2025-01-27 14:04:05 +03:00 · 2022-11-01 12:34:57 +13:00 · 2022-11-01 12:34:57 +13:00 · 2408d405d3
commit 2408d405d3
parent 91b74c701a
2 changed files with 12 additions and 3 deletions
--- a/python/samba/drs_utils.py
+++ b/python/samba/drs_utils.py
@ -41,12 +41,13 @@ class drsException(Exception):
        return "drsException: " + self.value


-def drsuapi_connect(server, lp, creds):
+def drsuapi_connect(server, lp, creds, ip=None):
    """Make a DRSUAPI connection to the server.

    :param server: the name of the server to connect to
    :param lp: a samba line parameter object
    :param creds: credential used for the connection
+    :param ip: Forced target server name
    :return: A tuple with the drsuapi bind object, the drsuapi handle
                and the supported extensions.
    :raise drsException: if the connection fails
@ -55,7 +56,14 @@ def drsuapi_connect(server, lp, creds):
    binding_options = "seal"
    if lp.log_level() >= 9:
        binding_options += ",print"
-    binding_string = "ncacn_ip_tcp:%s[%s]" % (server, binding_options)
+
+    # Allow forcing the IP
+    if ip is not None:
+        binding_options += f",target_hostname={server}"
+        binding_string = f"ncacn_ip_tcp:{ip}[{binding_options}]"
+    else:
+        binding_string = "ncacn_ip_tcp:%s[%s]" % (server, binding_options)
+
    try:
        drsuapiBind = drsuapi.drsuapi(binding_string, lp, creds)
        (drsuapiHandle, bindSupportedExtensions) = drs_DsBind(drsuapiBind)
--- a/python/samba/tests/krb5/kdc_base_test.py
+++ b/python/samba/tests/krb5/kdc_base_test.py
@ -487,7 +487,8 @@ class KDCBaseTest(RawKerberosTest):
        dns_hostname = samdb.host_dns_name()
        (bind, handle, _) = drsuapi_connect(dns_hostname,
                                            self.get_lp(),
-                                            admin_creds)
+                                            admin_creds,
+                                            ip=self.dc_host)

        req = drsuapi.DsGetNCChangesRequest8()