mirror of
https://github.com/samba-team/samba.git
synced 2025-11-04 00:23:49 +03:00
122 lines
3.6 KiB
C
122 lines
3.6 KiB
C
/*
|
|
Unix SMB/CIFS mplementation.
|
|
|
|
The module that handles the PDC FSMO Role Owner checkings
|
|
|
|
Copyright (C) Stefan Metzmacher 2007
|
|
|
|
This program is free software; you can redistribute it and/or modify
|
|
it under the terms of the GNU General Public License as published by
|
|
the Free Software Foundation; either version 3 of the License, or
|
|
(at your option) any later version.
|
|
|
|
This program is distributed in the hope that it will be useful,
|
|
but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
GNU General Public License for more details.
|
|
|
|
You should have received a copy of the GNU General Public License
|
|
along with this program. If not, see <http://www.gnu.org/licenses/>.
|
|
|
|
*/
|
|
|
|
#include "includes.h"
|
|
#include "lib/ldb/include/ldb.h"
|
|
#include "lib/ldb/include/ldb_errors.h"
|
|
#include "lib/ldb/include/ldb_private.h"
|
|
#include "dsdb/samdb/samdb.h"
|
|
#include "librpc/gen_ndr/ndr_misc.h"
|
|
#include "librpc/gen_ndr/ndr_drsuapi.h"
|
|
#include "librpc/gen_ndr/ndr_drsblobs.h"
|
|
#include "lib/util/dlinklist.h"
|
|
|
|
static int pdc_fsmo_init(struct ldb_module *module)
|
|
{
|
|
TALLOC_CTX *mem_ctx;
|
|
struct ldb_dn *pdc_dn;
|
|
struct dsdb_pdc_fsmo *pdc_fsmo;
|
|
struct ldb_result *pdc_res;
|
|
int ret;
|
|
static const char *pdc_attrs[] = {
|
|
"fSMORoleOwner",
|
|
NULL
|
|
};
|
|
|
|
mem_ctx = talloc_new(module);
|
|
if (!mem_ctx) {
|
|
ldb_oom(module->ldb);
|
|
return LDB_ERR_OPERATIONS_ERROR;
|
|
}
|
|
|
|
pdc_dn = samdb_base_dn(module->ldb);
|
|
if (!pdc_dn) {
|
|
ldb_debug(module->ldb, LDB_DEBUG_WARNING,
|
|
"pdc_fsmo_init: no domain dn present: (skip loading of domain details)\n");
|
|
talloc_free(mem_ctx);
|
|
return ldb_next_init(module);
|
|
}
|
|
|
|
pdc_fsmo = talloc_zero(mem_ctx, struct dsdb_pdc_fsmo);
|
|
if (!pdc_fsmo) {
|
|
ldb_oom(module->ldb);
|
|
return LDB_ERR_OPERATIONS_ERROR;
|
|
}
|
|
module->private_data = pdc_fsmo;
|
|
|
|
ret = ldb_search(module->ldb, pdc_dn,
|
|
LDB_SCOPE_BASE,
|
|
NULL, pdc_attrs,
|
|
&pdc_res);
|
|
if (ret == LDB_ERR_NO_SUCH_OBJECT) {
|
|
ldb_debug(module->ldb, LDB_DEBUG_WARNING,
|
|
"pdc_fsmo_init: no domain object present: (skip loading of domain details)\n");
|
|
talloc_free(mem_ctx);
|
|
return ldb_next_init(module);
|
|
} else if (ret != LDB_SUCCESS) {
|
|
ldb_debug_set(module->ldb, LDB_DEBUG_FATAL,
|
|
"pdc_fsmo_init: failed to search the domain object: %d:%s",
|
|
ret, ldb_strerror(ret));
|
|
talloc_free(mem_ctx);
|
|
return ret;
|
|
}
|
|
talloc_steal(mem_ctx, pdc_res);
|
|
if (pdc_res->count == 0) {
|
|
ldb_debug(module->ldb, LDB_DEBUG_WARNING,
|
|
"pdc_fsmo_init: no domain object present: (skip loading of domain details)\n");
|
|
talloc_free(mem_ctx);
|
|
return ldb_next_init(module);
|
|
} else if (pdc_res->count > 1) {
|
|
ldb_debug_set(module->ldb, LDB_DEBUG_FATAL,
|
|
"pdc_fsmo_init: [%u] domain objects found on a base search",
|
|
pdc_res->count);
|
|
talloc_free(mem_ctx);
|
|
return LDB_ERR_CONSTRAINT_VIOLATION;
|
|
}
|
|
|
|
pdc_fsmo->master_dn = ldb_msg_find_attr_as_dn(module->ldb, mem_ctx, pdc_res->msgs[0], "fSMORoleOwner");
|
|
if (ldb_dn_compare(samdb_ntds_settings_dn(module->ldb), pdc_fsmo->master_dn) == 0) {
|
|
pdc_fsmo->we_are_master = true;
|
|
} else {
|
|
pdc_fsmo->we_are_master = false;
|
|
}
|
|
|
|
if (ldb_set_opaque(module->ldb, "dsdb_pdc_fsmo", pdc_fsmo) != LDB_SUCCESS) {
|
|
ldb_oom(module->ldb);
|
|
return LDB_ERR_OPERATIONS_ERROR;
|
|
}
|
|
|
|
talloc_steal(module, pdc_fsmo);
|
|
|
|
ldb_debug(module->ldb, LDB_DEBUG_TRACE,
|
|
"pdc_fsmo_init: we are master: %s\n",
|
|
(pdc_fsmo->we_are_master?"yes":"no"));
|
|
|
|
talloc_free(mem_ctx);
|
|
return ldb_next_init(module);
|
|
}
|
|
|
|
_PUBLIC_ const struct ldb_module_ops ldb_pdc_fsmo_module_ops = {
|
|
.name = "pdc_fsmo",
|
|
.init_context = pdc_fsmo_init
|
|
};
|