Line data Source code
1 : /*
2 : Unix SMB/CIFS Implementation.
3 : DSDB replication service outgoing Pull-Replication
4 :
5 : Copyright (C) Stefan Metzmacher 2007
6 :
7 : This program is free software; you can redistribute it and/or modify
8 : it under the terms of the GNU General Public License as published by
9 : the Free Software Foundation; either version 3 of the License, or
10 : (at your option) any later version.
11 :
12 : This program is distributed in the hope that it will be useful,
13 : but WITHOUT ANY WARRANTY; without even the implied warranty of
14 : MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
15 : GNU General Public License for more details.
16 :
17 : You should have received a copy of the GNU General Public License
18 : along with this program. If not, see <http://www.gnu.org/licenses/>.
19 :
20 : */
21 :
22 : #include "includes.h"
23 : #include "dsdb/samdb/samdb.h"
24 : #include "auth/auth.h"
25 : #include "samba/service.h"
26 : #include "lib/events/events.h"
27 : #include "dsdb/repl/drepl_service.h"
28 : #include <ldb_errors.h>
29 : #include "../lib/util/dlinklist.h"
30 : #include "librpc/gen_ndr/ndr_misc.h"
31 : #include "librpc/gen_ndr/ndr_drsuapi.h"
32 : #include "librpc/gen_ndr/ndr_drsblobs.h"
33 : #include "libcli/composite/composite.h"
34 : #include "libcli/security/security.h"
35 :
36 : #undef DBGC_CLASS
37 : #define DBGC_CLASS DBGC_DRS_REPL
38 :
39 : /*
40 : update repsFrom/repsTo error information
41 : */
42 8852 : void drepl_reps_update(struct dreplsrv_service *s, const char *reps_attr,
43 : struct ldb_dn *dn,
44 : struct GUID *source_dsa_obj_guid, WERROR status)
45 : {
46 : struct repsFromToBlob *reps;
47 : uint32_t count, i;
48 : WERROR werr;
49 8852 : TALLOC_CTX *tmp_ctx = talloc_new(s);
50 : time_t t;
51 : NTTIME now;
52 :
53 8852 : t = time(NULL);
54 8852 : unix_to_nt_time(&now, t);
55 :
56 8852 : werr = dsdb_loadreps(s->samdb, tmp_ctx, dn, reps_attr, &reps, &count);
57 8852 : if (!W_ERROR_IS_OK(werr)) {
58 0 : talloc_free(tmp_ctx);
59 0 : return;
60 : }
61 :
62 15509 : for (i=0; i<count; i++) {
63 15445 : if (GUID_equal(source_dsa_obj_guid,
64 15445 : &reps[i].ctr.ctr1.source_dsa_obj_guid)) {
65 8788 : break;
66 : }
67 : }
68 :
69 8852 : if (i == count) {
70 : /* no record to update */
71 64 : talloc_free(tmp_ctx);
72 64 : return;
73 : }
74 :
75 : /* only update the status fields */
76 8788 : reps[i].ctr.ctr1.last_attempt = now;
77 8788 : reps[i].ctr.ctr1.result_last_attempt = status;
78 8788 : if (W_ERROR_IS_OK(status)) {
79 3356 : reps[i].ctr.ctr1.last_success = now;
80 3356 : reps[i].ctr.ctr1.consecutive_sync_failures = 0;
81 : } else {
82 5432 : reps[i].ctr.ctr1.consecutive_sync_failures++;
83 : }
84 :
85 8788 : werr = dsdb_savereps(s->samdb, tmp_ctx, dn, reps_attr, reps, count);
86 8788 : if (!W_ERROR_IS_OK(werr)) {
87 0 : DEBUG(2,("drepl_reps_update: Failed to save %s for %s: %s\n",
88 : reps_attr, ldb_dn_get_linearized(dn), win_errstr(werr)));
89 : }
90 8788 : talloc_free(tmp_ctx);
91 : }
92 :
93 4491 : WERROR dreplsrv_schedule_partition_pull_source(struct dreplsrv_service *s,
94 : struct dreplsrv_partition_source_dsa *source,
95 : uint32_t options,
96 : enum drsuapi_DsExtendedOperation extended_op,
97 : uint64_t fsmo_info,
98 : dreplsrv_extended_callback_t callback,
99 : void *cb_data)
100 : {
101 : struct dreplsrv_out_operation *op;
102 :
103 4491 : op = talloc_zero(s, struct dreplsrv_out_operation);
104 4491 : W_ERROR_HAVE_NO_MEMORY(op);
105 :
106 4491 : op->service = s;
107 : /*
108 : * source may either be the long-term list of partners, or
109 : * from dreplsrv_partition_source_dsa_temporary(). Because it
110 : * can be either, we can't talloc_steal() it here, so we
111 : * instead we reference it.
112 : *
113 : * We never talloc_free() the p->sources pointers - indeed we
114 : * never remove them - and the temp source will otherwise go
115 : * away with the msg it is allocated on.
116 : *
117 : * Finally the pointer created in drepl_request_extended_op()
118 : * is removed with talloc_unlink().
119 : *
120 : */
121 4491 : op->source_dsa = talloc_reference(op, source);
122 4491 : if (!op->source_dsa) {
123 0 : return WERR_NOT_ENOUGH_MEMORY;
124 : }
125 :
126 4491 : op->options = options;
127 4491 : op->extended_op = extended_op;
128 4491 : op->fsmo_info = fsmo_info;
129 4491 : op->callback = callback;
130 4491 : op->cb_data = cb_data;
131 4491 : op->schedule_time = time(NULL);
132 4491 : op->more_flags = 0;
133 :
134 4491 : DLIST_ADD_END(s->ops.pending, op);
135 :
136 4491 : return WERR_OK;
137 : }
138 :
139 774 : static WERROR dreplsrv_schedule_partition_pull(struct dreplsrv_service *s,
140 : struct dreplsrv_partition *p,
141 : TALLOC_CTX *mem_ctx)
142 : {
143 : WERROR status;
144 : struct dreplsrv_partition_source_dsa *cur;
145 :
146 976 : for (cur = p->sources; cur; cur = cur->next) {
147 202 : status = dreplsrv_schedule_partition_pull_source(s, cur,
148 : 0, DRSUAPI_EXOP_NONE, 0,
149 : NULL, NULL);
150 202 : W_ERROR_NOT_OK_RETURN(status);
151 : }
152 :
153 774 : return WERR_OK;
154 : }
155 :
156 160 : WERROR dreplsrv_schedule_pull_replication(struct dreplsrv_service *s, TALLOC_CTX *mem_ctx)
157 : {
158 : WERROR status;
159 : struct dreplsrv_partition *p;
160 :
161 934 : for (p = s->partitions; p; p = p->next) {
162 774 : status = dreplsrv_schedule_partition_pull(s, p, mem_ctx);
163 774 : W_ERROR_NOT_OK_RETURN(status);
164 : }
165 :
166 160 : return WERR_OK;
167 : }
168 :
169 :
170 4060 : static void dreplsrv_pending_op_callback(struct tevent_req *subreq)
171 : {
172 4060 : struct dreplsrv_out_operation *op = tevent_req_callback_data(subreq,
173 : struct dreplsrv_out_operation);
174 4060 : struct repsFromTo1 *rf = op->source_dsa->repsFrom1;
175 4060 : struct dreplsrv_service *s = op->service;
176 : WERROR werr;
177 :
178 4060 : werr = dreplsrv_op_pull_source_recv(subreq);
179 4060 : TALLOC_FREE(subreq);
180 :
181 4060 : DEBUG(4,("dreplsrv_op_pull_source(%s) for %s\n", win_errstr(werr),
182 : ldb_dn_get_linearized(op->source_dsa->partition->dn)));
183 :
184 4060 : if (op->extended_op == DRSUAPI_EXOP_NONE) {
185 2182 : drepl_reps_update(s, "repsFrom", op->source_dsa->partition->dn,
186 : &rf->source_dsa_obj_guid, werr);
187 : }
188 :
189 4060 : if (op->callback) {
190 2825 : op->callback(s, werr, op->extended_ret, op->cb_data);
191 : }
192 4060 : talloc_free(op);
193 4060 : s->ops.current = NULL;
194 4060 : dreplsrv_run_pending_ops(s);
195 4060 : }
196 :
197 4895 : void dreplsrv_run_pull_ops(struct dreplsrv_service *s)
198 : {
199 : struct dreplsrv_out_operation *op;
200 : time_t t;
201 : NTTIME now;
202 : struct tevent_req *subreq;
203 : WERROR werr;
204 :
205 4895 : if (s->ops.n_current || s->ops.current) {
206 : /* if there's still one running, we're done */
207 4868 : return;
208 : }
209 :
210 4491 : if (!s->ops.pending) {
211 : /* if there're no pending operations, we're done */
212 0 : return;
213 : }
214 :
215 4491 : t = time(NULL);
216 4491 : unix_to_nt_time(&now, t);
217 :
218 4491 : op = s->ops.pending;
219 4491 : s->ops.current = op;
220 4491 : DLIST_REMOVE(s->ops.pending, op);
221 :
222 4491 : op->source_dsa->repsFrom1->last_attempt = now;
223 :
224 : /* check if inbound replication is enabled */
225 4491 : if (!(op->options & DRSUAPI_DRS_SYNC_FORCED)) {
226 : uint32_t rep_options;
227 3580 : if (samdb_ntds_options(op->service->samdb, &rep_options) != LDB_SUCCESS) {
228 0 : werr = WERR_DS_DRA_INTERNAL_ERROR;
229 431 : goto failed;
230 : }
231 :
232 3580 : if ((rep_options & DS_NTDSDSA_OPT_DISABLE_INBOUND_REPL)) {
233 431 : werr = WERR_DS_DRA_SINK_DISABLED;
234 431 : goto failed;
235 : }
236 : }
237 :
238 4060 : subreq = dreplsrv_op_pull_source_send(op, s->task->event_ctx, op);
239 4060 : if (!subreq) {
240 0 : werr = WERR_NOT_ENOUGH_MEMORY;
241 0 : goto failed;
242 : }
243 :
244 4060 : tevent_req_set_callback(subreq, dreplsrv_pending_op_callback, op);
245 4060 : return;
246 :
247 431 : failed:
248 431 : if (op->extended_op == DRSUAPI_EXOP_NONE) {
249 431 : drepl_reps_update(s, "repsFrom", op->source_dsa->partition->dn,
250 431 : &op->source_dsa->repsFrom1->source_dsa_obj_guid, werr);
251 : }
252 : /* unblock queue processing */
253 431 : s->ops.current = NULL;
254 : /*
255 : * let the callback do its job just like in any other failure situation
256 : */
257 431 : if (op->callback) {
258 2 : op->callback(s, werr, op->extended_ret, op->cb_data);
259 : }
260 : }
|