2007-11-30 20:49:21 +03:00
/*
* Unix SMB / CIFS implementation .
* NetApi Join Support
2008-01-04 19:01:52 +03:00
* Copyright ( C ) Guenther Deschner 2007 - 2008
2007-11-30 20:49:21 +03:00
*
* This program is free software ; you can redistribute it and / or modify
* it under the terms of the GNU General Public License as published by
* the Free Software Foundation ; either version 3 of the License , or
* ( at your option ) any later version .
*
* This program is distributed in the hope that it will be useful ,
* but WITHOUT ANY WARRANTY ; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE . See the
* GNU General Public License for more details .
*
* You should have received a copy of the GNU General Public License
* along with this program ; if not , see < http : //www.gnu.org/licenses/>.
*/
# include "includes.h"
2007-11-30 22:33:51 +03:00
2007-12-18 04:54:18 +03:00
# include "lib/netapi/netapi.h"
# include "libnet/libnet.h"
2008-01-18 04:38:35 +03:00
/****************************************************************
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * */
2007-12-18 04:54:18 +03:00
static WERROR NetJoinDomainLocal ( struct libnetapi_ctx * mem_ctx ,
2007-12-11 23:23:40 +03:00
const char * server_name ,
const char * domain_name ,
const char * account_ou ,
const char * Account ,
const char * password ,
uint32_t join_flags )
{
2007-12-11 23:32:16 +03:00
struct libnet_JoinCtx * r = NULL ;
WERROR werr ;
2007-12-19 04:25:15 +03:00
if ( ! domain_name ) {
2007-12-11 23:32:16 +03:00
return WERR_INVALID_PARAM ;
}
2008-01-07 20:41:49 +03:00
werr = libnet_init_JoinCtx ( mem_ctx , & r ) ;
W_ERROR_NOT_OK_RETURN ( werr ) ;
2007-12-11 23:32:16 +03:00
r - > in . domain_name = talloc_strdup ( mem_ctx , domain_name ) ;
W_ERROR_HAVE_NO_MEMORY ( r - > in . domain_name ) ;
2007-12-19 12:52:45 +03:00
if ( join_flags & WKSSVC_JOIN_FLAGS_JOIN_TYPE ) {
2007-12-19 04:25:15 +03:00
NTSTATUS status ;
struct DS_DOMAIN_CONTROLLER_INFO * info = NULL ;
uint32_t flags = DS_DIRECTORY_SERVICE_REQUIRED |
DS_WRITABLE_REQUIRED |
DS_RETURN_DNS_NAME ;
2008-01-11 17:32:20 +03:00
status = dsgetdcname ( mem_ctx , NULL , domain_name ,
2007-12-19 04:25:15 +03:00
NULL , NULL , flags , & info ) ;
if ( ! NT_STATUS_IS_OK ( status ) ) {
2008-01-18 04:38:35 +03:00
libnetapi_set_error_string ( mem_ctx ,
" %s " , get_friendly_nt_error_msg ( status ) ) ;
2007-12-19 04:25:15 +03:00
return ntstatus_to_werror ( status ) ;
}
2008-01-04 19:11:14 +03:00
r - > in . dc_name = talloc_strdup ( mem_ctx ,
info - > domain_controller_name ) ;
W_ERROR_HAVE_NO_MEMORY ( r - > in . dc_name ) ;
2007-12-19 04:25:15 +03:00
}
2007-12-11 23:32:16 +03:00
if ( account_ou ) {
r - > in . account_ou = talloc_strdup ( mem_ctx , account_ou ) ;
W_ERROR_HAVE_NO_MEMORY ( r - > in . account_ou ) ;
}
if ( Account ) {
r - > in . admin_account = talloc_strdup ( mem_ctx , Account ) ;
W_ERROR_HAVE_NO_MEMORY ( r - > in . admin_account ) ;
}
if ( password ) {
2008-01-04 19:01:52 +03:00
r - > in . admin_password = talloc_strdup ( mem_ctx , password ) ;
W_ERROR_HAVE_NO_MEMORY ( r - > in . admin_password ) ;
2007-12-11 23:32:16 +03:00
}
r - > in . join_flags = join_flags ;
r - > in . modify_config = true ;
2008-01-07 20:40:25 +03:00
werr = libnet_Join ( mem_ctx , r ) ;
2008-01-07 22:08:45 +03:00
if ( ! W_ERROR_IS_OK ( werr ) & & r - > out . error_string ) {
2008-01-18 04:38:35 +03:00
libnetapi_set_error_string ( mem_ctx , " %s " , r - > out . error_string ) ;
2008-01-07 22:08:45 +03:00
}
2008-01-07 20:40:25 +03:00
TALLOC_FREE ( r ) ;
return werr ;
2007-12-11 23:23:40 +03:00
}
2008-01-18 04:38:35 +03:00
/****************************************************************
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * */
2007-12-18 04:54:18 +03:00
static WERROR NetJoinDomainRemote ( struct libnetapi_ctx * ctx ,
2007-12-11 23:23:40 +03:00
const char * server_name ,
const char * domain_name ,
const char * account_ou ,
const char * Account ,
const char * password ,
uint32_t join_flags )
2007-11-30 20:49:21 +03:00
{
struct cli_state * cli = NULL ;
struct rpc_pipe_client * pipe_cli = NULL ;
2008-01-05 00:56:31 +03:00
struct wkssvc_PasswordBuffer * encrypted_password = NULL ;
2007-11-30 20:49:21 +03:00
NTSTATUS status ;
WERROR werr ;
2007-12-01 13:41:44 +03:00
unsigned int old_timeout = 0 ;
2007-11-30 20:49:21 +03:00
2007-11-30 22:33:51 +03:00
status = cli_full_connection ( & cli , NULL , server_name ,
NULL , 0 ,
" IPC$ " , " IPC " ,
2007-12-18 04:52:34 +03:00
ctx - > username ,
ctx - > workgroup ,
ctx - > password ,
0 , Undefined , NULL ) ;
2007-11-30 22:33:51 +03:00
2007-11-30 20:49:21 +03:00
if ( ! NT_STATUS_IS_OK ( status ) ) {
werr = ntstatus_to_werror ( status ) ;
goto done ;
}
pipe_cli = cli_rpc_pipe_open_noauth ( cli , PI_WKSSVC ,
& status ) ;
if ( ! pipe_cli ) {
werr = ntstatus_to_werror ( status ) ;
goto done ;
2008-01-03 18:41:38 +03:00
}
2007-11-30 20:49:21 +03:00
2007-11-30 21:56:41 +03:00
if ( password ) {
2007-12-18 04:54:18 +03:00
encode_wkssvc_join_password_buffer ( ctx ,
2007-11-30 21:56:41 +03:00
password ,
& cli - > user_session_key ,
& encrypted_password ) ;
}
2007-11-30 20:49:21 +03:00
2007-11-30 21:55:40 +03:00
old_timeout = cli_set_timeout ( cli , 60000 ) ;
2007-12-18 04:54:18 +03:00
status = rpccli_wkssvc_NetrJoinDomain2 ( pipe_cli , ctx ,
2007-11-30 20:49:21 +03:00
server_name , domain_name ,
account_ou , Account ,
2008-01-05 00:56:31 +03:00
encrypted_password ,
2007-12-03 20:40:09 +03:00
join_flags , & werr ) ;
2007-11-30 20:49:21 +03:00
if ( ! NT_STATUS_IS_OK ( status ) ) {
werr = ntstatus_to_werror ( status ) ;
2007-11-30 21:56:41 +03:00
goto done ;
2007-11-30 20:49:21 +03:00
}
done :
2007-11-30 21:56:41 +03:00
if ( cli ) {
cli_set_timeout ( cli , old_timeout ) ;
cli_shutdown ( cli ) ;
}
2007-12-11 23:23:40 +03:00
return werr ;
}
2008-01-18 04:38:35 +03:00
/****************************************************************
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * */
2007-12-18 04:54:18 +03:00
static WERROR libnetapi_NetJoinDomain ( struct libnetapi_ctx * ctx ,
const char * server_name ,
const char * domain_name ,
const char * account_ou ,
const char * Account ,
const char * password ,
uint32_t join_flags )
2007-12-11 23:23:40 +03:00
{
if ( ! domain_name ) {
2007-12-19 12:55:52 +03:00
return WERR_INVALID_PARAM ;
2007-12-11 23:23:40 +03:00
}
if ( ! server_name | | is_myname_or_ipaddr ( server_name ) ) {
2007-12-19 12:55:52 +03:00
return NetJoinDomainLocal ( ctx ,
2007-12-19 04:25:15 +03:00
server_name ,
2007-12-11 23:23:40 +03:00
domain_name ,
account_ou ,
Account ,
password ,
join_flags ) ;
}
2007-12-19 12:55:52 +03:00
return NetJoinDomainRemote ( ctx ,
2007-12-11 23:23:40 +03:00
server_name ,
domain_name ,
account_ou ,
Account ,
password ,
join_flags ) ;
2007-11-30 20:49:21 +03:00
}
2007-11-30 21:57:08 +03:00
2008-01-18 04:38:35 +03:00
/****************************************************************
NetJoinDomain
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * */
2007-12-18 04:54:18 +03:00
NET_API_STATUS NetJoinDomain ( const char * server_name ,
const char * domain_name ,
const char * account_ou ,
const char * Account ,
const char * password ,
uint32_t join_flags )
{
struct libnetapi_ctx * ctx = NULL ;
NET_API_STATUS status ;
WERROR werr ;
status = libnetapi_getctx ( & ctx ) ;
if ( status ! = 0 ) {
return status ;
}
werr = libnetapi_NetJoinDomain ( ctx ,
server_name ,
domain_name ,
account_ou ,
Account ,
password ,
join_flags ) ;
if ( ! W_ERROR_IS_OK ( werr ) ) {
return W_ERROR_V ( werr ) ;
}
2008-01-18 04:38:35 +03:00
return NET_API_STATUS_SUCCESS ;
2007-12-18 04:54:18 +03:00
}
2008-01-18 04:38:35 +03:00
/****************************************************************
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * */
2007-12-19 13:03:45 +03:00
static WERROR NetUnjoinDomainLocal ( struct libnetapi_ctx * mem_ctx ,
const char * server_name ,
const char * account ,
const char * password ,
uint32_t unjoin_flags )
{
struct libnet_UnjoinCtx * r = NULL ;
struct dom_sid domain_sid ;
WERROR werr ;
if ( ! secrets_fetch_domain_sid ( lp_workgroup ( ) , & domain_sid ) ) {
return WERR_SETUP_NOT_JOINED ;
}
werr = libnet_init_UnjoinCtx ( mem_ctx , & r ) ;
W_ERROR_NOT_OK_RETURN ( werr ) ;
if ( server_name ) {
2008-01-04 19:11:14 +03:00
r - > in . dc_name = talloc_strdup ( mem_ctx , server_name ) ;
W_ERROR_HAVE_NO_MEMORY ( r - > in . dc_name ) ;
2007-12-19 13:03:45 +03:00
} else {
NTSTATUS status ;
const char * domain = NULL ;
struct DS_DOMAIN_CONTROLLER_INFO * info = NULL ;
uint32_t flags = DS_DIRECTORY_SERVICE_REQUIRED |
DS_WRITABLE_REQUIRED |
DS_RETURN_DNS_NAME ;
if ( lp_realm ( ) ) {
domain = lp_realm ( ) ;
} else {
domain = lp_workgroup ( ) ;
}
2008-01-11 17:32:20 +03:00
status = dsgetdcname ( mem_ctx , NULL , domain ,
2007-12-19 13:03:45 +03:00
NULL , NULL , flags , & info ) ;
if ( ! NT_STATUS_IS_OK ( status ) ) {
2008-01-18 04:38:35 +03:00
libnetapi_set_error_string ( mem_ctx ,
" %s " , get_friendly_nt_error_msg ( status ) ) ;
2007-12-19 13:03:45 +03:00
return ntstatus_to_werror ( status ) ;
}
2008-01-04 19:11:14 +03:00
r - > in . dc_name = talloc_strdup ( mem_ctx ,
info - > domain_controller_name ) ;
W_ERROR_HAVE_NO_MEMORY ( r - > in . dc_name ) ;
2007-12-19 13:03:45 +03:00
}
if ( account ) {
r - > in . admin_account = talloc_strdup ( mem_ctx , account ) ;
W_ERROR_HAVE_NO_MEMORY ( r - > in . admin_account ) ;
}
if ( password ) {
2008-01-04 19:01:52 +03:00
r - > in . admin_password = talloc_strdup ( mem_ctx , password ) ;
W_ERROR_HAVE_NO_MEMORY ( r - > in . admin_password ) ;
2007-12-19 13:03:45 +03:00
}
r - > in . unjoin_flags = unjoin_flags ;
r - > in . modify_config = true ;
2008-01-18 04:38:35 +03:00
r - > in . debug = true ;
2007-12-19 13:03:45 +03:00
r - > in . domain_sid = & domain_sid ;
2008-01-18 04:38:35 +03:00
werr = libnet_Unjoin ( mem_ctx , r ) ;
if ( ! W_ERROR_IS_OK ( werr ) & & r - > out . error_string ) {
libnetapi_set_error_string ( mem_ctx , " %s " , r - > out . error_string ) ;
}
TALLOC_FREE ( r ) ;
2007-12-19 13:03:45 +03:00
2008-01-18 04:38:35 +03:00
return werr ;
2007-12-19 13:03:45 +03:00
}
2008-01-18 04:38:35 +03:00
/****************************************************************
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * */
2007-12-19 13:03:45 +03:00
static WERROR NetUnjoinDomainRemote ( struct libnetapi_ctx * ctx ,
const char * server_name ,
const char * account ,
const char * password ,
uint32_t unjoin_flags )
2007-11-30 21:57:08 +03:00
{
struct cli_state * cli = NULL ;
struct rpc_pipe_client * pipe_cli = NULL ;
2008-01-05 00:56:31 +03:00
struct wkssvc_PasswordBuffer * encrypted_password = NULL ;
2007-11-30 21:57:08 +03:00
NTSTATUS status ;
WERROR werr ;
2007-12-01 13:41:44 +03:00
unsigned int old_timeout = 0 ;
2007-11-30 21:57:08 +03:00
2007-11-30 22:33:51 +03:00
status = cli_full_connection ( & cli , NULL , server_name ,
NULL , 0 ,
" IPC$ " , " IPC " ,
2007-12-18 04:15:49 +03:00
ctx - > username ,
ctx - > workgroup ,
ctx - > password ,
0 , Undefined , NULL ) ;
2007-11-30 22:33:51 +03:00
2007-11-30 21:57:08 +03:00
if ( ! NT_STATUS_IS_OK ( status ) ) {
werr = ntstatus_to_werror ( status ) ;
goto done ;
}
pipe_cli = cli_rpc_pipe_open_noauth ( cli , PI_WKSSVC ,
& status ) ;
if ( ! pipe_cli ) {
werr = ntstatus_to_werror ( status ) ;
goto done ;
2008-01-03 18:41:38 +03:00
}
2007-11-30 21:57:08 +03:00
if ( password ) {
2007-12-19 12:55:52 +03:00
encode_wkssvc_join_password_buffer ( ctx ,
2007-11-30 21:57:08 +03:00
password ,
& cli - > user_session_key ,
& encrypted_password ) ;
}
old_timeout = cli_set_timeout ( cli , 60000 ) ;
2007-12-19 12:55:52 +03:00
status = rpccli_wkssvc_NetrUnjoinDomain2 ( pipe_cli , ctx ,
2007-11-30 21:57:08 +03:00
server_name ,
account ,
2008-01-05 00:56:31 +03:00
encrypted_password ,
2007-12-03 20:40:09 +03:00
unjoin_flags ,
& werr ) ;
2007-11-30 21:57:08 +03:00
if ( ! NT_STATUS_IS_OK ( status ) ) {
werr = ntstatus_to_werror ( status ) ;
goto done ;
}
done :
if ( cli ) {
cli_set_timeout ( cli , old_timeout ) ;
cli_shutdown ( cli ) ;
}
return werr ;
}
2007-12-06 21:04:49 +03:00
2008-01-18 04:38:35 +03:00
/****************************************************************
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * */
2007-12-19 13:03:45 +03:00
static WERROR libnetapi_NetUnjoinDomain ( struct libnetapi_ctx * ctx ,
const char * server_name ,
const char * account ,
const char * password ,
uint32_t unjoin_flags )
{
if ( ! server_name | | is_myname_or_ipaddr ( server_name ) ) {
return NetUnjoinDomainLocal ( ctx ,
server_name ,
account ,
password ,
unjoin_flags ) ;
}
return NetUnjoinDomainRemote ( ctx ,
server_name ,
account ,
password ,
unjoin_flags ) ;
}
2008-01-18 04:38:35 +03:00
/****************************************************************
NetUnjoinDomain
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * */
2007-12-18 04:54:18 +03:00
NET_API_STATUS NetUnjoinDomain ( const char * server_name ,
const char * account ,
const char * password ,
uint32_t unjoin_flags )
{
struct libnetapi_ctx * ctx = NULL ;
NET_API_STATUS status ;
WERROR werr ;
status = libnetapi_getctx ( & ctx ) ;
if ( status ! = 0 ) {
return status ;
}
werr = libnetapi_NetUnjoinDomain ( ctx ,
server_name ,
account ,
password ,
unjoin_flags ) ;
if ( ! W_ERROR_IS_OK ( werr ) ) {
return W_ERROR_V ( werr ) ;
}
2008-01-18 04:38:35 +03:00
return NET_API_STATUS_SUCCESS ;
2007-12-18 04:54:18 +03:00
}
2008-01-18 04:38:35 +03:00
/****************************************************************
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * */
2007-12-19 15:52:51 +03:00
static WERROR NetGetJoinInformationRemote ( struct libnetapi_ctx * ctx ,
const char * server_name ,
const char * * name_buffer ,
uint16_t * name_type )
2007-12-06 21:04:49 +03:00
{
struct cli_state * cli = NULL ;
struct rpc_pipe_client * pipe_cli = NULL ;
NTSTATUS status ;
WERROR werr ;
status = cli_full_connection ( & cli , NULL , server_name ,
NULL , 0 ,
" IPC$ " , " IPC " ,
2007-12-18 04:15:49 +03:00
ctx - > username ,
ctx - > workgroup ,
ctx - > password ,
0 , Undefined , NULL ) ;
2007-12-06 21:04:49 +03:00
if ( ! NT_STATUS_IS_OK ( status ) ) {
werr = ntstatus_to_werror ( status ) ;
goto done ;
}
pipe_cli = cli_rpc_pipe_open_noauth ( cli , PI_WKSSVC ,
& status ) ;
if ( ! pipe_cli ) {
werr = ntstatus_to_werror ( status ) ;
goto done ;
2008-01-03 18:41:38 +03:00
}
2007-12-06 21:04:49 +03:00
2007-12-19 15:52:51 +03:00
status = rpccli_wkssvc_NetrGetJoinInformation ( pipe_cli , ctx ,
2007-12-06 21:04:49 +03:00
server_name ,
name_buffer ,
( enum wkssvc_NetJoinStatus * ) name_type ,
& werr ) ;
if ( ! NT_STATUS_IS_OK ( status ) ) {
werr = ntstatus_to_werror ( status ) ;
goto done ;
}
done :
if ( cli ) {
cli_shutdown ( cli ) ;
}
return werr ;
}
2007-12-18 04:54:18 +03:00
2008-01-18 04:38:35 +03:00
/****************************************************************
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * */
2007-12-19 15:52:51 +03:00
static WERROR NetGetJoinInformationLocal ( struct libnetapi_ctx * ctx ,
const char * server_name ,
const char * * name_buffer ,
uint16_t * name_type )
{
if ( ( lp_security ( ) = = SEC_ADS ) & & lp_realm ( ) ) {
2008-01-08 13:54:51 +03:00
* name_buffer = talloc_strdup ( ctx , lp_realm ( ) ) ;
2007-12-19 15:52:51 +03:00
} else {
2008-01-08 13:54:51 +03:00
* name_buffer = talloc_strdup ( ctx , lp_workgroup ( ) ) ;
2007-12-19 15:52:51 +03:00
}
if ( ! * name_buffer ) {
return WERR_NOMEM ;
}
switch ( lp_server_role ( ) ) {
case ROLE_DOMAIN_MEMBER :
case ROLE_DOMAIN_PDC :
case ROLE_DOMAIN_BDC :
* name_type = NetSetupDomainName ;
break ;
case ROLE_STANDALONE :
default :
* name_type = NetSetupWorkgroupName ;
break ;
}
return WERR_OK ;
}
2007-12-20 14:12:06 +03:00
static WERROR libnetapi_NetGetJoinInformation ( struct libnetapi_ctx * ctx ,
const char * server_name ,
const char * * name_buffer ,
uint16_t * name_type )
2007-12-19 15:52:51 +03:00
{
if ( ! server_name | | is_myname_or_ipaddr ( server_name ) ) {
return NetGetJoinInformationLocal ( ctx ,
server_name ,
name_buffer ,
name_type ) ;
}
return NetGetJoinInformationRemote ( ctx ,
server_name ,
name_buffer ,
name_type ) ;
}
2008-01-18 04:38:35 +03:00
/****************************************************************
NetGetJoinInformation
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * */
2007-12-18 04:54:18 +03:00
NET_API_STATUS NetGetJoinInformation ( const char * server_name ,
const char * * name_buffer ,
uint16_t * name_type )
{
struct libnetapi_ctx * ctx = NULL ;
NET_API_STATUS status ;
WERROR werr ;
status = libnetapi_getctx ( & ctx ) ;
if ( status ! = 0 ) {
return status ;
}
werr = libnetapi_NetGetJoinInformation ( ctx ,
server_name ,
name_buffer ,
name_type ) ;
if ( ! W_ERROR_IS_OK ( werr ) ) {
return W_ERROR_V ( werr ) ;
}
2008-01-18 04:38:35 +03:00
return NET_API_STATUS_SUCCESS ;
2007-12-18 04:54:18 +03:00
}
2008-01-18 04:50:33 +03:00
/****************************************************************
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * */
static WERROR NetGetJoinableOUsLocal ( struct libnetapi_ctx * ctx ,
const char * server_name ,
const char * domain ,
const char * account ,
const char * password ,
uint32_t * ou_count ,
const char * * * ous )
{
NTSTATUS status ;
ADS_STATUS ads_status ;
ADS_STRUCT * ads = NULL ;
struct DS_DOMAIN_CONTROLLER_INFO * info = NULL ;
uint32_t flags = DS_DIRECTORY_SERVICE_REQUIRED |
DS_RETURN_DNS_NAME ;
status = dsgetdcname ( ctx , NULL , domain ,
NULL , NULL , flags , & info ) ;
if ( ! NT_STATUS_IS_OK ( status ) ) {
libnetapi_set_error_string ( ctx , " %s " ,
get_friendly_nt_error_msg ( status ) ) ;
return ntstatus_to_werror ( status ) ;
}
ads = ads_init ( domain , domain , info - > domain_controller_name ) ;
if ( ! ads ) {
return WERR_GENERAL_FAILURE ;
}
SAFE_FREE ( ads - > auth . user_name ) ;
if ( account ) {
ads - > auth . user_name = SMB_STRDUP ( account ) ;
} else if ( ctx - > username ) {
ads - > auth . user_name = SMB_STRDUP ( ctx - > username ) ;
}
SAFE_FREE ( ads - > auth . password ) ;
if ( password ) {
ads - > auth . password = SMB_STRDUP ( password ) ;
} else if ( ctx - > password ) {
ads - > auth . password = SMB_STRDUP ( ctx - > password ) ;
}
ads_status = ads_connect ( ads ) ;
if ( ! ADS_ERR_OK ( ads_status ) ) {
ads_destroy ( & ads ) ;
return WERR_DEFAULT_JOIN_REQUIRED ;
}
ads_status = ads_get_joinable_ous ( ads , ctx ,
( char * * * ) ous ,
( size_t * ) ou_count ) ;
if ( ! ADS_ERR_OK ( ads_status ) ) {
ads_destroy ( & ads ) ;
return WERR_DEFAULT_JOIN_REQUIRED ;
}
ads_destroy ( & ads ) ;
return WERR_OK ;
}
/****************************************************************
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * */
static WERROR NetGetJoinableOUsRemote ( struct libnetapi_ctx * ctx ,
const char * server_name ,
const char * domain ,
const char * account ,
const char * password ,
uint32_t * ou_count ,
const char * * * ous )
{
struct cli_state * cli = NULL ;
struct rpc_pipe_client * pipe_cli = NULL ;
struct wkssvc_PasswordBuffer * encrypted_password = NULL ;
NTSTATUS status ;
WERROR werr ;
status = cli_full_connection ( & cli , NULL , server_name ,
NULL , 0 ,
" IPC$ " , " IPC " ,
ctx - > username ,
ctx - > workgroup ,
ctx - > password ,
0 , Undefined , NULL ) ;
if ( ! NT_STATUS_IS_OK ( status ) ) {
werr = ntstatus_to_werror ( status ) ;
goto done ;
}
pipe_cli = cli_rpc_pipe_open_noauth ( cli , PI_WKSSVC ,
& status ) ;
if ( ! pipe_cli ) {
werr = ntstatus_to_werror ( status ) ;
goto done ;
}
if ( password ) {
encode_wkssvc_join_password_buffer ( ctx ,
password ,
& cli - > user_session_key ,
& encrypted_password ) ;
}
status = rpccli_wkssvc_NetrGetJoinableOus2 ( pipe_cli , ctx ,
server_name ,
domain ,
account ,
encrypted_password ,
ou_count ,
ous ,
& werr ) ;
if ( ! NT_STATUS_IS_OK ( status ) ) {
werr = ntstatus_to_werror ( status ) ;
goto done ;
}
done :
if ( cli ) {
cli_shutdown ( cli ) ;
}
return werr ;
}
/****************************************************************
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * */
static WERROR libnetapi_NetGetJoinableOUs ( struct libnetapi_ctx * ctx ,
const char * server_name ,
const char * domain ,
const char * account ,
const char * password ,
uint32_t * ou_count ,
const char * * * ous )
{
if ( ! server_name | | is_myname_or_ipaddr ( server_name ) ) {
return NetGetJoinableOUsLocal ( ctx ,
server_name ,
domain ,
account ,
password ,
ou_count ,
ous ) ;
}
return NetGetJoinableOUsRemote ( ctx ,
server_name ,
domain ,
account ,
password ,
ou_count ,
ous ) ;
}
/****************************************************************
NetGetJoinableOUs
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * */
NET_API_STATUS NetGetJoinableOUs ( const char * server_name ,
const char * domain ,
const char * account ,
const char * password ,
uint32_t * ou_count ,
const char * * * ous )
{
struct libnetapi_ctx * ctx = NULL ;
NET_API_STATUS status ;
WERROR werr ;
status = libnetapi_getctx ( & ctx ) ;
if ( status ! = 0 ) {
return status ;
}
werr = libnetapi_NetGetJoinableOUs ( ctx ,
server_name ,
domain ,
account ,
password ,
ou_count ,
ous ) ;
if ( ! W_ERROR_IS_OK ( werr ) ) {
return W_ERROR_V ( werr ) ;
}
return NET_API_STATUS_SUCCESS ;
}