s3-rpc_cli: make dcerpc_lsa_lookup_sids_generic() public.
[Samba/vl.git] / source4 / dsdb / repl / drepl_notify.c
blobcd248d5133a10029ac2a363f8f91cf288264461d
1 /*
2 Unix SMB/CIFS mplementation.
4 DSDB replication service periodic notification handling
6 Copyright (C) Andrew Tridgell 2009
7 based on drepl_periodic
9 This program is free software; you can redistribute it and/or modify
10 it under the terms of the GNU General Public License as published by
11 the Free Software Foundation; either version 3 of the License, or
12 (at your option) any later version.
14 This program is distributed in the hope that it will be useful,
15 but WITHOUT ANY WARRANTY; without even the implied warranty of
16 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
17 GNU General Public License for more details.
19 You should have received a copy of the GNU General Public License
20 along with this program. If not, see <http://www.gnu.org/licenses/>.
24 #include "includes.h"
25 #include "lib/events/events.h"
26 #include "dsdb/samdb/samdb.h"
27 #include "auth/auth.h"
28 #include "smbd/service.h"
29 #include "dsdb/repl/drepl_service.h"
30 #include <ldb_errors.h>
31 #include "../lib/util/dlinklist.h"
32 #include "librpc/gen_ndr/ndr_misc.h"
33 #include "librpc/gen_ndr/ndr_drsuapi.h"
34 #include "librpc/gen_ndr/ndr_drsblobs.h"
35 #include "libcli/composite/composite.h"
36 #include "../lib/util/tevent_ntstatus.h"
39 struct dreplsrv_op_notify_state {
40 struct tevent_context *ev;
41 struct dreplsrv_notify_operation *op;
42 void *ndr_struct_ptr;
45 static void dreplsrv_op_notify_connect_done(struct tevent_req *subreq);
48 start the ReplicaSync async call
50 static struct tevent_req *dreplsrv_op_notify_send(TALLOC_CTX *mem_ctx,
51 struct tevent_context *ev,
52 struct dreplsrv_notify_operation *op)
54 struct tevent_req *req;
55 struct dreplsrv_op_notify_state *state;
56 struct tevent_req *subreq;
58 req = tevent_req_create(mem_ctx, &state,
59 struct dreplsrv_op_notify_state);
60 if (req == NULL) {
61 return NULL;
63 state->ev = ev;
64 state->op = op;
66 subreq = dreplsrv_out_drsuapi_send(state,
67 ev,
68 op->source_dsa->conn);
69 if (tevent_req_nomem(subreq, req)) {
70 return tevent_req_post(req, ev);
72 tevent_req_set_callback(subreq, dreplsrv_op_notify_connect_done, req);
74 return req;
77 static void dreplsrv_op_notify_replica_sync_trigger(struct tevent_req *req);
79 static void dreplsrv_op_notify_connect_done(struct tevent_req *subreq)
81 struct tevent_req *req = tevent_req_callback_data(subreq,
82 struct tevent_req);
83 NTSTATUS status;
85 status = dreplsrv_out_drsuapi_recv(subreq);
86 TALLOC_FREE(subreq);
87 if (tevent_req_nterror(req, status)) {
88 return;
91 dreplsrv_op_notify_replica_sync_trigger(req);
94 static void dreplsrv_op_notify_replica_sync_done(struct tevent_req *subreq);
96 static void dreplsrv_op_notify_replica_sync_trigger(struct tevent_req *req)
98 struct dreplsrv_op_notify_state *state =
99 tevent_req_data(req,
100 struct dreplsrv_op_notify_state);
101 struct dreplsrv_partition *partition = state->op->source_dsa->partition;
102 struct dreplsrv_drsuapi_connection *drsuapi = state->op->source_dsa->conn->drsuapi;
103 struct drsuapi_DsReplicaSync *r;
104 struct tevent_req *subreq;
106 r = talloc_zero(state, struct drsuapi_DsReplicaSync);
107 if (tevent_req_nomem(r, req)) {
108 return;
110 r->in.req = talloc_zero(r, union drsuapi_DsReplicaSyncRequest);
111 if (tevent_req_nomem(r, req)) {
112 return;
114 r->in.bind_handle = &drsuapi->bind_handle;
115 r->in.level = 1;
116 r->in.req->req1.naming_context = &partition->nc;
117 r->in.req->req1.source_dsa_guid = state->op->service->ntds_guid;
118 r->in.req->req1.options =
119 DRSUAPI_DRS_ASYNC_OP |
120 DRSUAPI_DRS_UPDATE_NOTIFICATION |
121 DRSUAPI_DRS_WRIT_REP;
123 if (state->op->is_urgent) {
124 r->in.req->req1.options |= DRSUAPI_DRS_SYNC_URGENT;
127 state->ndr_struct_ptr = r;
129 if (DEBUGLVL(10)) {
130 NDR_PRINT_IN_DEBUG(drsuapi_DsReplicaSync, r);
133 subreq = dcerpc_drsuapi_DsReplicaSync_r_send(state,
134 state->ev,
135 drsuapi->drsuapi_handle,
137 if (tevent_req_nomem(subreq, req)) {
138 return;
140 tevent_req_set_callback(subreq, dreplsrv_op_notify_replica_sync_done, req);
143 static void dreplsrv_op_notify_replica_sync_done(struct tevent_req *subreq)
145 struct tevent_req *req =
146 tevent_req_callback_data(subreq,
147 struct tevent_req);
148 struct dreplsrv_op_notify_state *state =
149 tevent_req_data(req,
150 struct dreplsrv_op_notify_state);
151 struct drsuapi_DsReplicaSync *r = talloc_get_type(state->ndr_struct_ptr,
152 struct drsuapi_DsReplicaSync);
153 NTSTATUS status;
155 state->ndr_struct_ptr = NULL;
157 status = dcerpc_drsuapi_DsReplicaSync_r_recv(subreq, r);
158 TALLOC_FREE(subreq);
159 if (tevent_req_nterror(req, status)) {
160 return;
163 if (!W_ERROR_IS_OK(r->out.result)) {
164 status = werror_to_ntstatus(r->out.result);
165 tevent_req_nterror(req, status);
166 return;
169 tevent_req_done(req);
172 static NTSTATUS dreplsrv_op_notify_recv(struct tevent_req *req)
174 return tevent_req_simple_recv_ntstatus(req);
178 called when a notify operation has completed
180 static void dreplsrv_notify_op_callback(struct tevent_req *subreq)
182 struct dreplsrv_notify_operation *op =
183 tevent_req_callback_data(subreq,
184 struct dreplsrv_notify_operation);
185 NTSTATUS status;
186 struct dreplsrv_service *s = op->service;
187 WERROR werr;
189 status = dreplsrv_op_notify_recv(subreq);
190 werr = ntstatus_to_werror(status);
191 TALLOC_FREE(subreq);
192 if (!NT_STATUS_IS_OK(status)) {
193 DEBUG(4,("dreplsrv_notify: Failed to send DsReplicaSync to %s for %s - %s : %s\n",
194 op->source_dsa->repsFrom1->other_info->dns_name,
195 ldb_dn_get_linearized(op->source_dsa->partition->dn),
196 nt_errstr(status), win_errstr(werr)));
197 } else {
198 DEBUG(2,("dreplsrv_notify: DsReplicaSync OK for %s\n",
199 op->source_dsa->repsFrom1->other_info->dns_name));
200 op->source_dsa->notify_uSN = op->uSN;
203 drepl_reps_update(s, "repsTo", op->source_dsa->partition->dn,
204 &op->source_dsa->repsFrom1->source_dsa_obj_guid,
205 werr);
207 talloc_free(op);
208 s->ops.n_current = NULL;
209 dreplsrv_run_pending_ops(s);
213 run any pending replica sync calls
215 void dreplsrv_notify_run_ops(struct dreplsrv_service *s)
217 struct dreplsrv_notify_operation *op;
218 struct tevent_req *subreq;
220 if (s->ops.n_current || s->ops.current) {
221 /* if there's still one running, we're done */
222 return;
225 if (!s->ops.notifies) {
226 /* if there're no pending operations, we're done */
227 return;
230 op = s->ops.notifies;
231 s->ops.n_current = op;
232 DLIST_REMOVE(s->ops.notifies, op);
234 subreq = dreplsrv_op_notify_send(op, s->task->event_ctx, op);
235 if (!subreq) {
236 DEBUG(0,("dreplsrv_notify_run_ops: dreplsrv_op_notify_send[%s][%s] - no memory\n",
237 op->source_dsa->repsFrom1->other_info->dns_name,
238 ldb_dn_get_linearized(op->source_dsa->partition->dn)));
239 return;
241 tevent_req_set_callback(subreq, dreplsrv_notify_op_callback, op);
242 DEBUG(4,("started DsReplicaSync for %s to %s\n",
243 ldb_dn_get_linearized(op->source_dsa->partition->dn),
244 op->source_dsa->repsFrom1->other_info->dns_name));
249 find a source_dsa for a given guid
251 static struct dreplsrv_partition_source_dsa *dreplsrv_find_notify_dsa(struct dreplsrv_partition *p,
252 struct GUID *guid)
254 struct dreplsrv_partition_source_dsa *s;
256 /* first check the sources list */
257 for (s=p->sources; s; s=s->next) {
258 if (GUID_compare(&s->repsFrom1->source_dsa_obj_guid, guid) == 0) {
259 return s;
263 /* then the notifies list */
264 for (s=p->notifies; s; s=s->next) {
265 if (GUID_compare(&s->repsFrom1->source_dsa_obj_guid, guid) == 0) {
266 return s;
269 return NULL;
274 schedule a replicaSync message
276 static WERROR dreplsrv_schedule_notify_sync(struct dreplsrv_service *service,
277 struct dreplsrv_partition *p,
278 struct repsFromToBlob *reps,
279 TALLOC_CTX *mem_ctx,
280 uint64_t uSN,
281 bool is_urgent,
282 uint32_t replica_flags)
284 struct dreplsrv_notify_operation *op;
285 struct dreplsrv_partition_source_dsa *s;
287 s = dreplsrv_find_notify_dsa(p, &reps->ctr.ctr1.source_dsa_obj_guid);
288 if (s == NULL) {
289 DEBUG(0,(__location__ ": Unable to find source_dsa for %s\n",
290 GUID_string(mem_ctx, &reps->ctr.ctr1.source_dsa_obj_guid)));
291 return WERR_DS_UNAVAILABLE;
294 /* first try to find an existing notify operation */
295 for (op = service->ops.notifies; op; op = op->next) {
296 if (op->source_dsa != s) {
297 continue;
300 if (op->is_urgent != is_urgent) {
301 continue;
304 if (op->replica_flags != replica_flags) {
305 continue;
308 if (op->uSN < uSN) {
309 op->uSN = uSN;
312 /* reuse the notify operation, as it's not yet started */
313 return WERR_OK;
316 op = talloc_zero(mem_ctx, struct dreplsrv_notify_operation);
317 W_ERROR_HAVE_NO_MEMORY(op);
319 op->service = service;
320 op->source_dsa = s;
321 op->uSN = uSN;
322 op->is_urgent = is_urgent;
323 op->replica_flags = replica_flags;
324 op->schedule_time = time(NULL);
326 DLIST_ADD_END(service->ops.notifies, op, struct dreplsrv_notify_operation *);
327 talloc_steal(service, op);
328 return WERR_OK;
332 see if a partition has a hugher uSN than what is in the repsTo and
333 if so then send a DsReplicaSync
335 static WERROR dreplsrv_notify_check(struct dreplsrv_service *s,
336 struct dreplsrv_partition *p,
337 TALLOC_CTX *mem_ctx)
339 uint32_t count=0;
340 struct repsFromToBlob *reps;
341 WERROR werr;
342 uint64_t uSNHighest;
343 uint64_t uSNUrgent;
344 uint32_t i;
345 int ret;
347 werr = dsdb_loadreps(s->samdb, mem_ctx, p->dn, "repsTo", &reps, &count);
348 if (!W_ERROR_IS_OK(werr)) {
349 DEBUG(0,(__location__ ": Failed to load repsTo for %s\n",
350 ldb_dn_get_linearized(p->dn)));
351 return werr;
354 /* loads the partition uSNHighest and uSNUrgent */
355 ret = dsdb_load_partition_usn(s->samdb, p->dn, &uSNHighest, &uSNUrgent);
356 if (ret != LDB_SUCCESS || uSNHighest == 0) {
357 /* nothing to do */
358 return WERR_OK;
361 /* see if any of our partners need some of our objects */
362 for (i=0; i<count; i++) {
363 struct dreplsrv_partition_source_dsa *sdsa;
364 uint32_t replica_flags;
365 sdsa = dreplsrv_find_notify_dsa(p, &reps[i].ctr.ctr1.source_dsa_obj_guid);
366 replica_flags = reps[i].ctr.ctr1.replica_flags;
367 if (sdsa == NULL) continue;
368 if (sdsa->notify_uSN < uSNHighest) {
369 /* we need to tell this partner to replicate
370 with us */
371 bool is_urgent = sdsa->notify_uSN < uSNUrgent;
373 /* check if urgent replication is needed */
374 werr = dreplsrv_schedule_notify_sync(s, p, &reps[i], mem_ctx,
375 uSNHighest, is_urgent, replica_flags);
376 if (!W_ERROR_IS_OK(werr)) {
377 DEBUG(0,(__location__ ": Failed to setup notify to %s for %s\n",
378 reps[i].ctr.ctr1.other_info->dns_name,
379 ldb_dn_get_linearized(p->dn)));
380 return werr;
382 DEBUG(4,("queued DsReplicaSync for %s to %s (urgent=%s) uSN=%llu:%llu\n",
383 ldb_dn_get_linearized(p->dn),
384 reps[i].ctr.ctr1.other_info->dns_name,
385 is_urgent?"true":"false",
386 (unsigned long long)sdsa->notify_uSN,
387 (unsigned long long)uSNHighest));
391 return WERR_OK;
395 see if any of the partitions have changed, and if so then send a
396 DsReplicaSync to all the replica partners in the repsTo object
398 static WERROR dreplsrv_notify_check_all(struct dreplsrv_service *s, TALLOC_CTX *mem_ctx)
400 WERROR status;
401 struct dreplsrv_partition *p;
403 for (p = s->partitions; p; p = p->next) {
404 status = dreplsrv_notify_check(s, p, mem_ctx);
405 W_ERROR_NOT_OK_RETURN(status);
408 return WERR_OK;
411 static void dreplsrv_notify_run(struct dreplsrv_service *service);
413 static void dreplsrv_notify_handler_te(struct tevent_context *ev, struct tevent_timer *te,
414 struct timeval t, void *ptr)
416 struct dreplsrv_service *service = talloc_get_type(ptr, struct dreplsrv_service);
417 WERROR status;
419 service->notify.te = NULL;
421 dreplsrv_notify_run(service);
423 status = dreplsrv_notify_schedule(service, service->notify.interval);
424 if (!W_ERROR_IS_OK(status)) {
425 task_server_terminate(service->task, win_errstr(status), false);
426 return;
430 WERROR dreplsrv_notify_schedule(struct dreplsrv_service *service, uint32_t next_interval)
432 TALLOC_CTX *tmp_mem;
433 struct tevent_timer *new_te;
434 struct timeval next_time;
436 /* prevent looping */
437 if (next_interval == 0) next_interval = 1;
439 next_time = timeval_current_ofs(next_interval, 50);
441 if (service->notify.te) {
443 * if the timestamp of the new event is higher,
444 * as current next we don't need to reschedule
446 if (timeval_compare(&next_time, &service->notify.next_event) > 0) {
447 return WERR_OK;
451 /* reset the next scheduled timestamp */
452 service->notify.next_event = next_time;
454 new_te = tevent_add_timer(service->task->event_ctx, service,
455 service->notify.next_event,
456 dreplsrv_notify_handler_te, service);
457 W_ERROR_HAVE_NO_MEMORY(new_te);
459 tmp_mem = talloc_new(service);
460 DEBUG(4,("dreplsrv_notify_schedule(%u) %sscheduled for: %s\n",
461 next_interval,
462 (service->notify.te?"re":""),
463 nt_time_string(tmp_mem, timeval_to_nttime(&next_time))));
464 talloc_free(tmp_mem);
466 talloc_free(service->notify.te);
467 service->notify.te = new_te;
469 return WERR_OK;
472 static void dreplsrv_notify_run(struct dreplsrv_service *service)
474 TALLOC_CTX *mem_ctx;
476 mem_ctx = talloc_new(service);
477 dreplsrv_notify_check_all(service, mem_ctx);
478 talloc_free(mem_ctx);
480 dreplsrv_run_pending_ops(service);