samba-mirror

mirror of https://github.com/samba-team/samba.git synced 2025-07-27 07:42:04 +03:00

Author	SHA1	Message	Date
Douglas Bagnall	822c4b9852	samba_kcc: avoid crash on odd networks with --dot-file-dir Signed-off-by: Douglas Bagnall <douglas.bagnall@catalyst.net.nz> Reviewed-by: Garming Sam <garming@catalyst.net.nz>	2017-06-23 02:25:25 +02:00
Garming Sam	e244ba4a8f	repl: Set GET_ALL_GROUP_MEMBERSHIP flag in the drepl server Although we do not currently support this in the server, this will cause data loss against a Windows DC unless we set this flag as per the docs. This flag is required for the RODC. Signed-off-by: Garming Sam <garming@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org> Autobuild-User(master): Garming Sam <garming@samba.org> Autobuild-Date(master): Thu Jun 15 05:31:59 CEST 2017 on sn-devel-144	2017-06-15 05:31:59 +02:00
Douglas Bagnall	1a5445ca4e	KCC: avoid infinite recursion when edgelist contains self Signed-off-by: Douglas Bagnall <douglas.bagnall@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Garming Sam <garming@catalyst.net.nz>	2016-12-01 05:54:24 +01:00
Douglas Bagnall	6057c2522c	KCC: Graphnode.add_edge_from expects dn strings, not objects Signed-off-by: Douglas Bagnall <douglas.bagnall@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Garming Sam <garming@catalyst.net.nz>	2016-12-01 05:54:24 +01:00
Garming Sam	60e4bd381a	kcc: Don't check schedule if None BUG: https://bugzilla.samba.org/show_bug.cgi?id=12286 Signed-off-by: Garming Sam <garming@catalyst.net.nz> Reviewed-by: Douglas Bagnall <douglas.bagnall@catalyst.net.nz> Autobuild-User(master): Douglas Bagnall <dbagnall@samba.org> Autobuild-Date(master): Fri Sep 23 06:52:28 CEST 2016 on sn-devel-144	2016-09-23 06:52:28 +02:00
Douglas Bagnall	e7ad8727be	KCC: Fix misnamed variable in DSA object Found by Garming. Unlikely to affect anyone. BUG: https://bugzilla.samba.org/show_bug.cgi?id=12143 Pair-programmed-with: Garming Sam <garming@catalyst.net.nz> Signed-off-by: Douglas Bagnall <douglas.bagnall@catalyst.net.nz> Signed-off-by: Garming Sam <garming@catalyst.net.nz> Autobuild-User(master): Douglas Bagnall <dbagnall@samba.org> Autobuild-Date(master): Fri Aug 12 08:20:31 CEST 2016 on sn-devel-144	2016-08-12 08:20:31 +02:00
Garming Sam	8dabd57d1c	kcc: Clean up repsTo attribute for old DCs Signed-off-by: Garming Sam <garming@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org> Autobuild-User(master): Garming Sam <garming@samba.org> Autobuild-Date(master): Tue Jul 26 05:11:57 CEST 2016 on sn-devel-144	2016-07-26 05:11:57 +02:00
Garming Sam	9427a2424a	kcc: Add a TODO for msDS[-RO]-Replica-Locations When you modify the replica locations to exclude a DSA, it should be respected. Signed-off-by: Garming Sam <garming@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2016-07-26 01:22:16 +02:00
Garming Sam	f95bbc7933	kcc: Add corresponding methods for repsTo Signed-off-by: Garming Sam <garming@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2016-07-26 01:22:16 +02:00
Garming Sam	5505e36fc1	kcc: fix a typo Signed-off-by: Garming Sam <garming@catalyst.net.nz> Reviewed-by: Volker Lendecke <vl@samba.org> Autobuild-User(master): Volker Lendecke <vl@samba.org> Autobuild-Date(master): Mon Jul 25 17:42:33 CEST 2016 on sn-devel-144	2016-07-25 17:42:33 +02:00
Garming Sam	1f1edb65bf	kcc: typo fix tupple => tuple Signed-off-by: Garming Sam <garming@catalyst.net.nz> Reviewed-by: Volker Lendecke <vl@samba.org>	2016-07-25 13:56:11 +02:00
Garming Sam	10f256a7fe	kcc: correct a typo in the debug messages Signed-off-by: Garming Sam <garming@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2016-07-21 06:37:08 +02:00
Garming Sam	0c8e9a862a	kcc: Make more fault tolerant on DC demotion Signed-off-by: Garming Sam <garming@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2016-07-21 06:37:08 +02:00
Garming Sam	a5e0a2fef1	samba_kcc: match translate connection from old KCC for RWDC This makes it so that repsTo are always regenerated on the target DCs. This also happens elsewhere in drepl_out, but is to be removed. Signed-off-by: Garming Sam <garming@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2016-07-21 06:37:08 +02:00
Garming Sam	9206a10a8c	samba_kcc: match translate connection from old KCC for RODC Signed-off-by: Garming Sam <garming@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2016-07-21 06:37:08 +02:00
Garming Sam	9dfd55c83a	kcc: Prevent the KCC from doing work on the RODC This should never have done any real work, new code or not. This just removes the initial KCC calls and bails out in the KCC if we actually ran it. Signed-off-by: Garming Sam <garming@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2016-07-21 06:37:07 +02:00
Douglas Bagnall	46ac3a5308	KCC: kcc.import_ldif doesn't need creds Signed-off-by: Douglas Bagnall <douglas.bagnall@catalyst.net.nz> Reviewed-by: Garming Sam <garming@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2015-10-29 05:08:16 +01:00
Douglas Bagnall	6f93ffaf0c	KCC: remove NTDSConnection API methods that are never used These are not used, and using them would not be considered Pythonic. The flags they alter are always changed directly. The similar set_modified() method IS used. Signed-off-by: Douglas Bagnall <douglas.bagnall@catalyst.net.nz> Reviewed-by: Garming Sam <garming@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2015-10-29 05:08:16 +01:00
Douglas Bagnall	b93205ebe4	KCC: whitespace for pep8 Signed-off-by: Douglas Bagnall <douglas.bagnall@catalyst.net.nz> Reviewed-by: Garming Sam <garming@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2015-10-29 05:08:16 +01:00
Douglas Bagnall	1d5bb5996e	KCC: fix pep8 line length in load_ip_transport() You are right to sigh about this one. Signed-off-by: Douglas Bagnall <douglas.bagnall@catalyst.net.nz> Reviewed-by: Garming Sam <garming@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2015-10-29 05:08:16 +01:00
Douglas Bagnall	ab63f1a983	KCC: Correct capitalisation of KCCError previously we had "raise KccError", which of course would raise a NameError. Signed-off-by: Douglas Bagnall <douglas.bagnall@catalyst.net.nz> Reviewed-by: Garming Sam <garming@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2015-10-29 05:08:16 +01:00
Douglas Bagnall	e9f0799a18	KCC: raise KCCError, not Exception, in multiple places "except Exception" lines will still catch them, but more fine-grained control is possible. Signed-off-by: Douglas Bagnall <douglas.bagnall@catalyst.net.nz> Reviewed-by: Garming Sam <garming@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2015-10-29 05:08:16 +01:00
Douglas Bagnall	26384192d5	KCC: NTDSConnection.load_connection() requires objectGUID If there is no GUID, that is an error, so we raise an exception instead of stepping around it. Signed-off-by: Douglas Bagnall <douglas.bagnall@catalyst.net.nz> Reviewed-by: Garming Sam <garming@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2015-10-29 05:08:15 +01:00
Douglas Bagnall	8f5936261f	KCC: remove debug print statements from intrasite and intersite Signed-off-by: Douglas Bagnall <douglas.bagnall@catalyst.net.nz> Reviewed-by: Garming Sam <garming@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2015-10-29 05:08:15 +01:00
Douglas Bagnall	8fe9992cff	KCC: load samdb before calling kcc.run() kcc.run() is a mega-function that does nearly everything, including loading the database. The --list-valid-dsas and --test-all-reps-from tasks also want to load the database, but not do all that other run() stuff, so it makes sense to pull it out. When the samdb has not been loaded, run() will still load it -- this avoids having to change all the tests. Signed-off-by: Douglas Bagnall <douglas.bagnall@catalyst.net.nz> Reviewed-by: Garming Sam <garming@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2015-10-29 05:08:15 +01:00
Douglas Bagnall	47b3334f48	KCC: load the object GUID with --import-ldif Signed-off-by: Douglas Bagnall <douglas.bagnall@catalyst.net.nz> Reviewed-by: Garming Sam <garming@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2015-10-29 05:08:15 +01:00
Douglas Bagnall	30330b4df8	KCC: avoid logging alarming things about exected events Signed-off-by: Douglas Bagnall <douglas.bagnall@catalyst.net.nz> Reviewed-by: Garming Sam <garming@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2015-10-29 05:08:15 +01:00
Douglas Bagnall	e442726c3d	KCC: more debug info when --import-ldif goes badly Signed-off-by: Douglas Bagnall <douglas.bagnall@catalyst.net.nz> Reviewed-by: Garming Sam <garming@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2015-10-29 05:08:15 +01:00
Douglas Bagnall	acd77283cc	KCC: default to not loading new samdb when we already have one This should make things simpler in the --import-ldif case. Signed-off-by: Douglas Bagnall <douglas.bagnall@catalyst.net.nz> Reviewed-by: Garming Sam <garming@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2015-10-29 05:08:15 +01:00
Douglas Bagnall	76f195a279	KCC: fix typo in error path Signed-off-by: Douglas Bagnall <douglas.bagnall@catalyst.net.nz> Reviewed-by: Garming Sam <garming@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2015-10-29 05:08:15 +01:00
Douglas Bagnall	6f78ad2450	KCC: better explain our confusion in colour_vertices comment Reviewed-by: Garming Sam <garming@catalyst.net.nz> Signed-off-by: Douglas Bagnall <douglas.bagnall@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2015-10-29 05:08:15 +01:00
Douglas Bagnall	310aa2f340	KCC: clarify debugging messages in bridgehead finding code Signed-off-by: Douglas Bagnall <douglas.bagnall@catalyst.net.nz> Reviewed-by: Garming Sam <garming@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2015-10-29 05:08:15 +01:00
Douglas Bagnall	5f60c4bf33	KCC: keep track of IP transport for dsa.new_connection() Signed-off-by: Douglas Bagnall <douglas.bagnall@catalyst.net.nz> Reviewed-by: Garming Sam <garming@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2015-10-29 05:08:15 +01:00
Douglas Bagnall	059e2838c8	KCC: set system flags for new intrasite connections These flags are mandatory for intrasite connections. Signed-off-by: Douglas Bagnall <douglas.bagnall@catalyst.net.nz> Reviewed-by: Garming Sam <garming@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2015-10-29 05:08:15 +01:00
Douglas Bagnall	704fd83bcf	KCC: correctly use dsa.new_connection() system_flags argument The dsa.system_flags attribute is important and gets saved in the database, but was never getting altered because we were setting dsa.flags instead. Signed-off-by: Douglas Bagnall <douglas.bagnall@catalyst.net.nz> Reviewed-by: Garming Sam <garming@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2015-10-29 05:08:15 +01:00
Garming Sam	4bf95b6b32	KCC: Use detect_failed in create_connections Without this, dead DCs were treated as live, and could be used in the tree. If they're in the tree they can split the network. Signed-off-by: Garming Sam <garming@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2015-10-29 05:08:15 +01:00
Douglas Bagnall	0f8f99f6af	KCC: remove useless comments and simplify get_dsa_for_implied_replica() These comments are a close reflection (or possibly copy/paste) of the spec, but our code here no longer resembles the spec. We end up just glazing over when we see comments and losing track of the flow of code. If you want the spec just look at the spec. Signed-off-by: Douglas Bagnall <douglas.bagnall@catalyst.net.nz> Reviewed-by: Garming Sam <garming@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2015-10-29 05:08:15 +01:00
Douglas Bagnall	24ae662eae	KCC: stop --forget-intersite-links forgetting local links It will still forget intrasite links on other sites, but that in theory should not matter. It will still break your network, and is only useful for debugging. Signed-off-by: Douglas Bagnall <douglas.bagnall@catalyst.net.nz> Reviewed-by: Garming Sam <garming@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2015-10-29 05:08:15 +01:00
Douglas Bagnall	eec0d119ac	KCC: simplify get_dsa_for_implied_replica(), using IP invariant We only do IP transports. Therfore the long list of alternatives... (not n_rep.is_domain() or n_rep.is_partial() or cn_conn.transport_dnstr is None or cn_conn.transport_dnstr.find("CN=IP") == 0) that ends with the equivalant of "is this IP?" always evaluates to True. If we leave it there it will confuse people for ever. Signed-off-by: Douglas Bagnall <douglas.bagnall@catalyst.net.nz> Reviewed-by: Garming Sam <garming@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2015-10-29 05:08:15 +01:00
Douglas Bagnall	5bbcbe380b	KCC: Share commit wrapper between forget_ntdsconn and intrasite The wrapper is only to create DEBUG output in read-only mode -- normally it amounts to `dsa.commit_connections(self.samdb)`. Signed-off-by: Douglas Bagnall <douglas.bagnall@catalyst.net.nz> Reviewed-by: Garming Sam <garming@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2015-10-29 05:08:15 +01:00
Douglas Bagnall	03e352268a	KCC: pull apart remove_unneeded_ntdsconn(), fixing intersite The confusing big mess was hiding bugs. Firstly, intersite links on non-intersite-topology-generators were not getting looked at. Secondly, the logic around superseding intersite links was missing. Signed-off-by: Douglas Bagnall <douglas.bagnall@catalyst.net.nz> Reviewed-by: Garming Sam <garming@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2015-10-29 05:08:15 +01:00
Douglas Bagnall	472735f26c	KCC: shift common is_generated() check out of branches Signed-off-by: Douglas Bagnall <douglas.bagnall@catalyst.net.nz> Reviewed-by: Garming Sam <garming@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2015-10-29 05:08:15 +01:00
Andrew Bartlett	dadfffb519	python/kcc: Write correct module list into the file during ldif_to_samdb Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Garming Sam <garming@catalyst.net.nz>	2015-10-26 05:11:21 +01:00
Douglas Bagnall	eef3dab079	KCC: use python 2.6 compatible dictonary comprehensions The `{k: v for k, v in whatever}` syntax is "new" in Python 2.7. Signed-off-by: Douglas Bagnall <douglas.bagnall@catalyst.net.nz> Reviewed-by: Garming Sam <garming@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org> Autobuild-User(master): Andrew Bartlett <abartlet@samba.org> Autobuild-Date(master): Fri Jun 12 09:46:13 CEST 2015 on sn-devel-104	2015-06-12 09:46:13 +02:00
Douglas Bagnall	bbe90840b9	KCC: intrasite double_directed_ring test shouldn't include RODCs RODCs don't belong in the ring. In practice, they don't really belong in the same site as a ring, but that is another matter. Signed-off-by: Douglas Bagnall <douglas.bagnall@catalyst.net.nz> Reviewed-by: Garming Sam <garming@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2015-06-12 06:57:17 +02:00
Douglas Bagnall	c45007953b	KCC: use logger.critical rather than print >> sys.stderr Signed-off-by: Douglas Bagnall <douglas.bagnall@catalyst.net.nz> Reviewed-by: Garming Sam <garming@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2015-06-12 06:57:17 +02:00
Douglas Bagnall	db48fb252f	KCC: draw a site-edges graph for each partition Signed-off-by: Douglas Bagnall <douglas.bagnall@catalyst.net.nz> Reviewed-by: Garming Sam <garming@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2015-06-12 06:57:17 +02:00
Douglas Bagnall	db4e96ba06	KCC: use KccError, simplify logic in NTDSConn.commit_modified silence a pep8 thing. Signed-off-by: Douglas Bagnall <douglas.bagnall@catalyst.net.nz> Reviewed-by: Garming Sam <garming@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2015-06-12 06:57:17 +02:00
Douglas Bagnall	65fb95eda1	KCC: remove unused create_edge_set() function Signed-off-by: Douglas Bagnall <douglas.bagnall@catalyst.net.nz> Reviewed-by: Garming Sam <garming@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2015-06-12 06:57:17 +02:00
Douglas Bagnall	dcf582ae31	KCC: ignore the bridges_required option At least until we have SiteLinkBridges to test against. Signed-off-by: Douglas Bagnall <douglas.bagnall@catalyst.net.nz> Reviewed-by: Garming Sam <garming@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2015-06-12 06:57:17 +02:00

1 2 3 4

188 Commits