dsdb: Expand garbage_collect_tombstones to expunge links also

This requires a significant rework, as we can no longer
do a one-level search and hope to find most of the deleted
objects.  Therefore we fall back to a full scan, but less often.

Signed-off-by: Andrew Bartlett <abartlet@samba.org>
Reviewed-by: Garming Sam <garming@catalyst.net.nz>

source4/dsdb/kcc/garbage_collect_tombstones.c

@@ -30,22 +30,85 @@
 #include "lib/util/dlinklist.h"
 #include "ldb.h"
 #include "dsdb/kcc/garbage_collect_tombstones.h"
+#include "lib/ldb-samba/ldb_matching_rules.h"
+#include "lib/util/time.h"
 
 
-NTSTATUS dsdb_garbage_collect_tombstones(TALLOC_CTX *mem_ctx, struct loadparm_context *lp_ctx,
+NTSTATUS dsdb_garbage_collect_tombstones(TALLOC_CTX *mem_ctx,
 					 struct ldb_context *samdb,
 					 struct dsdb_ldb_dn_list_node *part,
 					 time_t current_time,
-					 bool do_fs,
-					 uint32_t tombstoneLifetime)
+					 uint32_t tombstoneLifetime,
+					 unsigned int *num_objects_removed,
+					 unsigned int *num_links_removed)
 {
 	int ret;
 
+	const char **attrs = NULL;
+	char *filter = NULL;
+
+	unsigned int i;
+	struct dsdb_attribute *next_attr;
+	unsigned int num_link_attrs;
+	struct dsdb_schema *schema = dsdb_get_schema(samdb, mem_ctx);
+	unsigned long long expunge_time = current_time - tombstoneLifetime*60*60*24;
+	NTTIME expunge_time_nttime;
+	unix_to_nt_time(&expunge_time_nttime, expunge_time);
+
+	*num_objects_removed = 0;
+	*num_links_removed = 0;
+
+	num_link_attrs = 0;
+
+	/*
+	 * This filter is a bit strange, but the idea is to filter for
+	 * objects that need to have tombstones expunged without
+	 * bringing a potentially large databse all into memory.  To
+	 * do that, we could use callbacks, but instead we use a
+	 * custom match rule to triage the objects during the search,
+	 * and ideally avoid memory allocation for most of the
+	 * un-matched objects.
+	 *
+	 * The parameter to DSDB_MATCH_FOR_EXPUNGE is the NTTIME, we
+	 * return records with deleted links deleted before this time.
+	 *
+	 * We also return all isDeleted records
+	 *
+	 * TODO: Add date-comparison to LDB and use < on then
+	 * whenChanged for the isDeleted case.
+	 */
+
+	filter = talloc_asprintf(mem_ctx, "(|");
+	for (next_attr = schema->attributes; next_attr != NULL; next_attr = next_attr->next) {
+		if (next_attr->linkID != 0 && ((next_attr->linkID & 1) == 0)) {
+			num_link_attrs++;
+			filter = talloc_asprintf_append(filter,
+							"(%s:" DSDB_MATCH_FOR_EXPUNGE ":=%llu)",
+							next_attr->lDAPDisplayName,
+							(unsigned long long)expunge_time_nttime);
+		}
+	}
+
+	attrs = talloc_array(mem_ctx, const char *, num_link_attrs + 3);
+	i = 0;
+	for (next_attr = schema->attributes; next_attr != NULL; next_attr = next_attr->next) {
+		if (next_attr->linkID != 0 && ((next_attr->linkID & 1) == 0)) {
+			attrs[i++] = next_attr->lDAPDisplayName;
+		}
+	}
+	attrs[i] = "isDeleted";
+	attrs[i+1] = "whenChanged";
+	attrs[i+2] = NULL;
+
+	filter = talloc_asprintf_append(filter, "(isDeleted=TRUE))");
+
+	schema = dsdb_get_schema(samdb, mem_ctx);
+
 	for (; part != NULL; part = part->next) {
 		struct ldb_dn *do_dn;
 		struct ldb_result *res;
-		const char *attrs[] = { "whenChanged", NULL };
-		unsigned int i;
+		unsigned int j, k;
+		uint32_t flags;
 		TALLOC_CTX *tmp_ctx = talloc_new(mem_ctx);
 		if (!tmp_ctx) {
 			return NT_STATUS_NO_MEMORY;
@@ -59,50 +122,142 @@ NTSTATUS dsdb_garbage_collect_tombstones(TALLOC_CTX *mem_ctx, struct loadparm_co
 			continue;
 		}
 
-		if (!do_fs && ldb_dn_compare(ldb_get_config_basedn(samdb), part->dn)) {
-			ret = dsdb_search(samdb, tmp_ctx, &res, do_dn, LDB_SCOPE_ONELEVEL, attrs,
-					DSDB_SEARCH_SHOW_RECYCLED, NULL);
-		} else {
-			if (do_fs) {
-				DEBUG(1, ("Doing a full scan on %s and looking for deleted object\n",
-						ldb_dn_get_linearized(part->dn)));
-			}
-			ret = dsdb_search(samdb, tmp_ctx, &res, part->dn, LDB_SCOPE_SUBTREE, attrs,
-					DSDB_SEARCH_SHOW_RECYCLED, "(|(isDeleted=TRUE))");
-		}
+		DEBUG(1, ("Doing a full scan on %s and looking for deleted object\n",
+			  ldb_dn_get_linearized(part->dn)));
+
+		flags = DSDB_SEARCH_SHOW_RECYCLED |
+			DSDB_SEARCH_SHOW_DN_IN_STORAGE_FORMAT |
+			DSDB_SEARCH_REVEAL_INTERNALS;
+		ret = dsdb_search(samdb, tmp_ctx, &res, part->dn, LDB_SCOPE_SUBTREE,
+				  attrs, flags, filter);
 
 		if (ret != LDB_SUCCESS) {
 			DEBUG(1,(__location__ ": Failed to search for deleted objects in %s\n",
 				 ldb_dn_get_linearized(do_dn)));
 			TALLOC_FREE(tmp_ctx);
-			continue;
+			return NT_STATUS_INTERNAL_ERROR;
 		}
 
 		for (i=0; i<res->count; i++) {
-			const char *tstring;
-			time_t whenChanged = 0;
+			struct ldb_message *cleanup_msg = NULL;
+			unsigned int num_modified = 0;
 
-			if (ldb_dn_compare(do_dn, res->msgs[i]->dn) == 0) {
-				/* Skip the Deleted Object Container */
+			bool isDeleted = ldb_msg_find_attr_as_bool(res->msgs[i], "isDeleted", false);
+			if (isDeleted) {
+				const char *tstring;
+				time_t whenChanged = 0;
+
+				if (ldb_dn_compare(do_dn, res->msgs[i]->dn) == 0) {
+					/* Skip the Deleted Object Container */
+					continue;
+				}
+
+				tstring = ldb_msg_find_attr_as_string(res->msgs[i], "whenChanged", NULL);
+				whenChanged = ldb_string_to_time(tstring);
+
+				if (whenChanged != 0 && whenChanged < expunge_time) {
+					ret = dsdb_delete(samdb, res->msgs[i]->dn, DSDB_SEARCH_SHOW_RECYCLED|DSDB_MODIFY_RELAX);
+					if (ret != LDB_SUCCESS) {
+						DEBUG(1,(__location__ ": Failed to remove deleted object %s\n",
+							 ldb_dn_get_linearized(res->msgs[i]->dn)));
+					} else {
+						DEBUG(4,("Removed deleted object %s\n",
+							 ldb_dn_get_linearized(res->msgs[i]->dn)));
+						(*num_objects_removed)++;
+					}
+				}
 				continue;
 			}
-			tstring = ldb_msg_find_attr_as_string(res->msgs[i], "whenChanged", NULL);
-			if (tstring) {
-				whenChanged = ldb_string_to_time(tstring);
+
+			/* This must have a linked attribute */
+			for (j=0; j < res->msgs[i]->num_elements; j++) {
+				struct ldb_message_element *element = &res->msgs[i]->elements[j];
+				/* TODO this is O(log n) per attribute with deleted values */
+				const struct dsdb_attribute *attrib
+					= dsdb_attribute_by_lDAPDisplayName(schema, element->name);
+
+				for (k = 0; k < element->num_values; k++) {
+					struct ldb_val *value = &element->values[k];
+					uint64_t whenChanged = 0;
+					NTSTATUS status;
+					struct dsdb_dn *dn;
+					struct ldb_message_element *cleanup_elem = NULL;
+					char *guid_search_str = NULL, *guid_buf_str = NULL;
+					struct ldb_val cleanup_val;
+					struct GUID_txt_buf buf_guid;
+					struct GUID guid;
+					const struct ldb_val *guid_blob;
+
+					if (dsdb_dn_is_deleted_val(value) == false) {
+						continue;
+					}
+
+					dn = dsdb_dn_parse(tmp_ctx, samdb, &element->values[k],
+							   attrib->syntax->ldap_oid);
+					if (dn == NULL) {
+						DEBUG(1, ("Failed to parse linked attribute blob of %s on %s while expunging expired links\n", element->name,
+							  ldb_dn_get_linearized(res->msgs[i]->dn)));
+						continue;
+					}
+
+					status = dsdb_get_extended_dn_uint64(dn->dn, &whenChanged, "RMD_CHANGETIME");
+					if (!NT_STATUS_IS_OK(status)) {
+						DEBUG(1, ("Error: RMD_CHANGETIME is missing on a forward link.\n"));
+						talloc_free(dn);
+						continue;
+					}
+
+					if (whenChanged >= expunge_time_nttime) {
+						talloc_free(dn);
+						continue;
+					}
+
+					guid_blob = ldb_dn_get_extended_component(dn->dn, "GUID");
+					status = GUID_from_ndr_blob(guid_blob, &guid);
+					if (!NT_STATUS_IS_OK(status)) {
+						DEBUG(1, ("Error: Invalid GUID on link target.\n"));
+						talloc_free(dn);
+						continue;
+					}
+
+					guid_buf_str = GUID_buf_string(&guid, &buf_guid);
+					guid_search_str = talloc_asprintf(mem_ctx, "<GUID=%s>", guid_buf_str);
+					cleanup_val = data_blob_string_const(guid_search_str);
+
+					talloc_free(dn);
+
+					if (cleanup_msg == NULL) {
+						cleanup_msg = ldb_msg_new(mem_ctx);
+						if (cleanup_msg == NULL) {
+							return NT_STATUS_NO_MEMORY;
+						}
+						cleanup_msg->dn = res->msgs[i]->dn;
+					}
+
+					ret = ldb_msg_add_value(cleanup_msg, element->name, &cleanup_val, &cleanup_elem);
+					if (ret != LDB_SUCCESS) {
+						return NT_STATUS_NO_MEMORY;
+					}
+					cleanup_elem->flags = LDB_FLAG_MOD_DELETE;
+					num_modified++;
+				}
 			}
-			if (current_time - whenChanged > tombstoneLifetime*60*60*24) {
-				ret = dsdb_delete(samdb, res->msgs[i]->dn, DSDB_SEARCH_SHOW_RECYCLED|DSDB_MODIFY_RELAX);
+
+			if (num_modified > 0) {
+				ret = dsdb_modify(samdb, cleanup_msg, DSDB_REPLMD_VANISH_LINKS);
 				if (ret != LDB_SUCCESS) {
 					DEBUG(1,(__location__ ": Failed to remove deleted object %s\n",
 						 ldb_dn_get_linearized(res->msgs[i]->dn)));
 				} else {
 					DEBUG(4,("Removed deleted object %s\n",
 						 ldb_dn_get_linearized(res->msgs[i]->dn)));
+					*num_links_removed = *num_links_removed + num_modified;
 				}
+
 			}
 		}
-
 		TALLOC_FREE(tmp_ctx);
+
 	}
 
 	return NT_STATUS_OK;

source4/dsdb/kcc/garbage_collect_tombstones.h

@@ -24,9 +24,10 @@
 #include "dsdb/common/util.h"
 
 
-NTSTATUS dsdb_garbage_collect_tombstones(TALLOC_CTX *mem_ctx, struct loadparm_context *lp_ctx,
+NTSTATUS dsdb_garbage_collect_tombstones(TALLOC_CTX *mem_ctx,
 					 struct ldb_context *samdb,
 					 struct dsdb_ldb_dn_list_node *part,
 					 time_t current_time,
-					 bool do_fs,
-					 uint32_t tombstoneLifetime);
+					 uint32_t tombstoneLifetime,
+					 unsigned int *num_objects_removed,
+					 unsigned int *num_links_removed);

source4/dsdb/kcc/kcc_periodic.c

@@ -601,35 +601,18 @@ WERROR kccsrv_periodic_schedule(struct kccsrv_service *service, uint32_t next_in
  */
 static NTSTATUS kccsrv_check_deleted(struct kccsrv_service *s, TALLOC_CTX *mem_ctx)
 {
-	int ret;
-	bool do_fs = false;
-	uint32_t tombstoneLifetime;
-	time_t current = time(NULL);
+	time_t current_time = time(NULL);
 	time_t interval = lpcfg_parm_int(s->task->lp_ctx, NULL, "kccsrv",
-					 "check_deleted_full_scan_interval", 86400);
+					 "check_deleted_interval", 86400);
+	uint32_t tombstoneLifetime;
+	int ret;
+	unsigned int num_objects_removed = 0;
+	unsigned int num_links_removed = 0;
+	NTSTATUS status;
 
-	if (current - s->last_deleted_check < lpcfg_parm_int(s->task->lp_ctx, NULL, "kccsrv",
-								  "check_deleted_interval", 600)) {
+	if (current_time - s->last_deleted_check < interval) {
 		return NT_STATUS_OK;
 	}
-	s->last_deleted_check = current;
-
-	if (s->last_full_scan_deleted_check > 0 && ((current - s->last_full_scan_deleted_check) > interval )) {
-		do_fs = true;
-		s->last_full_scan_deleted_check = current;
-	}
-
-	if (s->last_full_scan_deleted_check == 0) {
-		/*
-		 * If we never made a full scan set the last full scan event to be in the past
-		 * and that 9/10 of the full scan interval has already passed.
-		 * This is done to avoid the full scan to fire just at the begining of samba
-		 * or a couple of minutes after the start.
-		 * With this "setup" and default values of interval, the full scan will fire
-		 * 2.4 hours after the start of samba
-		 */
-		s->last_full_scan_deleted_check = current - ((9 * interval) / 10);
-	}
 
 	ret = dsdb_tombstone_lifetime(s->samdb, &tombstoneLifetime);
 	if (ret != LDB_SUCCESS) {
@@ -637,9 +620,26 @@ static NTSTATUS kccsrv_check_deleted(struct kccsrv_service *s, TALLOC_CTX *mem_c
 		return NT_STATUS_INTERNAL_DB_CORRUPTION;
 	}
 
-	return dsdb_garbage_collect_tombstones(mem_ctx, s->task->lp_ctx, s->samdb,
-					       s->partitions, current, do_fs,
-					       tombstoneLifetime);
+	s->last_deleted_check = current_time;
+
+	status = dsdb_garbage_collect_tombstones(mem_ctx, s->samdb,
+						 s->partitions,
+						 current_time, tombstoneLifetime,
+						 &num_objects_removed,
+						 &num_links_removed);
+
+	if (NT_STATUS_IS_OK(status)) {
+		DEBUG(5, ("garbage_collect_tombstones: Removed %u tombstone objects "
+			  "and %u tombstone links successfully\n",
+			  num_objects_removed, num_links_removed));
+	} else {
+		DEBUG(2, ("garbage_collect_tombstones: Failure removing tombstone "
+			  "objects and links after removing %u tombstone objects "
+			  "and %u tombstone links successfully: %s\n",
+			  num_objects_removed, num_links_removed,
+			  nt_errstr(status)));
+	}
+	return status;
 }
 
 static void kccsrv_periodic_run(struct kccsrv_service *service)