mirror of
https://github.com/samba-team/samba.git
synced 2025-01-05 09:18:06 +03:00
libnet4: Use netlogon_pings() in findsite
Enable LDAPS lookups Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
This commit is contained in:
parent
3ecb665422
commit
42cafe481d
@ -20,6 +20,7 @@
|
|||||||
#include "includes.h"
|
#include "includes.h"
|
||||||
#include "libnet/libnet.h"
|
#include "libnet/libnet.h"
|
||||||
#include "libcli/cldap/cldap.h"
|
#include "libcli/cldap/cldap.h"
|
||||||
|
#include "source3/libads/netlogon_ping.h"
|
||||||
#include <ldb.h>
|
#include <ldb.h>
|
||||||
#include <ldb_errors.h>
|
#include <ldb_errors.h>
|
||||||
#include "libcli/resolve/resolve.h"
|
#include "libcli/resolve/resolve.h"
|
||||||
@ -39,10 +40,9 @@ NTSTATUS libnet_FindSite(TALLOC_CTX *ctx, struct libnet_context *lctx, struct li
|
|||||||
char *config_dn_str = NULL;
|
char *config_dn_str = NULL;
|
||||||
char *server_dn_str = NULL;
|
char *server_dn_str = NULL;
|
||||||
|
|
||||||
struct cldap_socket *cldap = NULL;
|
|
||||||
struct cldap_netlogon search = {};
|
|
||||||
int ret;
|
int ret;
|
||||||
struct tsocket_address *dest_address = NULL;
|
struct tsocket_address *dest_address = NULL;
|
||||||
|
struct netlogon_samlogon_response **responses = NULL;
|
||||||
|
|
||||||
tmp_ctx = talloc_named(ctx, 0, "libnet_FindSite temp context");
|
tmp_ctx = talloc_named(ctx, 0, "libnet_FindSite temp context");
|
||||||
if (!tmp_ctx) {
|
if (!tmp_ctx) {
|
||||||
@ -50,12 +50,11 @@ NTSTATUS libnet_FindSite(TALLOC_CTX *ctx, struct libnet_context *lctx, struct li
|
|||||||
goto nomem;
|
goto nomem;
|
||||||
}
|
}
|
||||||
|
|
||||||
/* Resolve the site name. */
|
site_name_str = talloc_strdup(tmp_ctx, "Default-First-Site-Name");
|
||||||
ZERO_STRUCT(search);
|
if (site_name_str == NULL) {
|
||||||
search.in.dest_address = NULL;
|
r->out.error_string = NULL;
|
||||||
search.in.dest_port = 0;
|
goto nomem;
|
||||||
search.in.acct_control = -1;
|
}
|
||||||
search.in.version = NETLOGON_NT_VERSION_5 | NETLOGON_NT_VERSION_5EX;
|
|
||||||
|
|
||||||
ret = tsocket_address_inet_from_strings(
|
ret = tsocket_address_inet_from_strings(
|
||||||
tmp_ctx, "ip", r->in.dest_address, 389, &dest_address);
|
tmp_ctx, "ip", r->in.dest_address, 389, &dest_address);
|
||||||
@ -65,38 +64,36 @@ NTSTATUS libnet_FindSite(TALLOC_CTX *ctx, struct libnet_context *lctx, struct li
|
|||||||
goto fail;
|
goto fail;
|
||||||
}
|
}
|
||||||
|
|
||||||
/* we want to use non async calls, so we're not passing an event context */
|
status = netlogon_pings(tmp_ctx, /* mem_ctx */
|
||||||
status = cldap_socket_init(tmp_ctx, NULL, dest_address, &cldap);
|
lpcfg_client_netlogon_ping_protocol(
|
||||||
if (!NT_STATUS_IS_OK(status)) {
|
lctx->lp_ctx), /* proto */
|
||||||
r->out.error_string = NULL;
|
&dest_address, /* servers*/
|
||||||
goto fail;
|
1, /* num_servers */
|
||||||
}
|
(struct netlogon_ping_filter){
|
||||||
status = cldap_netlogon(cldap, tmp_ctx, &search);
|
.ntversion = NETLOGON_NT_VERSION_5 |
|
||||||
|
NETLOGON_NT_VERSION_5EX,
|
||||||
|
.acct_ctrl = -1,
|
||||||
|
},
|
||||||
|
1, /* min_servers */
|
||||||
|
tevent_timeval_current_ofs(2, 0), /* timeout */
|
||||||
|
&responses);
|
||||||
|
|
||||||
if (NT_STATUS_IS_OK(status)) {
|
if (NT_STATUS_IS_OK(status)) {
|
||||||
map_netlogon_samlogon_response(search.out.netlogon);
|
struct netlogon_samlogon_response *resp = responses[0];
|
||||||
}
|
struct NETLOGON_SAM_LOGON_RESPONSE_EX
|
||||||
if (!NT_STATUS_IS_OK(status) ||
|
*nt5ex = &resp->data.nt5_ex;
|
||||||
search.out.netlogon->data.nt5_ex.client_site == NULL ||
|
|
||||||
search.out.netlogon->data.nt5_ex.client_site[0] == '\0')
|
map_netlogon_samlogon_response(resp);
|
||||||
|
|
||||||
|
if ((nt5ex->client_site != NULL) ||
|
||||||
|
(nt5ex->client_site[0] != '\0'))
|
||||||
{
|
{
|
||||||
/*
|
site_name_str = talloc_strdup(tmp_ctx,
|
||||||
If cldap_netlogon() returns in error,
|
nt5ex->client_site);
|
||||||
default to using Default-First-Site-Name.
|
if (site_name_str == NULL) {
|
||||||
*/
|
|
||||||
site_name_str = talloc_asprintf(tmp_ctx, "%s",
|
|
||||||
"Default-First-Site-Name");
|
|
||||||
if (!site_name_str) {
|
|
||||||
r->out.error_string = NULL;
|
r->out.error_string = NULL;
|
||||||
goto nomem;
|
goto nomem;
|
||||||
}
|
}
|
||||||
} else {
|
|
||||||
site_name_str = talloc_asprintf(
|
|
||||||
tmp_ctx,
|
|
||||||
"%s",
|
|
||||||
search.out.netlogon->data.nt5_ex.client_site);
|
|
||||||
if (!site_name_str) {
|
|
||||||
r->out.error_string = NULL;
|
|
||||||
goto nomem;
|
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
|
@ -10,7 +10,7 @@ bld.SAMBA_LIBRARY('samba-net',
|
|||||||
source='libnet.c libnet_passwd.c libnet_time.c libnet_rpc.c libnet_site.c libnet_become_dc.c libnet_unbecome_dc.c libnet_user.c libnet_group.c libnet_share.c libnet_lookup.c libnet_domain.c userinfo.c groupinfo.c userman.c groupman.c prereq_domain.c',
|
source='libnet.c libnet_passwd.c libnet_time.c libnet_rpc.c libnet_site.c libnet_become_dc.c libnet_unbecome_dc.c libnet_user.c libnet_group.c libnet_share.c libnet_lookup.c libnet_domain.c userinfo.c groupinfo.c userman.c groupman.c prereq_domain.c',
|
||||||
autoproto=auto_proto,
|
autoproto=auto_proto,
|
||||||
deps='INIT_SAMR',
|
deps='INIT_SAMR',
|
||||||
public_deps='samba-credentials dcerpc dcerpc-samr RPC_NDR_LSA RPC_NDR_SRVSVC RPC_NDR_DRSUAPI cli_composite LIBCLI_RESOLVE LIBCLI_FINDDCS cli_cldap LIBCLI_FINDDCS gensec_schannel LIBCLI_AUTH ndr smbpasswdparser LIBCLI_SAMSYNC LIBTSOCKET GNUTLS_HELPERS',
|
public_deps='samba-credentials dcerpc dcerpc-samr RPC_NDR_LSA RPC_NDR_SRVSVC RPC_NDR_DRSUAPI cli_composite LIBCLI_RESOLVE LIBCLI_FINDDCS NETLOGON_PING LIBCLI_FINDDCS gensec_schannel LIBCLI_AUTH ndr smbpasswdparser LIBCLI_SAMSYNC LIBTSOCKET GNUTLS_HELPERS',
|
||||||
private_library=True
|
private_library=True
|
||||||
)
|
)
|
||||||
|
|
||||||
|
Loading…
Reference in New Issue
Block a user