2009-09-13 18:16:13 +10:00
/*
Unix SMB / CIFS mplementation .
DSDB replication service periodic notification handling
Copyright ( C ) Andrew Tridgell 2009
based on drepl_periodic
This program is free software ; you can redistribute it and / or modify
it under the terms of the GNU General Public License as published by
the Free Software Foundation ; either version 3 of the License , or
( at your option ) any later version .
This program is distributed in the hope that it will be useful ,
but WITHOUT ANY WARRANTY ; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE . See the
GNU General Public License for more details .
You should have received a copy of the GNU General Public License
along with this program . If not , see < http : //www.gnu.org/licenses/>.
*/
# include "includes.h"
# include "lib/events/events.h"
# include "dsdb/samdb/samdb.h"
# include "auth/auth.h"
# include "smbd/service.h"
# include "lib/messaging/irpc.h"
# include "dsdb/repl/drepl_service.h"
# include "lib/ldb/include/ldb_errors.h"
# include "../lib/util/dlinklist.h"
# include "librpc/gen_ndr/ndr_misc.h"
# include "librpc/gen_ndr/ndr_drsuapi.h"
# include "librpc/gen_ndr/ndr_drsblobs.h"
# include "libcli/composite/composite.h"
2010-01-11 20:00:07 +01:00
# include "../lib/util/tevent_ntstatus.h"
2009-09-13 18:16:13 +10:00
struct dreplsrv_op_notify_state {
2010-03-08 16:23:17 +01:00
struct tevent_context * ev ;
2009-09-13 18:16:13 +10:00
struct dreplsrv_notify_operation * op ;
2010-02-27 09:43:21 +01:00
void * ndr_struct_ptr ;
2009-09-13 18:16:13 +10:00
} ;
2010-01-13 16:00:20 +01:00
static void dreplsrv_op_notify_connect_done ( struct tevent_req * subreq ) ;
2009-09-13 18:16:13 +10:00
/*
2010-01-13 16:00:20 +01:00
start the ReplicaSync async call
2009-09-13 18:16:13 +10:00
*/
2010-01-13 16:00:20 +01:00
static struct tevent_req * dreplsrv_op_notify_send ( TALLOC_CTX * mem_ctx ,
struct tevent_context * ev ,
struct dreplsrv_notify_operation * op )
2009-09-13 18:16:13 +10:00
{
2010-01-13 16:00:20 +01:00
struct tevent_req * req ;
struct dreplsrv_op_notify_state * state ;
struct tevent_req * subreq ;
2009-09-13 18:16:13 +10:00
2010-01-13 16:00:20 +01:00
req = tevent_req_create ( mem_ctx , & state ,
struct dreplsrv_op_notify_state ) ;
if ( req = = NULL ) {
return NULL ;
2010-01-11 20:00:07 +01:00
}
2010-03-08 16:23:17 +01:00
state - > ev = ev ;
2010-01-13 16:00:20 +01:00
state - > op = op ;
2009-09-13 18:16:13 +10:00
2010-01-13 16:00:20 +01:00
subreq = dreplsrv_out_drsuapi_send ( state ,
ev ,
op - > source_dsa - > conn ) ;
if ( tevent_req_nomem ( subreq , req ) ) {
return tevent_req_post ( req , ev ) ;
}
tevent_req_set_callback ( subreq , dreplsrv_op_notify_connect_done , req ) ;
return req ;
}
static void dreplsrv_op_notify_replica_sync_trigger ( struct tevent_req * req ) ;
static void dreplsrv_op_notify_connect_done ( struct tevent_req * subreq )
{
struct tevent_req * req = tevent_req_callback_data ( subreq ,
struct tevent_req ) ;
NTSTATUS status ;
status = dreplsrv_out_drsuapi_recv ( subreq ) ;
TALLOC_FREE ( subreq ) ;
if ( tevent_req_nterror ( req , status ) ) {
2009-09-13 18:16:13 +10:00
return ;
}
2010-01-13 16:00:20 +01:00
dreplsrv_op_notify_replica_sync_trigger ( req ) ;
2009-09-13 18:16:13 +10:00
}
2010-03-08 16:23:17 +01:00
static void dreplsrv_op_notify_replica_sync_done ( struct tevent_req * subreq ) ;
2010-01-13 16:00:20 +01:00
2010-01-11 20:00:07 +01:00
static void dreplsrv_op_notify_replica_sync_trigger ( struct tevent_req * req )
2009-09-13 18:16:13 +10:00
{
2010-01-11 20:00:07 +01:00
struct dreplsrv_op_notify_state * state =
tevent_req_data ( req ,
struct dreplsrv_op_notify_state ) ;
struct dreplsrv_partition * partition = state - > op - > source_dsa - > partition ;
struct dreplsrv_drsuapi_connection * drsuapi = state - > op - > source_dsa - > conn - > drsuapi ;
2009-09-13 18:16:13 +10:00
struct drsuapi_DsReplicaSync * r ;
2010-03-08 16:23:17 +01:00
struct tevent_req * subreq ;
2009-09-13 18:16:13 +10:00
2010-01-11 20:00:07 +01:00
r = talloc_zero ( state , struct drsuapi_DsReplicaSync ) ;
if ( tevent_req_nomem ( r , req ) ) {
return ;
}
2010-02-13 04:57:28 +02:00
r - > in . req = talloc_zero ( r , union drsuapi_DsReplicaSyncRequest ) ;
if ( tevent_req_nomem ( r , req ) ) {
return ;
}
2009-09-13 18:16:13 +10:00
r - > in . bind_handle = & drsuapi - > bind_handle ;
r - > in . level = 1 ;
2010-02-13 04:57:28 +02:00
r - > in . req - > req1 . naming_context = & partition - > nc ;
r - > in . req - > req1 . source_dsa_guid = state - > op - > service - > ntds_guid ;
r - > in . req - > req1 . options =
2010-01-14 14:37:22 +11:00
DRSUAPI_DRS_ASYNC_OP |
DRSUAPI_DRS_UPDATE_NOTIFICATION |
DRSUAPI_DRS_WRIT_REP ;
2009-09-13 18:16:13 +10:00
2010-01-21 09:20:44 -02:00
if ( state - > op - > is_urgent ) {
2010-02-13 04:57:28 +02:00
r - > in . req - > req1 . options | = DRSUAPI_DRS_SYNC_URGENT ;
2010-01-21 09:20:44 -02:00
}
2010-02-27 09:43:21 +01:00
state - > ndr_struct_ptr = r ;
2010-03-08 16:23:17 +01:00
subreq = dcerpc_drsuapi_DsReplicaSync_r_send ( state ,
state - > ev ,
drsuapi - > drsuapi_handle ,
r ) ;
if ( tevent_req_nomem ( subreq , req ) ) {
2010-01-11 20:00:07 +01:00
return ;
}
2010-03-08 16:23:17 +01:00
tevent_req_set_callback ( subreq , dreplsrv_op_notify_replica_sync_done , req ) ;
2009-09-13 18:16:13 +10:00
}
2010-03-08 16:23:17 +01:00
static void dreplsrv_op_notify_replica_sync_done ( struct tevent_req * subreq )
2009-09-13 18:16:13 +10:00
{
2010-03-08 16:23:17 +01:00
struct tevent_req * req =
tevent_req_callback_data ( subreq ,
struct tevent_req ) ;
2010-02-27 09:43:21 +01:00
struct dreplsrv_op_notify_state * state =
tevent_req_data ( req ,
struct dreplsrv_op_notify_state ) ;
struct drsuapi_DsReplicaSync * r = talloc_get_type ( state - > ndr_struct_ptr ,
2010-01-13 16:00:20 +01:00
struct drsuapi_DsReplicaSync ) ;
2010-01-11 20:00:07 +01:00
NTSTATUS status ;
2009-09-13 18:16:13 +10:00
2010-02-27 09:43:21 +01:00
state - > ndr_struct_ptr = NULL ;
2010-03-08 16:23:17 +01:00
status = dcerpc_drsuapi_DsReplicaSync_r_recv ( subreq , r ) ;
TALLOC_FREE ( subreq ) ;
2010-01-11 20:00:07 +01:00
if ( tevent_req_nterror ( req , status ) ) {
return ;
}
2009-09-13 18:16:13 +10:00
2010-01-13 16:00:20 +01:00
if ( ! W_ERROR_IS_OK ( r - > out . result ) ) {
status = werror_to_ntstatus ( r - > out . result ) ;
tevent_req_nterror ( req , status ) ;
return ;
2010-01-11 20:00:07 +01:00
}
2010-01-13 16:00:20 +01:00
tevent_req_done ( req ) ;
2010-01-11 20:00:07 +01:00
}
2009-09-13 18:16:13 +10:00
2010-01-11 20:00:07 +01:00
static NTSTATUS dreplsrv_op_notify_recv ( struct tevent_req * req )
{
return tevent_req_simple_recv_ntstatus ( req ) ;
2009-09-13 18:16:13 +10:00
}
static void dreplsrv_notify_del_repsTo ( struct dreplsrv_notify_operation * op )
{
uint32_t count ;
struct repsFromToBlob * reps ;
WERROR werr ;
struct dreplsrv_service * s = op - > service ;
2009-11-06 20:14:41 +01:00
uint32_t i ;
2009-09-13 18:16:13 +10:00
werr = dsdb_loadreps ( s - > samdb , op , op - > source_dsa - > partition - > dn , " repsTo " , & reps , & count ) ;
if ( ! W_ERROR_IS_OK ( werr ) ) {
DEBUG ( 0 , ( __location__ " : Failed to load repsTo for %s \n " ,
ldb_dn_get_linearized ( op - > source_dsa - > partition - > dn ) ) ) ;
return ;
}
for ( i = 0 ; i < count ; i + + ) {
if ( GUID_compare ( & reps [ i ] . ctr . ctr1 . source_dsa_obj_guid ,
& op - > source_dsa - > repsFrom1 - > source_dsa_obj_guid ) = = 0 ) {
memmove ( & reps [ i ] , & reps [ i + 1 ] ,
sizeof ( reps [ i ] ) * ( count - ( i + 1 ) ) ) ;
count - - ;
}
}
werr = dsdb_savereps ( s - > samdb , op , op - > source_dsa - > partition - > dn , " repsTo " , reps , count ) ;
if ( ! W_ERROR_IS_OK ( werr ) ) {
DEBUG ( 0 , ( __location__ " : Failed to save repsTo for %s \n " ,
ldb_dn_get_linearized ( op - > source_dsa - > partition - > dn ) ) ) ;
return ;
}
}
/*
called when a notify operation has completed
*/
2010-01-11 20:00:07 +01:00
static void dreplsrv_notify_op_callback ( struct tevent_req * subreq )
2009-09-13 18:16:13 +10:00
{
2010-01-11 20:00:07 +01:00
struct dreplsrv_notify_operation * op =
tevent_req_callback_data ( subreq ,
struct dreplsrv_notify_operation ) ;
2009-09-13 18:16:13 +10:00
NTSTATUS status ;
struct dreplsrv_service * s = op - > service ;
2010-01-11 20:00:07 +01:00
status = dreplsrv_op_notify_recv ( subreq ) ;
TALLOC_FREE ( subreq ) ;
2009-09-13 18:16:13 +10:00
if ( ! NT_STATUS_IS_OK ( status ) ) {
2009-09-19 14:27:29 -07:00
DEBUG ( 0 , ( " dreplsrv_notify: Failed to send DsReplicaSync to %s for %s - %s \n " ,
2009-09-13 18:16:13 +10:00
op - > source_dsa - > repsFrom1 - > other_info - > dns_name ,
2009-09-19 14:27:29 -07:00
ldb_dn_get_linearized ( op - > source_dsa - > partition - > dn ) ,
2009-09-13 18:16:13 +10:00
nt_errstr ( status ) ) ) ;
} else {
DEBUG ( 2 , ( " dreplsrv_notify: DsReplicaSync OK for %s \n " ,
op - > source_dsa - > repsFrom1 - > other_info - > dns_name ) ) ;
op - > source_dsa - > notify_uSN = op - > uSN ;
/* delete the repsTo for this replication partner in the
partition , as we have successfully told him to sync */
dreplsrv_notify_del_repsTo ( op ) ;
}
talloc_free ( op ) ;
s - > ops . n_current = NULL ;
dreplsrv_notify_run_ops ( s ) ;
}
/*
run any pending replica sync calls
*/
void dreplsrv_notify_run_ops ( struct dreplsrv_service * s )
{
struct dreplsrv_notify_operation * op ;
2010-01-11 20:00:07 +01:00
struct tevent_req * subreq ;
2009-09-13 18:16:13 +10:00
if ( s - > ops . n_current | | s - > ops . current ) {
/* if there's still one running, we're done */
return ;
}
if ( ! s - > ops . notifies ) {
/* if there're no pending operations, we're done */
return ;
}
op = s - > ops . notifies ;
s - > ops . n_current = op ;
DLIST_REMOVE ( s - > ops . notifies , op ) ;
2010-01-11 20:00:07 +01:00
subreq = dreplsrv_op_notify_send ( op , s - > task - > event_ctx , op ) ;
if ( ! subreq ) {
DEBUG ( 0 , ( " dreplsrv_notify_run_ops: dreplsrv_op_notify_send[%s][%s] - no memory \n " ,
op - > source_dsa - > repsFrom1 - > other_info - > dns_name ,
ldb_dn_get_linearized ( op - > source_dsa - > partition - > dn ) ) ) ;
2009-09-13 18:16:13 +10:00
return ;
}
2010-01-11 20:00:07 +01:00
tevent_req_set_callback ( subreq , dreplsrv_notify_op_callback , op ) ;
2009-09-13 18:16:13 +10:00
}
/*
find a source_dsa for a given guid
*/
static struct dreplsrv_partition_source_dsa * dreplsrv_find_source_dsa ( struct dreplsrv_partition * p ,
struct GUID * guid )
{
struct dreplsrv_partition_source_dsa * s ;
for ( s = p - > sources ; s ; s = s - > next ) {
if ( GUID_compare ( & s - > repsFrom1 - > source_dsa_obj_guid , guid ) = = 0 ) {
return s ;
}
}
return NULL ;
}
/*
schedule a replicaSync message
*/
static WERROR dreplsrv_schedule_notify_sync ( struct dreplsrv_service * service ,
struct dreplsrv_partition * p ,
struct repsFromToBlob * reps ,
TALLOC_CTX * mem_ctx ,
2010-01-21 09:20:44 -02:00
uint64_t uSN ,
bool is_urgent )
2009-09-13 18:16:13 +10:00
{
struct dreplsrv_notify_operation * op ;
struct dreplsrv_partition_source_dsa * s ;
s = dreplsrv_find_source_dsa ( p , & reps - > ctr . ctr1 . source_dsa_obj_guid ) ;
if ( s = = NULL ) {
DEBUG ( 0 , ( __location__ " : Unable to find source_dsa for %s \n " ,
GUID_string ( mem_ctx , & reps - > ctr . ctr1 . source_dsa_obj_guid ) ) ) ;
return WERR_DS_UNAVAILABLE ;
}
op = talloc_zero ( mem_ctx , struct dreplsrv_notify_operation ) ;
W_ERROR_HAVE_NO_MEMORY ( op ) ;
op - > service = service ;
op - > source_dsa = s ;
op - > uSN = uSN ;
2010-01-21 09:20:44 -02:00
op - > is_urgent = is_urgent ;
2009-09-13 18:16:13 +10:00
DLIST_ADD_END ( service - > ops . notifies , op , struct dreplsrv_notify_operation * ) ;
talloc_steal ( service , op ) ;
return WERR_OK ;
}
/*
see if a partition has a hugher uSN than what is in the repsTo and
if so then send a DsReplicaSync
*/
static WERROR dreplsrv_notify_check ( struct dreplsrv_service * s ,
struct dreplsrv_partition * p ,
TALLOC_CTX * mem_ctx )
{
2009-09-14 03:43:26 -07:00
uint32_t count = 0 ;
2009-09-13 18:16:13 +10:00
struct repsFromToBlob * reps ;
WERROR werr ;
2010-01-21 09:20:44 -02:00
uint64_t uSNHighest ;
uint64_t uSNUrgent ;
2009-11-06 20:14:41 +01:00
uint32_t i ;
int ret ;
2009-09-13 18:16:13 +10:00
werr = dsdb_loadreps ( s - > samdb , mem_ctx , p - > dn , " repsTo " , & reps , & count ) ;
2009-09-14 03:43:26 -07:00
if ( count = = 0 ) {
werr = dsdb_loadreps ( s - > samdb , mem_ctx , p - > dn , " repsFrom " , & reps , & count ) ;
}
2009-09-13 18:16:13 +10:00
if ( ! W_ERROR_IS_OK ( werr ) ) {
DEBUG ( 0 , ( __location__ " : Failed to load repsTo for %s \n " ,
ldb_dn_get_linearized ( p - > dn ) ) ) ;
return werr ;
}
2010-01-21 09:20:44 -02:00
/* loads the partition uSNHighest and uSNUrgent */
ret = dsdb_load_partition_usn ( s - > samdb , p - > dn , & uSNHighest , & uSNUrgent ) ;
if ( ret ! = LDB_SUCCESS | | uSNHighest = = 0 ) {
2009-09-13 18:16:13 +10:00
/* nothing to do */
return WERR_OK ;
}
/* see if any of our partners need some of our objects */
for ( i = 0 ; i < count ; i + + ) {
struct dreplsrv_partition_source_dsa * sdsa ;
sdsa = dreplsrv_find_source_dsa ( p , & reps [ i ] . ctr . ctr1 . source_dsa_obj_guid ) ;
if ( sdsa = = NULL ) continue ;
2010-01-21 09:20:44 -02:00
if ( sdsa - > notify_uSN < uSNHighest ) {
2009-09-13 18:16:13 +10:00
/* we need to tell this partner to replicate
with us */
2010-01-21 09:20:44 -02:00
/* check if urgent replication is needed */
if ( sdsa - > notify_uSN < uSNUrgent ) {
werr = dreplsrv_schedule_notify_sync ( s , p , & reps [ i ] , mem_ctx ,
uSNHighest , true ) ;
} else {
werr = dreplsrv_schedule_notify_sync ( s , p , & reps [ i ] , mem_ctx ,
uSNHighest , false ) ;
}
2009-09-13 18:16:13 +10:00
if ( ! W_ERROR_IS_OK ( werr ) ) {
DEBUG ( 0 , ( __location__ " : Failed to setup notify to %s for %s \n " ,
reps [ i ] . ctr . ctr1 . other_info - > dns_name ,
ldb_dn_get_linearized ( p - > dn ) ) ) ;
return werr ;
}
}
}
return WERR_OK ;
}
/*
see if any of the partitions have changed , and if so then send a
DsReplicaSync to all the replica partners in the repsTo object
*/
static WERROR dreplsrv_notify_check_all ( struct dreplsrv_service * s , TALLOC_CTX * mem_ctx )
{
WERROR status ;
struct dreplsrv_partition * p ;
for ( p = s - > partitions ; p ; p = p - > next ) {
status = dreplsrv_notify_check ( s , p , mem_ctx ) ;
W_ERROR_NOT_OK_RETURN ( status ) ;
}
return WERR_OK ;
}
static void dreplsrv_notify_run ( struct dreplsrv_service * service ) ;
static void dreplsrv_notify_handler_te ( struct tevent_context * ev , struct tevent_timer * te ,
struct timeval t , void * ptr )
{
struct dreplsrv_service * service = talloc_get_type ( ptr , struct dreplsrv_service ) ;
WERROR status ;
service - > notify . te = NULL ;
dreplsrv_notify_run ( service ) ;
status = dreplsrv_notify_schedule ( service , service - > notify . interval ) ;
if ( ! W_ERROR_IS_OK ( status ) ) {
2009-09-18 18:05:55 -07:00
task_server_terminate ( service - > task , win_errstr ( status ) , false ) ;
2009-09-13 18:16:13 +10:00
return ;
}
}
WERROR dreplsrv_notify_schedule ( struct dreplsrv_service * service , uint32_t next_interval )
{
TALLOC_CTX * tmp_mem ;
struct tevent_timer * new_te ;
struct timeval next_time ;
/* prevent looping */
if ( next_interval = = 0 ) next_interval = 1 ;
next_time = timeval_current_ofs ( next_interval , 50 ) ;
if ( service - > notify . te ) {
/*
* if the timestamp of the new event is higher ,
* as current next we don ' t need to reschedule
*/
if ( timeval_compare ( & next_time , & service - > notify . next_event ) > 0 ) {
return WERR_OK ;
}
}
/* reset the next scheduled timestamp */
service - > notify . next_event = next_time ;
new_te = event_add_timed ( service - > task - > event_ctx , service ,
service - > notify . next_event ,
dreplsrv_notify_handler_te , service ) ;
W_ERROR_HAVE_NO_MEMORY ( new_te ) ;
tmp_mem = talloc_new ( service ) ;
2009-12-19 23:32:48 +11:00
DEBUG ( 4 , ( " dreplsrv_notify_schedule(%u) %sscheduled for: %s \n " ,
2009-09-13 18:16:13 +10:00
next_interval ,
( service - > notify . te ? " re " : " " ) ,
nt_time_string ( tmp_mem , timeval_to_nttime ( & next_time ) ) ) ) ;
talloc_free ( tmp_mem ) ;
talloc_free ( service - > notify . te ) ;
service - > notify . te = new_te ;
return WERR_OK ;
}
static void dreplsrv_notify_run ( struct dreplsrv_service * service )
{
TALLOC_CTX * mem_ctx ;
mem_ctx = talloc_new ( service ) ;
dreplsrv_notify_check_all ( service , mem_ctx ) ;
talloc_free ( mem_ctx ) ;
dreplsrv_run_pending_ops ( service ) ;
dreplsrv_notify_run_ops ( service ) ;
}