search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
ctdb-server: Remove duplicate logic
[samba4-gss.git] / source3 / libnet / libnet_dssync.c
blob7f10f2dd4b1a907b029c6fdeee498dc7663a942e
1 /*
2 Unix SMB/CIFS implementation.
3
4 Copyright (C) Stefan (metze) Metzmacher 2005
5 Copyright (C) Guenther Deschner 2008
6 Copyright (C) Michael Adam 2008
7
8 This program is free software; you can redistribute it and/or modify
9 it under the terms of the GNU General Public License as published by
10 the Free Software Foundation; either version 3 of the License, or
11 (at your option) any later version.
12
13 This program is distributed in the hope that it will be useful,
14 but WITHOUT ANY WARRANTY; without even the implied warranty of
15 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
16 GNU General Public License for more details.
17
18 You should have received a copy of the GNU General Public License
19 along with this program. If not, see <http://www.gnu.org/licenses/>.
20 */
21
22
23 #include "includes.h"
24 #include "libnet/libnet_dssync.h"
25 #include "rpc_client/cli_pipe.h"
26 #include "../libcli/drsuapi/drsuapi.h"
27 #include "../librpc/gen_ndr/ndr_drsuapi_c.h"
28
29 /****************************************************************
30 ****************************************************************/
31
32 static int libnet_dssync_free_context(struct dssync_context *ctx)
33 {
34 WERROR result;
35 struct dcerpc_binding_handle *b;
36
37 if (!ctx) {
38 return 0;
39 }
40
41 if (is_valid_policy_hnd(&ctx->bind_handle) && ctx->cli) {
42 b = ctx->cli->binding_handle;
43 dcerpc_drsuapi_DsUnbind(b, ctx, &ctx->bind_handle, &result);
44 }
45
46 return 0;
47 }
48
49 /****************************************************************
50 ****************************************************************/
51
52 NTSTATUS libnet_dssync_init_context(TALLOC_CTX *mem_ctx,
53 struct dssync_context **ctx_p)
54 {
55 struct dssync_context *ctx;
56
57 ctx = talloc_zero(mem_ctx, struct dssync_context);
58 NT_STATUS_HAVE_NO_MEMORY(ctx);
59
60 talloc_set_destructor(ctx, libnet_dssync_free_context);
61 ctx->clean_old_entries = false;
62
63 *ctx_p = ctx;
64
65 return NT_STATUS_OK;
66 }
67
68 /****************************************************************
69 ****************************************************************/
70
71 static void parse_obj_identifier(struct drsuapi_DsReplicaObjectIdentifier *id,
72 uint32_t *rid)
73 {
74 if (!id || !rid) {
75 return;
76 }
77
78 *rid = 0;
79
80 if (id->sid.num_auths > 0) {
81 *rid = id->sid.sub_auths[id->sid.num_auths - 1];
82 }
83 }
84
85 /****************************************************************
86 ****************************************************************/
87
88 static void libnet_dssync_decrypt_attributes(TALLOC_CTX *mem_ctx,
89 DATA_BLOB *session_key,
90 struct drsuapi_DsReplicaObjectListItemEx *cur)
91 {
92 for (; cur; cur = cur->next_object) {
93
94 uint32_t i;
95 uint32_t rid = 0;
96
97 parse_obj_identifier(cur->object.identifier, &rid);
98
99 for (i=0; i < cur->object.attribute_ctr.num_attributes; i++) {
100
101 struct drsuapi_DsReplicaAttribute *attr;
102
103 attr = &cur->object.attribute_ctr.attributes[i];
104
105 if (attr->value_ctr.num_values < 1) {
106 continue;
107 }
108
109 if (!attr->value_ctr.values[0].blob) {
110 continue;
111 }
112
113 drsuapi_decrypt_attribute(mem_ctx,
114 session_key,
115 rid,
116 0,
117 attr);
118 }
119 }
120 }
121 /****************************************************************
122 ****************************************************************/
123
124 static NTSTATUS libnet_dssync_bind(TALLOC_CTX *mem_ctx,
125 struct dssync_context *ctx)
126 {
127 NTSTATUS status;
128 WERROR werr;
129
130 struct GUID bind_guid;
131 struct drsuapi_DsBindInfoCtr bind_info;
132 struct drsuapi_DsBindInfo28 info28;
133 struct dcerpc_binding_handle *b = ctx->cli->binding_handle;
134
135 ZERO_STRUCT(info28);
136
137 GUID_from_string(DRSUAPI_DS_BIND_GUID, &bind_guid);
138
139 info28.supported_extensions |= DRSUAPI_SUPPORTED_EXTENSION_BASE;
140 info28.supported_extensions |= DRSUAPI_SUPPORTED_EXTENSION_ASYNC_REPLICATION;
141 info28.supported_extensions |= DRSUAPI_SUPPORTED_EXTENSION_REMOVEAPI;
142 info28.supported_extensions |= DRSUAPI_SUPPORTED_EXTENSION_MOVEREQ_V2;
143 info28.supported_extensions |= DRSUAPI_SUPPORTED_EXTENSION_GETCHG_COMPRESS;
144 info28.supported_extensions |= DRSUAPI_SUPPORTED_EXTENSION_DCINFO_V1;
145 info28.supported_extensions |= DRSUAPI_SUPPORTED_EXTENSION_RESTORE_USN_OPTIMIZATION;
146 info28.supported_extensions |= DRSUAPI_SUPPORTED_EXTENSION_KCC_EXECUTE;
147 info28.supported_extensions |= DRSUAPI_SUPPORTED_EXTENSION_ADDENTRY_V2;
148 info28.supported_extensions |= DRSUAPI_SUPPORTED_EXTENSION_LINKED_VALUE_REPLICATION;
149 info28.supported_extensions |= DRSUAPI_SUPPORTED_EXTENSION_DCINFO_V2;
150 info28.supported_extensions |= DRSUAPI_SUPPORTED_EXTENSION_INSTANCE_TYPE_NOT_REQ_ON_MOD;
151 info28.supported_extensions |= DRSUAPI_SUPPORTED_EXTENSION_CRYPTO_BIND;
152 info28.supported_extensions |= DRSUAPI_SUPPORTED_EXTENSION_GET_REPL_INFO;
153 info28.supported_extensions |= DRSUAPI_SUPPORTED_EXTENSION_STRONG_ENCRYPTION;
154 info28.supported_extensions |= DRSUAPI_SUPPORTED_EXTENSION_DCINFO_V01;
155 info28.supported_extensions |= DRSUAPI_SUPPORTED_EXTENSION_TRANSITIVE_MEMBERSHIP;
156 info28.supported_extensions |= DRSUAPI_SUPPORTED_EXTENSION_ADD_SID_HISTORY;
157 info28.supported_extensions |= DRSUAPI_SUPPORTED_EXTENSION_POST_BETA3;
158 info28.supported_extensions |= DRSUAPI_SUPPORTED_EXTENSION_GET_MEMBERSHIPS2;
159 info28.supported_extensions |= DRSUAPI_SUPPORTED_EXTENSION_GETCHGREQ_V6;
160 info28.supported_extensions |= DRSUAPI_SUPPORTED_EXTENSION_NONDOMAIN_NCS;
161 info28.supported_extensions |= DRSUAPI_SUPPORTED_EXTENSION_GETCHGREQ_V8;
162 info28.supported_extensions |= DRSUAPI_SUPPORTED_EXTENSION_GETCHGREPLY_V5;
163 info28.supported_extensions |= DRSUAPI_SUPPORTED_EXTENSION_GETCHGREPLY_V6;
164 info28.supported_extensions |= DRSUAPI_SUPPORTED_EXTENSION_ADDENTRYREPLY_V3;
165 info28.supported_extensions |= DRSUAPI_SUPPORTED_EXTENSION_GETCHGREPLY_V7;
166 info28.supported_extensions |= DRSUAPI_SUPPORTED_EXTENSION_VERIFY_OBJECT;
167 info28.site_guid = GUID_zero();
168 info28.pid = 508;
169 info28.repl_epoch = 0;
170
171 bind_info.length = 28;
172 bind_info.info.info28 = info28;
173
174 status = dcerpc_drsuapi_DsBind(b, mem_ctx,
175 &bind_guid,
176 &bind_info,
177 &ctx->bind_handle,
178 &werr);
179
180 if (!NT_STATUS_IS_OK(status)) {
181 return status;
182 }
183
184 if (!W_ERROR_IS_OK(werr)) {
185 return werror_to_ntstatus(werr);
186 }
187
188 ZERO_STRUCT(ctx->remote_info28);
189 switch (bind_info.length) {
190 case 24: {
191 struct drsuapi_DsBindInfo24 *info24;
192 info24 = &bind_info.info.info24;
193 ctx->remote_info28.site_guid = info24->site_guid;
194 ctx->remote_info28.supported_extensions = info24->supported_extensions;
195 ctx->remote_info28.pid = info24->pid;
196 ctx->remote_info28.repl_epoch = 0;
197 break;
198 }
199 case 28: {
200 ctx->remote_info28 = bind_info.info.info28;
201 break;
202 }
203 case 32: {
204 struct drsuapi_DsBindInfo32 *info32;
205 info32 = &bind_info.info.info32;
206 ctx->remote_info28.site_guid = info32->site_guid;
207 ctx->remote_info28.supported_extensions = info32->supported_extensions;
208 ctx->remote_info28.pid = info32->pid;
209 ctx->remote_info28.repl_epoch = info32->repl_epoch;
210 break;
211 }
212 case 48: {
213 struct drsuapi_DsBindInfo48 *info48;
214 info48 = &bind_info.info.info48;
215 ctx->remote_info28.site_guid = info48->site_guid;
216 ctx->remote_info28.supported_extensions = info48->supported_extensions;
217 ctx->remote_info28.pid = info48->pid;
218 ctx->remote_info28.repl_epoch = info48->repl_epoch;
219 break;
220 }
221 case 52: {
222 struct drsuapi_DsBindInfo52 *info52;
223 info52 = &bind_info.info.info52;
224 ctx->remote_info28.site_guid = info52->site_guid;
225 ctx->remote_info28.supported_extensions = info52->supported_extensions;
226 ctx->remote_info28.pid = info52->pid;
227 ctx->remote_info28.repl_epoch = info52->repl_epoch;
228 break;
229 }
230 default:
231 DEBUG(1, ("Warning: invalid info length in bind info: %d\n",
232 bind_info.length));
233 break;
234 }
235
236 return status;
237 }
238
239 /****************************************************************
240 ****************************************************************/
241
242 static NTSTATUS libnet_dssync_lookup_nc(TALLOC_CTX *mem_ctx,
243 struct dssync_context *ctx)
244 {
245 NTSTATUS status;
246 WERROR werr;
247 uint32_t level = 1;
248 union drsuapi_DsNameRequest req;
249 uint32_t level_out;
250 struct drsuapi_DsNameString names[1];
251 union drsuapi_DsNameCtr ctr;
252 struct dcerpc_binding_handle *b = ctx->cli->binding_handle;
253
254 names[0].str = talloc_asprintf(mem_ctx, "%s\\", ctx->domain_name);
255 NT_STATUS_HAVE_NO_MEMORY(names[0].str);
256
257 req.req1.codepage = 1252; /* german */
258 req.req1.language = 0x00000407; /* german */
259 req.req1.count = 1;
260 req.req1.names = names;
261 req.req1.format_flags = DRSUAPI_DS_NAME_FLAG_NO_FLAGS;
262 req.req1.format_offered = DRSUAPI_DS_NAME_FORMAT_UNKNOWN;
263 req.req1.format_desired = DRSUAPI_DS_NAME_FORMAT_FQDN_1779;
264
265 status = dcerpc_drsuapi_DsCrackNames(b, mem_ctx,
266 &ctx->bind_handle,
267 level,
268 &req,
269 &level_out,
270 &ctr,
271 &werr);
272 if (!NT_STATUS_IS_OK(status)) {
273 ctx->error_message = talloc_asprintf(ctx,
274 "Failed to lookup DN for domain name: %s",
275 get_friendly_nt_error_msg(status));
276 return status;
277 }
278
279 if (!W_ERROR_IS_OK(werr)) {
280 ctx->error_message = talloc_asprintf(ctx,
281 "Failed to lookup DN for domain name: %s",
282 get_friendly_werror_msg(werr));
283 return werror_to_ntstatus(werr);
284 }
285
286 if (ctr.ctr1->count != 1) {
287 return NT_STATUS_UNSUCCESSFUL;
288 }
289
290 if (ctr.ctr1->array[0].status != DRSUAPI_DS_NAME_STATUS_OK) {
291 return NT_STATUS_UNSUCCESSFUL;
292 }
293
294 ctx->nc_dn = talloc_strdup(mem_ctx, ctr.ctr1->array[0].result_name);
295 NT_STATUS_HAVE_NO_MEMORY(ctx->nc_dn);
296
297 if (!ctx->dns_domain_name) {
298 ctx->dns_domain_name = talloc_strdup_upper(mem_ctx,
299 ctr.ctr1->array[0].dns_domain_name);
300 NT_STATUS_HAVE_NO_MEMORY(ctx->dns_domain_name);
301 }
302
303 return NT_STATUS_OK;
304 }
305
306 /****************************************************************
307 ****************************************************************/
308
309 static NTSTATUS libnet_dssync_init(TALLOC_CTX *mem_ctx,
310 struct dssync_context *ctx)
311 {
312 NTSTATUS status;
313
314 status = libnet_dssync_bind(mem_ctx, ctx);
315 if (!NT_STATUS_IS_OK(status)) {
316 return status;
317 }
318
319 if (!ctx->nc_dn) {
320 status = libnet_dssync_lookup_nc(mem_ctx, ctx);
321 }
322
323 return status;
324 }
325
326 /****************************************************************
327 ****************************************************************/
328
329 static NTSTATUS libnet_dssync_build_request(TALLOC_CTX *mem_ctx,
330 struct dssync_context *ctx,
331 const char *dn,
332 struct replUpToDateVectorBlob *utdv,
333 uint32_t *plevel,
334 union drsuapi_DsGetNCChangesRequest *preq)
335 {
336 NTSTATUS status;
337 uint32_t count;
338 uint32_t level;
339 union drsuapi_DsGetNCChangesRequest req;
340 enum drsuapi_DsExtendedOperation extended_op;
341 struct drsuapi_DsReplicaObjectIdentifier *nc = NULL;
342 struct drsuapi_DsReplicaCursorCtrEx *cursors = NULL;
343
344 uint32_t replica_flags = DRSUAPI_DRS_WRIT_REP |
345 DRSUAPI_DRS_INIT_SYNC |
346 DRSUAPI_DRS_PER_SYNC |
347 DRSUAPI_DRS_GET_ANC |
348 DRSUAPI_DRS_NEVER_SYNCED;
349
350 ZERO_STRUCT(req);
351
352 if (ctx->remote_info28.supported_extensions
353 & DRSUAPI_SUPPORTED_EXTENSION_GETCHGREQ_V8)
354 {
355 level = 8;
356 } else {
357 level = 5;
358 }
359
360 nc = talloc_zero(mem_ctx, struct drsuapi_DsReplicaObjectIdentifier);
361 if (!nc) {
362 status = NT_STATUS_NO_MEMORY;
363 goto fail;
364 }
365 nc->dn = dn;
366 nc->guid = GUID_zero();
367 nc->sid = (struct dom_sid) {0};
368
369 if (!ctx->single_object_replication &&
370 !ctx->force_full_replication && utdv)
371 {
372 cursors = talloc_zero(mem_ctx,
373 struct drsuapi_DsReplicaCursorCtrEx);
374 if (!cursors) {
375 status = NT_STATUS_NO_MEMORY;
376 goto fail;
377 }
378
379 switch (utdv->version) {
380 case 1:
381 cursors->count = utdv->ctr.ctr1.count;
382 cursors->cursors = utdv->ctr.ctr1.cursors;
383 break;
384 case 2:
385 cursors->count = utdv->ctr.ctr2.count;
386 cursors->cursors = talloc_array(cursors,
387 struct drsuapi_DsReplicaCursor,
388 cursors->count);
389 if (!cursors->cursors) {
390 status = NT_STATUS_NO_MEMORY;
391 goto fail;
392 }
393 for (count = 0; count < cursors->count; count++) {
394 cursors->cursors[count].source_dsa_invocation_id =
395 utdv->ctr.ctr2.cursors[count].source_dsa_invocation_id;
396 cursors->cursors[count].highest_usn =
397 utdv->ctr.ctr2.cursors[count].highest_usn;
398 }
399 break;
400 }
401 }
402
403 if (ctx->single_object_replication) {
404 extended_op = DRSUAPI_EXOP_REPL_OBJ;
405 } else {
406 extended_op = DRSUAPI_EXOP_NONE;
407 }
408
409 if (level == 8) {
410 req.req8.naming_context = nc;
411 req.req8.replica_flags = replica_flags;
412 req.req8.max_object_count = 402;
413 req.req8.max_ndr_size = 402116;
414 req.req8.uptodateness_vector = cursors;
415 req.req8.extended_op = extended_op;
416 } else if (level == 5) {
417 req.req5.naming_context = nc;
418 req.req5.replica_flags = replica_flags;
419 req.req5.max_object_count = 402;
420 req.req5.max_ndr_size = 402116;
421 req.req5.uptodateness_vector = cursors;
422 req.req5.extended_op = extended_op;
423 } else {
424 status = NT_STATUS_INVALID_PARAMETER;
425 goto fail;
426 }
427
428 if (plevel) {
429 *plevel = level;
430 }
431
432 if (preq) {
433 *preq = req;
434 }
435
436 return NT_STATUS_OK;
437
438 fail:
439 TALLOC_FREE(nc);
440 TALLOC_FREE(cursors);
441 return status;
442 }
443
444 static NTSTATUS libnet_dssync_getncchanges(TALLOC_CTX *mem_ctx,
445 struct dssync_context *ctx,
446 uint32_t level,
447 union drsuapi_DsGetNCChangesRequest *req,
448 struct replUpToDateVectorBlob **pnew_utdv)
449 {
450 NTSTATUS status;
451 WERROR werr;
452 union drsuapi_DsGetNCChangesCtr ctr;
453 struct drsuapi_DsGetNCChangesCtr1 *ctr1 = NULL;
454 struct drsuapi_DsGetNCChangesCtr6 *ctr6 = NULL;
455 struct replUpToDateVectorBlob *new_utdv = NULL;
456 uint32_t level_out = 0;
457 uint32_t out_level = 0;
458 int y;
459 bool last_query;
460 struct dcerpc_binding_handle *b = ctx->cli->binding_handle;
461
462 if (!ctx->single_object_replication) {
463 new_utdv = talloc_zero(mem_ctx, struct replUpToDateVectorBlob);
464 if (!new_utdv) {
465 status = NT_STATUS_NO_MEMORY;
466 goto out;
467 }
468 }
469
470 status = dcerpc_binding_handle_auth_session_key(
471 b, mem_ctx, &ctx->session_key);
472 if (!NT_STATUS_IS_OK(status)) {
473 ctx->error_message = talloc_asprintf(ctx,
474 "Failed to get Session Key: %s",
475 nt_errstr(status));
476 goto out;
477 }
478
479 for (y=0, last_query = false; !last_query; y++) {
480 struct drsuapi_DsReplicaObjectListItemEx *first_object = NULL;
481 struct drsuapi_DsReplicaOIDMapping_Ctr *mapping_ctr = NULL;
482 uint32_t linked_attributes_count = 0;
483 struct drsuapi_DsReplicaLinkedAttribute *linked_attributes = NULL;
484
485 if (level == 8) {
486 DEBUG(1,("start[%d] tmp_higest_usn: %llu , highest_usn: %llu\n",y,
487 (long long)req->req8.highwatermark.tmp_highest_usn,
488 (long long)req->req8.highwatermark.highest_usn));
489 } else if (level == 5) {
490 DEBUG(1,("start[%d] tmp_higest_usn: %llu , highest_usn: %llu\n",y,
491 (long long)req->req5.highwatermark.tmp_highest_usn,
492 (long long)req->req5.highwatermark.highest_usn));
493 }
494
495 status = dcerpc_drsuapi_DsGetNCChanges(b, mem_ctx,
496 &ctx->bind_handle,
497 level,
498 req,
499 &level_out,
500 &ctr,
501 &werr);
502 if (!NT_STATUS_IS_OK(status)) {
503 ctx->error_message = talloc_asprintf(ctx,
504 "Failed to get NC Changes: %s",
505 get_friendly_nt_error_msg(status));
506 goto out;
507 }
508
509 if (!W_ERROR_IS_OK(werr)) {
510 status = werror_to_ntstatus(werr);
511 ctx->error_message = talloc_asprintf(ctx,
512 "Failed to get NC Changes: %s",
513 get_friendly_werror_msg(werr));
514 goto out;
515 }
516
517 if (level_out == 1) {
518 out_level = 1;
519 ctr1 = &ctr.ctr1;
520 } else if (level_out == 2 && ctr.ctr2.mszip1.ts) {
521 out_level = 1;
522 ctr1 = &ctr.ctr2.mszip1.ts->ctr1;
523 } else if (level_out == 6) {
524 out_level = 6;
525 ctr6 = &ctr.ctr6;
526 } else if (level_out == 7
527 && ctr.ctr7.level == 6
528 && ctr.ctr7.type == DRSUAPI_COMPRESSION_TYPE_MSZIP
529 && ctr.ctr7.ctr.mszip6.ts) {
530 out_level = 6;
531 ctr6 = &ctr.ctr7.ctr.mszip6.ts->ctr6;
532 } else if (level_out == 7
533 && ctr.ctr7.level == 6
534 && ctr.ctr7.type == DRSUAPI_COMPRESSION_TYPE_WIN2K3_LZ77_DIRECT2
535 && ctr.ctr7.ctr.xpress6.ts) {
536 out_level = 6;
537 ctr6 = &ctr.ctr7.ctr.xpress6.ts->ctr6;
538 }
539
540 if (out_level == 1) {
541 DEBUG(1,("end[%d] tmp_highest_usn: %llu , highest_usn: %llu\n",y,
542 (long long)ctr1->new_highwatermark.tmp_highest_usn,
543 (long long)ctr1->new_highwatermark.highest_usn));
544
545 first_object = ctr1->first_object;
546 mapping_ctr = &ctr1->mapping_ctr;
547
548 if (ctr1->more_data) {
549 req->req5.highwatermark = ctr1->new_highwatermark;
550 } else {
551 last_query = true;
552 if (ctr1->uptodateness_vector &&
553 !ctx->single_object_replication)
554 {
555 new_utdv->version = 1;
556 new_utdv->ctr.ctr1.count =
557 ctr1->uptodateness_vector->count;
558 new_utdv->ctr.ctr1.cursors =
559 ctr1->uptodateness_vector->cursors;
560 }
561 }
562 } else if (out_level == 6) {
563 DEBUG(1,("end[%d] tmp_highest_usn: %llu , highest_usn: %llu\n",y,
564 (long long)ctr6->new_highwatermark.tmp_highest_usn,
565 (long long)ctr6->new_highwatermark.highest_usn));
566
567 first_object = ctr6->first_object;
568 mapping_ctr = &ctr6->mapping_ctr;
569
570 linked_attributes = ctr6->linked_attributes;
571 linked_attributes_count = ctr6->linked_attributes_count;
572
573 if (ctr6->more_data) {
574 req->req8.highwatermark = ctr6->new_highwatermark;
575 } else {
576 last_query = true;
577 if (ctr6->uptodateness_vector &&
578 !ctx->single_object_replication)
579 {
580 new_utdv->version = 2;
581 new_utdv->ctr.ctr2.count =
582 ctr6->uptodateness_vector->count;
583 new_utdv->ctr.ctr2.cursors =
584 ctr6->uptodateness_vector->cursors;
585 }
586 }
587 }
588
589 libnet_dssync_decrypt_attributes(mem_ctx,
590 &ctx->session_key,
591 first_object);
592
593 if (ctx->ops->process_objects) {
594 status = ctx->ops->process_objects(ctx, mem_ctx,
595 first_object,
596 mapping_ctr);
597 if (!NT_STATUS_IS_OK(status)) {
598 ctx->error_message = talloc_asprintf(ctx,
599 "Failed to call processing function: %s",
600 nt_errstr(status));
601 goto out;
602 }
603 }
604
605 if (linked_attributes_count == 0) {
606 continue;
607 }
608
609 if (ctx->ops->process_links) {
610 status = ctx->ops->process_links(ctx, mem_ctx,
611 linked_attributes_count,
612 linked_attributes,
613 mapping_ctr);
614 if (!NT_STATUS_IS_OK(status)) {
615 ctx->error_message = talloc_asprintf(ctx,
616 "Failed to call processing function: %s",
617 nt_errstr(status));
618 goto out;
619 }
620 }
621 }
622
623 *pnew_utdv = new_utdv;
624
625 out:
626 return status;
627 }
628
629 static NTSTATUS libnet_dssync_process(TALLOC_CTX *mem_ctx,
630 struct dssync_context *ctx)
631 {
632 NTSTATUS status;
633
634 uint32_t level = 0;
635 union drsuapi_DsGetNCChangesRequest req;
636 struct replUpToDateVectorBlob *old_utdv = NULL;
637 struct replUpToDateVectorBlob *pnew_utdv = NULL;
638 const char **dns;
639 uint32_t dn_count;
640 uint32_t count;
641
642 if (ctx->ops->startup) {
643 status = ctx->ops->startup(ctx, mem_ctx, &old_utdv);
644 if (!NT_STATUS_IS_OK(status)) {
645 ctx->error_message = talloc_asprintf(ctx,
646 "Failed to call startup operation: %s",
647 nt_errstr(status));
648 goto out;
649 }
650 }
651
652 if (ctx->single_object_replication && ctx->object_dns) {
653 dns = ctx->object_dns;
654 dn_count = ctx->object_count;
655 } else {
656 dns = &ctx->nc_dn;
657 dn_count = 1;
658 }
659
660 status = NT_STATUS_OK;
661
662 for (count=0; count < dn_count; count++) {
663 status = libnet_dssync_build_request(mem_ctx, ctx,
664 dns[count],
665 old_utdv, &level,
666 &req);
667 if (!NT_STATUS_IS_OK(status)) {
668 goto out;
669 }
670
671 status = libnet_dssync_getncchanges(mem_ctx, ctx, level, &req,
672 &pnew_utdv);
673 if (!NT_STATUS_IS_OK(status)) {
674 if (!ctx->error_message) {
675 ctx->error_message = talloc_asprintf(ctx,
676 "Failed to call DsGetNCCHanges: %s",
677 nt_errstr(status));
678 }
679 goto out;
680 }
681 }
682
683 if (ctx->ops->finish) {
684 status = ctx->ops->finish(ctx, mem_ctx, pnew_utdv);
685 if (!NT_STATUS_IS_OK(status)) {
686 ctx->error_message = talloc_asprintf(ctx,
687 "Failed to call finishing operation: %s",
688 nt_errstr(status));
689 goto out;
690 }
691 }
692
693 out:
694 return status;
695 }
696
697 /****************************************************************
698 ****************************************************************/
699
700 NTSTATUS libnet_dssync(TALLOC_CTX *mem_ctx,
701 struct dssync_context *ctx)
702 {
703 NTSTATUS status;
704 TALLOC_CTX *tmp_ctx;
705
706 tmp_ctx = talloc_new(mem_ctx);
707 if (!tmp_ctx) {
708 return NT_STATUS_NO_MEMORY;
709 }
710
711 status = libnet_dssync_init(tmp_ctx, ctx);
712 if (!NT_STATUS_IS_OK(status)) {
713 goto out;
714 }
715
716 status = libnet_dssync_process(tmp_ctx, ctx);
717 if (!NT_STATUS_IS_OK(status)) {
718 goto out;
719 }
720
721 out:
722 TALLOC_FREE(tmp_ctx);
723 return status;
724 }
725
GSS-enabled samba4