A source object can potentially link to thousands of target objects.
We have to be careful not to overfill the GetNCChanges response message
with more data than it's possible to send. We also don't want the client
to timeout while we're busy checking the linked attributes. The GET_TGT
support added so far is fairly dumb - this patch extends it to better
handle larger numbers of links.
To do so, this extends the repl_chunk usage so that it also works out if
the current chunk is full of links. Now as soon as the chunk is full of
either links or objects, we stop and send it back.
These changes now mean that we need to also check:
- that all the links for the last source object in the previous chunk
have been sent, before we move on and send the next object. This only
takes effect when immediate_link_sync is configured. It also means
that a chunk in the middle of the replication cycle can now contain
only links, and no objects.
- when GET_TGT is used, we only send back the links that we've verified
the target object for. i.e. if we stop checking links because we timed
out, we only send back the links whose targets were checked.
Signed-off-by: Tim Beale <timbeale@catalyst.net.nz>
Reviewed-by: Andrew Bartlett <abartlet@samba.org>
Reviewed-by: Garming Sam <garming@catalyst.net.nz>
+/**
+ * Returns the number of links that are waiting to be sent
+ */
+static uint32_t getncchanges_chunk_links_pending(struct getncchanges_repl_chunk *repl_chunk,
+ struct drsuapi_getncchanges_state *getnc_state)
+{
+ uint32_t links_to_send = 0;
+
+ if (getnc_state->is_get_tgt) {
+
+ /*
+ * when the GET_TGT flag is set, only include the linked
+ * attributes whose target object has already been checked
+ * (i.e. they're ready to send).
+ */
+ if (repl_chunk->tgt_la_count > getnc_state->la_idx) {
+ links_to_send = (repl_chunk->tgt_la_count -
+ getnc_state->la_idx);
+ }
+ } else {
+ links_to_send = getnc_state->la_count - getnc_state->la_idx;
+ }
+
+ return links_to_send;
+}
+
/**
* Returns the max number of links that will fit in the current replication chunk
*/
/**
* Returns the max number of links that will fit in the current replication chunk
*/
/**
* Returns true if the current chunk of replication data has reached the
/**
* Returns true if the current chunk of replication data has reached the
+ * max_objects and/or max_links thresholds.
*/
static bool getncchanges_chunk_is_full(struct getncchanges_repl_chunk *repl_chunk,
struct drsuapi_getncchanges_state *getnc_state)
{
bool chunk_full = false;
*/
static bool getncchanges_chunk_is_full(struct getncchanges_repl_chunk *repl_chunk,
struct drsuapi_getncchanges_state *getnc_state)
{
bool chunk_full = false;
+ uint32_t links_to_send;
+ uint32_t chunk_limit;
/* check if the current chunk is already full with objects */
if (repl_chunk->object_count >= repl_chunk->max_objects) {
/* check if the current chunk is already full with objects */
if (repl_chunk->object_count >= repl_chunk->max_objects) {
* and we have at least one object to send back to the client
*/
chunk_full = true;
* and we have at least one object to send back to the client
*/
chunk_full = true;
+
+ } else if (repl_chunk->immediate_link_sync) {
+
+ /* check if the chunk is already full with links */
+ links_to_send = getncchanges_chunk_links_pending(repl_chunk,
+ getnc_state);
+
+ chunk_limit = getncchanges_chunk_max_links(repl_chunk);
+
+ /*
+ * The chunk is full if we've got more links to send than will
+ * fit in one chunk
+ */
+ chunk_full = (chunk_limit <= links_to_send);
+ uint32_t max_la_index;
+ uint32_t max_links;
+ uint32_t target_count = 0;
WERROR werr = WERR_OK;
static const char * const msg_attrs[] = {
"*",
WERROR werr = WERR_OK;
static const char * const msg_attrs[] = {
"*",
DSDB_SECRET_ATTRIBUTES,
NULL };
DSDB_SECRET_ATTRIBUTES,
NULL };
+ /*
+ * A object can potentially link to thousands of targets. Only bother
+ * checking as many targets as will fit into the current response
+ */
+ max_links = getncchanges_chunk_max_links(repl_chunk);
+ max_la_index = MIN(getnc_state->la_count,
+ start_la_index + max_links);
+
/* loop through any linked attributes to check */
/* loop through any linked attributes to check */
- for (i = start_la_index; i < getnc_state->la_count; i++) {
+ for (i = start_la_index;
+ (i < max_la_index &&
+ !getncchanges_chunk_is_full(repl_chunk, getnc_state));
+ i++) {
struct GUID target_guid;
struct drsuapi_DsReplicaObjectListItemEx *new_objs = NULL;
struct GUID target_guid;
struct drsuapi_DsReplicaObjectListItemEx *new_objs = NULL;
la = &getnc_state->la_list[i];
tmp_ctx = talloc_new(mem_ctx);
la = &getnc_state->la_list[i];
tmp_ctx = talloc_new(mem_ctx);
+ /*
+ * Track what linked attribute targets we've checked. We might
+ * not have time to check them all, so we should only send back
+ * the ones we've actually checked.
+ */
+ repl_chunk->tgt_la_count = i + 1;
+
/* get the GUID of the linked attribute's target object */
schema_attrib = dsdb_attribute_by_attributeID_id(schema,
la->attid);
/* get the GUID of the linked attribute's target object */
schema_attrib = dsdb_attribute_by_attributeID_id(schema,
la->attid);
}
if (new_objs != NULL) {
}
if (new_objs != NULL) {
getncchanges_chunk_add_objects(repl_chunk, new_objs);
}
TALLOC_FREE(tmp_ctx);
getncchanges_chunk_add_objects(repl_chunk, new_objs);
}
TALLOC_FREE(tmp_ctx);
- /* TODO could have 1000s of links. Stop if we fill up the message */
+ if (target_count > 0) {
+ DEBUG(3, ("GET_TGT: checked %u link-attrs, added %u target objs\n",
+ i - start_la_index, target_count));
struct drsuapi_getncchanges_state *getnc_state;
struct drsuapi_DsGetNCChangesRequest10 *req10;
uint32_t options;
struct drsuapi_getncchanges_state *getnc_state;
struct drsuapi_DsGetNCChangesRequest10 *req10;
uint32_t options;
uint32_t link_count = 0;
struct ldb_dn *search_dn = NULL;
bool am_rodc;
uint32_t link_count = 0;
struct ldb_dn *search_dn = NULL;
bool am_rodc;
+ /*
+ * Check in case we're still processing the links from an object in the
+ * previous chunk. We want to send the links (and any targets needed)
+ * before moving on to the next object.
+ */
+ if (getnc_state->is_get_tgt) {
+ werr = getncchanges_chunk_add_la_targets(repl_chunk,
+ getnc_state,
+ getnc_state->la_idx,
+ mem_ctx, sam_ctx,
+ schema, &session_key,
+ req10, local_pas,
+ machine_dn);
+
+ if (!W_ERROR_IS_OK(werr)) {
+ return werr;
+ }
+ }
+
for (i=getnc_state->num_processed;
i<getnc_state->num_records &&
!getncchanges_chunk_is_full(repl_chunk, getnc_state);
for (i=getnc_state->num_processed;
i<getnc_state->num_records &&
!getncchanges_chunk_is_full(repl_chunk, getnc_state);
- max_links = getncchanges_chunk_max_links(repl_chunk);
-
/*
* Work out how many links we can send in this chunk. The default is to
* send all the links last, but there is a config option to send them
* immediately, in the same chunk as their source object
*/
if (!r->out.ctr->ctr6.more_data || repl_chunk->immediate_link_sync) {
/*
* Work out how many links we can send in this chunk. The default is to
* send all the links last, but there is a config option to send them
* immediately, in the same chunk as their source object
*/
if (!r->out.ctr->ctr6.more_data || repl_chunk->immediate_link_sync) {
- link_count = getnc_state->la_count - getnc_state->la_idx;
- link_count = MIN(max_links, link_count);
+ link_count = getncchanges_chunk_links_pending(repl_chunk,
+ getnc_state);
+ link_count = MIN(link_count,
+ getncchanges_chunk_max_links(repl_chunk));
}
/* If we've got linked attributes to send, add them now */
}
/* If we've got linked attributes to send, add them now */
git.samba.org / nivanova / samba-autobuild / .git / commitdiff