gy8SSKrSSKrSSKrSSKrSSKrSSKrSSKrSSKrSSKJ r SSK J r J r SSKrSSKJr SSKJr SSKJr SSKJrJrJr SSKJr SSKJrJrJr SS KJ r SS K!J"r"J#r# SS K$J%r%J&r&J'r' SS KJ(r( SS K)J*r* SSK+J,r,J-r- SSK.J/r/ SSK0J1r1 SSK+J2r2 SSK3J4r4 SSK5r5SSK+J6r6J7r7J8r8 SSK9J:r:J;r;Jr> SSK?J@r@ SSKArASSKBJCrC SSKJDrD SSKEJFrF SSKGJHrH SSKIJJrJ SSKJKrL SSKMrMSrNSrOSrPS rQS!rRS"rSS1S#jrTS$rUS%rVS&rW"S'S(\RR5rZ"S)S*\*5r["S+S,\RR5r\"S-S.\RR5r]"S/S0\RR5r_g)2N)SamDBget_default_backend_store)LdbError)libsmb_samba_internal)param) backup_onlinebackup_restorebackup_offline)system_session) DCJoinContext join_cloneDCCloneAndRenameContext)dom_sid)Option CommandError)miscsecuritydrsblobs)Ldb)cmd_fsmo_seize) make_smbconf DEFAULTSITE)update_krbtgt_account_password) remove_dc)secretsdb_self_join)dbcheck) guess_namesdetermine_host_ipdetermine_host_ip6)fill_dns_data_partitionsget_dnsadmins_sidget_domainguid)tdb_copy)mdb_copy)CalledProcessError)sites)_dsdb_load_udv_v2)ndr_pack)SMB_SIGNING_REQUIRED) safe_tarfilecUR5n[ UR 55n[ U5S-[ U5-nUR[RSU-/SS/S9n[U5S :wa[S U-5e[S U<S US R<S35e![a3nURS5 URS5 [SU5eSnAff=f![Ra-nURupU[R:waeSnAOSnAff=f[ U5S-[ U5-$)Nz}A SID could not be allocated for restoring the domain. Either no RID Set was found on this DC, or the RID Set was not usable.zTo initialise this DC's RID pools, obtain a RID Set from this domain's RID master, or run samba-tool dbcheck to fix the existing RID Set.zCannot create backup-show_deleted:1zshow_recycled:1)scopebaseattrscontrolsz]Cannot create backup - this DC's RID pool is corrupt, the next SID (%s) appears to be in use.zCCannot create backup - this DC's RID pool is corrupt, the next SID z points to existing object rz1. Please run samba-tool dbcheck on the source DC.) next_free_ridrinforrget_domain_sidstrsearchldb SCOPE_BASElendnargsERR_NO_SUCH_OBJECT) samdbloggerriderrsidsid_for_restorereseenumemsgs <<vv  3)) )  * s8c>CH $$s0B)A#C)) C&3.C!!C&)D*=#D%%D*c[R"5nURUR5 UR 5nUR [ 5 [R"USX2S9nUR U5 U$)z7Returns an SMB connection to the sysvol share on the DCsysvol)lpcreds) s3param get_contextload configfileget_smb_signingset_smb_signingr)libsmbConn)serverrMrNs3_lpsaved_signing_stateconns rIsmb_sysvol_connr[qsh    !E JJr}} //1 ./ ;;vxE ?D -. Kcz[RR5R5RSS5$)N:r,)datetimenow isoformatreplacer\rI get_timestamprds-    " , , . 6 6sC @@r\cVSU<SU<S3n[RRX5$)Nz samba-backup-r,z.tar.bz2)ospathjoin) targetdirnametime_strfilenames rIbackup_filepathrms/3X>H 77<< ,,r\c ^[R"S5n[US5m[U4SjS5HnUR U5 M SSS5 UR 5$!,(df  UR 5$=f)Nsha256rbc&>TRS5$)Ni)read)fsrI"create_sha256sum..s !&&-r\r\)hashlibnewopeniterupdate hexdigest)rlhashchunkrss @rIcreate_sha256sumr~sg ;;x D h /5E KK 6  >>    >> s )A%% BcURSU-5 [R"US5nURUSS9 UR 5 g)NzCreating backup file %s...w:bz2z./arcname)r5tarfilerxaddclose)r@tmpdirrmtfs rIcreate_backup_tarrs= KK,>? ow /BFF64F HHJr\c[[RRUS5S5n[RR 5R S5nURSU-5 URSURS5-5 URSU<SU<S 35 URS URS 5<S URS 5R5<S35 URS[U5-5 U(aURSU-5 UR5 g!UR5 f=f)N backup.txtwz%Y-%b-%d %H:%M:%SzBackup created %s zUsing samba-tool version: %s z server stringzDomain z backup, using DC 'z' zBackup for domain workgroup (NetBIOS), realmz (DNS realm) z#Backup contains domain secrets: %s z%s ) rxrfrgrhr_r`strftimewritegetlowerr7r)rirM backup_typerWinclude_secrets extra_inforsrks rIcreate_log_filers RWW\\)\ 2C8A $$((*334GH %01 0266/3JJK {FKL  $bffWo&;&;&=? @ 6_9MMN  GGFZ' (   s C>) $ $ .:; I WW]]9 % %2Y>??&r\cUR5nSU<S[R<S3nSU<S3nURUR 5[ R US9n[USS5n[R"SS 5nURS U<S U<35 URS U-5 URXGS US9 g)zASets a randomly generated password for the backup DB's admin userz (objectsid=r,)z(&(objectClass=user))r0r/ expressionrsamaccountname zSetting z password in backup to: z7Run 'samba-tool user setpassword %s' after restoring DBF)force_change_at_next_loginusernameN) r6rDOMAIN_RID_ADMINISTRATORr8 domain_dnr9 SCOPE_SUBTREEr7sambagenerate_random_passwordr5 setpassword)r@r? domainsid match_admin search_exprrEr adminpasss rIset_admin_passwordrs$$&I)2)1)J)JLK/: --targetdir= sambaoptscredopts--serverThe DC to backuphelptype --targetdirz%Directory to write the backup file to)rr --no-secrets store_trueF-Exclude secret values from the backup createdactiondefaultr--backend-storechoice BACKENDSTOREtdbmdb7Specify the database backend to be used (default is %s)rmetavarchoicesrNc &UR5nUR[R5 UR 5nUR U5n Uc [ S5e[Xt5 [R"US9n U(+n [XyUXSU US9n U Rn A [SU-U [5US9n[X5nUR5nUR!S5 ["R$R'U S5n[)X8U 5n[+UUUR-55 [.R0"U R25 [U R4[5U[6R8S 9n[;5n[=US U5 [=US U5 [=US S 5 U(a [?UU5 [AUUU5n[CXS X;5 [EXzU5 [.R0"U 5 g![.R0"U 5 f=f)NServer requireddirSAMBA_INTERNAL)r@rNrMrrW dns_backendri backend_storeldap://url credentials session_inforMz$Backing up sysvol files (via SMB)... sysvol.tar.gzrrrMflags backupDate sidForRestore backupTypeonline)# get_loggersetLevelloggingDEBUG get_loadparmget_credentialsrrtempfilemkdtempr pathsrr rJdomain_dns_namer5rfrgrhr[rr6shutilrmtreerLr?r9FLG_DONT_CREATE_DBrdrrrmrr)selfrrrWri no_secretsrr@rMrNrrctxr remote_samnew_sidr sysvol_tarsmb_connr?rk backup_files rIruncmd_domain_backup_online.runs" &  # # %((, >01 1*!!i0).+ "FB-<)9V+8:C IIE9v#55,:,<EJ)*=G..0E KK> ?fo>J&v59H (J 0I0I0K L MM%,, 'ekk8HR # 6 68E$H e\8 < e_g > e\8 <"651*)UHEK F& J fk : MM& !FMM& !s EG88Hrc)NNNNFN)__name__ __module__ __qualname____firstlineno____doc__synopsisoptions SambaOptionsCredentialsOptionstakes_optiongroupsrr7r takes_optionsr__static_attributes__rcr\rIrrs HH)).. z 2=}3; =~lEC E xu~!#<#>? @ MIM,0="r\rc \rSrSrSrSr\"SS\S9\"SS\S9\"S S \S9\"S S S SS9\"SS SSS9\"SS\S9/r\ R\ RS.r Sr SrSrSrSrSrSSjrSrg) cmd_domain_backup_restorei;ahRestore the domain's DB from a backup-file. This restores a previously backed up copy of the domain's DB on a new DC. Note that the restored DB will not contain the original DC that the backup was taken from (or any other DCs in the original domain). Only the new DC (specified by --newservername) will be present in the restored DB. Samba can then be started against the restored DB. Any existing DCs for the domain should be shutdown before the new DC is started. Other DCs can then be joined to the new DC to recover the network. Note that this command should be run as the root user - it will fail otherwise.zQ%prog --backup-file= --targetdir= --newservername=z --backup-filezPath to backup filerrzPath to write toz--newservernamezName for new serverz --host-ipstring IPADDRESSzset IPv4 ipaddress)rrrz --host-ip6 IP6ADDRESSzset IPv6 ipaddressz--sitezSite to add the new server inrc[U5nURn UR5R5n URR 5n U n UR R 5n [UR55n[X)5n[X)5n[XU5n[XU5nUcUc [S5eURSU -5 URS5 [X.XyXXXVUUUSS9 g)zQ Registers the new realm's DNS objects when a renamed domain backup is restored. Nz+Please specify a host-ip for the new serverzDNS realm was renamed to %sz*Populating DNS partitions for new realm...F)add_root)rdomaindnget_root_basednget_linearized dnsdomainr netbiosnamerr6r!r"rrrr5r )rr@r?rMntdsguidhost_iphost_ip6sitenamesrforestdnr dnsforesthostnamer dnsadmins_sid domainguids rIregister_dns_zone+cmd_domain_backup_restore.register_dns_zone]s B>>((*99;OO))+  $$**,E0023 )%: #E4 $F8%f(; ?x/LM M 1I=> @A !4!)i!(J!. @r\cUR5 [USSSSS9n[USS5 SS/n[USS5 US /- nS nS U/nURXSS 9 UR 5 g )z3Fixes attributes that reference the old/removed DCsTFquietfixyesin_transaction(fix_all_old_dn_string_component_mismatchALLlastKnownParentinterSiteTopologyGenerator!remove_plausible_deleted_DN_linkszmsDS-NC-Replica-Locationssearch_options:1:2r.)r2r1Ntransaction_startrsetattrcheck_databasetransaction_commit)rr?chkr1cross_ncs_ctrlr2s rIfix_old_dc_references/cmd_domain_backup_restore.fix_old_dc_references~s !e4Tu%)+ ?G"$@A 8%@ -..-$n5 H:   "r\c6[nSRU5nURUR5[R US9n[ U5S:XaEURSRU55 [R"XR5U5 U$)z5Creates the default site, if it doesn't already existz(&(cn={0})(objectclass=site))r/rrzCreating default site '{0}') rformatr8get_config_basednr9rr;r5r& create_site)rr?r@sitenamerrEs rIcreate_default_site-cmd_domain_backup_restore.create_default_sites5< Ir\cn/SQnUR[R"US5[RUS9n[R"5n[R"US5UlUH5nXSS;dM [R "/[RU5XE'M7 URU5 g)z-Remove DB markers added by the backup process)r backupRenamerrrr0r/r1rN) r8r9rr:rr<rFLAG_MOD_DELETEr)rr?markersrErattrs rIremove_backup_markers/cmd_domain_backup_restore.remove_backup_markerssPllum 5n-U R S?S@5n.[RRU.5(d[R"U.5 [U-U.UU 5 [R"U-5 U R5SA5 URU5 URU5 U R5SBU-5 U R5SC5 gs snf![pGaNnURrunnU[BRt:wae/nURM[BRj"USU-5[BRNS/S S!/S"9nO;![pa.nURrunnU[BRv:waeSnAOSnAff=f[yU5S#:waeUR{SUSSS5nUR}S$5nU RS%U-5 U RS&5 U RS'5 U RS(U-5 [S)USR<S*U<S+U<S,35eSnAff=f)DNzBackup file not found.z!Please specify a target directorySAMBA_SELFTEST1zTarget directory is not emptyzServer name requiredi)modeetczsmb.confz.origz&Using %s as restored domain's smb.confprivatesam.ldbrzAdding new DC to site '{0}'namingContextsrBroffline)rNrMrforced_local_samdb netbios_namez#Updating basic smb.conf settings...z"active directory domain controller)rM serverrolerrzCreating account with SID: ) specified_sidr- objectGUIDzshow_deleted:0zshow_recycled:0)r0r/r1r2r3zutf-8z|The RID Pool on the source DC for the backup in %s may be corrupt or in conflict with SIDs already allocated in the domain. zaRunning 'samba-tool dbcheck' on the source DC (and obtaining a new backup) may correct the issue.z@Alternatively please obtain a new backup against a different DC.zVThe SID we wish to use (%s) is recorded in @SAMBA_DSDB as the sidForRestore attribute.zCDomain restore failed because there is already an existing object (z ) with SID z and objectGUID zT. This conflicts with the new DC account we want to add for the restored domain. z@ROOTDSEz dsServiceNamerIz secrets.ldb)rrMr)domainrrrr machinepasskey_version_numbersecure_channel_type domaindns forestdnsT)force)rApdcnaminginfrastructureschemaz*(&(objectClass=Server)(serverReference=*))r9cnrepsFromrepsTorrgrLz4Fixing up any remaining references to the old DCs...z'Backup file successfully restored to %szEPlease check the smb.conf settings are correct before starting samba.)^rfrgrrlistdirenvironrr getLoggerrr addHandler StreamHandlersysstdoutupperabspathrrx extractallrchmodrhrcopyfileget_loadparm_pathr5rrLoadParmrQrr r9rrJr>r:r8r:r7rZrr nc_list full_nc_listdsdbUF_SERVER_TRUST_ACCOUNTUF_TRUSTED_FOR_DELEGATIONuserAccountControlr domain_namerrjoin_add_objectsrrr=ERR_CONSTRAINT_VIOLATIONr>r;schema_format_valuedecodeerrorr<r ntds_guidrrTrr!rrrmynamedomsid acct_passrnr SEC_CHAN_BDCrdn_from_dns_nameforest_dns_nameseize_dns_role seize_roler;rrrrr remover6rF)/rrrrri newservernamerrrr@rsmbconf cli_smbconfrM private_dir samdb_pathr?rrErncsrNrrCrFrGrHdup_resdup_edup_enum_ objectguidrr secrets_path secrets_ldbr forest_dn dns_rolesroler<rrwrVmsgrdest_sysvol_dirs/ rIrcmd_domain_backup_restore.runs9{ ; ;78 8  BC C GGNN9 % %"**Y*?*? JJNN+ , 3>? ?56 6""$ &'// ;<&++- GGOOI. \\+ & i    ''',,y%<7!23 113  KK@;N O OOK 1 [[ ! ! # ggll9i8 WW\\+y9 *>3C224**51 <++E6:D KK5<qz,7OPQ7RTJ#**73J LL+.99 : LLR S LL3 4 LLG  !( sJ  @A AG) AsI.a!a f2$&f- ;cf- c?$c:5f-:c??B.f--f2rc)NNNNNNNN)rrrrrrrr7r rrrrr!r6r>rFrJrZrr rcr\rIr r ;s ,H %:E}#5C@ '<3G{;( *|(L( *x=CH M)).. @B#2 &"(>BGKa'r\r c \rSrSrSrSr\R\RS.r \ "SS\ S9\ "SS \ S9\ "S S S S S9\ "SS S SS9\ "SSSSS/S\ "5-S9/r SS/rSrSrSrSrS!SjrS rg)"cmd_domain_backup_renameianCopy a running DC's DB to backup file, renaming the domain in the process. Where is the new domain's NetBIOS name, and is the new domain's realm in DNS form. This is similar to 'samba-tool backup online' in that it clones the DB of a running DC. However, this option also renames all the domain entries in the DB. Renaming the domain makes it possible to restore and start a new Samba DC without it interfering with the existing Samba domain. In other words, you could use this option to clone your production samba domain and restore it to a separate pre-production environment that won't overlap or interfere with the existing production Samba domain. Note that: - it's recommended to run 'samba-tool dbcheck' before taking a backup-file and fix any errors it reports. - all the domain's secrets are included in the backup file. - although the DB contents can be untarred and examined manually, you need to run 'samba-tool domain backup restore' before you can start a Samba DC from the backup file. - GPO and sysvol information will still refer to the old realm and will need to be updated manually. - if you specify 'keep-dns-realm', then the DNS records will need updating in order to work (they will still refer to the old DC's IP instead of the new DC's address). - we recommend that you only use this option if you know what you're doing. zR%prog --server= --targetdir=rrrrrz"Directory to write the backup filez--keep-dns-realmrFz6Retain the DNS entries for the old realm in the backuprrrrrrrrrrnew_domain_name new_dns_realmcUR5nURU[RS/SS9nUR 5nUGHnUSGHn [ U 5n UR n X9;dM"[R"SU-UU 5n URSU <SU <35 [R"5n Xl[R"U [RS5U S'URU 5 U(dMURSU <SU <35 [R"U [RS5U S'URU 5 GM GM g ) z?Updates dnsRoot for the partition objects to reflect the renamednsRootz$(&(objectClass=crossRef)(dnsRoot=*))r0r/r1rz%s$zAdding z dnsRoot to z Removing z dnsRoot from N)get_partitions_dnr8r9SCOPE_ONELEVELrr7r<resubr5rrrrrC) rr@r? old_realmdelete_old_dns partitions_dnrE new_realmres_msgdns_rootr< new_dns_rootrs rIupdate_dns_root(cmd_domain_backup_rename.update_dns_roots5//1 ll S5G5G"+&LN))+ G#I.x=ZZ(#%66%)*;Y*2$4LKK\2 NO AD##5l696F6F6?$AAiLLLO&~ XEG%IJ'*'9'9(:=:M:M:C(E)  Q-/r\cVUR5n[R"[U55nUR 5nUR U[R S/SU-S9nURSU-5 [R"5nUSRUl [R"U[RS5US'URU5 SU<SU<3n URSUSR<S U <35 URUSRU S /S 9 g ) z?Renames the domain partition object and updates its nETBIOSName nETBIOSNamez ncName=%srz+Changing backup domain's NetBIOS name to %srzCN=,z Renaming z --> zrelax:0r2N)get_default_basednr9 binary_encoder7rr8rr5rr<rrTrrI) rr@r?new_netbios_namebase_dnnc_namerrErnew_dns rIrename_domain_partition0cmd_domain_backup_rename.rename_domain_partitions **,##CL1//1 ll S5G5G"/&1G&;=  A$% & KKM1vyy--.>.1.B.B.;=-  Q 0? CFIIv>? SVYY) =r\c$UR5nSU<SU<3nURSU-5 URUS/5 UR5R 5nSU<SU<3nURSU-5 URUS/5 g)NzDC=z#,CN=MicrosoftDNS,DC=DomainDnsZones,zDeleting old DNS zone %sz tree_delete:1z DC=_msdcs.z#,CN=MicrosoftDNS,DC=ForestDnsZones,)rr5deleterr)rr@r?rbasednr<rs rIdelete_old_dns_zones-cmd_domain_backup_rename.delete_old_dns_zones6s))+=F O .34 R/*+((*99;DMDLN .34 R/*+r\cUR5 [USSSSS9n[USS5 SnSU/nURUS9 UR 5 g ) z@Fixes attributes (i.e. objectCategory) that still use the old DNTFr$r)r*r.r.rNr/)rr?r4r5r2s rIfix_old_dn_attributes.cmd_domain_backup_rename.fix_old_dn_attributesCs` !e4Tu%)+ ?G-$n5 H-   "r\Nc zUR5n U R[R5 UR 5n UR U 5n Uc [ S5e[X5 U(+n UR5nUR5n[R"U5nU RSU-5 U RSU-5 U RSU-5 [R"US9nU(+n[XX*XUSX_U S9 nUR nUU:Xa!["R$"U5 [ S5eUR&nUU:Xa!["R$"U5 [ S 5eUR)5 U?UR,n[/S U-U [15U S 9n[3UU 5n[4R6R9US 5n[;X[U 5n[=UUUR?55 U RAURB5 [/URD[15U [FRHS 9n[K5n[MUSU5 [MUSU5 [MUSU5 [MUSS5 UROU UUU 5 URQU UU5 U (aURSU UU5 U RS5 URUU5 U(a [WU U5 [YXbU5n[[XSUUSU<SU<S35 []XU5 ["R$"U5 g)Nrz"New realm for backed up domain: %sz$New base DN for backed up domain: %szNew domain NetBIOS name: %srr)r@rNrMrrrWrirz+Cannot use the current domain NetBIOS name.z(Cannot use the current domain DNS realm.rrrrrrrArrIz$Fixing DN attributes after rename...zOriginal domain rz (DNS realm))/rrrINFOrrrrrrrrr5rrrrrrrdo_join local_samdbrrr rJrfrgrhr[rr6rQrr?r9rrdrrrrrrrmrr)rrrrrrWrikeep_dns_realmrrr@rMrNr new_base_dnrrr old_domainrrrrrrr?rkrs rIrcmd_domain_backup_rename.runQs" %  # # %((, >01 1*++%++- )//1,,];  8=HI :[HI 1OCD!!i0).%k&3,16E2B-34A C__  ( MM& !LM MII  % MM& !IJ J  O y61u(6(8RA %j&9 WW\\&/: "6u5h J,E,E,GH  %++N4D224!?%x8%':%;%x8 VUI~F $$VUOD   % %feY ? :; ""5)  vu -&iI Hfo#Y0 1 &+6 fr\rc)NNNNFFN)rrrrrrrrrrrr7rr  takes_argsrrrrrr rcr\rIrrs8+H)).. z 2=}#G !,L N~lEC E xu~!#<#>? @ M$_5J#(N>4 , #=AGL,0gr\rcv\rSrSrSrSrS\R0r\ "SS\ S9/r Sr S r S rS rS rS rSSjrSrg)cmd_domain_backup_offlineiayBackup the local domain directories safely into a tar file. Takes a backup copy of the current domain from the local files on disk, with proper locking of the DB to ensure consistency. If the domain were to undergo a catastrophic failure, then the backup file can be used to recover the domain. An offline backup differs to an online backup in the following ways: - a backup can be created even if the DC isn't currently running. - includes non-replicated attributes that an online backup wouldn't store. - takes a copy of the raw database files, which has the risk that any hidden problems in the DB are preserved in the backup.z%prog [options]rrzOutput directory (required)rz .bak-offlinecXR-n[XSS9 [RRU5(dSn[URU55eg![ajn[R"U5 Ue![ a?n[ US5(a'UR[R:Xa SnASnAgUeSnAff=fSnAf[an[URU5eSnAff=f)NT)readonlyerrnoz1tdbbackup said backup succeeded but {0} not found) backup_extr#r%rrx ExceptionhasattrrEINVALFileNotFoundErrorrstrerrorrfrgrr:)rrg backup_pathcopy_errrFss rIoffline_tdb_copy*cmd_domain_backup_offline.offline_tdb_copys__,  . T 6"ww~~k**CAqxx 45 5+!"   N  1g&&177ell+BF  ! .qzz1- - .sM A C2&A><C > C/C7C CCC  C2C--C2c4[XUR-5 gN)r$r)rrgs rIoffline_mdb_copy*cmd_domain_backup_offline.offline_mdb_copysdoo-.r\c4[RRUS5n[US-U[R S9nUR SU-5 UR5 URUS-5 URUS-5 UR5 g)Nsecrets.ldbrMrStarting transaction on .tdb) rfrgrhrr9rr5r0rtransaction_cancel)rrrMr@r secrets_objs rIbackup_secrets(cmd_domain_backup_offline.backup_secretssww||K; ,/B # 6 68  .=>%%' lV34 lV34&&(r\c [RRUS5nSnURS[R U/S9nXgS;=(a [ USUS5S:HnSn Sn U(a.URS5 URn UR5n O0URSU-5 URn UR5 URS U-5 URU5 US -n [R"U 5Hn [RRX5n U RS 5(aURS U -5 U "U 5 MVU RS 5(a'URSU -5 URU 5 MURSU -5 [R"XUR -5 M [#X$5n U(aA U $UR%5 U $)Nrb backendStorez @PARTITIONrBrrz1MDB backend detected. Using mdb backup function.rz backing up z.drz" backing up locked/related file rz$ tdbbackup of locked/related file z copying locked/related file )rfrgrhr8r9r:r7r5rsearch_iteratorrr0rzendswithrrrrJr)rrr?rMr@ sam_ldb_path store_labelrE mdb_backend res_iterator copy_function sam_ldb_dsam_filerCs rIbackup_smb_dbs(cmd_domain_backup_offline.backup_smb_dbssww||K; % ll CNN"-0!V+TCF;4G4J0Ku0T    KKK L 11M!002L KK2\A B 11M  # # % $|34 l+ 4'  9-Hww||I8H  (( @8KLh'""6** BXMN%%h/ =HIT__*DE."%0    $ $ & r\ctURUR[RR UR 5S.nUR 5VVs/sH upEURU5(dMXE4PM" nnnUSupx[U5S:a [USS9upxXq[U5S- nU$s snnf)N)rastater`rr3c[US5$)Nr3)r;)ps rIrt8cmd_domain_backup_offline.get_arc_path..Is QqTr\)key) r state_dirrfrgdirnameritems startswithr;max) rrg conf_paths backup_dirsrr matching_dirsarc_pathfs_paths rI get_arc_path&cmd_domain_backup_offline.get_arc_path>s","8"8 * 4 4 ggooj.@.@AC /:.?.?.A-.AFQ+ !.A -)!, }  ! #M7J K HW''-s B45B4Nc [R"5nUR[R5 UR [R "[ R55 UR5n[RRXDRS55nUR(a.[RR!UR5(d5UR#SR%UR55 ['S5e[)X25 UR*UR,[RR/UR05/nUR3SR%SR5U555 /n[75nUGHn [R8"U 5GHkupn U R;UR<5(aM)U R?S5(dSU ;aMGU R;[RR5UR@S55(aMU Hn [RR5X5n[RB"US S 9nURHURJ4U;aMVU R?URL5(a[RN"U5 MU R?S5(aMURQU5 URSURHURJ45 M GMn GM [UUR[W5U[XRZS 9nUR]UR*XC5 UR_UR*UXC5nURa5n[bRd"U5nURg5 A[iURURL-[W5US /[XRZS9n[k5n[mUSU5 [mUSU5 [mUSS5 URg5 AUHn[RR!UURL-5(aM6UR?S5(aqUR3SU-5 [iUU[XRZS9nURo5 UR3S5 URqU5 URs5 MUR?S5(dMUR3SU-5 URqU5 M [tRv"USS9n[RR5US5n[xRz"US5nUR3S5 Sn[RR5UU5n[}UR<UUR0U5 URSUU5 [RN"U5 [UUSSS 5 [RR5US!5nURSU[RRU55 [RN"U5 UR3S"5 /nUGHnURUU5n[RR!UURL-5(aUR3S#U-URL-S$-5 URQ[UURL-5<S%U<35 URSUURL-US&9 [RN"UURL-5 MUR?S5(dUR?S5(aUR3S'U-5 GM[RRU5(dGMEUR3S(U-5 URQ[U5<S%U<35 URSUUS&9 GM [RR5US)5n[{US*5n UHn!U RU!S+-5 M SSS5 URSU[RRU55 [RN"U5 UR5 [R"U[RR5US,R%U555 [R"U5 UR3S-5 g![Da URGUS 35 GMf=f!,(df  N=f).NrzNo database found at {0}zCPlease check you are root, and are running this command on an AD DCzrunning backup on dirs: {0} z.sockz.sock/dnsF)follow_symlinksz does not exist!rzmodules:)rrrMrrrrrrerz!Starting transaction on solo db: rz% running tdbbackup on the same filerz#running tdbbackup on lone tdb file INCOMPLETEsambabackupfile)rprefixzsamba-backup.tar.bz2rz&running offline ntacl backup of sysvolr localhostTrzbuilding backup tarz adding backup z to tar and deleting filez rz skipping z adding misc file SHA256SUMr zsamba-backup-{0}.tar.bz2zBackup succeeded.)Hrr|rrr}r~rrrr provisionprovision_paths_from_lprr?rfrgrrr:rrrrrrr5rhsetwalkrrLr binddns_dirstatrwarningst_inost_devrrappendrrr r9rrr r6rr disconnectrrdrr0rrrrrrxr rbasenamerr~isfilerrrIrmdir)"rrrir@rMrr all_files all_stats backup_dir working_dirr filenamesrl full_pathrr?rC dom_sid_strrrkrgldb_obj temp_tar_dir temp_tar_nametar sysvol_tar_fnr backup_fn chksum_listrchksum_filepathrscs" rIrcmd_domain_backup_offline.runNs""$ &'// ;< # # %77FF7OL u{{ ; ; LL3::5;;G H FG G * ((%//wwu}}57  188+9NOP E %J/1wwz/B+))%,,77''00H 4K))"'',,u7H7H%*PQQ )H " [ CI !GGIuE !((+y8  ((99 ),  ((11 $$Y/MM188QXX"675!*0C&T%++N4D224 E--r:!!%"3"3UBG**, "";/   doo5#1#3)l#2H2HJ!?%x8%#6%y9  D77>>$"899==((KK Cd JK!$2S5K5KLG--/KK GH))$/..0]]6**KK E LM))$/ ''I/JL  \3IJ ll='2 <=' WW\\, > u||ZH  M* * b)[$GGGLL|<   277++I67 ) )* D((u5Hww~~dT__455 /(:T__L789"" 01G H (*+t.A $01v&&$--*?*? NX56%% 2X=>""$4T$:$,$./h/%('',,|[A /3 '1 D!!( !1!1/!BC /"  -'',,y9@@JL M  '(A-!)4D'EF !j( 's(d>e$>e! e! $ e2rc)NN)rrrrrrrrrrr7r rrrrr rrr rcr\rIrrsb @!HW)) }1 M  J62/ )8v o)r\rcN\rSrSrSr\"5\"5\"5\"5S.r Sr g)cmd_domain_backupiz)Create or restore a backup of the domain.)rerrIrestorercN) rrrrrrrrr  subcommandsr rcr\rIrIrIs$379575779;Kr\rIr)`r_rfrrrrrr samba.getoptgetoptr samba.samdbrrr9r samba.samba3rrUrrO samba.ntaclsrr r samba.authr samba.joinr r rsamba.dcerpc.securityr samba.netcmdrr samba.dcerpcrrrrsamba.netcmd.fsmorsamba.provisionrrsamba.upgradehelpersrsamba.remove_dcrrsamba.dbcheckerrrrrrsamba.provision.sambadnsr r!r"samba.tdb_utilr#samba.mdb_utilr$r subprocessr%r& samba.dsdbr' samba.ndrr(samba.credentialsr)r*rrvrJr[rdrmr~rrrrrnetcmdCommandrr rr SuperCommandrIrcr\rIres>$   8 8)FF%II)-11,5?%/# NN66$# )(2) -%` A-  $,@),_"u||33_"DC'C'L wu||33wtB) 4 4B)J ; 11;r\