Source code of Windows XP (NT5)
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.

4743 lines
121 KiB

  1. /*++
  2. Copyright (c) 1987-1997 Microsoft Corporation
  3. Module Name:
  4. chutil.c
  5. Abstract:
  6. Change Log utility routines.
  7. Author:
  8. Environment:
  9. User mode only.
  10. Contains NT-specific code.
  11. Requires ANSI C extensions: slash-slash comments, long external names.
  12. Revision History:
  13. 11-Jan-1994 (cliffv)
  14. Split out from changelg.c
  15. --*/
  16. //
  17. // Common include files.
  18. //
  19. #include "logonsrv.h" // Include files common to entire service
  20. #pragma hdrstop
  21. //
  22. // Include files specific to this .c file
  23. //
  24. //
  25. // Tables of related delta types
  26. //
  27. //
  28. // Table of delete delta types.
  29. // Index into the table with a delta type,
  30. // the entry is the delta type that is used to delete the object.
  31. //
  32. // There are some objects that can't be deleted. In that case, this table
  33. // contains a delta type that uniquely identifies the object. That allows
  34. // this table to be used to see if two deltas describe the same object type.
  35. //
  36. const NETLOGON_DELTA_TYPE NlGlobalDeleteDeltaType[MAX_DELETE_DELTA+1]
  37. = {
  38. AddOrChangeDomain, // 0 is an invalid delta type
  39. AddOrChangeDomain, // AddOrChangeDomain,
  40. DeleteGroup, // AddOrChangeGroup,
  41. DeleteGroup, // DeleteGroup,
  42. DeleteGroup, // RenameGroup,
  43. DeleteUser, // AddOrChangeUser,
  44. DeleteUser, // DeleteUser,
  45. DeleteUser, // RenameUser,
  46. DeleteGroup, // ChangeGroupMembership,
  47. DeleteAlias, // AddOrChangeAlias,
  48. DeleteAlias, // DeleteAlias,
  49. DeleteAlias, // RenameAlias,
  50. DeleteAlias, // ChangeAliasMembership,
  51. AddOrChangeLsaPolicy, // AddOrChangeLsaPolicy,
  52. DeleteLsaTDomain, // AddOrChangeLsaTDomain,
  53. DeleteLsaTDomain, // DeleteLsaTDomain,
  54. DeleteLsaAccount, // AddOrChangeLsaAccount,
  55. DeleteLsaAccount, // DeleteLsaAccount,
  56. DeleteLsaSecret, // AddOrChangeLsaSecret,
  57. DeleteLsaSecret, // DeleteLsaSecret,
  58. DeleteGroup, // DeleteGroupByName,
  59. DeleteUser, // DeleteUserByName,
  60. SerialNumberSkip, // SerialNumberSkip,
  61. DummyChangeLogEntry // DummyChangeLogEntry
  62. };
  63. //
  64. // Table of add delta types.
  65. // Index into the table with a delta type,
  66. // the entry is the delta type that is used to add the object.
  67. //
  68. // There are some objects that can't be added. In that case, this table
  69. // contains a delta type that uniquely identifies the object. That allows
  70. // this table to be used to see if two deltas describe the same object type.
  71. //
  72. // In the table, Groups and Aliases are represented as renames. This causes
  73. // NlPackSingleDelta to return both the group attributes and the group
  74. // membership.
  75. //
  76. const NETLOGON_DELTA_TYPE NlGlobalAddDeltaType[MAX_ADD_DELTA+1]
  77. = {
  78. AddOrChangeDomain, // 0 is an invalid delta type
  79. AddOrChangeDomain, // AddOrChangeDomain,
  80. RenameGroup, // AddOrChangeGroup,
  81. RenameGroup, // DeleteGroup,
  82. RenameGroup, // RenameGroup,
  83. AddOrChangeUser, // AddOrChangeUser,
  84. AddOrChangeUser, // DeleteUser,
  85. AddOrChangeUser, // RenameUser,
  86. RenameGroup, // ChangeGroupMembership,
  87. RenameAlias, // AddOrChangeAlias,
  88. RenameAlias, // DeleteAlias,
  89. RenameAlias, // RenameAlias,
  90. RenameAlias, // ChangeAliasMembership,
  91. AddOrChangeLsaPolicy, // AddOrChangeLsaPolicy,
  92. AddOrChangeLsaTDomain, // AddOrChangeLsaTDomain,
  93. AddOrChangeLsaTDomain, // DeleteLsaTDomain,
  94. AddOrChangeLsaAccount, // AddOrChangeLsaAccount,
  95. AddOrChangeLsaAccount, // DeleteLsaAccount,
  96. AddOrChangeLsaSecret, // AddOrChangeLsaSecret,
  97. AddOrChangeLsaSecret, // DeleteLsaSecret,
  98. RenameGroup, // DeleteGroupByName,
  99. AddOrChangeUser, // DeleteUserByName,
  100. SerialNumberSkip, // SerialNumberSkip,
  101. DummyChangeLogEntry // DummyChangeLogEntry
  102. };
  103. //
  104. // Table of Status Codes indicating the object doesn't exist.
  105. // Index into the table with a delta type.
  106. //
  107. // Map to STATUS_SUCCESS for the invalid cases to explicitly avoid other error
  108. // codes.
  109. const NTSTATUS NlGlobalObjectNotFoundStatus[MAX_OBJECT_NOT_FOUND_STATUS+1]
  110. = {
  111. STATUS_SUCCESS, // 0 is an invalid delta type
  112. STATUS_NO_SUCH_DOMAIN, // AddOrChangeDomain,
  113. STATUS_NO_SUCH_GROUP, // AddOrChangeGroup,
  114. STATUS_NO_SUCH_GROUP, // DeleteGroup,
  115. STATUS_NO_SUCH_GROUP, // RenameGroup,
  116. STATUS_NO_SUCH_USER, // AddOrChangeUser,
  117. STATUS_NO_SUCH_USER, // DeleteUser,
  118. STATUS_NO_SUCH_USER, // RenameUser,
  119. STATUS_NO_SUCH_GROUP, // ChangeGroupMembership,
  120. STATUS_NO_SUCH_ALIAS, // AddOrChangeAlias,
  121. STATUS_NO_SUCH_ALIAS, // DeleteAlias,
  122. STATUS_NO_SUCH_ALIAS, // RenameAlias,
  123. STATUS_NO_SUCH_ALIAS, // ChangeAliasMembership,
  124. STATUS_SUCCESS, // AddOrChangeLsaPolicy,
  125. STATUS_OBJECT_NAME_NOT_FOUND, // AddOrChangeLsaTDomain,
  126. STATUS_OBJECT_NAME_NOT_FOUND, // DeleteLsaTDomain,
  127. STATUS_OBJECT_NAME_NOT_FOUND, // AddOrChangeLsaAccount,
  128. STATUS_OBJECT_NAME_NOT_FOUND, // DeleteLsaAccount,
  129. STATUS_OBJECT_NAME_NOT_FOUND, // AddOrChangeLsaSecret,
  130. STATUS_OBJECT_NAME_NOT_FOUND, // DeleteLsaSecret,
  131. STATUS_NO_SUCH_GROUP, // DeleteGroupByName,
  132. STATUS_NO_SUCH_USER, // DeleteUserByName,
  133. STATUS_SUCCESS, // SerialNumberSkip,
  134. STATUS_SUCCESS // DummyChangeLogEntry
  135. };
  136. //
  137. // Context for I_NetLogonReadChangeLog
  138. //
  139. typedef struct _CHANGELOG_CONTEXT {
  140. LARGE_INTEGER SerialNumber;
  141. DWORD DbIndex;
  142. DWORD SequenceNumber;
  143. } CHANGELOG_CONTEXT, *PCHANGELOG_CONTEXT;
  144. //
  145. // Header for buffers returned from I_NetLogonReadChangeLog
  146. //
  147. typedef struct _CHANGELOG_BUFFER_HEADER {
  148. DWORD Size;
  149. DWORD Version;
  150. DWORD SequenceNumber;
  151. DWORD Flags;
  152. } CHANGELOG_BUFFER_HEADER, *PCHANGELOG_BUFFER_HEADER;
  153. #define CHANGELOG_BUFFER_VERSION 1
  154. ULONG NlGlobalChangeLogHandle = 0;
  155. ULONG NlGlobalChangeLogSequenceNumber;
  156. /* NlCreateChangeLogFile and NlWriteChangeLogBytes reference each other */
  157. NTSTATUS
  158. NlWriteChangeLogBytes(
  159. IN PCHANGELOG_DESCRIPTOR ChangeLogDesc,
  160. IN LPBYTE Buffer,
  161. IN DWORD BufferSize,
  162. IN BOOLEAN FlushIt
  163. );
  164. NTSTATUS
  165. NlCreateChangeLogFile(
  166. IN PCHANGELOG_DESCRIPTOR ChangeLogDesc
  167. )
  168. /*++
  169. Routine Description:
  170. Try to create a change log file. If it is successful then it sets
  171. the file handle in ChangeLogDesc, otherwise it leaves the handle invalid.
  172. NOTE: This function must be called with the change log locked.
  173. Arguments:
  174. ChangeLogDesc -- Description of the Changelog buffer being used
  175. Return Value:
  176. STATUS_SUCCESS - The Service completed successfully.
  177. --*/
  178. {
  179. NTSTATUS Status;
  180. WCHAR ChangeLogFile[PATHLEN+1];
  181. NlAssert( ChangeLogDesc->FileHandle == INVALID_HANDLE_VALUE );
  182. //
  183. // if the change file name is unknown, terminate the operation.
  184. //
  185. if( NlGlobalChangeLogFilePrefix[0] == L'\0' ) {
  186. return STATUS_NO_SUCH_FILE;
  187. }
  188. //
  189. // Create change log file. If it exists already then truncate it.
  190. //
  191. // Note : if a valid change log file exists on the system, then we
  192. // would have opened at initialization time.
  193. //
  194. wcscpy( ChangeLogFile, NlGlobalChangeLogFilePrefix );
  195. wcscat( ChangeLogFile,
  196. ChangeLogDesc->TempLog ? TEMP_CHANGELOG_FILE_POSTFIX : CHANGELOG_FILE_POSTFIX );
  197. ChangeLogDesc->FileHandle = CreateFileW(
  198. ChangeLogFile,
  199. GENERIC_READ | GENERIC_WRITE,
  200. FILE_SHARE_READ, // allow backups and debugging
  201. NULL, // Supply better security ??
  202. CREATE_ALWAYS, // Overwrites always
  203. FILE_ATTRIBUTE_NORMAL,
  204. NULL ); // No template
  205. if (ChangeLogDesc->FileHandle == INVALID_HANDLE_VALUE) {
  206. Status = NetpApiStatusToNtStatus( GetLastError());
  207. NlPrint((NL_CRITICAL,"Unable to create changelog file: 0x%lx \n", Status));
  208. return Status;
  209. }
  210. //
  211. // Write cache in backup changelog file if the cache is valid.
  212. //
  213. if( ChangeLogDesc->Buffer != NULL ) {
  214. Status = NlWriteChangeLogBytes(
  215. ChangeLogDesc,
  216. ChangeLogDesc->Buffer,
  217. ChangeLogDesc->BufferSize,
  218. TRUE ); // Flush the bytes to disk
  219. return Status;
  220. }
  221. return STATUS_SUCCESS;
  222. }
  223. NTSTATUS
  224. NlFlushChangeLog(
  225. IN PCHANGELOG_DESCRIPTOR ChangeLogDesc
  226. )
  227. /*++
  228. Routine Description:
  229. Flush any dirty buffers to the change log file itself.
  230. Ensure they are flushed to disk.
  231. NOTE: This function must be called with the change log locked.
  232. Arguments:
  233. ChangeLogDesc -- Description of the Changelog buffer being used
  234. Return Value:
  235. Status of the operation.
  236. --*/
  237. {
  238. NTSTATUS Status = STATUS_SUCCESS;
  239. OVERLAPPED Overlapped;
  240. DWORD BytesWritten;
  241. DWORD BufferSize;
  242. //
  243. // If there's nothing to do,
  244. // just return.
  245. //
  246. if ( ChangeLogDesc->LastDirtyByte == 0 ) {
  247. return STATUS_SUCCESS;
  248. }
  249. //
  250. // Write to the file.
  251. //
  252. if ( ChangeLogDesc->FileHandle == INVALID_HANDLE_VALUE ) {
  253. Status = NlCreateChangeLogFile( ChangeLogDesc );
  254. //
  255. // This must have written entire buffer if it is successful
  256. // creating the change log file.
  257. //
  258. goto Cleanup;
  259. }
  260. //
  261. // if we are unable to create this into the changelog file, work
  262. // with internal cache, but notify admin by sending admin alert.
  263. //
  264. if ( ChangeLogDesc->FileHandle != INVALID_HANDLE_VALUE ) {
  265. #ifdef notdef
  266. NlPrint((NL_CHANGELOG, "NlFlushChangeLog: %ld to %ld\n",
  267. ChangeLogDesc->FirstDirtyByte,
  268. ChangeLogDesc->LastDirtyByte ));
  269. #endif // notdef
  270. //
  271. // Seek to appropriate offset in the file.
  272. //
  273. RtlZeroMemory( &Overlapped, sizeof(Overlapped) );
  274. Overlapped.Offset = ChangeLogDesc->FirstDirtyByte;
  275. //
  276. // Actually write to the file.
  277. //
  278. BufferSize = ChangeLogDesc->LastDirtyByte -
  279. ChangeLogDesc->FirstDirtyByte + 1;
  280. if ( !WriteFile( ChangeLogDesc->FileHandle,
  281. &ChangeLogDesc->Buffer[ChangeLogDesc->FirstDirtyByte],
  282. BufferSize,
  283. &BytesWritten,
  284. &Overlapped ) ) {
  285. Status = NetpApiStatusToNtStatus( GetLastError() );
  286. NlPrint((NL_CRITICAL, "Write to ChangeLog failed 0x%lx\n",
  287. Status ));
  288. //
  289. // Recreate changelog file
  290. //
  291. CloseHandle( ChangeLogDesc->FileHandle );
  292. ChangeLogDesc->FileHandle = INVALID_HANDLE_VALUE;
  293. goto Cleanup;
  294. }
  295. //
  296. // Ensure all the bytes made it.
  297. //
  298. if ( BytesWritten != BufferSize ) {
  299. NlPrint((NL_CRITICAL,
  300. "Write to ChangeLog bad byte count %ld s.b. %ld\n",
  301. BytesWritten,
  302. BufferSize ));
  303. //
  304. // Recreate changelog file
  305. //
  306. CloseHandle( ChangeLogDesc->FileHandle );
  307. ChangeLogDesc->FileHandle = INVALID_HANDLE_VALUE;
  308. Status = STATUS_BUFFER_TOO_SMALL;
  309. goto Cleanup;
  310. }
  311. //
  312. // Force the modifications to disk.
  313. //
  314. if ( !FlushFileBuffers( ChangeLogDesc->FileHandle ) ) {
  315. Status = NetpApiStatusToNtStatus( GetLastError() );
  316. NlPrint((NL_CRITICAL, "Flush to ChangeLog failed 0x%lx\n", Status ));
  317. //
  318. // Recreate changelog file
  319. //
  320. CloseHandle( ChangeLogDesc->FileHandle );
  321. ChangeLogDesc->FileHandle = INVALID_HANDLE_VALUE;
  322. goto Cleanup;
  323. }
  324. //
  325. // Indicate these byte successfully made it out to disk.
  326. //
  327. ChangeLogDesc->FirstDirtyByte = 0;
  328. ChangeLogDesc->LastDirtyByte = 0;
  329. }
  330. Cleanup:
  331. if( !NT_SUCCESS(Status) ) {
  332. //
  333. // Write event log.
  334. //
  335. NlpWriteEventlog (
  336. NELOG_NetlogonChangeLogCorrupt,
  337. EVENTLOG_ERROR_TYPE,
  338. (LPBYTE)&Status,
  339. sizeof(Status),
  340. NULL,
  341. 0 );
  342. }
  343. return Status;
  344. }
  345. NTSTATUS
  346. NlWriteChangeLogBytes(
  347. IN PCHANGELOG_DESCRIPTOR ChangeLogDesc,
  348. IN LPBYTE Buffer,
  349. IN DWORD BufferSize,
  350. IN BOOLEAN FlushIt
  351. )
  352. /*++
  353. Routine Description:
  354. Write bytes from the changelog cache to the change log file.
  355. Arguments:
  356. ChangeLogDesc -- Description of the Changelog buffer being used
  357. Buffer - Address within the changelog cache to write.
  358. BufferSize - Number of bytes to write.
  359. FlushIt - TRUE if the bytes are to be flushed to disk
  360. Return Value:
  361. Status of the operation.
  362. --*/
  363. {
  364. NTSTATUS Status;
  365. ULONG FirstDirtyByte;
  366. ULONG LastDirtyByte;
  367. //
  368. // Compute the new range of dirty bytes.
  369. //
  370. FirstDirtyByte = (ULONG)(((LPBYTE)Buffer) - ((LPBYTE)ChangeLogDesc->Buffer));
  371. LastDirtyByte = FirstDirtyByte + BufferSize - 1;
  372. #ifdef notdef
  373. NlPrint((NL_CHANGELOG, "NlWriteChangeLogBytes: %ld to %ld\n",
  374. FirstDirtyByte,
  375. LastDirtyByte ));
  376. #endif // notdef
  377. if ( ChangeLogDesc->LastDirtyByte == 0 ) {
  378. ChangeLogDesc->FirstDirtyByte = FirstDirtyByte;
  379. ChangeLogDesc->LastDirtyByte = LastDirtyByte;
  380. } else {
  381. if ( ChangeLogDesc->FirstDirtyByte > FirstDirtyByte ) {
  382. ChangeLogDesc->FirstDirtyByte = FirstDirtyByte;
  383. }
  384. if ( ChangeLogDesc->LastDirtyByte < LastDirtyByte ) {
  385. ChangeLogDesc->LastDirtyByte = LastDirtyByte;
  386. }
  387. }
  388. //
  389. // If the bytes are to be flushed,
  390. // do so.
  391. //
  392. if ( FlushIt ) {
  393. Status = NlFlushChangeLog( ChangeLogDesc );
  394. return Status;
  395. }
  396. return STATUS_SUCCESS;
  397. }
  398. PCHANGELOG_BLOCK_HEADER
  399. NlMoveToNextChangeLogBlock(
  400. IN PCHANGELOG_DESCRIPTOR ChangeLogDesc,
  401. IN PCHANGELOG_BLOCK_HEADER BlockPtr
  402. )
  403. /*++
  404. Routine Description:
  405. This function accepts a pointer to a change log
  406. block and returns the pointer to the next change log block in the
  407. buffer. It however wraps around the change log cache.
  408. NOTE: This function must be called with the change log locked.
  409. Arguments:
  410. ChangeLogDesc -- Description of the Changelog buffer being used
  411. BlockPtr - pointer to a change log block.
  412. Return Value:
  413. Returns the pointer to the next change log block in the list.
  414. --*/
  415. {
  416. PCHANGELOG_BLOCK_HEADER ReturnPtr;
  417. ReturnPtr = (PCHANGELOG_BLOCK_HEADER)
  418. ((LPBYTE)BlockPtr + BlockPtr->BlockSize);
  419. NlAssert( (LPBYTE)ReturnPtr <= ChangeLogDesc->BufferEnd );
  420. if( (LPBYTE)ReturnPtr >= ChangeLogDesc->BufferEnd ) {
  421. //
  422. // wrap around
  423. //
  424. ReturnPtr = ChangeLogDesc->FirstBlock;
  425. }
  426. return ReturnPtr;
  427. }
  428. PCHANGELOG_BLOCK_HEADER
  429. NlMoveToPrevChangeLogBlock(
  430. IN PCHANGELOG_DESCRIPTOR ChangeLogDesc,
  431. IN PCHANGELOG_BLOCK_HEADER BlockPtr
  432. )
  433. /*++
  434. Routine Description:
  435. This function accepts a pointer to a change log
  436. block and returns the pointer to the next change log block in the
  437. buffer. It however wraps around the change log cache.
  438. NOTE: This function must be called with the change log locked.
  439. Arguments:
  440. ChangeLogDesc -- Description of the Changelog buffer being used
  441. BlockPtr - pointer to a change log block.
  442. Return Value:
  443. Returns the pointer to the next change log block in the list.
  444. --*/
  445. {
  446. PCHANGELOG_BLOCK_HEADER ReturnPtr;
  447. PCHANGELOG_BLOCK_TRAILER ReturnTrailer;
  448. //
  449. // If this is the first block in the buffer,
  450. // return the last block in the buffer.
  451. //
  452. if ( BlockPtr == ChangeLogDesc->FirstBlock ) {
  453. ReturnTrailer = (PCHANGELOG_BLOCK_TRAILER)
  454. (ChangeLogDesc->BufferEnd - sizeof(CHANGELOG_BLOCK_TRAILER));
  455. //
  456. // Otherwise return the buffer immediately before this one.
  457. //
  458. } else {
  459. ReturnTrailer = (PCHANGELOG_BLOCK_TRAILER)
  460. (((LPBYTE)BlockPtr) - sizeof(CHANGELOG_BLOCK_TRAILER));
  461. }
  462. ReturnPtr = (PCHANGELOG_BLOCK_HEADER)
  463. ((LPBYTE)ReturnTrailer -
  464. ReturnTrailer->BlockSize +
  465. sizeof(CHANGELOG_BLOCK_TRAILER) );
  466. NlAssert( ReturnPtr >= ChangeLogDesc->FirstBlock );
  467. NlAssert( (LPBYTE)ReturnPtr < ChangeLogDesc->BufferEnd );
  468. return ReturnPtr;
  469. }
  470. NTSTATUS
  471. NlAllocChangeLogBlock(
  472. IN PCHANGELOG_DESCRIPTOR ChangeLogDesc,
  473. IN DWORD BlockSize,
  474. OUT PCHANGELOG_BLOCK_HEADER *AllocatedBlock
  475. )
  476. /*++
  477. Routine Description:
  478. This function will allocate a change log block from the free block
  479. at the tail of the change log circular list. If the available free
  480. block size is less than the required size than it will enlarge the
  481. free block by the freeing up change logs from the header. Once the
  482. free block is larger then it will cut the block to the required size
  483. and adjust the free block pointer.
  484. NOTE: This function must be called with the change log locked.
  485. Arguments:
  486. ChangeLogDesc -- Description of the Changelog buffer being used
  487. BlockSize - size of the change log block required.
  488. AllocatedBlock - Returns the pointer to the block that is allocated.
  489. Return Value:
  490. Status of the operation
  491. --*/
  492. {
  493. PCHANGELOG_BLOCK_HEADER FreeBlock;
  494. PCHANGELOG_BLOCK_HEADER NewBlock;
  495. DWORD ReqBlockSize;
  496. DWORD AllocatedBlockSize;
  497. //
  498. // pump up the size to include block header, block trailer,
  499. // and to align to DWORD.
  500. //
  501. // Add in the size of the new free block immediately following the new
  502. // block.
  503. //
  504. AllocatedBlockSize =
  505. ROUND_UP_COUNT( sizeof(CHANGELOG_BLOCK_HEADER), ALIGN_WORST) +
  506. ROUND_UP_COUNT( BlockSize+sizeof(CHANGELOG_BLOCK_TRAILER), ALIGN_WORST);
  507. ReqBlockSize = AllocatedBlockSize +
  508. ROUND_UP_COUNT( sizeof(CHANGELOG_BLOCK_HEADER), ALIGN_WORST) +
  509. ROUND_UP_COUNT( sizeof(CHANGELOG_BLOCK_TRAILER), ALIGN_WORST );
  510. if ( ReqBlockSize >= ChangeLogDesc->BufferSize - 16 ) {
  511. return STATUS_ALLOTTED_SPACE_EXCEEDED;
  512. }
  513. //
  514. // If the current free block isn't big enough,
  515. // make it big enough.
  516. //
  517. FreeBlock = ChangeLogDesc->Tail;
  518. NlAssert( FreeBlock->BlockState == BlockFree );
  519. while ( FreeBlock->BlockSize <= ReqBlockSize ) {
  520. //
  521. // If this is a change log,
  522. // make the free block bigger by wrapping around.
  523. //
  524. {
  525. PCHANGELOG_BLOCK_HEADER NextFreeBlock;
  526. NextFreeBlock = NlMoveToNextChangeLogBlock( ChangeLogDesc, FreeBlock );
  527. //
  528. // If this free block is the end block in the cache,
  529. // so make this as a 'hole' block and wrap around for
  530. // next free block.
  531. //
  532. if( (LPBYTE)NextFreeBlock !=
  533. (LPBYTE)FreeBlock + FreeBlock->BlockSize ) {
  534. NlAssert( ((LPBYTE)FreeBlock + FreeBlock->BlockSize) ==
  535. ChangeLogDesc->BufferEnd );
  536. NlAssert( NextFreeBlock == ChangeLogDesc->FirstBlock );
  537. FreeBlock->BlockState = BlockHole;
  538. //
  539. // Write the 'hole' block status in the file.
  540. // (Write the entire block since the block size in the trailer
  541. // may have changed on previous iterations of this loop.)
  542. //
  543. (VOID) NlWriteChangeLogBytes( ChangeLogDesc,
  544. (LPBYTE) FreeBlock,
  545. FreeBlock->BlockSize,
  546. TRUE ); // Flush the bytes to disk
  547. //
  548. // The free block is now at the front of the cache.
  549. //
  550. FreeBlock = ChangeLogDesc->FirstBlock;
  551. FreeBlock->BlockState = BlockFree;
  552. //
  553. // Otherwise, enlarge the current free block by merging the next
  554. // block into it. The next free block is either a used block or
  555. // the 'hole' block.
  556. //
  557. } else {
  558. //
  559. // If we've just deleted a used block,
  560. // adjust the entry count.
  561. //
  562. // VOID_DB entries are "deleted" entries and have already adjusted
  563. // the entry count.
  564. //
  565. if ( NextFreeBlock->BlockState == BlockUsed ) {
  566. DWORD DBIndex = ((PCHANGELOG_ENTRY)(NextFreeBlock+1))->DBIndex;
  567. if ( DBIndex != VOID_DB ) {
  568. ChangeLogDesc->EntryCount[DBIndex] --;
  569. }
  570. }
  571. FreeBlock->BlockSize += NextFreeBlock->BlockSize;
  572. ChangeLogBlockTrailer(FreeBlock)->BlockSize = FreeBlock->BlockSize;
  573. }
  574. //
  575. // If we've consumed the head of the cache,
  576. // move the head of the cache to the next block.
  577. //
  578. if ( NextFreeBlock == ChangeLogDesc->Head ) {
  579. ChangeLogDesc->Head = NlMoveToNextChangeLogBlock( ChangeLogDesc,
  580. NextFreeBlock );
  581. //
  582. // if we have moved the global header to hole block,
  583. // skip and merge it to free block
  584. //
  585. NextFreeBlock = ChangeLogDesc->Head;
  586. if (NextFreeBlock->BlockState == BlockHole ) {
  587. FreeBlock->BlockSize += NextFreeBlock->BlockSize;
  588. ChangeLogBlockTrailer(FreeBlock)->BlockSize = FreeBlock->BlockSize;
  589. ChangeLogDesc->Head =
  590. NlMoveToNextChangeLogBlock( ChangeLogDesc, NextFreeBlock );
  591. }
  592. }
  593. }
  594. // NlAssert(ChangeLogDesc->Head->BlockState == BlockUsed );
  595. //
  596. // This assertion is overactive in case the whole buffer becomes free
  597. // as it does in the following scenario. Suppose after allocating the
  598. // whole buffer, we allocate a block that is larger than the half of the
  599. // buffer. Then the head (marked used) points to the beginning of the
  600. // buffer and the tail points to the free part at the end of the buffer.
  601. // Then we allocate another block that is of the same size as the
  602. // previously allocated block. In this case the free block at the end of
  603. // the buffer will be marked 'hole', the head will be consumed, the head
  604. // will be moved to the next (hole) block, the head will be moved further
  605. // (since it points to a hole block) and marked free. So we end up with the
  606. // buffer that is completely free; the head points to the beginning of the
  607. // buffer and marked free, not used.
  608. }
  609. NlAssert( (FreeBlock >= ChangeLogDesc->FirstBlock) &&
  610. (FreeBlock->BlockSize <= ChangeLogDesc->BufferSize) &&
  611. ( ((LPBYTE)FreeBlock + FreeBlock->BlockSize) <=
  612. ChangeLogDesc->BufferEnd) );
  613. //
  614. // Cut the free block ...
  615. //
  616. NewBlock = FreeBlock;
  617. FreeBlock = (PCHANGELOG_BLOCK_HEADER)
  618. ((LPBYTE)FreeBlock + AllocatedBlockSize);
  619. FreeBlock->BlockState = BlockFree;
  620. FreeBlock->BlockSize = NewBlock->BlockSize - AllocatedBlockSize;
  621. ChangeLogBlockTrailer(FreeBlock)->BlockSize = FreeBlock->BlockSize;
  622. ChangeLogDesc->Tail = FreeBlock;
  623. RtlZeroMemory( NewBlock, AllocatedBlockSize );
  624. NewBlock->BlockState = BlockUsed;
  625. NewBlock->BlockSize = AllocatedBlockSize;
  626. ChangeLogBlockTrailer(NewBlock)->BlockSize = NewBlock->BlockSize;
  627. NlAssert( (NewBlock >= ChangeLogDesc->FirstBlock) &&
  628. ( ((LPBYTE)NewBlock + BlockSize) <= ChangeLogDesc->BufferEnd) );
  629. *AllocatedBlock = NewBlock;
  630. return STATUS_SUCCESS;
  631. }
  632. PCHANGELOG_ENTRY
  633. NlMoveToNextChangeLogEntry(
  634. IN PCHANGELOG_DESCRIPTOR ChangeLogDesc,
  635. IN PCHANGELOG_ENTRY ChangeLogEntry
  636. )
  637. /*++
  638. Routine Description:
  639. This function is a worker routine to scan the change log list. This
  640. accepts a pointer to a change log structure and returns a pointer to
  641. the next change log structure. It returns NULL pointer if the given
  642. struct is the last change log structure in the list.
  643. NOTE: This function must be called with the change log locked.
  644. Arguments:
  645. ChangeLogDesc -- Description of the Changelog buffer being used
  646. ChangeLogEntry - pointer to a change log strcuture.
  647. Return Value:
  648. Returns the pointer to the next change log structure in the list.
  649. --*/
  650. {
  651. PCHANGELOG_BLOCK_HEADER ChangeLogBlock;
  652. ChangeLogBlock = (PCHANGELOG_BLOCK_HEADER)
  653. ( (LPBYTE) ChangeLogEntry - sizeof(CHANGELOG_BLOCK_HEADER) );
  654. NlAssert( ChangeLogBlock->BlockState == BlockUsed );
  655. ChangeLogBlock = NlMoveToNextChangeLogBlock( ChangeLogDesc, ChangeLogBlock );
  656. //
  657. // If we're at the end of the list,
  658. // return null
  659. //
  660. if ( ChangeLogBlock->BlockState == BlockFree ) {
  661. return NULL;
  662. //
  663. // Skip this block, there will be only one 'Hole' block in the
  664. // list.
  665. //
  666. } else if ( ChangeLogBlock->BlockState == BlockHole ) {
  667. ChangeLogBlock = NlMoveToNextChangeLogBlock( ChangeLogDesc, ChangeLogBlock );
  668. if ( ChangeLogBlock->BlockState == BlockFree ) {
  669. return NULL;
  670. }
  671. }
  672. NlAssert( ChangeLogBlock->BlockState == BlockUsed );
  673. return (PCHANGELOG_ENTRY)
  674. ( (LPBYTE)ChangeLogBlock + sizeof(CHANGELOG_BLOCK_HEADER) );
  675. }
  676. PCHANGELOG_ENTRY
  677. NlMoveToPrevChangeLogEntry(
  678. IN PCHANGELOG_DESCRIPTOR ChangeLogDesc,
  679. IN PCHANGELOG_ENTRY ChangeLogEntry
  680. )
  681. /*++
  682. Routine Description:
  683. This function is a worker routine to scan the change log list. This
  684. accepts a pointer to a change log structure and returns a pointer to
  685. the previous change log structure. It returns NULL pointer if the given
  686. struct is the first change log structure in the list.
  687. NOTE: This function must be called with the change log locked.
  688. Arguments:
  689. ChangeLogDesc -- Description of the Changelog buffer being used
  690. ChangeLogEntry - pointer to a change log strcuture.
  691. Return Value:
  692. Returns the pointer to the next change log structure in the list.
  693. --*/
  694. {
  695. PCHANGELOG_BLOCK_HEADER ChangeLogBlock;
  696. ChangeLogBlock = (PCHANGELOG_BLOCK_HEADER)
  697. ( (LPBYTE) ChangeLogEntry - sizeof(CHANGELOG_BLOCK_HEADER) );
  698. NlAssert( ChangeLogBlock->BlockState == BlockUsed ||
  699. ChangeLogBlock->BlockState == BlockFree );
  700. ChangeLogBlock = NlMoveToPrevChangeLogBlock( ChangeLogDesc, ChangeLogBlock );
  701. //
  702. // If we're at the end of the list,
  703. // return null
  704. //
  705. if ( ChangeLogBlock->BlockState == BlockFree ) {
  706. return NULL;
  707. //
  708. // Skip this block, there will be only one 'Hole' block in the
  709. // list.
  710. //
  711. } else if ( ChangeLogBlock->BlockState == BlockHole ) {
  712. ChangeLogBlock = NlMoveToPrevChangeLogBlock( ChangeLogDesc, ChangeLogBlock );
  713. if ( ChangeLogBlock->BlockState == BlockFree ) {
  714. return NULL;
  715. }
  716. }
  717. NlAssert( ChangeLogBlock->BlockState == BlockUsed );
  718. return (PCHANGELOG_ENTRY)
  719. ( (LPBYTE)ChangeLogBlock + sizeof(CHANGELOG_BLOCK_HEADER) );
  720. }
  721. PCHANGELOG_ENTRY
  722. NlFindFirstChangeLogEntry(
  723. IN PCHANGELOG_DESCRIPTOR ChangeLogDesc,
  724. IN DWORD DBIndex
  725. )
  726. /*++
  727. Routine Description:
  728. Returns a pointer to the first change log entry for the specified
  729. database.
  730. NOTE: This function must be called with the change log locked.
  731. Arguments:
  732. ChangeLogDesc -- Description of the Changelog buffer being used
  733. DBIndex - Describes which database to find the changelog entry for.
  734. Return Value:
  735. Non-NULL - change log entry found
  736. NULL - No such entry exists.
  737. --*/
  738. {
  739. PCHANGELOG_ENTRY ChangeLogEntry;
  740. //
  741. // If nothing has ever been written to the change log,
  742. // indicate nothing is available.
  743. //
  744. if ( ChangeLogIsEmpty( ChangeLogDesc ) ) {
  745. return NULL;
  746. }
  747. for ( ChangeLogEntry = (PCHANGELOG_ENTRY) (ChangeLogDesc->Head + 1);
  748. ChangeLogEntry != NULL ;
  749. ChangeLogEntry = NlMoveToNextChangeLogEntry( ChangeLogDesc, ChangeLogEntry) ) {
  750. if( ChangeLogEntry->DBIndex == (UCHAR) DBIndex ) {
  751. break;
  752. }
  753. }
  754. return ChangeLogEntry;
  755. }
  756. PCHANGELOG_ENTRY
  757. NlFindChangeLogEntry(
  758. IN PCHANGELOG_DESCRIPTOR ChangeLogDesc,
  759. IN LARGE_INTEGER SerialNumber,
  760. IN BOOL DownLevel,
  761. IN BOOL NeedExactMatch,
  762. IN DWORD DBIndex
  763. )
  764. /*++
  765. Routine Description:
  766. Search the change log entry in change log cache for a given serial
  767. number
  768. NOTE: This function must be called with the change log locked.
  769. Arguments:
  770. ChangeLogDesc -- Description of the Changelog buffer being used
  771. SerialNumber - Serial number of the entry to find.
  772. DownLevel - True if only the least significant portion of the serial
  773. number needs to match.
  774. NeedExactMatch - True if the caller wants us to exactly match the
  775. specified serial number.
  776. DBIndex - Describes which database to find the changelog entry for.
  777. Return Value:
  778. Non-NULL - change log entry found
  779. NULL - No such entry exists.
  780. --*/
  781. {
  782. PCHANGELOG_ENTRY ChangeLogEntry;
  783. PCHANGELOG_ENTRY PriorChangeLogEntry = NULL;
  784. //
  785. // If nothing has ever been written to the change log,
  786. // indicate nothing is available.
  787. //
  788. if ( ChangeLogIsEmpty( ChangeLogDesc ) ) {
  789. return NULL;
  790. }
  791. //
  792. // Search from the tail of the changelog. For huge changelogs, this should
  793. // reduce the working set size since we almost always search for one of
  794. // the last few entries.
  795. //
  796. ChangeLogEntry = (PCHANGELOG_ENTRY) (ChangeLogDesc->Tail + 1);
  797. while ( ( ChangeLogEntry =
  798. NlMoveToPrevChangeLogEntry( ChangeLogDesc, ChangeLogEntry) ) != NULL ) {
  799. if( ChangeLogEntry->DBIndex == (UCHAR) DBIndex ) {
  800. if ( DownLevel ) {
  801. if ( ChangeLogEntry->SerialNumber.LowPart ==
  802. SerialNumber.LowPart ) {
  803. return ChangeLogEntry;
  804. }
  805. } else {
  806. if ( IsSerialNumberEqual( ChangeLogDesc, ChangeLogEntry, &SerialNumber) ){
  807. if ( NeedExactMatch &&
  808. ChangeLogEntry->SerialNumber.QuadPart != SerialNumber.QuadPart ) {
  809. return NULL;
  810. }
  811. return ChangeLogEntry;
  812. }
  813. }
  814. PriorChangeLogEntry = ChangeLogEntry;
  815. }
  816. }
  817. return NULL;
  818. }
  819. PCHANGELOG_ENTRY
  820. NlDuplicateChangeLogEntry(
  821. IN PCHANGELOG_ENTRY ChangeLogEntry,
  822. OUT LPDWORD ChangeLogEntrySize OPTIONAL
  823. )
  824. /*++
  825. Routine Description:
  826. Duplicate the specified changelog entry into an allocated buffer.
  827. NOTE: This function must be called with the change log locked.
  828. Arguments:
  829. ChangeLogEntry -- points to the changelog entry to duplicate
  830. ChangeLogEntrySize - Optionally returns the size (in bytes) of the
  831. returned change log entry.
  832. Return Value:
  833. NULL - Not enough memory to duplicate the change log entry
  834. Non-NULL - returns a pointer to the duplicate change log entry. This buffer
  835. must be freed via NetpMemoryFree.
  836. --*/
  837. {
  838. PCHANGELOG_ENTRY TempChangeLogEntry;
  839. ULONG Size;
  840. PCHANGELOG_BLOCK_HEADER ChangeLogBlock;
  841. ChangeLogBlock = (PCHANGELOG_BLOCK_HEADER)
  842. ( (LPBYTE) ChangeLogEntry - sizeof(CHANGELOG_BLOCK_HEADER) );
  843. Size = ChangeLogBlock->BlockSize -
  844. sizeof(CHANGELOG_BLOCK_HEADER) -
  845. sizeof(CHANGELOG_BLOCK_TRAILER);
  846. TempChangeLogEntry = (PCHANGELOG_ENTRY) NetpMemoryAllocate( Size );
  847. if( TempChangeLogEntry == NULL ) {
  848. return NULL;
  849. }
  850. RtlCopyMemory( TempChangeLogEntry, ChangeLogEntry, Size );
  851. if ( ChangeLogEntrySize != NULL ) {
  852. *ChangeLogEntrySize = Size;
  853. }
  854. return TempChangeLogEntry;
  855. }
  856. PCHANGELOG_ENTRY
  857. NlFindPromotionChangeLogEntry(
  858. IN PCHANGELOG_DESCRIPTOR ChangeLogDesc,
  859. IN LARGE_INTEGER SerialNumber,
  860. IN DWORD DBIndex
  861. )
  862. /*++
  863. Routine Description:
  864. Find the last change log entry with the same promotion count
  865. as SerialNumber.
  866. NOTE: This function must be called with the change log locked.
  867. Arguments:
  868. ChangeLogDesc -- Description of the Changelog buffer being used
  869. SerialNumber - Serial number containing the promotion count to query.
  870. DBIndex - Describes which database to find the changelog entry for.
  871. Return Value:
  872. Non-NULL - returns a pointer to the duplicate change log entry. This buffer
  873. must be freed via NetpMemoryFree.
  874. NULL - No such entry exists.
  875. --*/
  876. {
  877. PCHANGELOG_ENTRY ChangeLogEntry;
  878. LONG GoalPromotionCount;
  879. LONG PromotionCount;
  880. //
  881. // If nothing has ever been written to the change log,
  882. // indicate nothing is available.
  883. //
  884. if ( ChangeLogIsEmpty( ChangeLogDesc ) ) {
  885. return NULL;
  886. }
  887. //
  888. // Search from the tail of the changelog. For huge changelogs, this should
  889. // reduce the working set size since we almost always search for one of
  890. // the last few entries.
  891. //
  892. ChangeLogEntry = (PCHANGELOG_ENTRY) (ChangeLogDesc->Tail + 1);
  893. GoalPromotionCount = SerialNumber.HighPart & NlGlobalChangeLogPromotionMask;
  894. while ( ( ChangeLogEntry =
  895. NlMoveToPrevChangeLogEntry( ChangeLogDesc, ChangeLogEntry) ) != NULL ) {
  896. if( ChangeLogEntry->DBIndex == (UCHAR) DBIndex ) {
  897. PromotionCount = ChangeLogEntry->SerialNumber.HighPart & NlGlobalChangeLogPromotionMask;
  898. //
  899. // If the Current Change Log entry has a greater promotion count,
  900. // continue searching backward.
  901. //
  902. if ( PromotionCount > GoalPromotionCount ) {
  903. continue;
  904. }
  905. //
  906. // If the current change log entry has a smaller promotion count,
  907. // indicate we couldn't find a change log entry.
  908. //
  909. if ( PromotionCount < GoalPromotionCount ) {
  910. break;
  911. }
  912. //
  913. // Otherwise, success
  914. //
  915. return NlDuplicateChangeLogEntry( ChangeLogEntry, NULL );
  916. }
  917. }
  918. return NULL;
  919. }
  920. PCHANGELOG_ENTRY
  921. NlGetNextDownlevelChangeLogEntry(
  922. ULONG DownlevelSerialNumber
  923. )
  924. /*++
  925. Routine Description:
  926. Find the change log entry for the delta with a serial number greater
  927. than the one specified.
  928. NOTE: This function must be called with the change log locked.
  929. Arguments:
  930. DownlevelSerialNumber - The downlevel serial number
  931. Return Value:
  932. Non-NULL - change log entry found. This changelog entry must be
  933. deallocated using NetpMemoryFree.
  934. NULL - No such entry exists.
  935. --*/
  936. {
  937. PCHANGELOG_ENTRY ChangeLogEntry;
  938. LARGE_INTEGER SerialNumber;
  939. SerialNumber.QuadPart = DownlevelSerialNumber + 1;
  940. ChangeLogEntry = NlFindChangeLogEntry( &NlGlobalChangeLogDesc, SerialNumber, TRUE, TRUE, SAM_DB);
  941. if ( ChangeLogEntry == NULL ||
  942. ChangeLogEntry->DeltaType == DummyChangeLogEntry ) {
  943. return NULL;
  944. }
  945. return NlDuplicateChangeLogEntry( ChangeLogEntry, NULL );
  946. }
  947. PCHANGELOG_ENTRY
  948. NlFindNextChangeLogEntry(
  949. IN PCHANGELOG_DESCRIPTOR ChangeLogDesc,
  950. IN PCHANGELOG_ENTRY LastChangeLogEntry,
  951. IN DWORD DBIndex
  952. )
  953. /*++
  954. Routine Description:
  955. Find the next change log entry in change log following a particular
  956. changelog entry.
  957. NOTE: This function must be called with the change log locked.
  958. Arguments:
  959. ChangeLogDesc -- Description of the Changelog buffer being used
  960. LastChangeLogEntry - last found changelog entry.
  961. DBIndex - database index of the next entry to find
  962. Return Value:
  963. Non-null - change log entry found
  964. NULL - No such entry exists.
  965. --*/
  966. {
  967. PCHANGELOG_ENTRY NextChangeLogEntry = LastChangeLogEntry;
  968. LARGE_INTEGER SerialNumber;
  969. //
  970. // Loop through the log finding this entry starting from the last
  971. // found record.
  972. //
  973. SerialNumber.QuadPart = LastChangeLogEntry->SerialNumber.QuadPart + 1;
  974. while ( ( NextChangeLogEntry =
  975. NlMoveToNextChangeLogEntry( ChangeLogDesc, NextChangeLogEntry) ) != NULL ) {
  976. if( NextChangeLogEntry->DBIndex == DBIndex ) {
  977. //
  978. // next log entry in the change log for
  979. // this database. The serial number should match.
  980. //
  981. if ( !IsSerialNumberEqual( ChangeLogDesc, NextChangeLogEntry, &SerialNumber) ) {
  982. NlPrint((NL_CRITICAL,
  983. "NlFindNextChangeLogEntry: Serial numbers not contigous %lx %lx and %lx %lx\n",
  984. NextChangeLogEntry->SerialNumber.HighPart,
  985. NextChangeLogEntry->SerialNumber.LowPart,
  986. SerialNumber.HighPart,
  987. SerialNumber.LowPart ));
  988. //
  989. // write event log
  990. //
  991. NlpWriteEventlog (
  992. NELOG_NetlogonChangeLogCorrupt,
  993. EVENTLOG_ERROR_TYPE,
  994. (LPBYTE)&DBIndex,
  995. sizeof(DBIndex),
  996. NULL,
  997. 0 );
  998. return NULL;
  999. }
  1000. return NextChangeLogEntry;
  1001. }
  1002. }
  1003. return NULL;
  1004. }
  1005. BOOLEAN
  1006. NlCompareChangeLogEntries(
  1007. IN PCHANGELOG_ENTRY ChangeLogEntry1,
  1008. IN PCHANGELOG_ENTRY ChangeLogEntry2
  1009. )
  1010. /*++
  1011. Routine Description:
  1012. The two change log entries are compared to see if the are for the same
  1013. object. If
  1014. Arguments:
  1015. ChangeLogEntry1 - First change log entry to compare.
  1016. ChangeLogEntry2 - Second change log entry to compare.
  1017. Return Value:
  1018. TRUE - iff the change log entries are for the same object.
  1019. --*/
  1020. {
  1021. //
  1022. // Ensure the DbIndex is the same for both entries.
  1023. //
  1024. if ( ChangeLogEntry1->DBIndex != ChangeLogEntry2->DBIndex ) {
  1025. return FALSE;
  1026. }
  1027. //
  1028. // Ensure the entries both describe the same object type.
  1029. //
  1030. if ( ChangeLogEntry1->DeltaType >= MAX_DELETE_DELTA ) {
  1031. NlPrint(( NL_CRITICAL,
  1032. "NlCompateChangeLogEntries: invalid delta type %lx\n",
  1033. ChangeLogEntry1->DeltaType ));
  1034. return FALSE;
  1035. }
  1036. if ( ChangeLogEntry2->DeltaType >= MAX_DELETE_DELTA ) {
  1037. NlPrint(( NL_CRITICAL,
  1038. "NlCompateChangeLogEntries: invalid delta type %lx\n",
  1039. ChangeLogEntry2->DeltaType ));
  1040. return FALSE;
  1041. }
  1042. if ( NlGlobalDeleteDeltaType[ChangeLogEntry1->DeltaType] !=
  1043. NlGlobalDeleteDeltaType[ChangeLogEntry2->DeltaType] ) {
  1044. return FALSE;
  1045. }
  1046. //
  1047. // Depending on the delta type, ensure the entries refer to the same object.
  1048. //
  1049. switch(ChangeLogEntry1->DeltaType) {
  1050. case AddOrChangeGroup:
  1051. case DeleteGroup:
  1052. case RenameGroup:
  1053. case AddOrChangeUser:
  1054. case DeleteUser:
  1055. case RenameUser:
  1056. case ChangeGroupMembership:
  1057. case AddOrChangeAlias:
  1058. case DeleteAlias:
  1059. case RenameAlias:
  1060. case ChangeAliasMembership:
  1061. if (ChangeLogEntry1->ObjectRid == ChangeLogEntry2->ObjectRid ) {
  1062. return TRUE;
  1063. }
  1064. break;
  1065. case AddOrChangeLsaTDomain:
  1066. case DeleteLsaTDomain:
  1067. case AddOrChangeLsaAccount:
  1068. case DeleteLsaAccount:
  1069. NlAssert( ChangeLogEntry1->Flags & CHANGELOG_SID_SPECIFIED );
  1070. NlAssert( ChangeLogEntry2->Flags & CHANGELOG_SID_SPECIFIED );
  1071. if( (ChangeLogEntry1->Flags & CHANGELOG_SID_SPECIFIED) == 0 ||
  1072. (ChangeLogEntry2->Flags & CHANGELOG_SID_SPECIFIED) == 0) {
  1073. break;
  1074. }
  1075. if( RtlEqualSid(
  1076. (PSID)((LPBYTE)ChangeLogEntry1 + sizeof(CHANGELOG_ENTRY)),
  1077. (PSID)((LPBYTE)ChangeLogEntry2 + sizeof(CHANGELOG_ENTRY))) ) {
  1078. return TRUE;
  1079. }
  1080. break;
  1081. case AddOrChangeLsaSecret:
  1082. case DeleteLsaSecret:
  1083. NlAssert( ChangeLogEntry1->Flags & CHANGELOG_NAME_SPECIFIED );
  1084. NlAssert( ChangeLogEntry2->Flags & CHANGELOG_NAME_SPECIFIED );
  1085. if( (ChangeLogEntry1->Flags & CHANGELOG_NAME_SPECIFIED) == 0 ||
  1086. (ChangeLogEntry2->Flags & CHANGELOG_NAME_SPECIFIED) == 0 ) {
  1087. break;
  1088. }
  1089. if( _wcsicmp(
  1090. (LPWSTR)((LPBYTE)ChangeLogEntry1 + sizeof(CHANGELOG_ENTRY)),
  1091. (LPWSTR)((LPBYTE)ChangeLogEntry2 + sizeof(CHANGELOG_ENTRY))
  1092. ) == 0 ) {
  1093. return TRUE;
  1094. }
  1095. break;
  1096. case AddOrChangeLsaPolicy:
  1097. case AddOrChangeDomain:
  1098. return TRUE;
  1099. default:
  1100. NlPrint((NL_CRITICAL,
  1101. "NlCompareChangeLogEntries: invalid delta type %lx\n",
  1102. ChangeLogEntry1->DeltaType ));
  1103. break;
  1104. }
  1105. return FALSE;
  1106. }
  1107. PCHANGELOG_ENTRY
  1108. NlGetNextChangeLogEntry(
  1109. IN PCHANGELOG_DESCRIPTOR ChangeLogDesc,
  1110. IN LARGE_INTEGER SerialNumber,
  1111. IN DWORD DBIndex,
  1112. OUT LPDWORD ChangeLogEntrySize OPTIONAL
  1113. )
  1114. /*++
  1115. Routine Description:
  1116. Search the change log entry in change log cache for a given serial
  1117. number.
  1118. Arguments:
  1119. ChangeLogDesc -- Description of the Changelog buffer to use.
  1120. SerialNumber - Serial number preceeding that of the entry to find.
  1121. DBIndex - Describes which database to find the changelog entry for.
  1122. ChangeLogEntrySize - Optionally returns the size (in bytes) of the
  1123. returned change log entry.
  1124. Return Value:
  1125. Non-NULL - returns a pointer to a duplicate of the found change log entry.
  1126. This buffer must be freed via NetpMemoryFree.
  1127. NULL - No such entry exists.
  1128. --*/
  1129. {
  1130. PCHANGELOG_ENTRY ChangeLogEntry;
  1131. //
  1132. // Increment the serial number, get the change log entry, duplicate it
  1133. //
  1134. LOCK_CHANGELOG();
  1135. SerialNumber.QuadPart += 1;
  1136. ChangeLogEntry = NlFindChangeLogEntry(
  1137. ChangeLogDesc,
  1138. SerialNumber,
  1139. FALSE,
  1140. FALSE,
  1141. DBIndex );
  1142. if ( ChangeLogEntry != NULL ) {
  1143. ChangeLogEntry = NlDuplicateChangeLogEntry(ChangeLogEntry, ChangeLogEntrySize );
  1144. }
  1145. UNLOCK_CHANGELOG();
  1146. return ChangeLogEntry;
  1147. }
  1148. PCHANGELOG_ENTRY
  1149. NlGetNextUniqueChangeLogEntry(
  1150. IN PCHANGELOG_DESCRIPTOR ChangeLogDesc,
  1151. IN LARGE_INTEGER SerialNumber,
  1152. IN DWORD DBIndex,
  1153. OUT LPDWORD ChangeLogEntrySize OPTIONAL
  1154. )
  1155. /*++
  1156. Routine Description:
  1157. Search the change log entry in change log cache for a given serial
  1158. number. If there are more than one change log entry for the same
  1159. object then this routine will return the last log entry of that
  1160. object.
  1161. NOTE: This function must be called with the change log locked.
  1162. Arguments:
  1163. ChangeLogDesc -- Description of the Changelog buffer to use.
  1164. SerialNumber - Serial number preceeding that of the entry to find.
  1165. DBIndex - Describes which database to find the changelog entry for.
  1166. ChangeLogEntrySize - Optionally returns the size (in bytes) of the
  1167. returned change log entry.
  1168. Return Value:
  1169. Non-NULL - returns a pointer to a duplicate of the found change log entry.
  1170. This buffer must be freed via NetpMemoryFree.
  1171. NULL - No such entry exists.
  1172. --*/
  1173. {
  1174. PCHANGELOG_ENTRY ChangeLogEntry;
  1175. PCHANGELOG_ENTRY NextChangeLogEntry;
  1176. PCHANGELOG_ENTRY FoundChangeLogEntry;
  1177. //
  1178. // Get the first entry we want to deal with.
  1179. //
  1180. SerialNumber.QuadPart += 1;
  1181. ChangeLogEntry = NlFindChangeLogEntry(
  1182. ChangeLogDesc,
  1183. SerialNumber,
  1184. FALSE,
  1185. FALSE,
  1186. DBIndex );
  1187. if ( ChangeLogEntry == NULL ) {
  1188. return NULL;
  1189. }
  1190. //
  1191. // Skip over any leading dummy change log entries
  1192. //
  1193. while ( ChangeLogEntry->DeltaType == DummyChangeLogEntry ) {
  1194. //
  1195. // Get the next change log entry to compare with.
  1196. //
  1197. NextChangeLogEntry = NlFindNextChangeLogEntry( ChangeLogDesc,
  1198. ChangeLogEntry,
  1199. DBIndex );
  1200. if( NextChangeLogEntry == NULL ) {
  1201. return NULL;
  1202. }
  1203. //
  1204. // skip 'ChangeLogEntry' entry
  1205. //
  1206. ChangeLogEntry = NextChangeLogEntry;
  1207. }
  1208. //
  1209. // Check to see if the next entry is a "duplicate" of this entry.
  1210. //
  1211. FoundChangeLogEntry = ChangeLogEntry;
  1212. for (;;) {
  1213. //
  1214. // Don't walk past a change log entry for a promotion.
  1215. // Promotions don't happen very often, but passing the BDC the
  1216. // change log entry will allow it to do a better job of building
  1217. // its own change log.
  1218. //
  1219. if ( FoundChangeLogEntry->Flags & CHANGELOG_PDC_PROMOTION ) {
  1220. break;
  1221. }
  1222. //
  1223. // Get the next change log entry to compare with.
  1224. //
  1225. NextChangeLogEntry = NlFindNextChangeLogEntry( ChangeLogDesc,
  1226. ChangeLogEntry,
  1227. DBIndex );
  1228. if( NextChangeLogEntry == NULL ) {
  1229. break;
  1230. }
  1231. //
  1232. // Just skip any dummy entries.
  1233. //
  1234. if ( NextChangeLogEntry->DeltaType == DummyChangeLogEntry ) {
  1235. ChangeLogEntry = NextChangeLogEntry;
  1236. continue;
  1237. }
  1238. //
  1239. // if 'FoundChangeLogEntry' and 'NextChangeLogEntry' entries are
  1240. // for different objects or are different delta types.
  1241. // then return 'FoundChangeLogEntry' to the caller.
  1242. //
  1243. if ( FoundChangeLogEntry->DeltaType != NextChangeLogEntry->DeltaType ||
  1244. !NlCompareChangeLogEntries( FoundChangeLogEntry, NextChangeLogEntry ) ){
  1245. break;
  1246. }
  1247. //
  1248. // Skip 'FoundChangeLogEntry' entry
  1249. // Mark this entry as the being the best one to return.
  1250. //
  1251. ChangeLogEntry = NextChangeLogEntry;
  1252. FoundChangeLogEntry = ChangeLogEntry;
  1253. }
  1254. return NlDuplicateChangeLogEntry(FoundChangeLogEntry, ChangeLogEntrySize );
  1255. }
  1256. BOOL
  1257. NlRecoverChangeLog(
  1258. PCHANGELOG_ENTRY OrigChangeLogEntry
  1259. )
  1260. /*++
  1261. Routine Description:
  1262. This routine traverses the change log list from current change log entry
  1263. determines whether the current change log can be ignored under
  1264. special conditions.
  1265. Arguments:
  1266. OrigChangeLogEntry - pointer to log structure that is under investigation.
  1267. Return Value:
  1268. TRUE - if the given change log can be ignored.
  1269. FALSE - otherwise.
  1270. --*/
  1271. {
  1272. PCHANGELOG_ENTRY NextChangeLogEntry;
  1273. BOOLEAN ReturnValue;
  1274. //
  1275. // Find the original change log entry.
  1276. //
  1277. LOCK_CHANGELOG();
  1278. NextChangeLogEntry = NlFindChangeLogEntry(
  1279. &NlGlobalChangeLogDesc,
  1280. OrigChangeLogEntry->SerialNumber,
  1281. FALSE, // Not downlevel
  1282. FALSE, // Not exact match
  1283. OrigChangeLogEntry->DBIndex );
  1284. if (NextChangeLogEntry == NULL) {
  1285. ReturnValue = FALSE;
  1286. goto Cleanup;
  1287. }
  1288. if ( OrigChangeLogEntry->DeltaType >= MAX_DELETE_DELTA ) {
  1289. NlPrint(( NL_CRITICAL,
  1290. "NlRecoverChangeLog: invalid delta type %lx\n",
  1291. OrigChangeLogEntry->DeltaType ));
  1292. ReturnValue = FALSE;
  1293. goto Cleanup;
  1294. }
  1295. //
  1296. // Loop for each entry with a greater serial number.
  1297. //
  1298. for (;;) {
  1299. NextChangeLogEntry = NlFindNextChangeLogEntry(
  1300. &NlGlobalChangeLogDesc,
  1301. NextChangeLogEntry,
  1302. OrigChangeLogEntry->DBIndex );
  1303. if (NextChangeLogEntry == NULL) {
  1304. break;
  1305. }
  1306. //
  1307. // If the delta we found is the type that deletes the original delta,
  1308. // and the objects described by the two deltas are the same,
  1309. // tell the caller to not worry about the original delta failing.
  1310. //
  1311. if ( NextChangeLogEntry->DeltaType ==
  1312. NlGlobalDeleteDeltaType[OrigChangeLogEntry->DeltaType] &&
  1313. NlCompareChangeLogEntries( OrigChangeLogEntry,
  1314. NextChangeLogEntry ) ) {
  1315. ReturnValue = TRUE;
  1316. goto Cleanup;
  1317. }
  1318. }
  1319. ReturnValue = FALSE;
  1320. Cleanup:
  1321. UNLOCK_CHANGELOG();
  1322. return ReturnValue;
  1323. }
  1324. VOID
  1325. NlVoidChangeLogEntry(
  1326. IN PCHANGELOG_DESCRIPTOR ChangeLogDesc,
  1327. IN PCHANGELOG_ENTRY ChangeLogEntry,
  1328. IN BOOLEAN FlushIt
  1329. )
  1330. /*++
  1331. Routine Description:
  1332. Mark a changelog entry as void. If there are no more change log entries in the file,
  1333. the file is deleted.
  1334. NOTE: This function must be called with the change log locked.
  1335. Arguments:
  1336. ChangeLogDesc -- Description of the Changelog buffer to use.
  1337. ChangeLogEntry -- Change Log Entry to mark as void.
  1338. FlushIt - TRUE if the bytes are to be flushed to disk
  1339. Return Value:
  1340. None.
  1341. --*/
  1342. {
  1343. DWORD DBIndex = ChangeLogEntry->DBIndex;
  1344. //
  1345. // Mark the changelog entry as being deleted.
  1346. // (and force the change to disk).
  1347. //
  1348. NlPrint((NL_CHANGELOG,
  1349. "NlVoidChangeLogEntry: %lx %lx: deleting change log entry.\n",
  1350. ChangeLogEntry->SerialNumber.HighPart,
  1351. ChangeLogEntry->SerialNumber.LowPart ));
  1352. ChangeLogDesc->EntryCount[DBIndex] --;
  1353. ChangeLogEntry->DBIndex = VOID_DB;
  1354. (VOID) NlWriteChangeLogBytes(
  1355. ChangeLogDesc,
  1356. &ChangeLogEntry->DBIndex,
  1357. sizeof(ChangeLogEntry->DBIndex),
  1358. FlushIt );
  1359. return;
  1360. }
  1361. VOID
  1362. NlDeleteChangeLogEntry(
  1363. IN PCHANGELOG_DESCRIPTOR ChangeLogDesc,
  1364. IN DWORD DBIndex,
  1365. IN LARGE_INTEGER SerialNumber
  1366. )
  1367. /*++
  1368. Routine Description:
  1369. This routine deletes the change log entry with the particular serial number.
  1370. Arguments:
  1371. ChangeLogDesc -- Description of the Changelog buffer to use.
  1372. DBIndex - Describes which database to find the changelog entry for.
  1373. SerialNumber - Serial number of the entry to find.
  1374. Return Value:
  1375. None.
  1376. --*/
  1377. {
  1378. PCHANGELOG_ENTRY ChangeLogEntry;
  1379. //
  1380. // Find the specified change log entry.
  1381. //
  1382. LOCK_CHANGELOG();
  1383. ChangeLogEntry = NlFindChangeLogEntry(
  1384. ChangeLogDesc,
  1385. SerialNumber,
  1386. FALSE, // Not downlevel
  1387. TRUE, // Exact match
  1388. DBIndex );
  1389. if (ChangeLogEntry != NULL) {
  1390. //
  1391. // Mark the changelog entry as being deleted.
  1392. // (and force the change to disk).
  1393. //
  1394. NlVoidChangeLogEntry( ChangeLogDesc, ChangeLogEntry, TRUE );
  1395. } else {
  1396. NlPrint((NL_CRITICAL,
  1397. "NlDeleteChangeLogEntry: %lx %lx: couldn't find change log entry.\n",
  1398. SerialNumber.HighPart,
  1399. SerialNumber.LowPart ));
  1400. }
  1401. UNLOCK_CHANGELOG();
  1402. return;
  1403. }
  1404. NTSTATUS
  1405. NlCopyChangeLogEntry(
  1406. IN BOOLEAN SourceIsVersion3,
  1407. IN PCHANGELOG_ENTRY SourceChangeLogEntry,
  1408. IN PCHANGELOG_DESCRIPTOR DestChangeLogDesc
  1409. )
  1410. /*++
  1411. Routine Description:
  1412. Copies the specified change log entry for the specified "source" change log to
  1413. the specified "destination" change log. The caller is responsible for flushing the
  1414. entry to disk by calling NlFlushChangeLog.
  1415. NOTE: This function must be called with the change log locked.
  1416. Arguments:
  1417. SourceIsVersion3 - True if the source is a version 3 change log entry
  1418. SourceChangeLogEntry -- The particular entry to copy
  1419. DestChangeLogDesc -- a description of the ChangelogBuffer to copy to
  1420. Return Value:
  1421. NT Status code
  1422. --*/
  1423. {
  1424. NTSTATUS Status;
  1425. CHANGELOG_ENTRY DestChangeLogEntry;
  1426. PSID ObjectSid;
  1427. UNICODE_STRING ObjectNameString;
  1428. PUNICODE_STRING ObjectName;
  1429. //
  1430. // If this entry has been marked void, ignore it.
  1431. //
  1432. if ( SourceChangeLogEntry->DBIndex == VOID_DB ) {
  1433. return STATUS_SUCCESS;
  1434. }
  1435. //
  1436. // Build a version 4 changelog entry from a version 3 one.
  1437. //
  1438. ObjectSid = NULL;
  1439. ObjectName = NULL;
  1440. if ( SourceIsVersion3 ) {
  1441. PCHANGELOG_ENTRY_V3 Version3;
  1442. Version3 = (PCHANGELOG_ENTRY_V3)SourceChangeLogEntry;
  1443. DestChangeLogEntry.SerialNumber = Version3->SerialNumber;
  1444. DestChangeLogEntry.DeltaType = (BYTE) Version3->DeltaType;
  1445. DestChangeLogEntry.DBIndex = Version3->DBIndex;
  1446. DestChangeLogEntry.ObjectRid = Version3->ObjectRid;
  1447. DestChangeLogEntry.Flags = 0;
  1448. if ( Version3->ObjectSidOffset ) {
  1449. ObjectSid = (PSID)(((LPBYTE)Version3) +
  1450. Version3->ObjectSidOffset);
  1451. }
  1452. if ( Version3->ObjectNameOffset ) {
  1453. RtlInitUnicodeString( &ObjectNameString,
  1454. (LPWSTR)(((LPBYTE)Version3) +
  1455. Version3->ObjectNameOffset));
  1456. ObjectName = &ObjectNameString;
  1457. }
  1458. //
  1459. // Build a version 4 changelog entry from a version 4 one.
  1460. //
  1461. } else {
  1462. RtlCopyMemory( &DestChangeLogEntry, SourceChangeLogEntry, sizeof(DestChangeLogEntry) );
  1463. if ( SourceChangeLogEntry->Flags & CHANGELOG_SID_SPECIFIED ) {
  1464. ObjectSid = (PSID)(((LPBYTE)SourceChangeLogEntry) +
  1465. sizeof(CHANGELOG_ENTRY));
  1466. } else if ( SourceChangeLogEntry->Flags & CHANGELOG_NAME_SPECIFIED ) {
  1467. RtlInitUnicodeString( &ObjectNameString,
  1468. (LPWSTR)(((LPBYTE)SourceChangeLogEntry) +
  1469. sizeof(CHANGELOG_ENTRY)));
  1470. ObjectName = &ObjectNameString;
  1471. }
  1472. }
  1473. Status = NlWriteChangeLogEntry( DestChangeLogDesc,
  1474. &DestChangeLogEntry,
  1475. ObjectSid,
  1476. ObjectName,
  1477. FALSE ); // Don't flush to disk
  1478. return Status;
  1479. }
  1480. BOOLEAN
  1481. NlFixChangeLog(
  1482. IN PCHANGELOG_DESCRIPTOR ChangeLogDesc,
  1483. IN DWORD DBIndex,
  1484. IN LARGE_INTEGER SerialNumber
  1485. )
  1486. /*++
  1487. Routine Description:
  1488. This routine scans the change log and 'removes' all change log entries
  1489. with a serial number greater than the one specified.
  1490. NOTE: This function must be called with the change log locked.
  1491. Arguments:
  1492. ChangeLogDesc -- Description of the Changelog buffer to use.
  1493. DBIndex - Describes which database to find the changelog entry for.
  1494. SerialNumber - Serial number of the entry to find.
  1495. Return Value:
  1496. TRUE -- if the entry specied by SerialNumber was found.
  1497. --*/
  1498. {
  1499. PCHANGELOG_ENTRY ChangeLogEntry;
  1500. BOOLEAN SkipFirstEntry = TRUE;
  1501. //
  1502. // In all cases,
  1503. // the new serial number of the change log is the one passed in.
  1504. //
  1505. ChangeLogDesc->SerialNumber[DBIndex] = SerialNumber;
  1506. //
  1507. // Find the specified change log entry.
  1508. //
  1509. ChangeLogEntry = NlFindChangeLogEntry(
  1510. ChangeLogDesc,
  1511. SerialNumber,
  1512. FALSE, // Not downlevel
  1513. TRUE, // exact match
  1514. DBIndex );
  1515. if (ChangeLogEntry == NULL) {
  1516. //
  1517. // If we can't find the entry,
  1518. // simply start from the beginning and delete all entries for this
  1519. // database.
  1520. //
  1521. ChangeLogEntry = NlFindFirstChangeLogEntry( ChangeLogDesc, DBIndex );
  1522. SkipFirstEntry = FALSE;
  1523. if (ChangeLogEntry == NULL) {
  1524. return FALSE;
  1525. }
  1526. }
  1527. //
  1528. // Loop for each entry with a greater serial number.
  1529. //
  1530. for (;;) {
  1531. //
  1532. // Skip past the previous entry.
  1533. //
  1534. // Don't do this the first time if we want to start at the very beginning.
  1535. //
  1536. if ( SkipFirstEntry ) {
  1537. ChangeLogEntry = NlFindNextChangeLogEntry( ChangeLogDesc,
  1538. ChangeLogEntry,
  1539. DBIndex );
  1540. } else {
  1541. SkipFirstEntry = TRUE;
  1542. }
  1543. if (ChangeLogEntry == NULL) {
  1544. break;
  1545. }
  1546. //
  1547. // Mark the changelog entry as being deleted.
  1548. // (but don't flush to disk yet).
  1549. //
  1550. NlVoidChangeLogEntry( ChangeLogDesc, ChangeLogEntry, FALSE );
  1551. //
  1552. // If deleting the change log entry caused the changelog to be deleted,
  1553. // exit now since 'ChangeLogEntry' points to freed memory.
  1554. //
  1555. if ( ChangeLogDesc->EntryCount[DBIndex] == 0 ) {
  1556. break;
  1557. }
  1558. }
  1559. //
  1560. // Flush all the changes to disk.
  1561. //
  1562. (VOID) NlFlushChangeLog( ChangeLogDesc );
  1563. return TRUE;
  1564. }
  1565. BOOL
  1566. NlValidateChangeLogEntry(
  1567. IN PCHANGELOG_ENTRY ChangeLogEntry,
  1568. IN DWORD ChangeLogEntrySize
  1569. )
  1570. /*++
  1571. Routine Description:
  1572. Validate the a ChangeLogEntry is structurally sound.
  1573. Arguments:
  1574. ChangeLogEntry: pointer to a change log entry.
  1575. ChangeLogEntrySize -- Size (in bytes) of the change log entry not including
  1576. header and trailer.
  1577. Return Value:
  1578. TRUE: if the given entry is valid
  1579. FALSE: otherwise.
  1580. --*/
  1581. {
  1582. //
  1583. // Ensure the entry is big enough.
  1584. //
  1585. if ( ChangeLogEntrySize < sizeof(CHANGELOG_ENTRY) ) {
  1586. NlPrint((NL_CRITICAL,
  1587. "NlValidateChangeLogEntry: Entry size is too small: %ld\n",
  1588. ChangeLogEntrySize ));
  1589. return FALSE;
  1590. }
  1591. //
  1592. // Ensure strings are zero terminated.
  1593. //
  1594. if ( ChangeLogEntry->Flags & CHANGELOG_NAME_SPECIFIED ) {
  1595. LPWSTR ZeroTerminator = (LPWSTR)(ChangeLogEntry+1);
  1596. BOOLEAN ZeroTerminatorFound = FALSE;
  1597. if ( ChangeLogEntry->Flags & CHANGELOG_SID_SPECIFIED ) {
  1598. NlPrint((NL_CRITICAL,
  1599. "NlValidateChangeLogEntry: %lx %lx: both Name and Sid specified.\n",
  1600. ChangeLogEntry->SerialNumber.HighPart,
  1601. ChangeLogEntry->SerialNumber.LowPart ));
  1602. return FALSE;
  1603. }
  1604. while ( (DWORD)((LPBYTE)ZeroTerminator - (LPBYTE) ChangeLogEntry) <
  1605. ChangeLogEntrySize - 1 ) {
  1606. if ( *ZeroTerminator == L'\0' ) {
  1607. ZeroTerminatorFound = TRUE;
  1608. break;
  1609. }
  1610. ZeroTerminator ++;
  1611. }
  1612. if ( !ZeroTerminatorFound ) {
  1613. NlPrint((NL_CRITICAL,
  1614. "NlValidateChangeLogEntry: %lx %lx: String not zero terminated. (no string)\n",
  1615. ChangeLogEntry->SerialNumber.HighPart,
  1616. ChangeLogEntry->SerialNumber.LowPart ));
  1617. return FALSE;
  1618. }
  1619. }
  1620. //
  1621. // Ensure the sid is entirely within the block.
  1622. //
  1623. if ( ChangeLogEntry->Flags & CHANGELOG_SID_SPECIFIED ) {
  1624. if ( GetSidLengthRequired(0) >
  1625. ChangeLogEntrySize - sizeof(*ChangeLogEntry) ||
  1626. RtlLengthSid( (PSID)(ChangeLogEntry+1) ) >
  1627. ChangeLogEntrySize - sizeof(*ChangeLogEntry) ) {
  1628. NlPrint((NL_CRITICAL,
  1629. "NlValidateChangeLogEntry: %lx %lx: Sid too large.\n",
  1630. ChangeLogEntry->SerialNumber.HighPart,
  1631. ChangeLogEntry->SerialNumber.LowPart ));
  1632. return FALSE;
  1633. }
  1634. }
  1635. //
  1636. // Ensure the database # is valid.
  1637. // ARGH! Allow VOID_DB.
  1638. //
  1639. if ( ChangeLogEntry->DBIndex > NUM_DBS ) {
  1640. NlPrint((NL_CRITICAL,
  1641. "NlValidateChangeLogEntry: %lx %lx: DBIndex is bad %ld.\n",
  1642. ChangeLogEntry->SerialNumber.HighPart,
  1643. ChangeLogEntry->SerialNumber.LowPart,
  1644. ChangeLogEntry->DBIndex ));
  1645. return FALSE;
  1646. }
  1647. return TRUE;
  1648. }
  1649. BOOL
  1650. ValidateThisEntry(
  1651. IN OUT PCHANGELOG_DESCRIPTOR ChangeLogDesc,
  1652. IN PCHANGELOG_ENTRY ChangeLogEntry,
  1653. IN OUT PLARGE_INTEGER NextSerialNumber,
  1654. IN BOOLEAN InitialCall
  1655. )
  1656. /*++
  1657. Routine Description:
  1658. Determine the given log entry is a valid next log in the change log
  1659. list.
  1660. NOTE: This function must be called with the change log locked.
  1661. Arguments:
  1662. ChangeLogDesc -- Description of the Changelog buffer to validate.
  1663. ChangeLogEntry: pointer to a new log entry.
  1664. NextSerialNumber: pointer to an array of serial numbers.
  1665. (NULL if serial numbers aren't to be validated.)
  1666. Initialcall: TRUE iff SerialNumber array should be initialized.
  1667. Return Value:
  1668. TRUE: if the given entry is a valid next entry.
  1669. FALSE: otherwise.
  1670. Assumed: non-empty ChangeLog list.
  1671. --*/
  1672. {
  1673. PCHANGELOG_BLOCK_HEADER Block = ((PCHANGELOG_BLOCK_HEADER)ChangeLogEntry) - 1;
  1674. //
  1675. // Do Version 3 specific things
  1676. //
  1677. if ( ChangeLogDesc->Version3 ) {
  1678. //
  1679. // Ensure the block is big enough.
  1680. //
  1681. if ( Block->BlockSize <
  1682. sizeof(CHANGELOG_ENTRY_V3) + sizeof(CHANGELOG_BLOCK_HEADER) ) {
  1683. NlPrint((NL_CRITICAL,
  1684. "ValidateThisEntry: Block size is too small: %ld\n",
  1685. Block->BlockSize ));
  1686. return FALSE;
  1687. }
  1688. //
  1689. // Ensure the database # is valid.
  1690. //
  1691. if ( ChangeLogEntry->DBIndex > NUM_DBS ) {
  1692. NlPrint((NL_CRITICAL,
  1693. "ValidateThisEntry: %lx %lx: DBIndex is bad %ld.\n",
  1694. ChangeLogEntry->SerialNumber.HighPart,
  1695. ChangeLogEntry->SerialNumber.LowPart,
  1696. ChangeLogEntry->DBIndex ));
  1697. return FALSE;
  1698. }
  1699. //
  1700. // Do version 4 specific validation
  1701. //
  1702. } else {
  1703. //
  1704. // Ensure the block is big enough.
  1705. //
  1706. if ( Block->BlockSize <
  1707. sizeof(CHANGELOG_BLOCK_HEADER) +
  1708. sizeof(CHANGELOG_ENTRY) +
  1709. sizeof(CHANGELOG_BLOCK_TRAILER) ) {
  1710. NlPrint((NL_CRITICAL,
  1711. "ValidateThisEntry: Block size is too small: %ld\n",
  1712. Block->BlockSize ));
  1713. return FALSE;
  1714. }
  1715. //
  1716. // Validate the contents of the block itself.
  1717. //
  1718. if ( !NlValidateChangeLogEntry(
  1719. ChangeLogEntry,
  1720. Block->BlockSize -
  1721. sizeof(CHANGELOG_BLOCK_HEADER) -
  1722. sizeof(CHANGELOG_BLOCK_TRAILER) ) ) {
  1723. return FALSE;
  1724. }
  1725. }
  1726. //
  1727. // Validate the serial number sequence.
  1728. //
  1729. if ( ChangeLogEntry->DBIndex != VOID_DB && NextSerialNumber != NULL ) {
  1730. //
  1731. // If this is the first entry in the database,
  1732. // Save its serial number.
  1733. //
  1734. if ( NextSerialNumber[ChangeLogEntry->DBIndex].QuadPart == 0 ) {
  1735. //
  1736. // first entry for this database
  1737. //
  1738. NextSerialNumber[ChangeLogEntry->DBIndex] = ChangeLogEntry->SerialNumber;
  1739. //
  1740. // Otherwise ensure the serial number is the value expected.
  1741. //
  1742. } else {
  1743. if ( !IsSerialNumberEqual(
  1744. ChangeLogDesc,
  1745. ChangeLogEntry,
  1746. &NextSerialNumber[ChangeLogEntry->DBIndex] )){
  1747. NlPrint((NL_CRITICAL,
  1748. "ValidateThisEntry: %lx %lx: Serial number is bad. s.b. %lx %lx\n",
  1749. ChangeLogEntry->SerialNumber.HighPart,
  1750. ChangeLogEntry->SerialNumber.LowPart,
  1751. NextSerialNumber[ChangeLogEntry->DBIndex].HighPart,
  1752. NextSerialNumber[ChangeLogEntry->DBIndex].LowPart ));
  1753. return FALSE;
  1754. }
  1755. }
  1756. //
  1757. // Increment next expected serial number
  1758. //
  1759. NextSerialNumber[ChangeLogEntry->DBIndex].QuadPart =
  1760. ChangeLogEntry->SerialNumber.QuadPart + 1;
  1761. //
  1762. // The current entry specifies the highest serial number for its
  1763. // database.
  1764. //
  1765. if ( InitialCall ) {
  1766. ChangeLogDesc->SerialNumber[ChangeLogEntry->DBIndex] =
  1767. ChangeLogEntry->SerialNumber;
  1768. ChangeLogDesc->EntryCount[ChangeLogEntry->DBIndex] ++;
  1769. }
  1770. }
  1771. return TRUE;
  1772. }
  1773. BOOL
  1774. ValidateBlock(
  1775. IN OUT PCHANGELOG_DESCRIPTOR ChangeLogDesc,
  1776. IN PCHANGELOG_BLOCK_HEADER Block,
  1777. IN OUT LARGE_INTEGER *NextSerialNumber,
  1778. IN BOOLEAN InitialCall
  1779. )
  1780. /*++
  1781. Routine Description:
  1782. Validate a changelog block.
  1783. NOTE: This function must be called with the change log locked.
  1784. Arguments:
  1785. ChangeLogDesc -- Description of the Changelog buffer to validate.
  1786. Block: pointer to the change log block to validate
  1787. NextSerialNumber: pointer to an array of serial numbers.
  1788. (NULL if serial numbers aren't to be validated.)
  1789. InitializeCall: TRUE iff SerialNumber array should be initialized.
  1790. Return Value:
  1791. TRUE: if the given entry is a valid next entry.
  1792. FALSE: otherwise.
  1793. --*/
  1794. {
  1795. //
  1796. // Ensure Block size is properly aligned.
  1797. //
  1798. if ( Block->BlockSize != ROUND_UP_COUNT(Block->BlockSize, ALIGN_WORST) ) {
  1799. NlPrint((NL_CRITICAL,
  1800. "ValidateBlock: Block size alignment is bad.\n" ));
  1801. return FALSE;
  1802. }
  1803. //
  1804. // Ensure the block is contained in the cache.
  1805. //
  1806. if ( Block->BlockSize > ChangeLogDesc->BufferSize ||
  1807. ((LPBYTE)Block + Block->BlockSize) > ChangeLogDesc->BufferEnd ) {
  1808. NlPrint((NL_CRITICAL,
  1809. "ValidateBlock: Block extends beyond end of buffer.\n" ));
  1810. return FALSE;
  1811. }
  1812. //
  1813. // Do Version 3 specific things
  1814. //
  1815. if ( ChangeLogDesc->Version3 ) {
  1816. //
  1817. // Ensure the block is big enough.
  1818. //
  1819. if ( Block->BlockSize < sizeof(CHANGELOG_BLOCK_HEADER) ) {
  1820. NlPrint((NL_CRITICAL,
  1821. "ValidateBlock: Block size is too small: %ld\n",
  1822. Block->BlockSize ));
  1823. return FALSE;
  1824. }
  1825. //
  1826. // Do version 4 specific validation
  1827. //
  1828. } else {
  1829. //
  1830. // Ensure the block is big enough.
  1831. //
  1832. if ( Block->BlockSize <
  1833. sizeof(CHANGELOG_BLOCK_HEADER) +
  1834. sizeof(CHANGELOG_BLOCK_TRAILER) ) {
  1835. NlPrint((NL_CRITICAL,
  1836. "ValidateBlock: Block size is too small: %ld\n",
  1837. Block->BlockSize ));
  1838. return FALSE;
  1839. }
  1840. //
  1841. // Ensure trailer and header match
  1842. //
  1843. if ( ChangeLogBlockTrailer(Block)->BlockSize != Block->BlockSize ) {
  1844. NlPrint((NL_CRITICAL,
  1845. "ValidateBlock: Header/Trailer block size mismatch: %ld %ld (Trailer fixed).\n",
  1846. Block->BlockSize,
  1847. ChangeLogBlockTrailer(Block)->BlockSize ));
  1848. ChangeLogBlockTrailer(Block)->BlockSize = Block->BlockSize;
  1849. }
  1850. }
  1851. //
  1852. // Free blocks have no other checking to do
  1853. //
  1854. switch ( Block->BlockState ) {
  1855. case BlockFree:
  1856. break;
  1857. //
  1858. // Used blocks have more checking to do.
  1859. //
  1860. case BlockUsed:
  1861. if ( !ValidateThisEntry( ChangeLogDesc,
  1862. (PCHANGELOG_ENTRY)(Block+1),
  1863. NextSerialNumber,
  1864. InitialCall )) {
  1865. return FALSE;
  1866. }
  1867. break;
  1868. //
  1869. // The hole is allowed only at the end of the buffer.
  1870. //
  1871. case BlockHole:
  1872. if ( (LPBYTE)Block + Block->BlockSize != ChangeLogDesc->BufferEnd ) {
  1873. NlPrint((NL_CRITICAL,
  1874. "ValidateBlock: Hole block in middle of buffer (buffer truncated).\n" ));
  1875. Block->BlockSize = (ULONG)(ChangeLogDesc->BufferEnd - (LPBYTE)Block);
  1876. }
  1877. break;
  1878. default:
  1879. NlPrint((NL_CRITICAL,
  1880. "ValidateBlock: Invalid block type %ld.\n",
  1881. Block->BlockState ));
  1882. return FALSE;
  1883. }
  1884. return TRUE;
  1885. }
  1886. BOOL
  1887. ValidateList(
  1888. IN OUT PCHANGELOG_DESCRIPTOR ChangeLogDesc,
  1889. IN BOOLEAN InitialCall
  1890. )
  1891. /*++
  1892. Routine Description:
  1893. Determine the given header is a valid header. It is done by
  1894. traversing the circular buffer starting from the given header and
  1895. validate each entry.
  1896. NOTE: This function must be called with the change log locked.
  1897. Arguments:
  1898. ChangeLogDesc -- Description of the Changelog buffer to validate.
  1899. InitialCall: TRUE iff SerialNumber Array and EntryCount should
  1900. be initialized.
  1901. Return Value:
  1902. TRUE: if the given header is valid.
  1903. FALSE: otherwise
  1904. --*/
  1905. {
  1906. LARGE_INTEGER NextSerialNumber[NUM_DBS];
  1907. PCHANGELOG_BLOCK_HEADER ChangeLogBlock;
  1908. DWORD j;
  1909. //
  1910. // setup a NextSerialNumber array first.
  1911. //
  1912. for( j = 0; j < NUM_DBS; j++ ) {
  1913. NextSerialNumber[j].QuadPart = 0;
  1914. if ( InitialCall ) {
  1915. ChangeLogDesc->SerialNumber[j].QuadPart = 0;
  1916. }
  1917. }
  1918. //
  1919. // The cache is valid if it is empty.
  1920. //
  1921. if ( ChangeLogIsEmpty(ChangeLogDesc) ) {
  1922. return TRUE;
  1923. }
  1924. //
  1925. // Validate each block
  1926. //
  1927. for ( ChangeLogBlock = ChangeLogDesc->Head;
  1928. ;
  1929. ChangeLogBlock = NlMoveToNextChangeLogBlock( ChangeLogDesc, ChangeLogBlock) ) {
  1930. //
  1931. // Validate the block.
  1932. //
  1933. if( !ValidateBlock( ChangeLogDesc,
  1934. ChangeLogBlock,
  1935. NextSerialNumber,
  1936. InitialCall) ) {
  1937. return FALSE;
  1938. }
  1939. //
  1940. // Stop when we get to the end.
  1941. //
  1942. if ( ChangeLogBlock->BlockState == BlockFree ) {
  1943. break;
  1944. }
  1945. }
  1946. return TRUE;
  1947. }
  1948. BOOL
  1949. InitChangeLogHeadAndTail(
  1950. IN OUT PCHANGELOG_DESCRIPTOR ChangeLogDesc,
  1951. IN BOOLEAN NewChangeLog
  1952. )
  1953. /*++
  1954. Routine Description:
  1955. This function initializes the global head and tail pointers of change
  1956. log block list. The change log cache is made up of variable length
  1957. blocks, each block has a header containing the length of the block
  1958. and the block state ( BlockFree, BlockUsed and BlockHole ). The
  1959. last block in the change log block list is always the free block,
  1960. all other blocks in the cache are used blocks except a block at the
  1961. end of the cache may be a unused block known as 'hole' block. So
  1962. the head of the change log block list is the block that is just next
  1963. to the free block and the tail is the free block.
  1964. NOTE: This function must be called with the change log locked.
  1965. Arguments:
  1966. ChangeLogDesc -- Description of the Changelog buffer to analyze.
  1967. On entry, Buffer and BufferSize describe the allocated block containing
  1968. the change log read from disk.
  1969. On TRUE return, all the fields are filled in.
  1970. NewChangeLog -- True if no entries are in the change log
  1971. Return Value:
  1972. TRUE: if valid head and tail are successfully initialized.
  1973. FALSE: if valid head and tail can't be determined. This may be due
  1974. to the corrupted change log file.
  1975. --*/
  1976. {
  1977. PCHANGELOG_BLOCK_HEADER Block;
  1978. PCHANGELOG_BLOCK_HEADER FreeBlock;
  1979. DWORD i;
  1980. ChangeLogDesc->BufferEnd =
  1981. ChangeLogDesc->Buffer + ChangeLogDesc->BufferSize;
  1982. //
  1983. // Compute the address of the first physical cache entry.
  1984. //
  1985. ChangeLogDesc->FirstBlock = (PCHANGELOG_BLOCK_HEADER)
  1986. (ChangeLogDesc->Buffer +
  1987. sizeof(CHANGELOG_SIG));
  1988. ChangeLogDesc->FirstBlock = (PCHANGELOG_BLOCK_HEADER)
  1989. ROUND_UP_POINTER ( ChangeLogDesc->FirstBlock, ALIGN_WORST );
  1990. //
  1991. // Clear the count of entries in the change log and the serial numbers
  1992. // (We'll compute them later when we call ValidateList().)
  1993. for( i = 0; i < NUM_DBS; i++ ) {
  1994. ChangeLogDesc->EntryCount[i] = 0;
  1995. ChangeLogDesc->SerialNumber[i].QuadPart = 0;
  1996. }
  1997. //
  1998. // If this is a new change log,
  1999. // Initialize the Change Log Cache to zero.
  2000. //
  2001. Block = ChangeLogDesc->FirstBlock;
  2002. if ( NewChangeLog ) {
  2003. RtlZeroMemory(ChangeLogDesc->Buffer, ChangeLogDesc->BufferSize);
  2004. (VOID) strcpy( (PCHAR)ChangeLogDesc->Buffer, CHANGELOG_SIG);
  2005. Block->BlockState = BlockFree;
  2006. Block->BlockSize =
  2007. (ULONG)(ChangeLogDesc->BufferEnd - (LPBYTE)ChangeLogDesc->FirstBlock);
  2008. ChangeLogBlockTrailer(Block)->BlockSize = Block->BlockSize;
  2009. ChangeLogDesc->Version3 = FALSE;
  2010. ChangeLogDesc->Head = ChangeLogDesc->Tail = ChangeLogDesc->FirstBlock;
  2011. return TRUE;
  2012. }
  2013. //
  2014. // If no entries have been written to the changelog,
  2015. // simply initialize the head and tail to the block start.
  2016. //
  2017. if ( ChangeLogIsEmpty( ChangeLogDesc ) ) {
  2018. ChangeLogDesc->Head = ChangeLogDesc->Tail = ChangeLogDesc->FirstBlock;
  2019. NlPrint((NL_CHANGELOG,
  2020. "InitChangeLogHeadAndTail: Change log is empty.\n" ));
  2021. return TRUE;
  2022. }
  2023. //
  2024. // Loop through the cache looking for a free block.
  2025. //
  2026. FreeBlock = NULL;
  2027. do {
  2028. //
  2029. // Validate the block's integrity.
  2030. //
  2031. if ( !ValidateBlock( ChangeLogDesc, Block, NULL, FALSE )) {
  2032. return FALSE;
  2033. }
  2034. //
  2035. // Just remember where the free block is.
  2036. //
  2037. if ( Block->BlockState == BlockFree ) {
  2038. if ( FreeBlock != NULL ) {
  2039. NlPrint((NL_CRITICAL,
  2040. "InitChangeLogHeadAndTail: Multiple free blocks found.\n" ));
  2041. return FALSE;
  2042. }
  2043. FreeBlock = Block;
  2044. }
  2045. //
  2046. // Move to next block
  2047. //
  2048. Block = (PCHANGELOG_BLOCK_HEADER) ((LPBYTE)Block + Block->BlockSize);
  2049. } while ( (LPBYTE)Block < ChangeLogDesc->BufferEnd );
  2050. //
  2051. // If we didn't find a free block,
  2052. // the changelog is corrupt.
  2053. //
  2054. if ( FreeBlock == NULL ) {
  2055. NlPrint((NL_CRITICAL,
  2056. "InitChangeLogHeadAndTail: No Free block anywhere in buffer.\n" ));
  2057. return FALSE;
  2058. }
  2059. //
  2060. // We found the free block.
  2061. // (The tail pointer always points to the free block.)
  2062. //
  2063. ChangeLogDesc->Tail = FreeBlock;
  2064. //
  2065. // If free block is the last block in the change log block
  2066. // list, the head of the list is the first block in
  2067. // the list.
  2068. //
  2069. if( ((LPBYTE)FreeBlock + FreeBlock->BlockSize) >=
  2070. ChangeLogDesc->BufferEnd ) {
  2071. ChangeLogDesc->Head = ChangeLogDesc->FirstBlock;
  2072. //
  2073. //
  2074. // Otherwise, the head of the list is immediately after the tail.
  2075. //
  2076. } else {
  2077. ChangeLogDesc->Head = (PCHANGELOG_BLOCK_HEADER)
  2078. ((LPBYTE)FreeBlock + FreeBlock->BlockSize);
  2079. }
  2080. //
  2081. // Validate the list before returning from here.
  2082. //
  2083. if ( !ValidateList( ChangeLogDesc, TRUE) ) {
  2084. return FALSE;
  2085. }
  2086. return TRUE;
  2087. }
  2088. NTSTATUS
  2089. NlResetChangeLog(
  2090. IN PCHANGELOG_DESCRIPTOR ChangeLogDesc,
  2091. IN DWORD NewChangeLogSize
  2092. )
  2093. /*++
  2094. Routine Description:
  2095. This function resets the change log cache and change log file. This
  2096. function is called from InitChangeLog() function to afresh the
  2097. change log. This function may also be called from
  2098. I_NetNotifyDelta() function when the serial number of the new entry
  2099. is out of order.
  2100. NOTE: This function must be called with the change log locked.
  2101. Arguments:
  2102. ChangeLogDesc -- Description of the Changelog buffer being used
  2103. NewChangeLogSize -- Size (in bytes) of the new change log.
  2104. Return Value:
  2105. NT Status code
  2106. --*/
  2107. {
  2108. NTSTATUS Status;
  2109. NlPrint((NL_CHANGELOG, "%s log being reset.\n",
  2110. ChangeLogDesc->TempLog ? "TempChange" : "Change" ));
  2111. //
  2112. // Start with a clean slate.
  2113. //
  2114. NlCloseChangeLogFile( ChangeLogDesc );
  2115. //
  2116. // Allocate a buffer.
  2117. //
  2118. ChangeLogDesc->BufferSize = NewChangeLogSize;
  2119. ChangeLogDesc->Buffer = NetpMemoryAllocate(ChangeLogDesc->BufferSize );
  2120. if ( ChangeLogDesc->Buffer == NULL ) {
  2121. return STATUS_NO_MEMORY;
  2122. }
  2123. //
  2124. // Initialize the Change Log Cache to zero.
  2125. //
  2126. (VOID) InitChangeLogHeadAndTail( ChangeLogDesc, TRUE );
  2127. //
  2128. // Write the cache to the file.
  2129. //
  2130. Status = NlWriteChangeLogBytes( ChangeLogDesc,
  2131. ChangeLogDesc->Buffer,
  2132. ChangeLogDesc->BufferSize,
  2133. TRUE ); // Flush the bytes to disk
  2134. return Status;
  2135. }
  2136. NTSTATUS
  2137. I_NetLogonReadChangeLog(
  2138. IN PVOID InContext,
  2139. IN ULONG InContextSize,
  2140. IN ULONG ChangeBufferSize,
  2141. OUT PVOID *ChangeBuffer,
  2142. OUT PULONG BytesRead,
  2143. OUT PVOID *OutContext,
  2144. OUT PULONG OutContextSize
  2145. )
  2146. /*++
  2147. Routine Description:
  2148. This function returns a portion of the change log to the caller.
  2149. The caller asks for the first portion of the change log by passing zero as
  2150. the InContext/InContextSize. Each call passes out an OutContext that
  2151. indentifies the last change returned to the caller. That context can
  2152. be passed in on a subsequent call to I_NetlogonReadChangeLog.
  2153. Arguments:
  2154. InContext - Opaque context describing the last entry to have been previously
  2155. returned. Specify NULL to request the first entry.
  2156. InContextSize - Size (in bytes) of InContext. Specify 0 to request the
  2157. first entry.
  2158. ChangeBufferSize - Specifies the size (in bytes) of the passed in ChangeBuffer.
  2159. ChangeBuffer - Returns the next several entries from the change log.
  2160. Buffer must be DWORD aligned.
  2161. BytesRead - Returns the size (in bytes) of the entries returned in ChangeBuffer.
  2162. OutContext - Returns an opaque context describing the last entry returned
  2163. in ChangeBuffer. NULL is returned if no entries were returned.
  2164. The buffer must be freed using I_NetLogonFree
  2165. OutContextSize - Returns the size (in bytes) of OutContext.
  2166. Return Value:
  2167. STATUS_MORE_ENTRIES - More entries are available. This function should
  2168. be called again to retrieve the remaining entries.
  2169. STATUS_SUCCESS - No more entries are currently available. Some entries may
  2170. have been returned on this call. This function need not be called again.
  2171. However, the caller can determine if new change log entries were
  2172. added to the log, by calling this function again passing in the returned
  2173. context.
  2174. STATUS_INVALID_PARAMETER - InContext is invalid.
  2175. Either it is too short or the change log entry described no longer
  2176. exists in the change log.
  2177. STATUS_INVALID_DOMAIN_ROLE - Change log not initialized
  2178. STATUS_NO_MEMORY - There is not enough memory to allocate OutContext.
  2179. --*/
  2180. {
  2181. NTSTATUS Status;
  2182. CHANGELOG_CONTEXT Context;
  2183. PCHANGELOG_ENTRY ChangeLogEntry;
  2184. ULONG BytesCopied = 0;
  2185. LPBYTE Where = (LPBYTE)ChangeBuffer;
  2186. ULONG EntriesCopied = 0;
  2187. //
  2188. // Initialization.
  2189. //
  2190. *OutContext = NULL;
  2191. *OutContextSize = 0;
  2192. //
  2193. // Ensure the role is right. Otherwise, all the globals used below
  2194. // aren't initialized.
  2195. //
  2196. if ( NlGlobalChangeLogRole != ChangeLogPrimary ) {
  2197. NlPrint((NL_CHANGELOG,
  2198. "I_NetLogonReadChangeLog: failed 1\n" ));
  2199. return STATUS_INVALID_DOMAIN_ROLE;
  2200. }
  2201. //
  2202. // Also make sure that the change log cache is available.
  2203. //
  2204. if ( NlGlobalChangeLogDesc.Buffer == NULL ) {
  2205. NlPrint((NL_CHANGELOG,
  2206. "I_NetLogonReadChangeLog: failed 2\n" ));
  2207. return STATUS_INVALID_DOMAIN_ROLE;
  2208. }
  2209. //
  2210. // Validate the context.
  2211. //
  2212. LOCK_CHANGELOG();
  2213. if ( InContext == NULL ) {
  2214. NlPrint((NL_CHANGELOG, "I_NetLogonReadChangeLog: called with NULL\n" ));
  2215. //
  2216. // Start the sequence number at one.
  2217. //
  2218. Context.SequenceNumber = 1;
  2219. //
  2220. // If nothing has ever been written to the change log,
  2221. // indicate nothing is available.
  2222. //
  2223. if ( ChangeLogIsEmpty( &NlGlobalChangeLogDesc ) ) {
  2224. ChangeLogEntry = NULL;
  2225. //
  2226. // Otherwise, start at the beginning of the log.
  2227. //
  2228. } else {
  2229. ChangeLogEntry = (PCHANGELOG_ENTRY) (NlGlobalChangeLogDesc.Head + 1);
  2230. }
  2231. } else {
  2232. //
  2233. // Ensure the context wasn't mangled.
  2234. //
  2235. if ( InContextSize < sizeof(CHANGELOG_CONTEXT) ) {
  2236. Status = STATUS_INVALID_PARAMETER;
  2237. goto Cleanup;
  2238. }
  2239. RtlCopyMemory( &Context, InContext, sizeof(CHANGELOG_CONTEXT) );
  2240. NlPrint((NL_CHANGELOG, "I_NetLogonReadChangeLog: called with %lx %lx in %ld (%ld)\n",
  2241. Context.SerialNumber.HighPart,
  2242. Context.SerialNumber.LowPart,
  2243. Context.DbIndex,
  2244. Context.SequenceNumber ));
  2245. //
  2246. // Increment the sequence number.
  2247. //
  2248. Context.SequenceNumber++;
  2249. //
  2250. // Find the change log entry corresponding to the context.
  2251. //
  2252. ChangeLogEntry = NlFindChangeLogEntry( &NlGlobalChangeLogDesc,
  2253. Context.SerialNumber,
  2254. FALSE, // Not downlevel
  2255. TRUE, // Exact match needed
  2256. Context.DbIndex );
  2257. if ( ChangeLogEntry == NULL ) {
  2258. Status = STATUS_INVALID_PARAMETER;
  2259. NlPrint((NL_CHANGELOG, "I_NetLogonReadChangeLog: %lx %lx in %ld: Entry no longer exists in change log.\n",
  2260. Context.SerialNumber.HighPart,
  2261. Context.SerialNumber.LowPart,
  2262. Context.DbIndex ));
  2263. goto Cleanup;
  2264. }
  2265. //
  2266. // The next change log entry is the one to return first.
  2267. //
  2268. ChangeLogEntry = NlMoveToNextChangeLogEntry( &NlGlobalChangeLogDesc,
  2269. ChangeLogEntry );
  2270. }
  2271. //
  2272. // Copy a header into the ChangeBuffer.
  2273. //
  2274. if ( ChangeBufferSize <= sizeof(CHANGELOG_BUFFER_HEADER) ) {
  2275. Status = STATUS_BUFFER_TOO_SMALL;
  2276. goto Cleanup;
  2277. }
  2278. ((PCHANGELOG_BUFFER_HEADER)Where)->Size = sizeof(CHANGELOG_BUFFER_HEADER);
  2279. ((PCHANGELOG_BUFFER_HEADER)Where)->Version = CHANGELOG_BUFFER_VERSION;
  2280. ((PCHANGELOG_BUFFER_HEADER)Where)->SequenceNumber = Context.SequenceNumber;
  2281. ((PCHANGELOG_BUFFER_HEADER)Where)->Flags = 0;
  2282. Where += sizeof(CHANGELOG_BUFFER_HEADER);
  2283. BytesCopied += sizeof(CHANGELOG_BUFFER_HEADER);
  2284. //
  2285. // Loop returning change log entries to the caller.
  2286. //
  2287. // ASSERT: ChangeLogEntry is the next entry to return to the caller.
  2288. // ASSERT: ChangeLogEntry is NULL if there are no more change log entries.
  2289. while ( ChangeLogEntry != NULL ) {
  2290. ULONG SizeToCopy;
  2291. PCHANGELOG_BLOCK_HEADER ChangeLogBlock;
  2292. //
  2293. // Skip over any voided log entries.
  2294. //
  2295. while ( ChangeLogEntry != NULL && ChangeLogEntry->DBIndex == VOID_DB ) {
  2296. //
  2297. // Get the next entry to copy.
  2298. //
  2299. ChangeLogEntry = NlMoveToNextChangeLogEntry( &NlGlobalChangeLogDesc,
  2300. ChangeLogEntry );
  2301. }
  2302. if ( ChangeLogEntry == NULL ) {
  2303. break;
  2304. }
  2305. //
  2306. // Compute the size of the change log entry to copy.
  2307. //
  2308. ChangeLogBlock = (PCHANGELOG_BLOCK_HEADER)
  2309. ( (LPBYTE) ChangeLogEntry - sizeof(CHANGELOG_BLOCK_HEADER) );
  2310. SizeToCopy = ChangeLogBlock->BlockSize -
  2311. sizeof(CHANGELOG_BLOCK_HEADER) -
  2312. sizeof(CHANGELOG_BLOCK_TRAILER);
  2313. NlAssert( SizeToCopy == ROUND_UP_COUNT( SizeToCopy, ALIGN_DWORD ));
  2314. //
  2315. // Ensure the entry fits in the buffer.
  2316. //
  2317. if ( BytesCopied + SizeToCopy + sizeof(DWORD) > ChangeBufferSize ) {
  2318. break;
  2319. }
  2320. //
  2321. // Copy this entry into the buffer.
  2322. //
  2323. *((LPDWORD)Where) = SizeToCopy;
  2324. Where += sizeof(DWORD);
  2325. BytesCopied += sizeof(DWORD);
  2326. RtlCopyMemory( Where, ChangeLogEntry, SizeToCopy );
  2327. Where += SizeToCopy;
  2328. BytesCopied += SizeToCopy;
  2329. EntriesCopied += 1;
  2330. //
  2331. // Remember the context of this Entry.
  2332. //
  2333. Context.SerialNumber.QuadPart = ChangeLogEntry->SerialNumber.QuadPart;
  2334. Context.DbIndex = ChangeLogEntry->DBIndex;
  2335. //
  2336. // Get the next entry to copy.
  2337. //
  2338. ChangeLogEntry = NlMoveToNextChangeLogEntry( &NlGlobalChangeLogDesc,
  2339. ChangeLogEntry );
  2340. }
  2341. //
  2342. // Determine the status code to return.
  2343. //
  2344. if ( ChangeLogEntry == NULL ) {
  2345. Status = STATUS_SUCCESS;
  2346. } else {
  2347. Status = STATUS_MORE_ENTRIES;
  2348. //
  2349. // If no data was copied,
  2350. // give a better status.
  2351. //
  2352. if ( EntriesCopied == 0 ) {
  2353. Status = STATUS_BUFFER_TOO_SMALL;
  2354. BytesCopied = 0;
  2355. goto Cleanup;
  2356. }
  2357. }
  2358. //
  2359. // If any data was returned,
  2360. // return context to the caller.
  2361. //
  2362. if ( EntriesCopied ) {
  2363. *OutContext = NetpMemoryAllocate( sizeof(CHANGELOG_CONTEXT) );
  2364. if ( *OutContext == NULL ) {
  2365. Status = STATUS_NO_MEMORY;
  2366. BytesCopied = 0;
  2367. goto Cleanup;
  2368. }
  2369. *((PCHANGELOG_CONTEXT)*OutContext) = Context;
  2370. *OutContextSize = sizeof(CHANGELOG_CONTEXT);
  2371. }
  2372. Cleanup:
  2373. *BytesRead = BytesCopied;
  2374. UNLOCK_CHANGELOG();
  2375. return Status;
  2376. }
  2377. NTSTATUS
  2378. I_NetLogonNewChangeLog(
  2379. OUT HANDLE *ChangeLogHandle
  2380. )
  2381. /*++
  2382. Routine Description:
  2383. This function opens a new changelog file for writing. The new changelog
  2384. is a temporary file. The real change will not be modified until
  2385. I_NetLogonCloseChangeLog is called asking to Comit the changes.
  2386. The caller should follow this call by Zero more calls to
  2387. I_NetLogonAppendChangeLog followed by a call to I_NetLogonCloseChangeLog.
  2388. Only one temporary change log can be active at once.
  2389. Arguments:
  2390. ChangeLogHandle - Returns a handle identifying the temporary change log.
  2391. Return Value:
  2392. STATUS_SUCCESS - The temporary change log has been successfully opened.
  2393. STATUS_INVALID_DOMAIN_ROLE - DC is neither PDC nor BDC.
  2394. STATUS_NO_MEMORY - Not enough memory to create the change log buffer.
  2395. Sundry file creation errors.
  2396. --*/
  2397. {
  2398. NTSTATUS Status;
  2399. NlPrint((NL_CHANGELOG, "I_NetLogonNewChangeLog: called\n" ));
  2400. //
  2401. // Ensure the role is right. Otherwise, all the globals used below
  2402. // aren't initialized.
  2403. //
  2404. if ( NlGlobalChangeLogRole != ChangeLogPrimary &&
  2405. NlGlobalChangeLogRole != ChangeLogBackup ) {
  2406. NlPrint((NL_CHANGELOG,
  2407. "I_NetLogonNewChangeLog: failed 1\n" ));
  2408. return STATUS_INVALID_DOMAIN_ROLE;
  2409. }
  2410. //
  2411. // Initialize the global context.
  2412. //
  2413. LOCK_CHANGELOG();
  2414. InitChangeLogDesc( &NlGlobalTempChangeLogDesc );
  2415. NlGlobalTempChangeLogDesc.TempLog = TRUE;
  2416. //
  2417. // Create a temporary change log the same size as the real changelog
  2418. //
  2419. Status = NlResetChangeLog( &NlGlobalTempChangeLogDesc,
  2420. NlGlobalChangeLogDesc.BufferSize );
  2421. if ( !NT_SUCCESS(Status) ) {
  2422. NlPrint((NL_CHANGELOG,
  2423. "I_NetLogonNewChangeLog: cannot reset temp change log 0x%lx\n",
  2424. Status ));
  2425. goto Cleanup;
  2426. }
  2427. NlGlobalChangeLogSequenceNumber = 0;
  2428. *(PULONG)ChangeLogHandle = ++ NlGlobalChangeLogHandle;
  2429. Cleanup:
  2430. UNLOCK_CHANGELOG();
  2431. return Status;
  2432. }
  2433. NTSTATUS
  2434. I_NetLogonAppendChangeLog(
  2435. IN HANDLE ChangeLogHandle,
  2436. IN PVOID ChangeBuffer,
  2437. IN ULONG ChangeBufferSize
  2438. )
  2439. /*++
  2440. Routine Description:
  2441. This function appends change log information to new changelog file.
  2442. The ChangeBuffer must be a change buffer returned from I_NetLogonReadChangeLog.
  2443. Care should be taken to ensure each call to I_NetLogonReadChangeLog is
  2444. exactly matched by one call to I_NetLogonAppendChangeLog.
  2445. Arguments:
  2446. ChangeLogHandle - A handle identifying the temporary change log.
  2447. ChangeBuffer - A buffer describing a set of changes returned from
  2448. I_NetLogonReadChangeLog.
  2449. ChangeBufferSize - Size (in bytes) of ChangeBuffer.
  2450. Return Value:
  2451. STATUS_SUCCESS - The temporary change log has been successfully opened.
  2452. STATUS_INVALID_DOMAIN_ROLE - DC is neither PDC nor BDC.
  2453. STATUS_INVALID_HANDLE - ChangeLogHandle is not valid.
  2454. STATUS_INVALID_PARAMETER - ChangeBuffer contains invalid data.
  2455. Sundry disk write errors.
  2456. --*/
  2457. {
  2458. NTSTATUS Status;
  2459. LPBYTE Where;
  2460. ULONG BytesLeft;
  2461. LPBYTE AllocatedChangeBuffer = NULL;
  2462. //
  2463. // Ensure the role is right. Otherwise, all the globals used below
  2464. // aren't initialized.
  2465. //
  2466. if ( NlGlobalChangeLogRole != ChangeLogPrimary &&
  2467. NlGlobalChangeLogRole != ChangeLogBackup ) {
  2468. NlPrint((NL_CHANGELOG,
  2469. "I_NetLogonAppendChangeLog: failed 1\n" ));
  2470. return STATUS_INVALID_DOMAIN_ROLE;
  2471. }
  2472. //
  2473. // Check the handle.
  2474. //
  2475. LOCK_CHANGELOG();
  2476. if ( HandleToUlong(ChangeLogHandle) != NlGlobalChangeLogHandle ) {
  2477. Status = STATUS_INVALID_HANDLE;
  2478. goto Cleanup;
  2479. }
  2480. //
  2481. // Make a properly aligned copy of the buffer.
  2482. // Sam gets it as a byte array over RPC. RPC chooses to align it poorly.
  2483. //
  2484. BytesLeft = ChangeBufferSize;
  2485. if ( BytesLeft < sizeof(CHANGELOG_BUFFER_HEADER) ) {
  2486. NlPrint((NL_CRITICAL,
  2487. "I_NetLogonAppendChangeLog: Buffer has no header %ld\n", BytesLeft ));
  2488. Status = STATUS_INVALID_PARAMETER;
  2489. goto Cleanup;
  2490. }
  2491. AllocatedChangeBuffer = LocalAlloc( 0, BytesLeft );
  2492. if ( AllocatedChangeBuffer == NULL ) {
  2493. Status = STATUS_NO_MEMORY;
  2494. goto Cleanup;
  2495. }
  2496. RtlCopyMemory( AllocatedChangeBuffer, ChangeBuffer, BytesLeft );
  2497. //
  2498. // Validate the buffer header.
  2499. //
  2500. Where = (LPBYTE) AllocatedChangeBuffer;
  2501. if ( ((PCHANGELOG_BUFFER_HEADER)Where)->Size < sizeof(CHANGELOG_BUFFER_HEADER) ||
  2502. ((PCHANGELOG_BUFFER_HEADER)Where)->Size > BytesLeft ) {
  2503. NlPrint((NL_CRITICAL,
  2504. "I_NetLogonAppendChangeLog: Header size is bogus %ld %ld\n",
  2505. ((PCHANGELOG_BUFFER_HEADER)Where)->Size,
  2506. BytesLeft ));
  2507. Status = STATUS_INVALID_PARAMETER;
  2508. goto Cleanup;
  2509. }
  2510. if ( ((PCHANGELOG_BUFFER_HEADER)Where)->Version != CHANGELOG_BUFFER_VERSION ) {
  2511. NlPrint((NL_CRITICAL,
  2512. "I_NetLogonAppendChangeLog: Header version is bogus %ld\n",
  2513. ((PCHANGELOG_BUFFER_HEADER)Where)->Version ));
  2514. Status = STATUS_INVALID_PARAMETER;
  2515. goto Cleanup;
  2516. }
  2517. if ( ((PCHANGELOG_BUFFER_HEADER)Where)->SequenceNumber != NlGlobalChangeLogSequenceNumber + 1 ) {
  2518. NlPrint((NL_CRITICAL,
  2519. "I_NetLogonAppendChangeLog: Header out of sequence %ld %ld\n",
  2520. ((PCHANGELOG_BUFFER_HEADER)Where)->SequenceNumber,
  2521. NlGlobalChangeLogSequenceNumber ));
  2522. Status = STATUS_INVALID_PARAMETER;
  2523. goto Cleanup;
  2524. }
  2525. NlPrint((NL_CHANGELOG, "I_NetLogonAppendChangeLog: called (%ld)\n", NlGlobalChangeLogSequenceNumber ));
  2526. NlGlobalChangeLogSequenceNumber += 1;
  2527. BytesLeft -= ((PCHANGELOG_BUFFER_HEADER)Where)->Size;
  2528. Where += ((PCHANGELOG_BUFFER_HEADER)Where)->Size;
  2529. //
  2530. // Loop through the individual changes
  2531. //
  2532. while ( BytesLeft != 0 ) {
  2533. PCHANGELOG_ENTRY ChangeLogEntry;
  2534. ULONG ChangeLogEntrySize;
  2535. //
  2536. // Ensure that at least the size field is present.
  2537. //
  2538. if ( BytesLeft < sizeof(DWORD) ) {
  2539. NlPrint((NL_CRITICAL,
  2540. "I_NetLogonAppendChangeLog: Bytes left is too small %ld\n", BytesLeft ));
  2541. Status = STATUS_INVALID_PARAMETER;
  2542. goto Cleanup;
  2543. }
  2544. //
  2545. // Ensure the entire change log entry is present.
  2546. //
  2547. ChangeLogEntrySize = *((PULONG)Where);
  2548. Where += sizeof(ULONG);
  2549. BytesLeft -= sizeof(ULONG);
  2550. if ( BytesLeft < ChangeLogEntrySize ) {
  2551. NlPrint((NL_CRITICAL,
  2552. "I_NetLogonAppendChangeLog: Bytes left is smaller than entry size %ld %ld\n",
  2553. BytesLeft, ChangeLogEntrySize ));
  2554. Status = STATUS_INVALID_PARAMETER;
  2555. goto Cleanup;
  2556. }
  2557. ChangeLogEntry = (PCHANGELOG_ENTRY)Where;
  2558. Where += ChangeLogEntrySize;
  2559. BytesLeft -= ChangeLogEntrySize;
  2560. //
  2561. // Check the structural integrity of the entry.
  2562. //
  2563. if ( !NlValidateChangeLogEntry( ChangeLogEntry, ChangeLogEntrySize)) {
  2564. NlPrint((NL_CRITICAL,
  2565. "I_NetLogonAppendChangeLog: ChangeLogEntry is bogus\n" ));
  2566. Status = STATUS_INVALID_PARAMETER;
  2567. goto Cleanup;
  2568. }
  2569. //
  2570. // If this is not an entry for the LSA database,
  2571. // copy the change log entry into the temporary change log.
  2572. //
  2573. // The rational here is that this routine is called on this
  2574. // DC when this DC is in the process of becoming a PDC. A
  2575. // new change log is created that is coppied from the one on
  2576. // what is currently the PDC. Parallel to this, the SAM database
  2577. // is replicated using DS from the current PDC to this DC.
  2578. // However, the LSA database isn't replicated in this process.
  2579. // This is OK since after this machine becomes the PDC, it will
  2580. // change the timestamp of the master database creation forcing
  2581. // BDCs to do a full LSA sync from this PDC next time they send a
  2582. // ssync request. However, if we were to write LSA entries into
  2583. // the change log, we could potentially have different serial
  2584. // numbers for what we currently have in the LSA database locally
  2585. // on this machine and in the change log we got from what is
  2586. // currently the PDC. This would potentially produce event log
  2587. // errors next time LSA tries to write into the log file locally.
  2588. // So we choose not to write the LSA entries in the change log at
  2589. // all.
  2590. //
  2591. if ( ChangeLogEntry->DBIndex != LSA_DB ) {
  2592. Status = NlCopyChangeLogEntry(
  2593. FALSE, // Entry is NOT version 3
  2594. ChangeLogEntry,
  2595. &NlGlobalTempChangeLogDesc );
  2596. if ( !NT_SUCCESS(Status) ) {
  2597. NlPrint((NL_CRITICAL,
  2598. "I_NetLogonAppendChangeLog: Cannot copy ChangeLogEntry 0x%lx\n",
  2599. Status ));
  2600. goto Cleanup;
  2601. }
  2602. }
  2603. }
  2604. //
  2605. // Flush the changes to disk.
  2606. //
  2607. Status = NlFlushChangeLog( &NlGlobalTempChangeLogDesc );
  2608. if ( !NT_SUCCESS(Status) ) {
  2609. NlPrint((NL_CRITICAL,
  2610. "I_NetLogonAppendChangeLog: Cannot flush changes 0x%lx\n",
  2611. Status ));
  2612. goto Cleanup;
  2613. }
  2614. Status = STATUS_SUCCESS;
  2615. Cleanup:
  2616. UNLOCK_CHANGELOG();
  2617. if ( AllocatedChangeBuffer != NULL ) {
  2618. LocalFree( AllocatedChangeBuffer );
  2619. }
  2620. return Status;
  2621. }
  2622. NTSTATUS
  2623. I_NetLogonCloseChangeLog(
  2624. IN HANDLE ChangeLogHandle,
  2625. IN BOOLEAN Commit
  2626. )
  2627. /*++
  2628. Routine Description:
  2629. This function closes a new changelog file.
  2630. Arguments:
  2631. ChangeLogHandle - A handle identifying the temporary change log.
  2632. Commit - If true, the specified changes are written to the primary change log.
  2633. If false, the specified change are deleted.
  2634. Return Value:
  2635. STATUS_SUCCESS - The temporary change log has been successfully opened.
  2636. STATUS_INVALID_DOMAIN_ROLE - DC is neither PDC nor BDC.
  2637. STATUS_INVALID_HANDLE - ChangeLogHandle is not valid.
  2638. --*/
  2639. {
  2640. NTSTATUS Status;
  2641. LPBYTE Where;
  2642. ULONG BytesLeft;
  2643. WCHAR ChangeLogFile[PATHLEN+1];
  2644. NlPrint((NL_CHANGELOG, "I_NetLogonAppendCloseLog: called (%ld)\n", Commit ));
  2645. //
  2646. // Ensure the role is right. Otherwise, all the globals used below
  2647. // aren't initialized.
  2648. //
  2649. if ( NlGlobalChangeLogRole != ChangeLogPrimary &&
  2650. NlGlobalChangeLogRole != ChangeLogBackup ) {
  2651. NlPrint((NL_CHANGELOG,
  2652. "I_NetLogonCloseChangeLog: failed 1\n" ));
  2653. return STATUS_INVALID_DOMAIN_ROLE;
  2654. }
  2655. //
  2656. // Check the handle.
  2657. //
  2658. LOCK_CHANGELOG();
  2659. if ( HandleToUlong(ChangeLogHandle) != NlGlobalChangeLogHandle ) {
  2660. Status = STATUS_INVALID_HANDLE;
  2661. goto Cleanup;
  2662. }
  2663. NlGlobalChangeLogHandle ++; // Invalidate this handle
  2664. //
  2665. // If the changes are to be committed,
  2666. // copy them now.
  2667. //
  2668. if ( Commit ) {
  2669. //
  2670. // Close the existing change log
  2671. //
  2672. NlCloseChangeLogFile( &NlGlobalChangeLogDesc );
  2673. //
  2674. // Clone the temporary change log.
  2675. //
  2676. NlGlobalChangeLogDesc = NlGlobalTempChangeLogDesc;
  2677. NlGlobalChangeLogDesc.FileHandle = INVALID_HANDLE_VALUE; // Don't use the temporary file
  2678. NlGlobalTempChangeLogDesc.Buffer = NULL; // Don't have two refs to the same buffer
  2679. NlGlobalChangeLogDesc.TempLog = FALSE; // Log is no longer the temporary log
  2680. //
  2681. // Write the cache to the file.
  2682. //
  2683. // Ignore errors since the log is successfully in memory
  2684. //
  2685. (VOID) NlWriteChangeLogBytes( &NlGlobalChangeLogDesc,
  2686. NlGlobalChangeLogDesc.Buffer,
  2687. NlGlobalChangeLogDesc.BufferSize,
  2688. TRUE ); // Flush the bytes to disk
  2689. }
  2690. //
  2691. // Delete the temporary log file.
  2692. //
  2693. NlCloseChangeLogFile( &NlGlobalTempChangeLogDesc );
  2694. #ifdef notdef // Leave it around for debugging purposes.
  2695. wcscpy( ChangeLogFile, NlGlobalChangeLogFilePrefix );
  2696. wcscat( ChangeLogFile, TEMP_CHANGELOG_FILE_POSTFIX );
  2697. if ( !DeleteFile( ChangeLogFile ) ) {
  2698. NlPrint(( NL_CRITICAL,
  2699. "NlVoidChangeLogEntry: cannot delete temp change log %ld.\n",
  2700. GetLastError() ));
  2701. }
  2702. #endif // notdef
  2703. Status = STATUS_SUCCESS;
  2704. Cleanup:
  2705. UNLOCK_CHANGELOG();
  2706. return Status;
  2707. }
  2708. #if NETLOGONDBG
  2709. VOID
  2710. PrintChangeLogEntry(
  2711. PCHANGELOG_ENTRY ChangeLogEntry
  2712. )
  2713. /*++
  2714. Routine Description:
  2715. This routine print the content of the given changelog entry.
  2716. Arguments:
  2717. ChangeLogEntry -- pointer to the change log entry to print
  2718. Return Value:
  2719. none.
  2720. --*/
  2721. {
  2722. LPSTR DeltaName;
  2723. switch ( ChangeLogEntry->DeltaType ) {
  2724. case AddOrChangeDomain:
  2725. DeltaName = "AddOrChangeDomain";
  2726. break;
  2727. case AddOrChangeGroup:
  2728. DeltaName = "AddOrChangeGroup";
  2729. break;
  2730. case DeleteGroupByName:
  2731. case DeleteGroup:
  2732. DeltaName = "DeleteGroup";
  2733. break;
  2734. case RenameGroup:
  2735. DeltaName = "RenameGroup";
  2736. break;
  2737. case AddOrChangeUser:
  2738. DeltaName = "AddOrChangeUser";
  2739. break;
  2740. case DeleteUserByName:
  2741. case DeleteUser:
  2742. DeltaName = "DeleteUser";
  2743. break;
  2744. case RenameUser:
  2745. DeltaName = "RenameUser";
  2746. break;
  2747. case ChangeGroupMembership:
  2748. DeltaName = "ChangeGroupMembership";
  2749. break;
  2750. case AddOrChangeAlias:
  2751. DeltaName = "AddOrChangeAlias";
  2752. break;
  2753. case DeleteAlias:
  2754. DeltaName = "DeleteAlias";
  2755. break;
  2756. case RenameAlias:
  2757. DeltaName = "RenameAlias";
  2758. break;
  2759. case ChangeAliasMembership:
  2760. DeltaName = "ChangeAliasMembership";
  2761. break;
  2762. case AddOrChangeLsaPolicy:
  2763. DeltaName = "AddOrChangeLsaPolicy";
  2764. break;
  2765. case AddOrChangeLsaTDomain:
  2766. DeltaName = "AddOrChangeLsaTDomain";
  2767. break;
  2768. case DeleteLsaTDomain:
  2769. DeltaName = "DeleteLsaTDomain";
  2770. break;
  2771. case AddOrChangeLsaAccount:
  2772. DeltaName = "AddOrChangeLsaAccount";
  2773. break;
  2774. case DeleteLsaAccount:
  2775. DeltaName = "DeleteLsaAccount";
  2776. break;
  2777. case AddOrChangeLsaSecret:
  2778. DeltaName = "AddOrChangeLsaSecret";
  2779. break;
  2780. case DeleteLsaSecret:
  2781. DeltaName = "DeleteLsaSecret";
  2782. break;
  2783. case SerialNumberSkip:
  2784. DeltaName = "SerialNumberSkip";
  2785. break;
  2786. case DummyChangeLogEntry:
  2787. DeltaName = "DummyChangeLogEntry";
  2788. break;
  2789. default:
  2790. DeltaName ="(Unknown)";
  2791. break;
  2792. }
  2793. NlPrint((NL_CHANGELOG,
  2794. "DeltaType %s (%ld) SerialNumber: %lx %lx",
  2795. DeltaName,
  2796. ChangeLogEntry->DeltaType,
  2797. ChangeLogEntry->SerialNumber.HighPart,
  2798. ChangeLogEntry->SerialNumber.LowPart ));
  2799. if ( ChangeLogEntry->ObjectRid != 0 ) {
  2800. NlPrint((NL_CHANGELOG," Rid: 0x%lx", ChangeLogEntry->ObjectRid ));
  2801. }
  2802. if ( ChangeLogEntry->Flags & CHANGELOG_PDC_PROMOTION ) {
  2803. NlPrint((NL_CHANGELOG," Promotion" ));
  2804. }
  2805. if( ChangeLogEntry->Flags & CHANGELOG_NAME_SPECIFIED ) {
  2806. NlPrint(( NL_CHANGELOG, " Name: '" FORMAT_LPWSTR "'",
  2807. (LPWSTR)((PBYTE)(ChangeLogEntry)+ sizeof(CHANGELOG_ENTRY))));
  2808. }
  2809. if( ChangeLogEntry->Flags & CHANGELOG_SID_SPECIFIED ) {
  2810. NlPrint((NL_CHANGELOG," Sid: "));
  2811. NlpDumpSid( NL_CHANGELOG,
  2812. (PSID)((PBYTE)(ChangeLogEntry)+ sizeof(CHANGELOG_ENTRY)) );
  2813. } else {
  2814. NlPrint((NL_CHANGELOG,"\n" ));
  2815. }
  2816. }
  2817. #endif // NETLOGONDBG
  2818. NTSTATUS
  2819. NlWriteChangeLogEntry(
  2820. IN PCHANGELOG_DESCRIPTOR ChangeLogDesc,
  2821. IN PCHANGELOG_ENTRY ChangeLogEntry,
  2822. IN PSID ObjectSid,
  2823. IN PUNICODE_STRING ObjectName,
  2824. IN BOOLEAN FlushIt
  2825. )
  2826. /*++
  2827. Routine Description:
  2828. This is the actual worker for the I_NetNotifyDelta(). This function
  2829. acquires the sufficient size memory block from the change log
  2830. buffer, writes the fixed and variable portions of the change log
  2831. delta in change log buffer and also writes the delta into change log
  2832. file.
  2833. Arguments:
  2834. ChangeLogDesc -- Description of the Changelog buffer being used
  2835. ChangeLogEntry - pointer to the fixed portion of the change log.
  2836. ObjectSid - pointer to the variable field SID.
  2837. ObjectName - pointer to the variable field Name.
  2838. FlushIt - True if the written bytes are to be flushed to disk
  2839. Return Value:
  2840. STATUS_SUCCESS - The Service completed successfully.
  2841. --*/
  2842. {
  2843. NTSTATUS Status;
  2844. DWORD LogSize;
  2845. PCHANGELOG_BLOCK_HEADER LogBlock;
  2846. PCHANGELOG_BLOCK_HEADER FreeBlock;
  2847. LPBYTE AllocatedChangeLogEntry;
  2848. //
  2849. // Make sure that the change log cache is available.
  2850. //
  2851. if ( ChangeLogDesc->Buffer == NULL ) {
  2852. return STATUS_INTERNAL_ERROR;
  2853. }
  2854. //
  2855. // Determine the size of this change log entry.
  2856. //
  2857. LogSize = sizeof(CHANGELOG_ENTRY);
  2858. //
  2859. // Ensure we've got the right data for those deltas we care about
  2860. //
  2861. switch (ChangeLogEntry->DeltaType) {
  2862. case AddOrChangeLsaTDomain:
  2863. case DeleteLsaTDomain:
  2864. case AddOrChangeLsaAccount:
  2865. case DeleteLsaAccount:
  2866. NlAssert( ObjectSid != NULL );
  2867. if( ObjectSid != NULL ) {
  2868. ChangeLogEntry->Flags |= CHANGELOG_SID_SPECIFIED;
  2869. LogSize += RtlLengthSid( ObjectSid );
  2870. }
  2871. break;
  2872. case AddOrChangeLsaSecret:
  2873. case DeleteLsaSecret:
  2874. case DeleteGroup:
  2875. case DeleteUser:
  2876. // NlAssert( ObjectName != NULL && ObjectName->Buffer != NULL && ObjectName->Length != 0 );
  2877. if( ObjectName != NULL && ObjectName->Buffer != NULL && ObjectName->Length != 0 ) {
  2878. ChangeLogEntry->Flags |= CHANGELOG_NAME_SPECIFIED;
  2879. LogSize += ObjectName->Length + sizeof(WCHAR);
  2880. }
  2881. break;
  2882. //
  2883. // For all other delta types, save the data if it's there.
  2884. //
  2885. default:
  2886. if( ObjectName != NULL && ObjectName->Buffer != NULL && ObjectName->Length != 0 ) {
  2887. ChangeLogEntry->Flags |= CHANGELOG_NAME_SPECIFIED;
  2888. LogSize += ObjectName->Length + sizeof(WCHAR);
  2889. } else if( ObjectSid != NULL ) {
  2890. ChangeLogEntry->Flags |= CHANGELOG_SID_SPECIFIED;
  2891. LogSize += RtlLengthSid( ObjectSid );
  2892. }
  2893. break;
  2894. }
  2895. //
  2896. // Serialize access to the change log
  2897. //
  2898. LOCK_CHANGELOG();
  2899. //
  2900. // Validate the serial number order of this new entry
  2901. //
  2902. // If we're out of sync with the caller,
  2903. // clear the change log and start all over again.
  2904. //
  2905. // The global serial number array entry for this database must either
  2906. // be zero (indicating no entries for this database) or one less than
  2907. // the new serial number being added.
  2908. //
  2909. if ( ChangeLogDesc->SerialNumber[ChangeLogEntry->DBIndex].QuadPart != 0 ) {
  2910. LARGE_INTEGER ExpectedSerialNumber;
  2911. LARGE_INTEGER OldSerialNumber;
  2912. ExpectedSerialNumber.QuadPart =
  2913. ChangeLogDesc->SerialNumber[ChangeLogEntry->DBIndex].QuadPart + 1;
  2914. //
  2915. // If the serial number jumped by the promotion increment,
  2916. // set the flag in the change log entry indicating this is
  2917. // a promotion to PDC.
  2918. //
  2919. if ( ChangeLogEntry->SerialNumber.QuadPart ==
  2920. ExpectedSerialNumber.QuadPart +
  2921. NlGlobalChangeLogPromotionIncrement.QuadPart ) {
  2922. ChangeLogEntry->Flags |= CHANGELOG_PDC_PROMOTION;
  2923. }
  2924. if ( !IsSerialNumberEqual( ChangeLogDesc,
  2925. ChangeLogEntry,
  2926. &ExpectedSerialNumber )) {
  2927. NlPrint((NL_CRITICAL,
  2928. "NlWriteChangeLogEntry: Serial numbers not contigous %lx %lx and %lx %lx\n",
  2929. ChangeLogEntry->SerialNumber.HighPart,
  2930. ChangeLogEntry->SerialNumber.LowPart,
  2931. ExpectedSerialNumber.HighPart,
  2932. ExpectedSerialNumber.LowPart ));
  2933. //
  2934. // write event log.
  2935. //
  2936. NlpWriteEventlog (
  2937. NELOG_NetlogonChangeLogCorrupt,
  2938. EVENTLOG_ERROR_TYPE,
  2939. (LPBYTE)&(ChangeLogEntry->DBIndex),
  2940. sizeof(ChangeLogEntry->DBIndex),
  2941. NULL,
  2942. 0 );
  2943. //
  2944. // If the change log is merely newer than the SAM database,
  2945. // we truncate entries newer than what exists in SAM.
  2946. //
  2947. OldSerialNumber.QuadPart = ChangeLogEntry->SerialNumber.QuadPart - 1;
  2948. (VOID) NlFixChangeLog( ChangeLogDesc, ChangeLogEntry->DBIndex, OldSerialNumber );
  2949. }
  2950. //
  2951. // If this is the first entry written to the change log for this database,
  2952. // mark it as a promotion.
  2953. //
  2954. } else {
  2955. //
  2956. // Only mark entries that might possibly be a promotion.
  2957. //
  2958. switch (ChangeLogEntry->DeltaType) {
  2959. case AddOrChangeDomain:
  2960. case AddOrChangeLsaPolicy:
  2961. ChangeLogEntry->Flags |= CHANGELOG_PDC_PROMOTION;
  2962. break;
  2963. }
  2964. }
  2965. //
  2966. // Validate the list before changing anything
  2967. //
  2968. #if DBG
  2969. NlAssert( ValidateList( ChangeLogDesc, FALSE) );
  2970. #endif // DBG
  2971. //
  2972. // copy fixed portion
  2973. //
  2974. Status = NlAllocChangeLogBlock( ChangeLogDesc, LogSize, &LogBlock );
  2975. if ( !NT_SUCCESS(Status) ) {
  2976. goto Cleanup;
  2977. }
  2978. AllocatedChangeLogEntry = ((LPBYTE)LogBlock) + sizeof(CHANGELOG_BLOCK_HEADER);
  2979. RtlCopyMemory( AllocatedChangeLogEntry, ChangeLogEntry, sizeof(CHANGELOG_ENTRY) );
  2980. //
  2981. // copy variable fields
  2982. //
  2983. if( ChangeLogEntry->Flags & CHANGELOG_SID_SPECIFIED ) {
  2984. RtlCopyMemory( AllocatedChangeLogEntry + sizeof(CHANGELOG_ENTRY),
  2985. ObjectSid,
  2986. RtlLengthSid( ObjectSid ) );
  2987. } else if( ChangeLogEntry->Flags & CHANGELOG_NAME_SPECIFIED ) {
  2988. RtlCopyMemory( AllocatedChangeLogEntry + sizeof(CHANGELOG_ENTRY),
  2989. ObjectName->Buffer,
  2990. ObjectName->Length );
  2991. //
  2992. // terminate unicode string
  2993. //
  2994. *(WCHAR *)(AllocatedChangeLogEntry + sizeof(CHANGELOG_ENTRY) +
  2995. ObjectName->Length) = 0;
  2996. }
  2997. //
  2998. // Be verbose
  2999. //
  3000. #if NETLOGONDBG
  3001. PrintChangeLogEntry( (PCHANGELOG_ENTRY)AllocatedChangeLogEntry );
  3002. #endif // NETLOGONDBG
  3003. //
  3004. // Write the cache entry to the file.
  3005. //
  3006. // Actually, write this entry plus the header and trailer of the free
  3007. // block that follows. If the free block is huge, write the free
  3008. // block trailer separately.
  3009. //
  3010. FreeBlock =
  3011. (PCHANGELOG_BLOCK_HEADER)((LPBYTE)LogBlock + LogBlock->BlockSize);
  3012. if ( FreeBlock->BlockSize >= 4096 ) {
  3013. Status = NlWriteChangeLogBytes(
  3014. ChangeLogDesc,
  3015. (LPBYTE)LogBlock,
  3016. LogBlock->BlockSize + sizeof(CHANGELOG_BLOCK_HEADER),
  3017. FlushIt );
  3018. if ( NT_SUCCESS(Status) ) {
  3019. Status = NlWriteChangeLogBytes(
  3020. ChangeLogDesc,
  3021. (LPBYTE)ChangeLogBlockTrailer(FreeBlock),
  3022. sizeof(CHANGELOG_BLOCK_TRAILER),
  3023. FlushIt );
  3024. }
  3025. } else {
  3026. Status = NlWriteChangeLogBytes(
  3027. ChangeLogDesc,
  3028. (LPBYTE)LogBlock,
  3029. LogBlock->BlockSize + FreeBlock->BlockSize,
  3030. FlushIt );
  3031. }
  3032. //
  3033. // Done.
  3034. //
  3035. ChangeLogDesc->SerialNumber[ChangeLogEntry->DBIndex] = ChangeLogEntry->SerialNumber;
  3036. ChangeLogDesc->EntryCount[ChangeLogEntry->DBIndex] ++;
  3037. //
  3038. // Validate the list before returning from here.
  3039. //
  3040. Cleanup:
  3041. #if DBG
  3042. NlAssert( ValidateList( ChangeLogDesc, FALSE) );
  3043. #endif // DBG
  3044. UNLOCK_CHANGELOG();
  3045. return Status;
  3046. }
  3047. NTSTATUS
  3048. NlOpenChangeLogFile(
  3049. IN LPWSTR ChangeLogFileName,
  3050. OUT PCHANGELOG_DESCRIPTOR ChangeLogDesc,
  3051. IN BOOLEAN ReadOnly
  3052. )
  3053. /*++
  3054. Routine Description:
  3055. Open the change log file (netlogon.chg) for reading or writing one or
  3056. more records. Create this file if it does not exist or is out of
  3057. sync with the SAM database (see note below).
  3058. This file must be opened for R/W (deny-none share mode) at the time
  3059. the cache is initialized. If the file already exists when NETLOGON
  3060. service started, its contents will be cached in its entirety
  3061. provided the last change log record bears the same serial number as
  3062. the serial number field in SAM database else this file will be
  3063. removed and a new one created. If the change log file did not exist
  3064. then it will be created.
  3065. NOTE: This function must be called with the change log locked.
  3066. Arguments:
  3067. ChangeLogFileName - Name of the changelog file to open.
  3068. ChangeLogDesc -- On success, returns a description of the Changelog buffer
  3069. being used
  3070. ReadOnly -- True if the file should be openned read only.
  3071. Return Value:
  3072. NT Status code
  3073. --*/
  3074. {
  3075. DWORD WinError;
  3076. DWORD BytesRead;
  3077. DWORD MinChangeLogSize;
  3078. //
  3079. // Open change log file if exists
  3080. //
  3081. ChangeLogDesc->FileHandle = CreateFileW(
  3082. ChangeLogFileName,
  3083. ReadOnly ? GENERIC_READ : (GENERIC_READ | GENERIC_WRITE),
  3084. ReadOnly ? (FILE_SHARE_READ | FILE_SHARE_WRITE) : FILE_SHARE_READ, // allow backups and debugging
  3085. NULL, // Supply better security ??
  3086. OPEN_EXISTING, // Only open it if it exists
  3087. FILE_ATTRIBUTE_NORMAL,
  3088. NULL ); // No template
  3089. if ( ChangeLogDesc->FileHandle == INVALID_HANDLE_VALUE) {
  3090. WinError = GetLastError();
  3091. NlPrint(( NL_CRITICAL,
  3092. FORMAT_LPWSTR ": Unable to open. %ld\n",
  3093. ChangeLogFileName,
  3094. WinError ));
  3095. goto Cleanup;
  3096. }
  3097. //
  3098. // Get the size of the file.
  3099. //
  3100. ChangeLogDesc->BufferSize = GetFileSize( ChangeLogDesc->FileHandle, NULL );
  3101. if ( ChangeLogDesc->BufferSize == 0xFFFFFFFF ) {
  3102. WinError = GetLastError();
  3103. NlPrint((NL_CRITICAL,
  3104. "%ws: Unable to GetFileSize: %ld \n",
  3105. ChangeLogFileName,
  3106. WinError));
  3107. goto Cleanup;
  3108. }
  3109. // ?? consider aligning to ALIGN_WORST
  3110. MinChangeLogSize = MIN_CHANGELOGSIZE;
  3111. if ( ChangeLogDesc->BufferSize < MinChangeLogSize ||
  3112. ChangeLogDesc->BufferSize > MAX_CHANGELOGSIZE ) {
  3113. WinError = ERROR_INTERNAL_DB_CORRUPTION;
  3114. NlPrint((NL_CRITICAL, FORMAT_LPWSTR ": Changelog size is invalid. %ld.\n",
  3115. ChangeLogFileName,
  3116. ChangeLogDesc->BufferSize ));
  3117. goto Cleanup;
  3118. }
  3119. //
  3120. // Allocate and initialize the change log cache.
  3121. //
  3122. ChangeLogDesc->Buffer = NetpMemoryAllocate( ChangeLogDesc->BufferSize );
  3123. if (ChangeLogDesc->Buffer == NULL) {
  3124. NlPrint((NL_CRITICAL, FORMAT_LPWSTR ": Cannot allocate Changelog buffer. %ld.\n",
  3125. ChangeLogFileName,
  3126. ChangeLogDesc->BufferSize ));
  3127. WinError = ERROR_NOT_ENOUGH_MEMORY;
  3128. goto Cleanup;
  3129. }
  3130. RtlZeroMemory(ChangeLogDesc->Buffer, ChangeLogDesc->BufferSize);
  3131. //
  3132. // Check the signature at the front of the change log.
  3133. //
  3134. // It won't be there if we just created the file.
  3135. //
  3136. if ( !ReadFile( ChangeLogDesc->FileHandle,
  3137. ChangeLogDesc->Buffer,
  3138. ChangeLogDesc->BufferSize,
  3139. &BytesRead,
  3140. NULL ) ) { // Not Overlapped
  3141. WinError = GetLastError();
  3142. NlPrint(( NL_CRITICAL,
  3143. FORMAT_LPWSTR ": Unable to read from changelog file. %ld\n",
  3144. ChangeLogFileName,
  3145. WinError ));
  3146. goto Cleanup;
  3147. }
  3148. if ( BytesRead != ChangeLogDesc->BufferSize ) {
  3149. WinError = ERROR_INTERNAL_DB_CORRUPTION;
  3150. NlPrint(( NL_CRITICAL,
  3151. FORMAT_LPWSTR ": Couldn't read entire file. %ld\n",
  3152. ChangeLogFileName,
  3153. WinError ));
  3154. goto Cleanup;
  3155. }
  3156. if ( strncmp((PCHAR)ChangeLogDesc->Buffer,
  3157. CHANGELOG_SIG, sizeof(CHANGELOG_SIG)) == 0) {
  3158. ChangeLogDesc->Version3 = FALSE;
  3159. } else if ( strncmp((PCHAR)ChangeLogDesc->Buffer,
  3160. CHANGELOG_SIG_V3, sizeof(CHANGELOG_SIG_V3)) == 0) {
  3161. ChangeLogDesc->Version3 = TRUE;
  3162. } else {
  3163. WinError = ERROR_INTERNAL_ERROR;
  3164. NlPrint(( NL_CRITICAL,
  3165. FORMAT_LPWSTR ": Invalid signature. %ld\n",
  3166. ChangeLogFileName,
  3167. WinError ));
  3168. goto Cleanup;
  3169. }
  3170. //
  3171. // Find the Head and Tail pointers of the circular log.
  3172. //
  3173. if( !InitChangeLogHeadAndTail( ChangeLogDesc, FALSE ) ) {
  3174. WinError = ERROR_INTERNAL_DB_CORRUPTION;
  3175. NlPrint(( NL_CRITICAL,
  3176. FORMAT_LPWSTR ": couldn't find head/tail. %ld\n",
  3177. ChangeLogFileName,
  3178. WinError ));
  3179. goto Cleanup;
  3180. }
  3181. WinError = NO_ERROR;
  3182. //
  3183. // Free any resources on error.
  3184. //
  3185. Cleanup:
  3186. if ( WinError != NO_ERROR ) {
  3187. NlCloseChangeLogFile( ChangeLogDesc );
  3188. } else {
  3189. NlPrint((NL_CHANGELOG, "%ws: Changelog successfully opened.\n",
  3190. ChangeLogFileName ));
  3191. }
  3192. return NetpApiStatusToNtStatus(WinError);
  3193. }
  3194. VOID
  3195. NlCloseChangeLogFile(
  3196. IN PCHANGELOG_DESCRIPTOR ChangeLogDesc
  3197. )
  3198. /*++
  3199. Routine Description:
  3200. This function closes the change log file and frees up the resources
  3201. consumed by the change log desriptor.
  3202. Arguments:
  3203. ChangeLogDesc -- Description of the Changelog buffer being used
  3204. Return Value:
  3205. NT Status code
  3206. --*/
  3207. {
  3208. LOCK_CHANGELOG();
  3209. NlPrint((NL_CHANGELOG, "%s log closed.\n",
  3210. ChangeLogDesc->TempLog ? "TempChange" : "Change" ));
  3211. //
  3212. // free up the change log cache.
  3213. //
  3214. if ( ChangeLogDesc->Buffer != NULL ) {
  3215. NetpMemoryFree( ChangeLogDesc->Buffer );
  3216. ChangeLogDesc->Buffer = NULL;
  3217. }
  3218. ChangeLogDesc->Head = NULL;
  3219. ChangeLogDesc->Tail = NULL;
  3220. ChangeLogDesc->FirstBlock = NULL;
  3221. ChangeLogDesc->BufferEnd = NULL;
  3222. ChangeLogDesc->LastDirtyByte = 0;
  3223. ChangeLogDesc->FirstDirtyByte = 0;
  3224. //
  3225. // Close the change log file
  3226. //
  3227. if ( ChangeLogDesc->FileHandle != INVALID_HANDLE_VALUE ) {
  3228. CloseHandle( ChangeLogDesc->FileHandle );
  3229. ChangeLogDesc->FileHandle = INVALID_HANDLE_VALUE;
  3230. }
  3231. UNLOCK_CHANGELOG();
  3232. return;
  3233. }
  3234. NTSTATUS
  3235. NlResizeChangeLogFile(
  3236. IN OUT PCHANGELOG_DESCRIPTOR ChangeLogDesc,
  3237. IN DWORD NewChangeLogSize
  3238. )
  3239. /*++
  3240. Routine Description:
  3241. The buffer described by ChageLogDesc is converted to
  3242. the size requested by NewChangeLogSize and is converted from any
  3243. old format change log to the latest format.
  3244. NOTE: This function must be called with the change log locked.
  3245. Arguments:
  3246. ChangeLogDesc -- a description of the Changelog buffer.
  3247. NewChangeLogSize -- Size (in bytes) of the new change log.
  3248. Return Value:
  3249. NT Status code
  3250. On error, the ChangeLogDesc will still be intact. Merely the size
  3251. changes will not have happened
  3252. --*/
  3253. {
  3254. CHANGELOG_DESCRIPTOR OutChangeLogDesc;
  3255. NTSTATUS Status;
  3256. //
  3257. // If the current buffer is perfect,
  3258. // just use it.
  3259. //
  3260. if ( !ChangeLogDesc->Version3 &&
  3261. ChangeLogDesc->BufferSize == NewChangeLogSize ) {
  3262. return STATUS_SUCCESS;
  3263. }
  3264. //
  3265. // Initialize the template change log descriptor
  3266. //
  3267. InitChangeLogDesc( &OutChangeLogDesc );
  3268. //
  3269. // Close the file so we can resize it.
  3270. //
  3271. if ( ChangeLogDesc->FileHandle != INVALID_HANDLE_VALUE ) {
  3272. CloseHandle( ChangeLogDesc->FileHandle );
  3273. ChangeLogDesc->FileHandle = INVALID_HANDLE_VALUE;
  3274. }
  3275. //
  3276. // Start with a newly initialized change log,
  3277. //
  3278. Status = NlResetChangeLog( &OutChangeLogDesc, NewChangeLogSize );
  3279. if ( !NT_SUCCESS(Status)) {
  3280. return Status;
  3281. }
  3282. //
  3283. // We're done if the old change log is empty.
  3284. //
  3285. if ( !ChangeLogIsEmpty(ChangeLogDesc) ) {
  3286. //
  3287. // Loop through the old change log copying it to the new changelog,
  3288. //
  3289. PCHANGELOG_ENTRY SourceChangeLogEntry = (PCHANGELOG_ENTRY)
  3290. (ChangeLogDesc->Head + 1);
  3291. do {
  3292. Status = NlCopyChangeLogEntry( ChangeLogDesc->Version3,
  3293. SourceChangeLogEntry,
  3294. &OutChangeLogDesc );
  3295. if ( !NT_SUCCESS(Status) ) {
  3296. NlCloseChangeLogFile( &OutChangeLogDesc );
  3297. return Status;
  3298. }
  3299. } while ( (SourceChangeLogEntry =
  3300. NlMoveToNextChangeLogEntry( ChangeLogDesc, SourceChangeLogEntry )) != NULL );
  3301. //
  3302. // Flsuh all the changes to the change log file now.
  3303. //
  3304. Status = NlFlushChangeLog( &OutChangeLogDesc );
  3305. if ( !NT_SUCCESS(Status) ) {
  3306. NlCloseChangeLogFile( &OutChangeLogDesc );
  3307. return Status;
  3308. }
  3309. }
  3310. //
  3311. // Free the old change log buffer.
  3312. //
  3313. NlCloseChangeLogFile( ChangeLogDesc );
  3314. //
  3315. // Copy the new descriptor over the old descriptor
  3316. //
  3317. *ChangeLogDesc = OutChangeLogDesc;
  3318. return STATUS_SUCCESS;
  3319. }
  3320. #if NETLOGONDBG
  3321. DWORD
  3322. NlBackupChangeLogFile(
  3323. )
  3324. /*++
  3325. Routine Description:
  3326. Backup change log content. Since the cache and the change log file
  3327. content are identical, write cache content to the backup file.
  3328. Arguments:
  3329. None.
  3330. Return Value:
  3331. STATUS_SUCCESS - The Service completed successfully.
  3332. --*/
  3333. {
  3334. HANDLE BackupChangeLogHandle;
  3335. WCHAR BackupChangelogFile[MAX_PATH+1];
  3336. DWORD WinError;
  3337. if( NlGlobalChangeLogFilePrefix[0] == L'\0' ) {
  3338. return ERROR_FILE_NOT_FOUND;
  3339. }
  3340. //
  3341. // make backup file name.
  3342. //
  3343. wcscpy( BackupChangelogFile, NlGlobalChangeLogFilePrefix );
  3344. wcscat( BackupChangelogFile, BACKUP_CHANGELOG_FILE_POSTFIX );
  3345. //
  3346. // Create change log file. If it exists already then truncate it.
  3347. //
  3348. // Note : if a valid change log file exists on the system, then we
  3349. // would have opened at initialization time.
  3350. //
  3351. BackupChangeLogHandle = CreateFileW(
  3352. BackupChangelogFile,
  3353. GENERIC_READ | GENERIC_WRITE,
  3354. FILE_SHARE_READ, // allow backups and debugging
  3355. NULL, // Supply better security ??
  3356. CREATE_ALWAYS, // Overwrites always
  3357. FILE_ATTRIBUTE_NORMAL,
  3358. NULL ); // No template
  3359. if (BackupChangeLogHandle == INVALID_HANDLE_VALUE) {
  3360. NlPrint((NL_CRITICAL,"Unable to create backup changelog file "
  3361. "WinError = %ld \n", WinError = GetLastError() ));
  3362. return WinError;
  3363. }
  3364. //
  3365. // Write cache in changelog file if the cache is valid.
  3366. //
  3367. if( NlGlobalChangeLogDesc.Buffer != NULL ) {
  3368. OVERLAPPED Overlapped;
  3369. DWORD BytesWritten;
  3370. //
  3371. // Seek to appropriate offset in the file.
  3372. //
  3373. RtlZeroMemory( &Overlapped, sizeof(Overlapped) );
  3374. LOCK_CHANGELOG();
  3375. if ( !WriteFile( BackupChangeLogHandle,
  3376. NlGlobalChangeLogDesc.Buffer,
  3377. NlGlobalChangeLogDesc.BufferSize,
  3378. &BytesWritten,
  3379. &Overlapped ) ) {
  3380. UNLOCK_CHANGELOG();
  3381. NlPrint((NL_CRITICAL, "Write to Backup ChangeLog failed %ld\n",
  3382. WinError = GetLastError() ));
  3383. goto Cleanup;
  3384. }
  3385. UNLOCK_CHANGELOG();
  3386. //
  3387. // Ensure all the bytes made it.
  3388. //
  3389. if ( BytesWritten != NlGlobalChangeLogDesc.BufferSize ) {
  3390. NlPrint((NL_CRITICAL,
  3391. "Write to Backup ChangeLog bad byte count %ld s.b. %ld\n",
  3392. BytesWritten,
  3393. NlGlobalChangeLogDesc.BufferSize ));
  3394. goto Cleanup;
  3395. }
  3396. }
  3397. Cleanup:
  3398. CloseHandle( BackupChangeLogHandle );
  3399. return ERROR_SUCCESS;
  3400. }
  3401. #endif // NETLOGONDBG