fd01ad6ee516c51b0)
2007-01-12 13:17:25 +00:00
return LDB_SUCCESS;
}
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
static int replmd_replicated_uptodate_vector(struct replmd_replicated_request *ar)
r20705: store the "replUpToDateVector" attribute in DSDB_EXTENDED_REPLICATED_OBJECTS metze (This used to be commit c9e7a58f6a16dfa28323fd0fd01ad6ee516c51b0)
2007-01-12 13:17:25 +00:00
{
Fix all other modules to use ldb_module.h instead of ldb_private.h The only 2 modules escaping the rule so far are rootdse and partitions
2009-01-30 16:31:19 -05:00
struct ldb_context *ldb;
r20705: store the "replUpToDateVector" attribute in DSDB_EXTENDED_REPLICATED_OBJECTS metze (This used to be commit c9e7a58f6a16dfa28323fd0fd01ad6ee516c51b0)
2007-01-12 13:17:25 +00:00
int ret;
r26540: Revert my previous commit after concerns raised by Andrew. (This used to be commit 6ac86f8be7d9a8c5ab396a93e6d1e6819e11f173)
2007-12-20 00:02:15 +01:00
static const char *attrs[] = {
r20705: store the "replUpToDateVector" attribute in DSDB_EXTENDED_REPLICATED_OBJECTS metze (This used to be commit c9e7a58f6a16dfa28323fd0fd01ad6ee516c51b0)
2007-01-12 13:17:25 +00:00
"replUpToDateVector",
r20710: update or create the "repsFrom" values after applying replicated objects metze (This used to be commit 665d8f9626f8ef1c64f6fac79bdc40d14330f126)
2007-01-12 17:02:55 +00:00
"repsFrom",
r20705: store the "replUpToDateVector" attribute in DSDB_EXTENDED_REPLICATED_OBJECTS metze (This used to be commit c9e7a58f6a16dfa28323fd0fd01ad6ee516c51b0)
2007-01-12 13:17:25 +00:00
NULL
};
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
struct ldb_request *search_req;
Fix all other modules to use ldb_module.h instead of ldb_private.h The only 2 modules escaping the rule so far are rootdse and partitions
2009-01-30 16:31:19 -05:00
ldb = ldb_module_get_ctx(ar->module);
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
ar->search_msg = NULL;
r20705: store the "replUpToDateVector" attribute in DSDB_EXTENDED_REPLICATED_OBJECTS metze (This used to be commit c9e7a58f6a16dfa28323fd0fd01ad6ee516c51b0)
2007-01-12 13:17:25 +00:00
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
ret = ldb_build_search_req(&search_req,
Fix all other modules to use ldb_module.h instead of ldb_private.h The only 2 modules escaping the rule so far are rootdse and partitions
2009-01-30 16:31:19 -05:00
ldb,
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
ar,
r20705: store the "replUpToDateVector" attribute in DSDB_EXTENDED_REPLICATED_OBJECTS metze (This used to be commit c9e7a58f6a16dfa28323fd0fd01ad6ee516c51b0)
2007-01-12 13:17:25 +00:00
ar->objs->partition_dn,
LDB_SCOPE_BASE,
"(objectClass=*)",
attrs,
NULL,
ar,
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
replmd_replicated_uptodate_search_callback,
ar->req);
r20705: store the "replUpToDateVector" attribute in DSDB_EXTENDED_REPLICATED_OBJECTS metze (This used to be commit c9e7a58f6a16dfa28323fd0fd01ad6ee516c51b0)
2007-01-12 13:17:25 +00:00
if (ret != LDB_SUCCESS) return replmd_replicated_request_error(ar, ret);
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
return ldb_next_request(ar->module, search_req);
r20705: store the "replUpToDateVector" attribute in DSDB_EXTENDED_REPLICATED_OBJECTS metze (This used to be commit c9e7a58f6a16dfa28323fd0fd01ad6ee516c51b0)
2007-01-12 13:17:25 +00:00
}
change repl_meta_data to process linked_attributes structures in end_transaction When running at functional level 2 or above, the repl_meta_data module can receive linked attribute structures from the repl replication task. These attributes can come through DRS before the associated objects have been created. To cope with this, we need to process linked attributes in the end_transaction hook.
2009-09-03 12:55:57 +10:00
r20587: prepare the DSDB_EXTENDED_REPLICATED_OBJECTS_OID handling metze (This used to be commit ef3b325db060d43a7c2e058f6b8914b5867cd321)
2007-01-06 10:15:02 +00:00
static int replmd_extended_replicated_objects(struct ldb_module *module, struct ldb_request *req)
{
Fix all other modules to use ldb_module.h instead of ldb_private.h The only 2 modules escaping the rule so far are rootdse and partitions
2009-01-30 16:31:19 -05:00
struct ldb_context *ldb;
r20681: implement the DSDB_EXTENDED_REPLICATED_OBJECTS operation. the merging of existing objects is not implemented yet... there are a few ifdef REPLMD_FULL_ASYNC because we need to workarouns ldb's async infrastructure (which don't handle full async sub requests nicely) metze (This used to be commit da4ff0e7ccde47b3e092313ba22422350cf50f78)
2007-01-11 09:54:10 +00:00
struct dsdb_extended_replicated_objects *objs;
struct replmd_replicated_request *ar;
s4:dsdb: passdown DSDB_CONTROL_REPLICATED_UPDATE_OID for replicated updates We need to make sure replicated updates are handled differently in some situations, e.g. we should bypass the schema checks. metze
2008-09-27 02:27:54 +02:00
struct ldb_control **ctrls;
change repl_meta_data to process linked_attributes structures in end_transaction When running at functional level 2 or above, the repl_meta_data module can receive linked attribute structures from the repl replication task. These attributes can come through DRS before the associated objects have been created. To cope with this, we need to process linked attributes in the end_transaction hook.
2009-09-03 12:55:57 +10:00
int ret, i;
struct replmd_private *replmd_private =
talloc_get_type(ldb_module_get_private(module), struct replmd_private);
r20681: implement the DSDB_EXTENDED_REPLICATED_OBJECTS operation. the merging of existing objects is not implemented yet... there are a few ifdef REPLMD_FULL_ASYNC because we need to workarouns ldb's async infrastructure (which don't handle full async sub requests nicely) metze (This used to be commit da4ff0e7ccde47b3e092313ba22422350cf50f78)
2007-01-11 09:54:10 +00:00
Fix all other modules to use ldb_module.h instead of ldb_private.h The only 2 modules escaping the rule so far are rootdse and partitions
2009-01-30 16:31:19 -05:00
ldb = ldb_module_get_ctx(module);
ldb_debug(ldb, LDB_DEBUG_TRACE, "replmd_extended_replicated_objects\n");
r20681: implement the DSDB_EXTENDED_REPLICATED_OBJECTS operation. the merging of existing objects is not implemented yet... there are a few ifdef REPLMD_FULL_ASYNC because we need to workarouns ldb's async infrastructure (which don't handle full async sub requests nicely) metze (This used to be commit da4ff0e7ccde47b3e092313ba22422350cf50f78)
2007-01-11 09:54:10 +00:00
objs = talloc_get_type(req->op.extended.data, struct dsdb_extended_replicated_objects);
if (!objs) {
Fix all other modules to use ldb_module.h instead of ldb_private.h The only 2 modules escaping the rule so far are rootdse and partitions
2009-01-30 16:31:19 -05:00
ldb_debug(ldb, LDB_DEBUG_FATAL, "replmd_extended_replicated_objects: invalid extended data\n");
r20729: add a version number to struct dsdb_extended_replicated_objects metze (This used to be commit 2e79863d54030526841e5858e7be6a815c25593b)
2007-01-13 11:37:13 +00:00
return LDB_ERR_PROTOCOL_ERROR;
}
if (objs->version != DSDB_EXTENDED_REPLICATED_OBJECTS_VERSION) {
Fix all other modules to use ldb_module.h instead of ldb_private.h The only 2 modules escaping the rule so far are rootdse and partitions
2009-01-30 16:31:19 -05:00
ldb_debug(ldb, LDB_DEBUG_FATAL, "replmd_extended_replicated_objects: extended data invalid version [%u != %u]\n",
r20729: add a version number to struct dsdb_extended_replicated_objects metze (This used to be commit 2e79863d54030526841e5858e7be6a815c25593b)
2007-01-13 11:37:13 +00:00
objs->version, DSDB_EXTENDED_REPLICATED_OBJECTS_VERSION);
r20681: implement the DSDB_EXTENDED_REPLICATED_OBJECTS operation. the merging of existing objects is not implemented yet... there are a few ifdef REPLMD_FULL_ASYNC because we need to workarouns ldb's async infrastructure (which don't handle full async sub requests nicely) metze (This used to be commit da4ff0e7ccde47b3e092313ba22422350cf50f78)
2007-01-11 09:54:10 +00:00
return LDB_ERR_PROTOCOL_ERROR;
}
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
ar = replmd_ctx_init(module, req);
if (!ar)
r20681: implement the DSDB_EXTENDED_REPLICATED_OBJECTS operation. the merging of existing objects is not implemented yet... there are a few ifdef REPLMD_FULL_ASYNC because we need to workarouns ldb's async infrastructure (which don't handle full async sub requests nicely) metze (This used to be commit da4ff0e7ccde47b3e092313ba22422350cf50f78)
2007-01-11 09:54:10 +00:00
return LDB_ERR_OPERATIONS_ERROR;
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
s4:dsdb Use 'partition modified' information to update @REPLCHANGED This major rework of repl_meta_data changes it from using a static list of partitions to a dynamic list created from the controls placed on returned ldb results. To process these in one place, the similar but distinct callbacks are combined into a single replmd_op_callback(), which handles both the 'normal operation' and 'inbound replication' case. This allows new partitions to be created, and replication events for these new partitions to be scheduled immediately. Also in this commit: We no longer specify the target partition for new or modified objects - instead we allow the partitions module to use the DN as normal. THis avoids the issue where we would create two partition head records. Andrew Bartlett
2009-10-16 16:20:15 +11:00
/* Set the flags to have the replmd_op_callback run over the full set of objects */
ar->apply_mode = true;
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
ar->objs = objs;
Fix all other modules to use ldb_module.h instead of ldb_private.h The only 2 modules escaping the rule so far are rootdse and partitions
2009-01-30 16:31:19 -05:00
ar->schema = dsdb_get_schema(ldb);
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
if (!ar->schema) {
Fix all other modules to use ldb_module.h instead of ldb_private.h The only 2 modules escaping the rule so far are rootdse and partitions
2009-01-30 16:31:19 -05:00
ldb_debug_set(ldb, LDB_DEBUG_FATAL, "replmd_ctx_init: no loaded schema found\n");
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
talloc_free(ar);
s4-ldb: added a bunch more debug for DC join These additional debug messages were added to help us track down w2k8->s4 domain join
2009-09-22 14:26:59 -07:00
DEBUG(0,(__location__ ": %s\n", ldb_errstring(ldb)));
LDB ASYNC: samba4 modules
2008-09-11 18:36:28 -04:00
return LDB_ERR_CONSTRAINT_VIOLATION;
r20681: implement the DSDB_EXTENDED_REPLICATED_OBJECTS operation. the merging of existing objects is not implemented yet... there are a few ifdef REPLMD_FULL_ASYNC because we need to workarouns ldb's async infrastructure (which don't handle full async sub requests nicely) metze (This used to be commit da4ff0e7ccde47b3e092313ba22422350cf50f78)
2007-01-11 09:54:10 +00:00
}
s4:dsdb: passdown DSDB_CONTROL_REPLICATED_UPDATE_OID for replicated updates We need to make sure replicated updates are handled differently in some situations, e.g. we should bypass the schema checks. metze
2008-09-27 02:27:54 +02:00
ctrls = req->controls;
if (req->controls) {
req->controls = talloc_memdup(ar, req->controls,
talloc_get_size(req->controls));
if (!req->controls) return replmd_replicated_request_werror(ar, WERR_NOMEM);
}
ret = ldb_request_add_control(req, DSDB_CONTROL_REPLICATED_UPDATE_OID, false, NULL);
if (ret != LDB_SUCCESS) {
return ret;
}
ar->controls = req->controls;
req->controls = ctrls;
change repl_meta_data to process linked_attributes structures in end_transaction When running at functional level 2 or above, the repl_meta_data module can receive linked attribute structures from the repl replication task. These attributes can come through DRS before the associated objects have been created. To cope with this, we need to process linked attributes in the end_transaction hook.
2009-09-03 12:55:57 +10:00
DEBUG(4,("linked_attributes_count=%u\n", objs->linked_attributes_count));
/* save away the linked attributes for the end of the
transaction */
for (i=0; i<ar->objs->linked_attributes_count; i++) {
struct la_entry *la_entry;
s4-repl: fixed a memory error handling linked attributes We could get a double free with multiple linked attributes in a message
2009-09-14 03:44:10 -07:00
if (replmd_private->la_ctx == NULL) {
replmd_private->la_ctx = talloc_new(replmd_private);
change repl_meta_data to process linked_attributes structures in end_transaction When running at functional level 2 or above, the repl_meta_data module can receive linked attribute structures from the repl replication task. These attributes can come through DRS before the associated objects have been created. To cope with this, we need to process linked attributes in the end_transaction hook.
2009-09-03 12:55:57 +10:00
}
s4-repl: fixed a memory error handling linked attributes We could get a double free with multiple linked attributes in a message
2009-09-14 03:44:10 -07:00
la_entry = talloc(replmd_private->la_ctx, struct la_entry);
change repl_meta_data to process linked_attributes structures in end_transaction When running at functional level 2 or above, the repl_meta_data module can receive linked attribute structures from the repl replication task. These attributes can come through DRS before the associated objects have been created. To cope with this, we need to process linked attributes in the end_transaction hook.
2009-09-03 12:55:57 +10:00
if (la_entry == NULL) {
ldb_oom(ldb);
return LDB_ERR_OPERATIONS_ERROR;
}
la_entry->la = talloc(la_entry, struct drsuapi_DsReplicaLinkedAttribute);
if (la_entry->la == NULL) {
s4-repl: keep a @REPLCHANGED object on each partition This object tracks the highest uSN in each partition. It will be used to allow us to efficiently detect changes in a partition for sending DsReplicaSync messages to our replication partners.
2009-09-13 14:24:08 +10:00
talloc_free(la_entry);
change repl_meta_data to process linked_attributes structures in end_transaction When running at functional level 2 or above, the repl_meta_data module can receive linked attribute structures from the repl replication task. These attributes can come through DRS before the associated objects have been created. To cope with this, we need to process linked attributes in the end_transaction hook.
2009-09-03 12:55:57 +10:00
ldb_oom(ldb);
return LDB_ERR_OPERATIONS_ERROR;
}
*la_entry->la = ar->objs->linked_attributes[i];
/* we need to steal the non-scalars so they stay
around until the end of the transaction */
talloc_steal(la_entry->la, la_entry->la->identifier);
talloc_steal(la_entry->la, la_entry->la->value.blob);
DLIST_ADD(replmd_private->la_list, la_entry);
}
r20681: implement the DSDB_EXTENDED_REPLICATED_OBJECTS operation. the merging of existing objects is not implemented yet... there are a few ifdef REPLMD_FULL_ASYNC because we need to workarouns ldb's async infrastructure (which don't handle full async sub requests nicely) metze (This used to be commit da4ff0e7ccde47b3e092313ba22422350cf50f78)
2007-01-11 09:54:10 +00:00
return replmd_replicated_apply_next(ar);
r20587: prepare the DSDB_EXTENDED_REPLICATED_OBJECTS_OID handling metze (This used to be commit ef3b325db060d43a7c2e058f6b8914b5867cd321)
2007-01-06 10:15:02 +00:00
}
change repl_meta_data to process linked_attributes structures in end_transaction When running at functional level 2 or above, the repl_meta_data module can receive linked attribute structures from the repl replication task. These attributes can come through DRS before the associated objects have been created. To cope with this, we need to process linked attributes in the end_transaction hook.
2009-09-03 12:55:57 +10:00
/*
process one linked attribute structure
*/
static int replmd_process_linked_attribute(struct ldb_module *module,
struct la_entry *la_entry)
{
struct drsuapi_DsReplicaLinkedAttribute *la = la_entry->la;
struct ldb_context *ldb = ldb_module_get_ctx(module);
s4:repl Pass schema as argument to replmd_update_rpmd()
2009-10-16 15:11:28 +11:00
struct dsdb_schema *schema = dsdb_get_schema(ldb);
change repl_meta_data to process linked_attributes structures in end_transaction When running at functional level 2 or above, the repl_meta_data module can receive linked attribute structures from the repl replication task. These attributes can come through DRS before the associated objects have been created. To cope with this, we need to process linked attributes in the end_transaction hook.
2009-09-03 12:55:57 +10:00
struct ldb_message *msg;
TALLOC_CTX *tmp_ctx = talloc_new(la_entry);
int ret;
const struct dsdb_attribute *attr;
s4:repl_meta_data Parse linked attributes with schema syntaxes The bug here was that by assuming all linked attributes were 'normal DNs', we would miss the binary portion of DN+Binary. This patch then has us reparse the string to determine it's GUID, for the GUID lookup, but maintains the binary porition into the on-disk format. Andrew Bartlett
2009-11-12 15:39:17 +11:00
struct dsdb_dn *dsdb_dn;
s4-dsdb: update replPropertyMetaData on linked attribute source attributes
2009-09-25 20:38:20 -07:00
uint64_t seq_num = 0;
s4-drs: use dsdb linked attribute parse functions This makes the code considerably more readable
2009-12-28 17:19:29 +11:00
struct ldb_message_element *old_el;
s4:repl_meta_data Parse linked attributes with schema syntaxes The bug here was that by assuming all linked attributes were 'normal DNs', we would miss the binary portion of DN+Binary. This patch then has us reparse the string to determine it's GUID, for the GUID lookup, but maintains the binary porition into the on-disk format. Andrew Bartlett
2009-11-12 15:39:17 +11:00
WERROR status;
s4-dsdb: add support for storing linked attribute meta data in extended DNs When in functional levels above w2k, we need to store much richer meta data about linkked attributes. We also need to keep deleted linked attributes around to allow the deletion to be propogated to other DCs. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-10 23:48:30 +11:00
time_t t = time(NULL);
s4-dsdb: store full meta data from DRS for linked attributes Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-18 20:57:21 +11:00
struct ldb_result *res;
const char *attrs[2];
struct parsed_dn *pdn_list, *pdn;
s4-drs: cope better with NULL GUIDS from DRS It is valid to get a NULL GUID over DRS for a deleted forward link. We need to match by DN if possible when seeing if we should update an existing link. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-21 21:21:55 +11:00
struct GUID guid = GUID_zero();
s4-dsdb: store full meta data from DRS for linked attributes Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-18 20:57:21 +11:00
NTSTATUS ntstatus;
bool active = (la->flags & DRSUAPI_DS_LINKED_ATTRIBUTE_FLAG_ACTIVE)?true:false;
s4-dsdb: auto-upgrade w2k formatted linked attributes when modified When any value of a w2k formatted linked attribute is modified, upgrade the links.
2009-12-19 19:57:37 +11:00
const struct GUID *our_invocation_id;
s4:repl_meta_data Parse linked attributes with schema syntaxes The bug here was that by assuming all linked attributes were 'normal DNs', we would miss the binary portion of DN+Binary. This patch then has us reparse the string to determine it's GUID, for the GUID lookup, but maintains the binary porition into the on-disk format. Andrew Bartlett
2009-11-12 15:39:17 +11:00
change repl_meta_data to process linked_attributes structures in end_transaction When running at functional level 2 or above, the repl_meta_data module can receive linked attribute structures from the repl replication task. These attributes can come through DRS before the associated objects have been created. To cope with this, we need to process linked attributes in the end_transaction hook.
2009-09-03 12:55:57 +10:00
/*
linked_attributes[0]:
&objs->linked_attributes[i]: struct drsuapi_DsReplicaLinkedAttribute
identifier : *
identifier: struct drsuapi_DsReplicaObjectIdentifier
__ndr_size : 0x0000003a (58)
__ndr_size_sid : 0x00000000 (0)
guid : 8e95b6a9-13dd-4158-89db-3220a5be5cc7
sid : S-0-0
__ndr_size_dn : 0x00000000 (0)
dn : ''
attid : DRSUAPI_ATTRIBUTE_member (0x1F)
value: struct drsuapi_DsAttributeValue
__ndr_size : 0x0000007e (126)
blob : *
blob : DATA_BLOB length=126
flags : 0x00000001 (1)
1: DRSUAPI_DS_LINKED_ATTRIBUTE_FLAG_ACTIVE
originating_add_time : Wed Sep 2 22:20:01 2009 EST
meta_data: struct drsuapi_DsReplicaMetaData
version : 0x00000015 (21)
originating_change_time : Wed Sep 2 23:39:07 2009 EST
originating_invocation_id: 794640f3-18cf-40ee-a211-a93992b67a64
originating_usn : 0x000000000001e19c (123292)
s4:repl_meta_data Parse linked attributes with schema syntaxes The bug here was that by assuming all linked attributes were 'normal DNs', we would miss the binary portion of DN+Binary. This patch then has us reparse the string to determine it's GUID, for the GUID lookup, but maintains the binary porition into the on-disk format. Andrew Bartlett
2009-11-12 15:39:17 +11:00
(for cases where the link is to a normal DN)
change repl_meta_data to process linked_attributes structures in end_transaction When running at functional level 2 or above, the repl_meta_data module can receive linked attribute structures from the repl replication task. These attributes can come through DRS before the associated objects have been created. To cope with this, we need to process linked attributes in the end_transaction hook.
2009-09-03 12:55:57 +10:00
&target: struct drsuapi_DsReplicaObjectIdentifier3
__ndr_size : 0x0000007e (126)
__ndr_size_sid : 0x0000001c (28)
guid : 7639e594-db75-4086-b0d4-67890ae46031
sid : S-1-5-21-2848215498-2472035911-1947525656-19924
__ndr_size_dn : 0x00000022 (34)
dn : 'CN=UOne,OU=TestOU,DC=vsofs8,DC=com'
*/
s4:repl_meta_data Parse linked attributes with schema syntaxes The bug here was that by assuming all linked attributes were 'normal DNs', we would miss the binary portion of DN+Binary. This patch then has us reparse the string to determine it's GUID, for the GUID lookup, but maintains the binary porition into the on-disk format. Andrew Bartlett
2009-11-12 15:39:17 +11:00
/* find the attribute being modified */
attr = dsdb_attribute_by_attributeID_id(schema, la->attid);
if (attr == NULL) {
DEBUG(0, (__location__ ": Unable to find attributeID 0x%x\n", la->attid));
change repl_meta_data to process linked_attributes structures in end_transaction When running at functional level 2 or above, the repl_meta_data module can receive linked attribute structures from the repl replication task. These attributes can come through DRS before the associated objects have been created. To cope with this, we need to process linked attributes in the end_transaction hook.
2009-09-03 12:55:57 +10:00
talloc_free(tmp_ctx);
return LDB_ERR_OPERATIONS_ERROR;
}
s4:repl_meta_data Parse linked attributes with schema syntaxes The bug here was that by assuming all linked attributes were 'normal DNs', we would miss the binary portion of DN+Binary. This patch then has us reparse the string to determine it's GUID, for the GUID lookup, but maintains the binary porition into the on-disk format. Andrew Bartlett
2009-11-12 15:39:17 +11:00
s4-dsdb: store full meta data from DRS for linked attributes Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-18 20:57:21 +11:00
attrs[0] = attr->lDAPDisplayName;
attrs[1] = NULL;
change repl_meta_data to process linked_attributes structures in end_transaction When running at functional level 2 or above, the repl_meta_data module can receive linked attribute structures from the repl replication task. These attributes can come through DRS before the associated objects have been created. To cope with this, we need to process linked attributes in the end_transaction hook.
2009-09-03 12:55:57 +10:00
s4-dsdb: store full meta data from DRS for linked attributes Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-18 20:57:21 +11:00
/* get the existing message from the db for the object with
this GUID, returning attribute being modified. We will then
use this msg as the basis for a modify call */
ret = dsdb_module_search(module, tmp_ctx, &res, NULL, LDB_SCOPE_SUBTREE, attrs,
DSDB_SEARCH_SEARCH_ALL_PARTITIONS |
DSDB_SEARCH_SHOW_DELETED |
DSDB_SEARCH_SHOW_DN_IN_STORAGE_FORMAT |
DSDB_SEARCH_REVEAL_INTERNALS,
"objectGUID=%s", GUID_string(tmp_ctx, &la->identifier->guid));
change repl_meta_data to process linked_attributes structures in end_transaction When running at functional level 2 or above, the repl_meta_data module can receive linked attribute structures from the repl replication task. These attributes can come through DRS before the associated objects have been created. To cope with this, we need to process linked attributes in the end_transaction hook.
2009-09-03 12:55:57 +10:00
if (ret != LDB_SUCCESS) {
talloc_free(tmp_ctx);
return ret;
}
s4-dsdb: store full meta data from DRS for linked attributes Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-18 20:57:21 +11:00
if (res->count != 1) {
ldb_asprintf_errstring(ldb, "DRS linked attribute for GUID %s - DN not found",
GUID_string(tmp_ctx, &la->identifier->guid));
talloc_free(tmp_ctx);
return LDB_ERR_NO_SUCH_OBJECT;
}
msg = res->msgs[0];
change repl_meta_data to process linked_attributes structures in end_transaction When running at functional level 2 or above, the repl_meta_data module can receive linked attribute structures from the repl replication task. These attributes can come through DRS before the associated objects have been created. To cope with this, we need to process linked attributes in the end_transaction hook.
2009-09-03 12:55:57 +10:00
s4-dsdb: store full meta data from DRS for linked attributes Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-18 20:57:21 +11:00
if (msg->num_elements == 0) {
ret = ldb_msg_add_empty(msg, attr->lDAPDisplayName, LDB_FLAG_MOD_REPLACE, &old_el);
if (ret != LDB_SUCCESS) {
ldb_module_oom(module);
talloc_free(tmp_ctx);
return LDB_ERR_OPERATIONS_ERROR;
}
change repl_meta_data to process linked_attributes structures in end_transaction When running at functional level 2 or above, the repl_meta_data module can receive linked attribute structures from the repl replication task. These attributes can come through DRS before the associated objects have been created. To cope with this, we need to process linked attributes in the end_transaction hook.
2009-09-03 12:55:57 +10:00
} else {
s4-dsdb: store full meta data from DRS for linked attributes Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-18 20:57:21 +11:00
old_el = &msg->elements[0];
old_el->flags = LDB_FLAG_MOD_REPLACE;
change repl_meta_data to process linked_attributes structures in end_transaction When running at functional level 2 or above, the repl_meta_data module can receive linked attribute structures from the repl replication task. These attributes can come through DRS before the associated objects have been created. To cope with this, we need to process linked attributes in the end_transaction hook.
2009-09-03 12:55:57 +10:00
}
s4-dsdb: store full meta data from DRS for linked attributes Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-18 20:57:21 +11:00
/* parse the existing links */
ret = get_parsed_dns(module, tmp_ctx, old_el, &pdn_list, attr->syntax->ldap_oid);
change repl_meta_data to process linked_attributes structures in end_transaction When running at functional level 2 or above, the repl_meta_data module can receive linked attribute structures from the repl replication task. These attributes can come through DRS before the associated objects have been created. To cope with this, we need to process linked attributes in the end_transaction hook.
2009-09-03 12:55:57 +10:00
if (ret != LDB_SUCCESS) {
talloc_free(tmp_ctx);
return ret;
}
s4:repl_meta_data Parse linked attributes with schema syntaxes The bug here was that by assuming all linked attributes were 'normal DNs', we would miss the binary portion of DN+Binary. This patch then has us reparse the string to determine it's GUID, for the GUID lookup, but maintains the binary porition into the on-disk format. Andrew Bartlett
2009-11-12 15:39:17 +11:00
s4-dsdb: auto-upgrade w2k formatted linked attributes when modified When any value of a w2k formatted linked attribute is modified, upgrade the links.
2009-12-19 19:57:37 +11:00
/* get our invocationId */
our_invocation_id = samdb_ntds_invocation_id(ldb);
if (!our_invocation_id) {
ldb_debug_set(ldb, LDB_DEBUG_ERROR, __location__ ": unable to find invocationId\n");
talloc_free(tmp_ctx);
return LDB_ERR_OPERATIONS_ERROR;
}
ret = replmd_check_upgrade_links(pdn_list, old_el->num_values, our_invocation_id);
if (ret != LDB_SUCCESS) {
talloc_free(tmp_ctx);
return ret;
}
s4-drs: use dsdb linked attribute parse functions This makes the code considerably more readable
2009-12-28 17:19:29 +11:00
status = dsdb_dn_la_from_blob(ldb, attr, schema, tmp_ctx, la->value.blob, &dsdb_dn);
s4-dsdb: store full meta data from DRS for linked attributes Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-18 20:57:21 +11:00
if (!W_ERROR_IS_OK(status)) {
s4-drs: use dsdb linked attribute parse functions This makes the code considerably more readable
2009-12-28 17:19:29 +11:00
ldb_asprintf_errstring(ldb, "Failed to parsed linked attribute blob for %s on %s - %s\n",
old_el->name, ldb_dn_get_linearized(msg->dn), win_errstr(status));
change repl_meta_data to process linked_attributes structures in end_transaction When running at functional level 2 or above, the repl_meta_data module can receive linked attribute structures from the repl replication task. These attributes can come through DRS before the associated objects have been created. To cope with this, we need to process linked attributes in the end_transaction hook.
2009-09-03 12:55:57 +10:00
return LDB_ERR_OPERATIONS_ERROR;
s4:repl_meta_data Parse linked attributes with schema syntaxes The bug here was that by assuming all linked attributes were 'normal DNs', we would miss the binary portion of DN+Binary. This patch then has us reparse the string to determine it's GUID, for the GUID lookup, but maintains the binary porition into the on-disk format. Andrew Bartlett
2009-11-12 15:39:17 +11:00
}
change repl_meta_data to process linked_attributes structures in end_transaction When running at functional level 2 or above, the repl_meta_data module can receive linked attribute structures from the repl replication task. These attributes can come through DRS before the associated objects have been created. To cope with this, we need to process linked attributes in the end_transaction hook.
2009-09-03 12:55:57 +10:00
s4-dsdb: store full meta data from DRS for linked attributes Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-18 20:57:21 +11:00
ntstatus = dsdb_get_extended_dn_guid(dsdb_dn->dn, &guid, "GUID");
s4-drs: cope better with NULL GUIDS from DRS It is valid to get a NULL GUID over DRS for a deleted forward link. We need to match by DN if possible when seeing if we should update an existing link. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-21 21:21:55 +11:00
if (!NT_STATUS_IS_OK(ntstatus) && active) {
ldb_asprintf_errstring(ldb, "Failed to find GUID in linked attribute blob for %s on %s from %s",
old_el->name,
ldb_dn_get_linearized(dsdb_dn->dn),
ldb_dn_get_linearized(msg->dn));
s4-dsdb: store full meta data from DRS for linked attributes Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-18 20:57:21 +11:00
return LDB_ERR_OPERATIONS_ERROR;
s4-dsdb: update replPropertyMetaData on linked attribute source attributes
2009-09-25 20:38:20 -07:00
}
s4-drs: re-resolve the DN in linked attribute processing w2k8-r2 sometimes sends the DN with an old target
2009-12-28 17:22:12 +11:00
/* re-resolve the DN by GUID, as the DRS server may give us an
old DN value */
ret = dsdb_module_dn_by_guid(module, dsdb_dn, &guid, &dsdb_dn->dn);
if (ret != LDB_SUCCESS) {
ldb_asprintf_errstring(ldb, __location__ ": Failed to re-resolve GUID %s",
GUID_string(tmp_ctx, &guid));
talloc_free(tmp_ctx);
return ret;
}
s4-dsdb: store full meta data from DRS for linked attributes Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-18 20:57:21 +11:00
/* see if this link already exists */
s4-drs: cope better with NULL GUIDS from DRS It is valid to get a NULL GUID over DRS for a deleted forward link. We need to match by DN if possible when seeing if we should update an existing link. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-21 21:21:55 +11:00
pdn = parsed_dn_find(pdn_list, old_el->num_values, &guid, dsdb_dn->dn);
s4-dsdb: store full meta data from DRS for linked attributes Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-18 20:57:21 +11:00
if (pdn != NULL) {
/* see if this update is newer than what we have already */
struct GUID invocation_id = GUID_zero();
uint32_t version = 0;
NTTIME change_time = 0;
bool was_active = ldb_dn_get_extended_component(pdn->dsdb_dn->dn, "DELETED") == NULL;
dsdb_get_extended_dn_guid(pdn->dsdb_dn->dn, &invocation_id, "RMD_INVOCID");
dsdb_get_extended_dn_uint32(pdn->dsdb_dn->dn, &version, "RMD_VERSION");
dsdb_get_extended_dn_nttime(pdn->dsdb_dn->dn, &change_time, "RMD_CHANGETIME");
if (!replmd_update_is_newer(&invocation_id,
&la->meta_data.originating_invocation_id,
version,
la->meta_data.version,
change_time,
la->meta_data.originating_change_time)) {
DEBUG(1,("Discarding older DRS linked attribute update to %s on %s from %s\n",
old_el->name, ldb_dn_get_linearized(msg->dn),
GUID_string(tmp_ctx, &la->meta_data.originating_invocation_id)));
s4-dsdb: update replPropertyMetaData on linked attribute source attributes
2009-09-25 20:38:20 -07:00
talloc_free(tmp_ctx);
s4-dsdb: store full meta data from DRS for linked attributes Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-18 20:57:21 +11:00
return LDB_SUCCESS;
s4-dsdb: update replPropertyMetaData on linked attribute source attributes
2009-09-25 20:38:20 -07:00
}
s4-dsdb: store full meta data from DRS for linked attributes Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-18 20:57:21 +11:00
/* get a seq_num for this change */
ret = ldb_sequence_number(ldb, LDB_SEQ_NEXT, &seq_num);
if (ret != LDB_SUCCESS) {
s4-dsdb: update replPropertyMetaData on linked attribute source attributes
2009-09-25 20:38:20 -07:00
talloc_free(tmp_ctx);
s4-dsdb: store full meta data from DRS for linked attributes Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-18 20:57:21 +11:00
return ret;
s4-dsdb: update replPropertyMetaData on linked attribute source attributes
2009-09-25 20:38:20 -07:00
}
change repl_meta_data to process linked_attributes structures in end_transaction When running at functional level 2 or above, the repl_meta_data module can receive linked attribute structures from the repl replication task. These attributes can come through DRS before the associated objects have been created. To cope with this, we need to process linked attributes in the end_transaction hook.
2009-09-03 12:55:57 +10:00
s4-dsdb: store full meta data from DRS for linked attributes Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-18 20:57:21 +11:00
if (was_active) {
/* remove the existing backlink */
ret = replmd_add_backlink(module, schema, &la->identifier->guid, &guid, false, attr, false);
if (ret != LDB_SUCCESS) {
talloc_free(tmp_ctx);
return ret;
}
}
change repl_meta_data to process linked_attributes structures in end_transaction When running at functional level 2 or above, the repl_meta_data module can receive linked attribute structures from the repl replication task. These attributes can come through DRS before the associated objects have been created. To cope with this, we need to process linked attributes in the end_transaction hook.
2009-09-03 12:55:57 +10:00
s4-dsdb: store full meta data from DRS for linked attributes Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-18 20:57:21 +11:00
ret = replmd_update_la_val(tmp_ctx, pdn->v, dsdb_dn, pdn->dsdb_dn,
&la->meta_data.originating_invocation_id,
la->meta_data.originating_usn, seq_num,
la->meta_data.originating_change_time,
s4-dsdb: fill in the correct version number of links that come over DRS
2009-12-20 00:10:40 +11:00
la->meta_data.version,
s4-dsdb: store full meta data from DRS for linked attributes Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-18 20:57:21 +11:00
!active);
if (ret != LDB_SUCCESS) {
talloc_free(tmp_ctx);
return ret;
}
change repl_meta_data to process linked_attributes structures in end_transaction When running at functional level 2 or above, the repl_meta_data module can receive linked attribute structures from the repl replication task. These attributes can come through DRS before the associated objects have been created. To cope with this, we need to process linked attributes in the end_transaction hook.
2009-09-03 12:55:57 +10:00
s4-dsdb: store full meta data from DRS for linked attributes Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-18 20:57:21 +11:00
if (active) {
/* add the new backlink */
ret = replmd_add_backlink(module, schema, &la->identifier->guid, &guid, true, attr, false);
if (ret != LDB_SUCCESS) {
talloc_free(tmp_ctx);
return ret;
}
}
} else {
/* get a seq_num for this change */
ret = ldb_sequence_number(ldb, LDB_SEQ_NEXT, &seq_num);
if (ret != LDB_SUCCESS) {
s4-drs: cope with dupliate linked attributes With a w2k8-R2 DC, we sometimes get linked attribute updates via DRS which are duplicates of entries that we already have. We need to cope with this by using a remove/add pair in the ldb_modify() to avoid a "entry already exists" error
2009-09-18 14:10:42 -07:00
talloc_free(tmp_ctx);
s4-dsdb: store full meta data from DRS for linked attributes Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-18 20:57:21 +11:00
return ret;
}
old_el->values = talloc_realloc(msg->elements, old_el->values,
struct ldb_val, old_el->num_values+1);
if (!old_el->values) {
ldb_module_oom(module);
s4-drs: cope with dupliate linked attributes With a w2k8-R2 DC, we sometimes get linked attribute updates via DRS which are duplicates of entries that we already have. We need to cope with this by using a remove/add pair in the ldb_modify() to avoid a "entry already exists" error
2009-09-18 14:10:42 -07:00
return LDB_ERR_OPERATIONS_ERROR;
}
s4-dsdb: store full meta data from DRS for linked attributes Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-18 20:57:21 +11:00
old_el->num_values++;
ret = replmd_build_la_val(tmp_ctx, &old_el->values[old_el->num_values-1], dsdb_dn,
&la->meta_data.originating_invocation_id,
la->meta_data.originating_usn, seq_num,
la->meta_data.originating_change_time,
s4-dsdb: fill in the correct version number of links that come over DRS
2009-12-20 00:10:40 +11:00
la->meta_data.version,
s4-dsdb: store full meta data from DRS for linked attributes Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-18 20:57:21 +11:00
(la->flags & DRSUAPI_DS_LINKED_ATTRIBUTE_FLAG_ACTIVE)?false:true);
s4-drs: cope with dupliate linked attributes With a w2k8-R2 DC, we sometimes get linked attribute updates via DRS which are duplicates of entries that we already have. We need to cope with this by using a remove/add pair in the ldb_modify() to avoid a "entry already exists" error
2009-09-18 14:10:42 -07:00
if (ret != LDB_SUCCESS) {
talloc_free(tmp_ctx);
return ret;
}
s4-dsdb: store full meta data from DRS for linked attributes Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-18 20:57:21 +11:00
if (active) {
ret = replmd_add_backlink(module, schema, &la->identifier->guid, &guid,
true, attr, false);
if (ret != LDB_SUCCESS) {
talloc_free(tmp_ctx);
return ret;
}
s4-drs: cope with dupliate linked attributes With a w2k8-R2 DC, we sometimes get linked attribute updates via DRS which are duplicates of entries that we already have. We need to cope with this by using a remove/add pair in the ldb_modify() to avoid a "entry already exists" error
2009-09-18 14:10:42 -07:00
}
}
s4-dsdb: store full meta data from DRS for linked attributes Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-18 20:57:21 +11:00
/* we only change whenChanged and uSNChanged if the seq_num
has changed */
if (add_time_element(msg, "whenChanged", t) != LDB_SUCCESS) {
talloc_free(tmp_ctx);
return LDB_ERR_OPERATIONS_ERROR;
}
if (add_uint64_element(msg, "uSNChanged", seq_num) != LDB_SUCCESS) {
talloc_free(tmp_ctx);
return LDB_ERR_OPERATIONS_ERROR;
}
s4-dsdb: move checking for single valued links to samba modules This uses the RELAX control and checking of single valued attributes in ldb modules to avoid problems with multi-valued links where all values but one are deleted
2009-12-19 21:42:40 +11:00
ret = dsdb_check_single_valued_link(attr, old_el);
if (ret != LDB_SUCCESS) {
talloc_free(tmp_ctx);
return ret;
}
ret = dsdb_module_modify(module, msg, DSDB_MODIFY_RELAX);
change repl_meta_data to process linked_attributes structures in end_transaction When running at functional level 2 or above, the repl_meta_data module can receive linked attribute structures from the repl replication task. These attributes can come through DRS before the associated objects have been created. To cope with this, we need to process linked attributes in the end_transaction hook.
2009-09-03 12:55:57 +10:00
if (ret != LDB_SUCCESS) {
s4-dsdb: move checking for single valued links to samba modules This uses the RELAX control and checking of single valued attributes in ldb modules to avoid problems with multi-valued links where all values but one are deleted
2009-12-19 21:42:40 +11:00
ldb_debug(ldb, LDB_DEBUG_WARNING, "Failed to apply linked attribute change '%s'\n%s\n",
change repl_meta_data to process linked_attributes structures in end_transaction When running at functional level 2 or above, the repl_meta_data module can receive linked attribute structures from the repl replication task. These attributes can come through DRS before the associated objects have been created. To cope with this, we need to process linked attributes in the end_transaction hook.
2009-09-03 12:55:57 +10:00
ldb_errstring(ldb),
ldb_ldif_message_string(ldb, tmp_ctx, LDB_CHANGETYPE_MODIFY, msg));
s4-dsdb: store full meta data from DRS for linked attributes Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-18 20:57:21 +11:00
talloc_free(tmp_ctx);
return ret;
change repl_meta_data to process linked_attributes structures in end_transaction When running at functional level 2 or above, the repl_meta_data module can receive linked attribute structures from the repl replication task. These attributes can come through DRS before the associated objects have been created. To cope with this, we need to process linked attributes in the end_transaction hook.
2009-09-03 12:55:57 +10:00
}
talloc_free(tmp_ctx);
return ret;
}
r20587: prepare the DSDB_EXTENDED_REPLICATED_OBJECTS_OID handling metze (This used to be commit ef3b325db060d43a7c2e058f6b8914b5867cd321)
2007-01-06 10:15:02 +00:00
static int replmd_extended(struct ldb_module *module, struct ldb_request *req)
{
if (strcmp(req->op.extended.oid, DSDB_EXTENDED_REPLICATED_OBJECTS_OID) == 0) {
return replmd_extended_replicated_objects(module, req);
}
return ldb_next_request(module, req);
}
change repl_meta_data to process linked_attributes structures in end_transaction When running at functional level 2 or above, the repl_meta_data module can receive linked attribute structures from the repl replication task. These attributes can come through DRS before the associated objects have been created. To cope with this, we need to process linked attributes in the end_transaction hook.
2009-09-03 12:55:57 +10:00
/*
we hook into the transaction operations to allow us to
perform the linked attribute updates at the end of the whole
transaction. This allows a forward linked attribute to be created
before the object is created. During a vampire, w2k8 sends us linked
attributes before the objects they are part of.
*/
static int replmd_start_transaction(struct ldb_module *module)
{
/* create our private structure for this transaction */
struct replmd_private *replmd_private = talloc_get_type(ldb_module_get_private(module),
struct replmd_private);
s4-dsdb: added support for backlinks in repl_meta_data backlinks need more careful handling now that we store the additional meta data for deleted links. It is easier to handle this in repl_meta_data than in linked_attributes. Eventually linked_attributes will disappear, with the functionality moved into repl_meta_data. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-16 11:34:33 +11:00
replmd_txn_cleanup(replmd_private);
s4-repl: keep a @REPLCHANGED object on each partition This object tracks the highest uSN in each partition. It will be used to allow us to efficiently detect changes in a partition for sending DsReplicaSync messages to our replication partners.
2009-09-13 14:24:08 +10:00
s4-dsdb: make sure mod_usn list is zeroed on each transaction
2009-11-20 12:09:24 +11:00
/* free any leftover mod_usn records from cancelled
transactions */
while (replmd_private->ncs) {
struct nc_entry *e = replmd_private->ncs;
DLIST_REMOVE(replmd_private->ncs, e);
talloc_free(e);
s4-repl: keep a @REPLCHANGED object on each partition This object tracks the highest uSN in each partition. It will be used to allow us to efficiently detect changes in a partition for sending DsReplicaSync messages to our replication partners.
2009-09-13 14:24:08 +10:00
}
change repl_meta_data to process linked_attributes structures in end_transaction When running at functional level 2 or above, the repl_meta_data module can receive linked attribute structures from the repl replication task. These attributes can come through DRS before the associated objects have been created. To cope with this, we need to process linked attributes in the end_transaction hook.
2009-09-03 12:55:57 +10:00
return ldb_next_start_trans(module);
}
/*
hook on prepare_commit instead of transaction_end This allows for safe transaction end aborts
2009-09-03 18:33:17 +10:00
on prepare commit we loop over our queued la_context structures and
change repl_meta_data to process linked_attributes structures in end_transaction When running at functional level 2 or above, the repl_meta_data module can receive linked attribute structures from the repl replication task. These attributes can come through DRS before the associated objects have been created. To cope with this, we need to process linked attributes in the end_transaction hook.
2009-09-03 12:55:57 +10:00
apply each of them
*/
hook on prepare_commit instead of transaction_end This allows for safe transaction end aborts
2009-09-03 18:33:17 +10:00
static int replmd_prepare_commit(struct ldb_module *module)
change repl_meta_data to process linked_attributes structures in end_transaction When running at functional level 2 or above, the repl_meta_data module can receive linked attribute structures from the repl replication task. These attributes can come through DRS before the associated objects have been created. To cope with this, we need to process linked attributes in the end_transaction hook.
2009-09-03 12:55:57 +10:00
{
struct replmd_private *replmd_private =
talloc_get_type(ldb_module_get_private(module), struct replmd_private);
s4-repl: keep a @REPLCHANGED object on each partition This object tracks the highest uSN in each partition. It will be used to allow us to efficiently detect changes in a partition for sending DsReplicaSync messages to our replication partners.
2009-09-13 14:24:08 +10:00
struct la_entry *la, *prev;
s4-dsdb: added support for backlinks in repl_meta_data backlinks need more careful handling now that we store the additional meta data for deleted links. It is easier to handle this in repl_meta_data than in linked_attributes. Eventually linked_attributes will disappear, with the functionality moved into repl_meta_data. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-16 11:34:33 +11:00
struct la_backlink *bl;
s4-repl: keep a @REPLCHANGED object on each partition This object tracks the highest uSN in each partition. It will be used to allow us to efficiently detect changes in a partition for sending DsReplicaSync messages to our replication partners.
2009-09-13 14:24:08 +10:00
int ret;
change repl_meta_data to process linked_attributes structures in end_transaction When running at functional level 2 or above, the repl_meta_data module can receive linked attribute structures from the repl replication task. These attributes can come through DRS before the associated objects have been created. To cope with this, we need to process linked attributes in the end_transaction hook.
2009-09-03 12:55:57 +10:00
/* walk the list backwards, to do the first entry first, as we
* added the entries with DLIST_ADD() which puts them at the
* start of the list */
for (la = replmd_private->la_list; la && la->next; la=la->next) ;
s4-repl: keep a @REPLCHANGED object on each partition This object tracks the highest uSN in each partition. It will be used to allow us to efficiently detect changes in a partition for sending DsReplicaSync messages to our replication partners.
2009-09-13 14:24:08 +10:00
for (; la; la=prev) {
prev = la->prev;
DLIST_REMOVE(replmd_private->la_list, la);
change repl_meta_data to process linked_attributes structures in end_transaction When running at functional level 2 or above, the repl_meta_data module can receive linked attribute structures from the repl replication task. These attributes can come through DRS before the associated objects have been created. To cope with this, we need to process linked attributes in the end_transaction hook.
2009-09-03 12:55:57 +10:00
ret = replmd_process_linked_attribute(module, la);
if (ret != LDB_SUCCESS) {
s4-dsdb: added support for backlinks in repl_meta_data backlinks need more careful handling now that we store the additional meta data for deleted links. It is easier to handle this in repl_meta_data than in linked_attributes. Eventually linked_attributes will disappear, with the functionality moved into repl_meta_data. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-16 11:34:33 +11:00
replmd_txn_cleanup(replmd_private);
change repl_meta_data to process linked_attributes structures in end_transaction When running at functional level 2 or above, the repl_meta_data module can receive linked attribute structures from the repl replication task. These attributes can come through DRS before the associated objects have been created. To cope with this, we need to process linked attributes in the end_transaction hook.
2009-09-03 12:55:57 +10:00
return ret;
}
}
hook on prepare_commit instead of transaction_end This allows for safe transaction end aborts
2009-09-03 18:33:17 +10:00
s4-dsdb: added support for backlinks in repl_meta_data backlinks need more careful handling now that we store the additional meta data for deleted links. It is easier to handle this in repl_meta_data than in linked_attributes. Eventually linked_attributes will disappear, with the functionality moved into repl_meta_data. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-16 11:34:33 +11:00
/* process our backlink list, creating and deleting backlinks
as necessary */
for (bl=replmd_private->la_backlinks; bl; bl=bl->next) {
ret = replmd_process_backlink(module, bl);
if (ret != LDB_SUCCESS) {
replmd_txn_cleanup(replmd_private);
return ret;
}
}
replmd_txn_cleanup(replmd_private);
s4-repl: keep a @REPLCHANGED object on each partition This object tracks the highest uSN in each partition. It will be used to allow us to efficiently detect changes in a partition for sending DsReplicaSync messages to our replication partners.
2009-09-13 14:24:08 +10:00
/* possibly change @REPLCHANGED */
ret = replmd_notify_store(module);
if (ret != LDB_SUCCESS) {
return ret;
}
change repl_meta_data to process linked_attributes structures in end_transaction When running at functional level 2 or above, the repl_meta_data module can receive linked attribute structures from the repl replication task. These attributes can come through DRS before the associated objects have been created. To cope with this, we need to process linked attributes in the end_transaction hook.
2009-09-03 12:55:57 +10:00
hook on prepare_commit instead of transaction_end This allows for safe transaction end aborts
2009-09-03 18:33:17 +10:00
return ldb_next_prepare_commit(module);
change repl_meta_data to process linked_attributes structures in end_transaction When running at functional level 2 or above, the repl_meta_data module can receive linked attribute structures from the repl replication task. These attributes can come through DRS before the associated objects have been created. To cope with this, we need to process linked attributes in the end_transaction hook.
2009-09-03 12:55:57 +10:00
}
static int replmd_del_transaction(struct ldb_module *module)
{
struct replmd_private *replmd_private =
talloc_get_type(ldb_module_get_private(module), struct replmd_private);
s4-dsdb: added support for backlinks in repl_meta_data backlinks need more careful handling now that we store the additional meta data for deleted links. It is easier to handle this in repl_meta_data than in linked_attributes. Eventually linked_attributes will disappear, with the functionality moved into repl_meta_data. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-16 11:34:33 +11:00
replmd_txn_cleanup(replmd_private);
change repl_meta_data to process linked_attributes structures in end_transaction When running at functional level 2 or above, the repl_meta_data module can receive linked attribute structures from the repl replication task. These attributes can come through DRS before the associated objects have been created. To cope with this, we need to process linked attributes in the end_transaction hook.
2009-09-03 12:55:57 +10:00
return ldb_next_del_trans(module);
}
Fix use of some modules (needed _PUBLIC_). (This used to be commit ce332130ea77159832da23bab760fa26921719e2)
2008-02-20 04:33:43 +01:00
_PUBLIC_ const struct ldb_module_ops ldb_repl_meta_data_module_ops = {
r20522: make a copy of the objectguid ldb module because: - I'll add handling of replication meta data to it for orginating changes - I'll pass replication meta data via a ldb control for applying replicated changes - It will also update the replUpToDateVector attribute in in root object of the partition - It will handle deleted records by adding the isDeleted=TRUE attribute and move them to the CN=Deleted Objects container of the partition - I make a copy to play with the code without breaking the LDAP backend setup metze (This used to be commit 045ddfe1ec626fab5e8fd75c5b47f0525b7ebb01)
2007-01-04 12:10:55 +00:00
.name = "repl_meta_data",
s4-repl: keep a @REPLCHANGED object on each partition This object tracks the highest uSN in each partition. It will be used to allow us to efficiently detect changes in a partition for sending DsReplicaSync messages to our replication partners.
2009-09-13 14:24:08 +10:00
.init_context = replmd_init,
.add = replmd_add,
.modify = replmd_modify,
s4-repl: handle rename in repl_meta_data On a rename we need to update uSNChanged, and the max uSN for the partition
2009-09-14 13:13:12 -07:00
.rename = replmd_rename,
s4-dsdb: added replmd_delete, based on Eduardos work This implements repmld_delete(), which handles the meta_data updates for an object when deleting. A delete gets mapped to a combination of a rename followed by a modify request, which has the effect of moving the object into the Deleted Objects container. This is based on the code from Eduardo Lima <eduardoll@gmail.com>. Eduardo's code was modified to take account of the linked attributes changes that Andrew and I have been working on. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2009-12-16 17:24:21 +11:00
.del = replmd_delete,
s4-repl: keep a @REPLCHANGED object on each partition This object tracks the highest uSN in each partition. It will be used to allow us to efficiently detect changes in a partition for sending DsReplicaSync messages to our replication partners.
2009-09-13 14:24:08 +10:00
.extended = replmd_extended,
change repl_meta_data to process linked_attributes structures in end_transaction When running at functional level 2 or above, the repl_meta_data module can receive linked attribute structures from the repl replication task. These attributes can come through DRS before the associated objects have been created. To cope with this, we need to process linked attributes in the end_transaction hook.
2009-09-03 12:55:57 +10:00
.start_transaction = replmd_start_transaction,
hook on prepare_commit instead of transaction_end This allows for safe transaction end aborts
2009-09-03 18:33:17 +10:00
.prepare_commit = replmd_prepare_commit,
change repl_meta_data to process linked_attributes structures in end_transaction When running at functional level 2 or above, the repl_meta_data module can receive linked attribute structures from the repl replication task. These attributes can come through DRS before the associated objects have been created. To cope with this, we need to process linked attributes in the end_transaction hook.
2009-09-03 12:55:57 +10:00
.del_transaction = replmd_del_transaction,
r20522: make a copy of the objectguid ldb module because: - I'll add handling of replication meta data to it for orginating changes - I'll pass replication meta data via a ldb control for applying replicated changes - It will also update the replUpToDateVector attribute in in root object of the partition - It will handle deleted records by adding the isDeleted=TRUE attribute and move them to the CN=Deleted Objects container of the partition - I make a copy to play with the code without breaking the LDAP backend setup metze (This used to be commit 045ddfe1ec626fab5e8fd75c5b47f0525b7ebb01)
2007-01-04 12:10:55 +00:00
};
Copy Permalink