classicupgrade and sysvol acls
Sergey Urushkin
urushkin at telros.ru
Fri Aug 24 01:46:47 MDT 2012
Hi.
Just tried classicupgrade with latest master and got this:
...
Setting up sam.ldb data
Setting up well known security principals
Setting up sam.ldb users and groups
Setting up self join
set_nt_acl_no_snum: fset_nt_acl returned NT_STATUS_INVALID_OWNER.
ERROR(runtime): uncaught exception - (-1073741734,
'NT_STATUS_INVALID_OWNER')
File
"/usr/local/samba/lib/python2.7/site-packages/samba/netcmd/__init__.py",
line 160, in _run
return self.run(*args, **kwargs)
File
"/usr/local/samba/lib/python2.7/site-packages/samba/netcmd/domain.py",
line 1013, in run
useeadb=eadb, dns_backend=dns_backend, use_ntvfs=use_ntvfs)
File "/usr/local/samba/lib/python2.7/site-packages/samba/upgrade.py",
line 784, in upgrade_from_samba3
use_ntvfs=use_ntvfs)
File
"/usr/local/samba/lib/python2.7/site-packages/samba/provision/__init__.py",
line 2015, in provision
lp=lp, use_ntvfs=use_ntvfs)
File
"/usr/local/samba/lib/python2.7/site-packages/samba/provision/__init__.py",
line 1633, in provision_fill
domainsid, names.dnsdomain, names.domaindn, lp, use_ntvfs)
File
"/usr/local/samba/lib/python2.7/site-packages/samba/provision/__init__.py",
line 1456, in setsysvolacl
set_gpos_acl(sysvol, dnsdomain, domainsid, domaindn, samdb, lp,
use_ntvfs)
File
"/usr/local/samba/lib/python2.7/site-packages/samba/provision/__init__.py",
line 1397, in set_gpos_acl
str(domainsid), use_ntvfs)
File
"/usr/local/samba/lib/python2.7/site-packages/samba/provision/__init__.py",
line 1364, in set_dir_acl
setntacl(lp, path, acl, domsid, use_ntvfs=use_ntvfs)
File "/usr/local/samba/lib/python2.7/site-packages/samba/ntacls.py",
line 108, in setntacl
smbd.set_nt_acl(file, security.SECINFO_OWNER |
security.SECINFO_GROUP | security.SECINFO_DACL, sd)
Clean provision works fine. Sysvol acls after this error seem to be the
same as after a clean provision:
# getfacl /usr/local/samba/var/locks/sysvol
getfacl: Removing leading '/' from absolute path names
# file: usr/local/samba/var/locks/sysvol
# owner: 500
# group: 544
user::rwx
user:500:rwx
group::rwx
group:544:rwx
group:549:r-x
group:3000006:r-x
group:3000008:rwx
mask::rwx
other::---
Any ideas?
Thanks.
--
Best regards,
Sergey Urushkin
More information about the samba-technical
mailing list