summaryrefslogtreecommitdiff
path: root/source4/rpc_server/drsuapi/getncchanges.c
AgeCommit message (Collapse)AuthorFilesLines
2010-01-18idl: switched to using the WSPP names for the 'neighbour' DRS optionsAndrew Tridgell1-4/+4
The documentation shows that all these functions in fact use the same flags variable type. To be consistent between functions, and to allow easy reference to the WSPP docs, it is better for us to also use this generic DrsOptions bitfield rather than one per operations.
2010-01-16s4-dsdb: take advantage of local cursor and sortAndrew Tridgell1-34/+3
in getncchanges and repl task we don't need the extra load and sort any more.
2010-01-16s4-drs: use dsdb_load_udv_v2() in getncchanges codeAndrew Tridgell1-52/+6
2010-01-14s4-drs: switch the DRS server to the generic DRS options flagsAndrew Tridgell1-3/+3
2010-01-09s4-drs: base is_nc_prefix on instanceTypeAndrew Tridgell1-1/+3
for extended operations comparing to the ncRoot_dn is not correct
2010-01-09s4-drs: need to set the getncchanges extended_ret on success tooAndrew Tridgell1-0/+3
2010-01-09s4-drs: be less verbose when we filter objects by UDVAndrew Tridgell1-5/+5
2010-01-09s4-drs: added filtering by udv in getncchangesAndrew Tridgell1-9/+57
When a client supplied an uptodateness_vector, we can use it to filter what objects we return. This greatly reduces the amount of replication traffic between DCs.
2010-01-09s4-drs: fixed the NC in the getncchanges RID alloc replyAndrew Tridgell1-11/+13
the search happens on a different DN to the NC of the request, but the reply is with the original NC
2010-01-09s4-drs: fixed usage of ldb_dn_new()Andrew Tridgell1-1/+1
2010-01-08s4-drs: we need to wrap extended operations in transactionsAndrew Tridgell1-5/+21
2010-01-08s4-drs: added some debug messagesAndrew Tridgell1-0/+6
It is nice to see when a RID Alloc is successful
2010-01-08s4-dsdb: added support for DRSUAPI_EXOP_FSMO_RID_ALLOCAndrew Tridgell1-7/+103
This allocates a RID pool for the client DC when we are the RID Manager Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2010-01-02s4-dsdb: switched to using RMD_FLAGS instead of DELETED in extended DNsAndrew Tridgell1-1/+1
This allows for more flags in the future
2010-01-02s4-drs: sort linked attributesAndrew Tridgell1-0/+73
See MS-DRSR section 4.1.10.5.17 for a description of the sorting comparison function
2010-01-02s4-drs: use dsdb linked attribute parse functionsAndrew Tridgell1-19/+1
This makes the code considerably more readable
2010-01-02s4-drs: update highwatermark after successfully encoding the objectAndrew Tridgell1-8/+8
2010-01-02s4-drs: send all linked attributes at the end of a replication cycleAndrew Tridgell1-3/+7
This ensures that a link is not seen before the object it points to
2010-01-02s4-drs: use the extended linearized form for DRS replicationAndrew Tridgell1-5/+4
We were sending zero GUIDs. Not good! Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2010-01-02s4-drs: implemented sorting functions based on replication flagsAndrew Tridgell1-2/+43
I think we probably have more work to do on the sort order, but this brings us a bit closer.
2010-01-02s4-drs: fixed the UDV return in getncchangesAndrew Tridgell1-5/+17
We should overwrite an existing entry if found
2010-01-02s4-drs: some useful debugging options for getncchangesAndrew Tridgell1-11/+42
Added two debugging parametric options drs:max object sync = drs:extra filter =
2010-01-02s4-drs: handle mixtures of old and new style links in getncchangesAndrew Tridgell1-0/+17
We need to send non-upgraded links using the old format
2010-01-02s4-drs: added linked attribute replication to getncchangesAndrew Tridgell1-15/+203
2009-12-16s4:drsuapi/getncchanges.c - Update the list of operational attributesMatthias Dieter Wallnöfer1-7/+8
- Reorder them as specified in "operational.c" - Add also the lan manager hash password attribute
2009-12-09s4-drs: ensure we fill in ncRoot_dn in getncchangesAndrew Tridgell1-0/+7
Signed-off-by: Andrew Tridgell <tridge@samba.org>
2009-12-09s4-drs: use parentGUID attribute in getncchangesAndrew Tridgell1-34/+6
Now that parentGUID is reliable again, use it instead of building our own Signed-off-by: Andrew Tridgell <tridge@samba.org>
2009-12-03s4-drs: fixed UDV and overlapping sync calls in DRSAndrew Tridgell1-40/+42
When windows abandons a DRS sync, it will sometimes re-use the same bind handle for a new sync. This means we need to check the DN of the sync and blank the getnc_state if the DN has changed. This also fixes the UDV to use the highest uSN for the partition, not for the whole SAM.
2009-11-20s4-dsdb: some more attribuutes that we should only give if asked forAndrew Tridgell1-1/+8
2009-11-20s4-drs: we need to specifically ask for ntSecurityDescriptorAndrew Tridgell1-1/+1
ntSecurityDescriptor is no longer included by default
2009-10-20s4: ran minimal_includes.pl on source4/rpc_serverAndrew Tridgell1-2/+0
2009-10-15s4-drs: support DRSUAPI_DRS_ADD_REF flagAndrew Tridgell1-5/+29
The DRSUAPI_DRS_ADD_REF flag tells the DRS server to run an UpdateRefs call on behalf of the client after the DsGetNCChanges call. The lack of support for this option may explain why the repsTo attribute was not being created for w2k8-r2 replication partners.
2009-10-15drs: improved error checkingAndrew Tridgell1-16/+49
Check the validity of the requested options in DsGetNCChanges
2009-10-13s4-repl: check that a DsGetNCChanges is a continuation, and fix sortingAndrew Tridgell1-3/+16
When we indicate that a getncchanges request is not complete, we set the more_data flag to true in the response. The client usually then asks for the next block of data. If the client decides it wants to skip that replication and do a different replication then we need to make sure that the next call is in fact a continuation of the existing call, and not a new call. This relies on returning the results sorted by uSNChanged, as the client uses the tmp_highest_usn in each result to see if progress is being made.
2009-10-06s4-drs: take advantage of system session auth in dsbindAndrew Tridgell1-23/+10
Now that the bind opens samdb with the right credentials, we no longer need the re-open in updaterefs and getncchanges
2009-09-28s4-drs: removed debug code that replicated a maximum of 10 objects at a timeAndrew Tridgell1-2/+1
2009-09-28s4-dsruapi: plugfest updatesAndrew Tridgell1-77/+144
- always fetch parentGUID from databases, don't rely on parentGUID in attributes - re-fetch nc root mesages to avoid the problem of dual messages for roots - support returning messages a chunk at a time, using max_object_count from request
2009-09-23s4: Handle DRSUAPI_DS_REPLICA_NEIGHBOUR_SPECIAL_SECRET_PROCESSING in ↵Anatoliy Atanasov1-3/+12
getncchanges When this flag is specified in the request these attributes are treated as secret: currentValue, dBCSPwd, initialAuthIncoming, initialAuthOutgoing, lmPwdHistory, ntPwdHistory, priorValue, supplementalCredentials, trustAuthIncoming, trustAuthOutgoing, unicodePwd Their value is changed to NULL and the meta_data.originating_change_time to 0
2009-09-23s4: Handle DRSUAPI_DS_REPLICA_NEIGHBOUR_ASYNC_REP in getncchangesAnatoliy Atanasov1-1/+7
When this flag is specified in the request we should return for ncRoot only and so scope of search is LDB_SCOPE_BASE.
2009-09-23s4: Handle DRSUAPI_DS_REPLICA_NEIGHBOUR_FULL_SYNC_PACKET in getncchangesAnatoliy Atanasov1-0/+6
When this flag is specified in the request we shouldn't use the uptodateness vector in the request.
2009-09-23s4: Handle DRSUAPI_DS_REPLICA_NEIGHBOUR_CRITICAL_ONLY req in getncchangesAnatoliy Atanasov1-3/+13
2009-09-23s4-drs: fill in more guids and SIDs, plus filter rDNAndrew Tridgell1-3/+48
In DsGetNCChanges we need to fill in the parentGUID and objectGUID of each object, plus we need to filter out the rDN from the meta data, and always send the instanceType
2009-09-22s4-drsserver: sort by DN to give tree orderAndrew Tridgell1-1/+2
This might help the windows client with ordered requests. Later we need to support the "ancestors" mode flag.
2009-09-19Move replmd_drsuapi_DsReplicaCursor2_compare to a common place.Anatoliy Atanasov1-7/+1
2009-09-19Add drs_security_level_check for dcesrv calls security checksAnatoliy Atanasov1-4/+3
There is also an option to disable the security check by specifying in the smb.conf file: drs:disable_sec_check = true
2009-09-19more include minimisationAndrew Tridgell1-3/+0
2009-09-15s4-drs: lock down key DRS callsAndrew Tridgell1-20/+29
The key DRS calls should only be allowed by administrators or domain controllers
2009-09-15s4-drs: filter based on local_usnAndrew Tridgell1-1/+1
The getncchanges uSN is in our local space, so we must compare it to the local_usn in replPropertyMetaData
2009-09-14s4-drs: allow replication of renamesAndrew Tridgell1-6/+7
a rename may have no attribute changes
2009-09-13s4-drs: fixed search expressionAndrew Tridgell1-1/+1
At least on the command line the braces are needed. Strange.
generated by cgit (git 2.34.1) at 2025-01-01 21:20:17 +0000