sin/samba-mirror
1
0
Fork 0
mirror of https://github.com/samba-team/samba.git synced 2025-02-10 13:57:47 +03:00
Code
samba-mirror/source4/dsdb/samdb/ldb_modules/pdc_fsmo.c

110 lines
3.0 KiB
C
Raw Normal View History

r20867: add modules to handle the domain naming and the pdc FSMO Roles metze (This used to be commit 341fae8e8465e67023ab0e82110835669a593577)
2007-01-17 23:58:14 +00:00
/*
Unix SMB/CIFS mplementation.
The module that handles the PDC FSMO Role Owner checkings
Copyright (C) Stefan Metzmacher 2007
This program is free software; you can redistribute it and/or modify
it under the terms of the GNU General Public License as published by
r23792: convert Samba4 to GPLv3 There are still a few tidyups of old FSF addresses to come (in both s3 and s4). More commits soon. (This used to be commit fcf38a38ac691abd0fa51b89dc951a08e89fdafa)
2007-07-10 02:07:03 +00:00
the Free Software Foundation; either version 3 of the License, or
r20867: add modules to handle the domain naming and the pdc FSMO Roles metze (This used to be commit 341fae8e8465e67023ab0e82110835669a593577)
2007-01-17 23:58:14 +00:00
(at your option) any later version.
This program is distributed in the hope that it will be useful,
but WITHOUT ANY WARRANTY; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
GNU General Public License for more details.
You should have received a copy of the GNU General Public License
r23792: convert Samba4 to GPLv3 There are still a few tidyups of old FSF addresses to come (in both s3 and s4). More commits soon. (This used to be commit fcf38a38ac691abd0fa51b89dc951a08e89fdafa)
2007-07-10 02:07:03 +00:00
along with this program. If not, see <http://www.gnu.org/licenses/>.
r20867: add modules to handle the domain naming and the pdc FSMO Roles metze (This used to be commit 341fae8e8465e67023ab0e82110835669a593577)
2007-01-17 23:58:14 +00:00
*/
#include "includes.h"
Fix all other modules to use ldb_module.h instead of ldb_private.h The only 2 modules escaping the rule so far are rootdse and partitions
2009-01-30 16:31:19 -05:00
#include "ldb_module.h"
r20867: add modules to handle the domain naming and the pdc FSMO Roles metze (This used to be commit 341fae8e8465e67023ab0e82110835669a593577)
2007-01-17 23:58:14 +00:00
#include "dsdb/samdb/samdb.h"
#include "librpc/gen_ndr/ndr_misc.h"
#include "librpc/gen_ndr/ndr_drsuapi.h"
#include "librpc/gen_ndr/ndr_drsblobs.h"
Fix include paths to new location of libutil.
2008-10-11 21:31:42 +02:00
#include "../lib/util/dlinklist.h"
s4:dsdb Add new functions to help modules do an ldb_search() These take an ldb_module argument, and avoid doing the search from the top of the stack again. (This will help when modules are initialised before being added to the partition set) Andrew Bartlett
2009-10-10 09:06:07 +11:00
#include "dsdb/samdb/ldb_modules/util.h"
r20867: add modules to handle the domain naming and the pdc FSMO Roles metze (This used to be commit 341fae8e8465e67023ab0e82110835669a593577)
2007-01-17 23:58:14 +00:00
static int pdc_fsmo_init(struct ldb_module *module)
{
Fix all other modules to use ldb_module.h instead of ldb_private.h The only 2 modules escaping the rule so far are rootdse and partitions
2009-01-30 16:31:19 -05:00
struct ldb_context *ldb;
r20867: add modules to handle the domain naming and the pdc FSMO Roles metze (This used to be commit 341fae8e8465e67023ab0e82110835669a593577)
2007-01-17 23:58:14 +00:00
TALLOC_CTX *mem_ctx;
struct ldb_dn *pdc_dn;
struct dsdb_pdc_fsmo *pdc_fsmo;
struct ldb_result *pdc_res;
int ret;
r26540: Revert my previous commit after concerns raised by Andrew. (This used to be commit 6ac86f8be7d9a8c5ab396a93e6d1e6819e11f173)
2007-12-20 00:02:15 +01:00
static const char *pdc_attrs[] = {
r20867: add modules to handle the domain naming and the pdc FSMO Roles metze (This used to be commit 341fae8e8465e67023ab0e82110835669a593577)
2007-01-17 23:58:14 +00:00
"fSMORoleOwner",
NULL
};
Fix all other modules to use ldb_module.h instead of ldb_private.h The only 2 modules escaping the rule so far are rootdse and partitions
2009-01-30 16:31:19 -05:00
ldb = ldb_module_get_ctx(module);
r20867: add modules to handle the domain naming and the pdc FSMO Roles metze (This used to be commit 341fae8e8465e67023ab0e82110835669a593577)
2007-01-17 23:58:14 +00:00
mem_ctx = talloc_new(module);
if (!mem_ctx) {
Fix all other modules to use ldb_module.h instead of ldb_private.h The only 2 modules escaping the rule so far are rootdse and partitions
2009-01-30 16:31:19 -05:00
ldb_oom(ldb);
r20867: add modules to handle the domain naming and the pdc FSMO Roles metze (This used to be commit 341fae8e8465e67023ab0e82110835669a593577)
2007-01-17 23:58:14 +00:00
return LDB_ERR_OPERATIONS_ERROR;
}
Fix all other modules to use ldb_module.h instead of ldb_private.h The only 2 modules escaping the rule so far are rootdse and partitions
2009-01-30 16:31:19 -05:00
pdc_dn = samdb_base_dn(ldb);
r20867: add modules to handle the domain naming and the pdc FSMO Roles metze (This used to be commit 341fae8e8465e67023ab0e82110835669a593577)
2007-01-17 23:58:14 +00:00
if (!pdc_dn) {
Fix all other modules to use ldb_module.h instead of ldb_private.h The only 2 modules escaping the rule so far are rootdse and partitions
2009-01-30 16:31:19 -05:00
ldb_debug(ldb, LDB_DEBUG_WARNING,
r26521: Fix newlines. (This used to be commit 174aa1583791a4c305bc49cf78f8f10d42701bc9)
2007-12-18 02:21:24 +01:00
"pdc_fsmo_init: no domain dn present: (skip loading of domain details)\n");
r20867: add modules to handle the domain naming and the pdc FSMO Roles metze (This used to be commit 341fae8e8465e67023ab0e82110835669a593577)
2007-01-17 23:58:14 +00:00
talloc_free(mem_ctx);
return ldb_next_init(module);
}
pdc_fsmo = talloc_zero(mem_ctx, struct dsdb_pdc_fsmo);
if (!pdc_fsmo) {
Fix all other modules to use ldb_module.h instead of ldb_private.h The only 2 modules escaping the rule so far are rootdse and partitions
2009-01-30 16:31:19 -05:00
ldb_oom(ldb);
r20867: add modules to handle the domain naming and the pdc FSMO Roles metze (This used to be commit 341fae8e8465e67023ab0e82110835669a593577)
2007-01-17 23:58:14 +00:00
return LDB_ERR_OPERATIONS_ERROR;
}
Fix all other modules to use ldb_module.h instead of ldb_private.h The only 2 modules escaping the rule so far are rootdse and partitions
2009-01-30 16:31:19 -05:00
ldb_module_set_private(module, pdc_fsmo);
r20867: add modules to handle the domain naming and the pdc FSMO Roles metze (This used to be commit 341fae8e8465e67023ab0e82110835669a593577)
2007-01-17 23:58:14 +00:00
s4:dsdb Add new functions to help modules do an ldb_search() These take an ldb_module argument, and avoid doing the search from the top of the stack again. (This will help when modules are initialised before being added to the partition set) Andrew Bartlett
2009-10-10 09:06:07 +11:00
ret = dsdb_module_search_dn(module, mem_ctx, &pdc_res,
pdc_dn,
s4:dsdb Add 'dsdb_flags' to dsdb_module_search() to enable often-used features These flags, also on dsdb_module_search_dn() allow us to add commonly set controls to this pre-packaged blocking search, without rebuilding the whole function in each caller. Andrew Bartlett
2009-11-16 18:32:17 +11:00
pdc_attrs, 0);
r25942: Make various ldb modules handle an LDB backend that enforces validity of Base DNs in searches (returning an error of LDB_ERR_NO_SUCH_ENTRY). We need to handle this if ldb_tdb is to behave correctly compared with LDAP, as well as if we are using an LDAP backend. In doing so, I realised that subtree_rename and subtree_delete (prevention) need rather different wait loops, so it seemed easier to split it out into it's own module. I've fixed the licence on both of these modules to be GPLv3. Andrew Bartlett (This used to be commit d3894c90f31fb45e038ab478cd9d7d34962d069b)
2007-11-13 22:54:52 +01:00
if (ret == LDB_ERR_NO_SUCH_OBJECT) {
Fix all other modules to use ldb_module.h instead of ldb_private.h The only 2 modules escaping the rule so far are rootdse and partitions
2009-01-30 16:31:19 -05:00
ldb_debug(ldb, LDB_DEBUG_WARNING,
r26521: Fix newlines. (This used to be commit 174aa1583791a4c305bc49cf78f8f10d42701bc9)
2007-12-18 02:21:24 +01:00
"pdc_fsmo_init: no domain object present: (skip loading of domain details)\n");
r25942: Make various ldb modules handle an LDB backend that enforces validity of Base DNs in searches (returning an error of LDB_ERR_NO_SUCH_ENTRY). We need to handle this if ldb_tdb is to behave correctly compared with LDAP, as well as if we are using an LDAP backend. In doing so, I realised that subtree_rename and subtree_delete (prevention) need rather different wait loops, so it seemed easier to split it out into it's own module. I've fixed the licence on both of these modules to be GPLv3. Andrew Bartlett (This used to be commit d3894c90f31fb45e038ab478cd9d7d34962d069b)
2007-11-13 22:54:52 +01:00
talloc_free(mem_ctx);
return ldb_next_init(module);
} else if (ret != LDB_SUCCESS) {
Fix all other modules to use ldb_module.h instead of ldb_private.h The only 2 modules escaping the rule so far are rootdse and partitions
2009-01-30 16:31:19 -05:00
ldb_debug_set(ldb, LDB_DEBUG_FATAL,
r24247: Remove extra newlines from ldb_debug() calls - it already adds one. Andrew Bartlett (This used to be commit e5fdcda2a1e97c587d48baf3521b18515277f6de)
2007-08-06 03:48:56 +00:00
"pdc_fsmo_init: failed to search the domain object: %d:%s",
r20867: add modules to handle the domain naming and the pdc FSMO Roles metze (This used to be commit 341fae8e8465e67023ab0e82110835669a593577)
2007-01-17 23:58:14 +00:00
ret, ldb_strerror(ret));
talloc_free(mem_ctx);
return ret;
}
Fix all other modules to use ldb_module.h instead of ldb_private.h The only 2 modules escaping the rule so far are rootdse and partitions
2009-01-30 16:31:19 -05:00
pdc_fsmo->master_dn = ldb_msg_find_attr_as_dn(ldb, mem_ctx, pdc_res->msgs[0], "fSMORoleOwner");
if (ldb_dn_compare(samdb_ntds_settings_dn(ldb), pdc_fsmo->master_dn) == 0) {
r20867: add modules to handle the domain naming and the pdc FSMO Roles metze (This used to be commit 341fae8e8465e67023ab0e82110835669a593577)
2007-01-17 23:58:14 +00:00
pdc_fsmo->we_are_master = true;
} else {
pdc_fsmo->we_are_master = false;
}
Fix all other modules to use ldb_module.h instead of ldb_private.h The only 2 modules escaping the rule so far are rootdse and partitions
2009-01-30 16:31:19 -05:00
if (ldb_set_opaque(ldb, "dsdb_pdc_fsmo", pdc_fsmo) != LDB_SUCCESS) {
ldb_oom(ldb);
r20871: implement the validFSMOs constructed attribute on the rootdse for the schema, domain naming and pdc fsmo roles infrastructure and rid manager will be added later, when we have module for them metze (This used to be commit 308f9cf822a3a34dae28a5fa5aa850e2adbeb472)
2007-01-18 01:31:09 +00:00
return LDB_ERR_OPERATIONS_ERROR;
}
talloc_steal(module, pdc_fsmo);
Fix all other modules to use ldb_module.h instead of ldb_private.h The only 2 modules escaping the rule so far are rootdse and partitions
2009-01-30 16:31:19 -05:00
ldb_debug(ldb, LDB_DEBUG_TRACE,
r26521: Fix newlines. (This used to be commit 174aa1583791a4c305bc49cf78f8f10d42701bc9)
2007-12-18 02:21:24 +01:00
"pdc_fsmo_init: we are master: %s\n",
r20867: add modules to handle the domain naming and the pdc FSMO Roles metze (This used to be commit 341fae8e8465e67023ab0e82110835669a593577)
2007-01-17 23:58:14 +00:00
(pdc_fsmo->we_are_master?"yes":"no"));
talloc_free(mem_ctx);
return ldb_next_init(module);
}
Fix use of some modules (needed _PUBLIC_). (This used to be commit ce332130ea77159832da23bab760fa26921719e2)
2008-02-20 04:33:43 +01:00
_PUBLIC_ const struct ldb_module_ops ldb_pdc_fsmo_module_ops = {
r20867: add modules to handle the domain naming and the pdc FSMO Roles metze (This used to be commit 341fae8e8465e67023ab0e82110835669a593577)
2007-01-17 23:58:14 +00:00
.name = "pdc_fsmo",
.init_context = pdc_fsmo_init
};
Copy Permalink