2 Unix SMB/CIFS implementation.
4 Copyright (C) Andrew Tridgell 1994-1998
5 Copyright (C) Jeremy Allison 2007.
7 This program is free software; you can redistribute it and/or modify
8 it under the terms of the GNU General Public License as published by
9 the Free Software Foundation; either version 3 of the License, or
10 (at your option) any later version.
12 This program is distributed in the hope that it will be useful,
13 but WITHOUT ANY WARRANTY; without even the implied warranty of
14 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
15 GNU General Public License for more details.
17 You should have received a copy of the GNU General Public License
18 along with this program. If not, see <http://www.gnu.org/licenses/>.
22 #include "libads/sitename_cache.h"
24 /* nmbd.c sets this to True. */
25 bool global_in_nmbd = False;
27 /****************************
28 * SERVER AFFINITY ROUTINES *
29 ****************************/
31 /* Server affinity is the concept of preferring the last domain
32 controller with whom you had a successful conversation */
34 /****************************************************************************
35 ****************************************************************************/
36 #define SAFKEY_FMT "SAF/DOMAIN/%s"
38 #define SAFJOINKEY_FMT "SAFJOIN/DOMAIN/%s"
39 #define SAFJOIN_TTL 3600
41 static char *saf_key(const char *domain)
45 asprintf_strupper_m(&keystr, SAFKEY_FMT, domain);
50 static char *saf_join_key(const char *domain)
54 asprintf_strupper_m(&keystr, SAFJOINKEY_FMT, domain);
59 /****************************************************************************
60 ****************************************************************************/
62 bool saf_store( const char *domain, const char *servername )
68 if ( !domain || !servername ) {
69 DEBUG(2,("saf_store: "
70 "Refusing to store empty domain or servername!\n"));
74 if ( (strlen(domain) == 0) || (strlen(servername) == 0) ) {
75 DEBUG(0,("saf_store: "
76 "refusing to store 0 length domain or servername!\n"));
80 key = saf_key( domain );
81 expire = time( NULL ) + lp_parm_int(-1, "saf","ttl", SAF_TTL);
83 DEBUG(10,("saf_store: domain = [%s], server = [%s], expire = [%u]\n",
84 domain, servername, (unsigned int)expire ));
86 ret = gencache_set( key, servername, expire );
93 bool saf_join_store( const char *domain, const char *servername )
99 if ( !domain || !servername ) {
100 DEBUG(2,("saf_join_store: Refusing to store empty domain or servername!\n"));
104 if ( (strlen(domain) == 0) || (strlen(servername) == 0) ) {
105 DEBUG(0,("saf_join_store: refusing to store 0 length domain or servername!\n"));
109 key = saf_join_key( domain );
110 expire = time( NULL ) + lp_parm_int(-1, "saf","join ttl", SAFJOIN_TTL);
112 DEBUG(10,("saf_join_store: domain = [%s], server = [%s], expire = [%u]\n",
113 domain, servername, (unsigned int)expire ));
115 ret = gencache_set( key, servername, expire );
122 bool saf_delete( const char *domain )
128 DEBUG(2,("saf_delete: Refusing to delete empty domain\n"));
132 key = saf_join_key(domain);
133 ret = gencache_del(key);
137 DEBUG(10,("saf_delete[join]: domain = [%s]\n", domain ));
140 key = saf_key(domain);
141 ret = gencache_del(key);
145 DEBUG(10,("saf_delete: domain = [%s]\n", domain ));
151 /****************************************************************************
152 ****************************************************************************/
154 char *saf_fetch( const char *domain )
161 if ( !domain || strlen(domain) == 0) {
162 DEBUG(2,("saf_fetch: Empty domain name!\n"));
166 key = saf_join_key( domain );
168 ret = gencache_get( key, &server, &timeout );
173 DEBUG(5,("saf_fetch[join]: Returning \"%s\" for \"%s\" domain\n",
178 key = saf_key( domain );
180 ret = gencache_get( key, &server, &timeout );
185 DEBUG(5,("saf_fetch: failed to find server for \"%s\" domain\n",
188 DEBUG(5,("saf_fetch: Returning \"%s\" for \"%s\" domain\n",
195 /****************************************************************************
196 Generate a random trn_id.
197 ****************************************************************************/
199 static int generate_trn_id(void)
203 generate_random_buffer((uint8 *)&id, sizeof(id));
205 return id % (unsigned)0x7FFF;
208 /****************************************************************************
209 Parse a node status response into an array of structures.
210 ****************************************************************************/
212 static NODE_STATUS_STRUCT *parse_node_status(char *p,
214 struct node_status_extra *extra)
216 NODE_STATUS_STRUCT *ret;
219 *num_names = CVAL(p,0);
224 ret = SMB_MALLOC_ARRAY(NODE_STATUS_STRUCT,*num_names);
229 for (i=0;i< *num_names;i++) {
230 StrnCpy(ret[i].name,p,15);
231 trim_char(ret[i].name,'\0',' ');
232 ret[i].type = CVAL(p,15);
233 ret[i].flags = p[16];
235 DEBUG(10, ("%s#%02x: flags = 0x%02x\n", ret[i].name,
236 ret[i].type, ret[i].flags));
239 * Also, pick up the MAC address ...
242 memcpy(&extra->mac_addr, p, 6); /* Fill in the mac addr */
248 /****************************************************************************
249 Do a NBT node status query on an open socket and return an array of
250 structures holding the returned names or NULL if the query failed.
251 **************************************************************************/
253 NODE_STATUS_STRUCT *node_status_query(int fd,
254 struct nmb_name *name,
255 const struct sockaddr_storage *to_ss,
257 struct node_status_extra *extra)
261 int retry_time = 2000;
263 struct packet_struct p;
264 struct packet_struct *p2;
265 struct nmb_packet *nmb = &p.packet.nmb;
266 NODE_STATUS_STRUCT *ret;
270 if (to_ss->ss_family != AF_INET) {
271 /* Can't do node status to IPv6 */
274 nmb->header.name_trn_id = generate_trn_id();
275 nmb->header.opcode = 0;
276 nmb->header.response = false;
277 nmb->header.nm_flags.bcast = false;
278 nmb->header.nm_flags.recursion_available = false;
279 nmb->header.nm_flags.recursion_desired = false;
280 nmb->header.nm_flags.trunc = false;
281 nmb->header.nm_flags.authoritative = false;
282 nmb->header.rcode = 0;
283 nmb->header.qdcount = 1;
284 nmb->header.ancount = 0;
285 nmb->header.nscount = 0;
286 nmb->header.arcount = 0;
287 nmb->question.question_name = *name;
288 nmb->question.question_type = 0x21;
289 nmb->question.question_class = 0x1;
291 p.ip = ((const struct sockaddr_in *)to_ss)->sin_addr;
295 p.timestamp = time(NULL);
296 p.packet_type = NMB_PACKET;
300 if (!send_packet(&p))
306 struct timeval tval2;
307 GetTimeOfDay(&tval2);
308 if (TvalDiff(&tval,&tval2) > retry_time) {
311 if (!found && !send_packet(&p))
317 if ((p2=receive_nmb_packet(fd,90,nmb->header.name_trn_id))) {
318 struct nmb_packet *nmb2 = &p2->packet.nmb;
319 debug_nmb_packet(p2);
321 if (nmb2->header.opcode != 0 ||
322 nmb2->header.nm_flags.bcast ||
323 nmb2->header.rcode ||
324 !nmb2->header.ancount ||
325 nmb2->answers->rr_type != 0x21) {
326 /* XXXX what do we do with this? could be a
327 redirect, but we'll discard it for the
333 ret = parse_node_status(&nmb2->answers->rdata[0],
343 /****************************************************************************
344 Find the first type XX name in a node status reply - used for finding
345 a servers name given its IP. Return the matched name in *name.
346 **************************************************************************/
348 bool name_status_find(const char *q_name,
351 const struct sockaddr_storage *to_ss,
354 char addr[INET6_ADDRSTRLEN];
355 struct sockaddr_storage ss;
356 NODE_STATUS_STRUCT *status = NULL;
357 struct nmb_name nname;
362 if (lp_disable_netbios()) {
363 DEBUG(5,("name_status_find(%s#%02x): netbios is disabled\n",
368 print_sockaddr(addr, sizeof(addr), to_ss);
370 DEBUG(10, ("name_status_find: looking up %s#%02x at %s\n", q_name,
373 /* Check the cache first. */
375 if (namecache_status_fetch(q_name, q_type, type, to_ss, name)) {
379 if (to_ss->ss_family != AF_INET) {
380 /* Can't do node status to IPv6 */
384 if (!interpret_string_addr(&ss, lp_socket_address(),
385 AI_NUMERICHOST|AI_PASSIVE)) {
389 sock = open_socket_in(SOCK_DGRAM, 0, 3, &ss, True);
393 /* W2K PDC's seem not to respond to '*'#0. JRA */
394 make_nmb_name(&nname, q_name, q_type);
395 status = node_status_query(sock, &nname, to_ss, &count, NULL);
400 for (i=0;i<count;i++) {
401 /* Find first one of the requested type that's not a GROUP. */
402 if (status[i].type == type && ! (status[i].flags & 0x80))
408 pull_ascii_nstring(name, sizeof(fstring), status[i].name);
410 /* Store the result in the cache. */
411 /* but don't store an entry for 0x1c names here. Here we have
412 a single host and DOMAIN<0x1c> names should be a list of hosts */
414 if ( q_type != 0x1c ) {
415 namecache_status_store(q_name, q_type, type, to_ss, name);
423 DEBUG(10, ("name_status_find: name %sfound", result ? "" : "not "));
426 DEBUGADD(10, (", name %s ip address is %s", name, addr));
434 comparison function used by sort_addr_list
437 static int addr_compare(const struct sockaddr_storage *ss1,
438 const struct sockaddr_storage *ss2)
440 int max_bits1=0, max_bits2=0;
441 int num_interfaces = iface_count();
444 /* Sort IPv4 addresses first. */
445 if (ss1->ss_family != ss2->ss_family) {
446 if (ss2->ss_family == AF_INET) {
453 /* Here we know both addresses are of the same
456 for (i=0;i<num_interfaces;i++) {
457 const struct sockaddr_storage *pss = iface_n_bcast(i);
458 unsigned char *p_ss1 = NULL;
459 unsigned char *p_ss2 = NULL;
460 unsigned char *p_if = NULL;
464 if (pss->ss_family != ss1->ss_family) {
465 /* Ignore interfaces of the wrong type. */
468 if (pss->ss_family == AF_INET) {
469 p_if = (unsigned char *)
470 &((const struct sockaddr_in *)pss)->sin_addr;
471 p_ss1 = (unsigned char *)
472 &((const struct sockaddr_in *)ss1)->sin_addr;
473 p_ss2 = (unsigned char *)
474 &((const struct sockaddr_in *)ss2)->sin_addr;
477 #if defined(HAVE_IPV6)
478 if (pss->ss_family == AF_INET6) {
479 p_if = (unsigned char *)
480 &((const struct sockaddr_in6 *)pss)->sin6_addr;
481 p_ss1 = (unsigned char *)
482 &((const struct sockaddr_in6 *)ss1)->sin6_addr;
483 p_ss2 = (unsigned char *)
484 &((const struct sockaddr_in6 *)ss2)->sin6_addr;
488 if (!p_ss1 || !p_ss2 || !p_if || len == 0) {
491 bits1 = matching_len_bits(p_ss1, p_if, len);
492 bits2 = matching_len_bits(p_ss2, p_if, len);
493 max_bits1 = MAX(bits1, max_bits1);
494 max_bits2 = MAX(bits2, max_bits2);
497 /* Bias towards directly reachable IPs */
498 if (iface_local((struct sockaddr *)ss1)) {
499 if (ss1->ss_family == AF_INET) {
505 if (iface_local((struct sockaddr *)ss2)) {
506 if (ss2->ss_family == AF_INET) {
512 return max_bits2 - max_bits1;
515 /*******************************************************************
516 compare 2 ldap IPs by nearness to our interfaces - used in qsort
517 *******************************************************************/
519 int ip_service_compare(struct ip_service *ss1, struct ip_service *ss2)
523 if ((result = addr_compare(&ss1->ss, &ss2->ss)) != 0) {
527 if (ss1->port > ss2->port) {
531 if (ss1->port < ss2->port) {
539 sort an IP list so that names that are close to one of our interfaces
540 are at the top. This prevents the problem where a WINS server returns an IP
541 that is not reachable from our subnet as the first match
544 static void sort_addr_list(struct sockaddr_storage *sslist, int count)
550 TYPESAFE_QSORT(sslist, count, addr_compare);
553 static void sort_service_list(struct ip_service *servlist, int count)
559 TYPESAFE_QSORT(servlist, count, ip_service_compare);
562 /**********************************************************************
563 Remove any duplicate address/port pairs in the list
564 *********************************************************************/
566 static int remove_duplicate_addrs2(struct ip_service *iplist, int count )
570 DEBUG(10,("remove_duplicate_addrs2: "
571 "looking for duplicate address/port pairs\n"));
573 /* one loop to remove duplicates */
574 for ( i=0; i<count; i++ ) {
575 if ( is_zero_addr((struct sockaddr *)&iplist[i].ss)) {
579 for ( j=i+1; j<count; j++ ) {
580 if (sockaddr_equal((struct sockaddr *)&iplist[i].ss, (struct sockaddr *)&iplist[j].ss) &&
581 iplist[i].port == iplist[j].port) {
582 zero_sockaddr(&iplist[j].ss);
587 /* one loop to clean up any holes we left */
588 /* first ip should never be a zero_ip() */
589 for (i = 0; i<count; ) {
590 if (is_zero_addr((struct sockaddr *)&iplist[i].ss) ) {
592 memmove(&iplist[i], &iplist[i+1],
593 (count - i - 1)*sizeof(iplist[i]));
604 static bool prioritize_ipv4_list(struct ip_service *iplist, int count)
606 TALLOC_CTX *frame = talloc_stackframe();
607 struct ip_service *iplist_new = TALLOC_ARRAY(frame, struct ip_service, count);
610 if (iplist_new == NULL) {
617 /* Copy IPv4 first. */
618 for (i = 0; i < count; i++) {
619 if (iplist[i].ss.ss_family == AF_INET) {
620 iplist_new[j++] = iplist[i];
625 for (i = 0; i < count; i++) {
626 if (iplist[i].ss.ss_family != AF_INET) {
627 iplist_new[j++] = iplist[i];
631 memcpy(iplist, iplist_new, sizeof(struct ip_service)*count);
636 /****************************************************************************
637 Do a netbios name query to find someones IP.
638 Returns an array of IP addresses or NULL if none.
639 *count will be set to the number of addresses returned.
640 *timed_out is set if we failed by timing out
641 ****************************************************************************/
643 struct sockaddr_storage *name_query(int fd,
648 const struct sockaddr_storage *to_ss,
655 int retry_time = bcast?250:2000;
657 struct packet_struct p;
658 struct packet_struct *p2;
659 struct nmb_packet *nmb = &p.packet.nmb;
660 struct sockaddr_storage *ss_list = NULL;
662 if (lp_disable_netbios()) {
663 DEBUG(5,("name_query(%s#%02x): netbios is disabled\n",
668 if (to_ss->ss_family != AF_INET) {
676 memset((char *)&p,'\0',sizeof(p));
680 nmb->header.name_trn_id = generate_trn_id();
681 nmb->header.opcode = 0;
682 nmb->header.response = false;
683 nmb->header.nm_flags.bcast = bcast;
684 nmb->header.nm_flags.recursion_available = false;
685 nmb->header.nm_flags.recursion_desired = recurse;
686 nmb->header.nm_flags.trunc = false;
687 nmb->header.nm_flags.authoritative = false;
688 nmb->header.rcode = 0;
689 nmb->header.qdcount = 1;
690 nmb->header.ancount = 0;
691 nmb->header.nscount = 0;
692 nmb->header.arcount = 0;
694 make_nmb_name(&nmb->question.question_name,name,name_type);
696 nmb->question.question_type = 0x20;
697 nmb->question.question_class = 0x1;
699 p.ip = ((struct sockaddr_in *)to_ss)->sin_addr;
703 p.timestamp = time(NULL);
704 p.packet_type = NMB_PACKET;
708 if (!send_packet(&p))
714 struct timeval tval2;
716 GetTimeOfDay(&tval2);
717 if (TvalDiff(&tval,&tval2) > retry_time) {
720 if (!found && !send_packet(&p))
726 if ((p2=receive_nmb_packet(fd,90,nmb->header.name_trn_id))) {
727 struct nmb_packet *nmb2 = &p2->packet.nmb;
728 debug_nmb_packet(p2);
730 /* If we get a Negative Name Query Response from a WINS
731 * server, we should report it and give up.
733 if( 0 == nmb2->header.opcode /* A query response */
734 && !(bcast) /* from a WINS server */
735 && nmb2->header.rcode /* Error returned */
738 if( DEBUGLVL( 3 ) ) {
739 /* Only executed if DEBUGLEVEL >= 3 */
740 dbgtext( "Negative name query "
741 "response, rcode 0x%02x: ",
742 nmb2->header.rcode );
743 switch( nmb2->header.rcode ) {
746 "was invalidly formatted.\n" );
749 dbgtext( "Problem with NBNS, "
750 "cannot process name.\n");
753 dbgtext( "The name requested "
754 "does not exist.\n" );
757 dbgtext( "Unsupported request "
761 dbgtext( "Query refused "
765 dbgtext( "Unrecognized error "
774 if (nmb2->header.opcode != 0 ||
775 nmb2->header.nm_flags.bcast ||
776 nmb2->header.rcode ||
777 !nmb2->header.ancount) {
779 * XXXX what do we do with this? Could be a
780 * redirect, but we'll discard it for the
787 ss_list = SMB_REALLOC_ARRAY(ss_list,
788 struct sockaddr_storage,
790 nmb2->answers->rdlength/6);
793 DEBUG(0,("name_query: Realloc failed.\n"));
798 DEBUG(2,("Got a positive name query response "
802 for (i=0;i<nmb2->answers->rdlength/6;i++) {
804 putip((char *)&ip,&nmb2->answers->rdata[2+i*6]);
805 in_addr_to_sockaddr_storage(&ss_list[(*count)],
807 DEBUGADD(2,("%s ",inet_ntoa(ip)));
814 /* We add the flags back ... */
815 if (nmb2->header.response)
816 (*flags) |= NM_FLAGS_RS;
817 if (nmb2->header.nm_flags.authoritative)
818 (*flags) |= NM_FLAGS_AA;
819 if (nmb2->header.nm_flags.trunc)
820 (*flags) |= NM_FLAGS_TC;
821 if (nmb2->header.nm_flags.recursion_desired)
822 (*flags) |= NM_FLAGS_RD;
823 if (nmb2->header.nm_flags.recursion_available)
824 (*flags) |= NM_FLAGS_RA;
825 if (nmb2->header.nm_flags.bcast)
826 (*flags) |= NM_FLAGS_B;
829 * If we're doing a unicast lookup we only
830 * expect one reply. Don't wait the full 2
831 * seconds if we got one. JRA.
838 /* only set timed_out if we didn't fund what we where looking for*/
840 if ( !found && timed_out ) {
844 /* sort the ip list so we choose close servers first if possible */
845 sort_addr_list(ss_list, *count);
850 /********************************************************
851 convert an array if struct sockaddr_storage to struct ip_service
852 return false on failure. Port is set to PORT_NONE;
853 *********************************************************/
855 static bool convert_ss2service(struct ip_service **return_iplist,
856 const struct sockaddr_storage *ss_list,
861 if ( count==0 || !ss_list )
864 /* copy the ip address; port will be PORT_NONE */
865 if ((*return_iplist = SMB_MALLOC_ARRAY(struct ip_service, count)) ==
867 DEBUG(0,("convert_ip2service: malloc failed "
868 "for %d enetries!\n", count ));
872 for ( i=0; i<count; i++ ) {
873 (*return_iplist)[i].ss = ss_list[i];
874 (*return_iplist)[i].port = PORT_NONE;
880 /********************************************************
881 Resolve via "bcast" method.
882 *********************************************************/
884 NTSTATUS name_resolve_bcast(const char *name,
886 struct ip_service **return_iplist,
890 int num_interfaces = iface_count();
891 struct sockaddr_storage *ss_list;
892 struct sockaddr_storage ss;
895 if (lp_disable_netbios()) {
896 DEBUG(5,("name_resolve_bcast(%s#%02x): netbios is disabled\n",
898 return NT_STATUS_INVALID_PARAMETER;
901 *return_iplist = NULL;
905 * "bcast" means do a broadcast lookup on all the local interfaces.
908 DEBUG(3,("name_resolve_bcast: Attempting broadcast lookup "
909 "for name %s<0x%x>\n", name, name_type));
911 if (!interpret_string_addr(&ss, lp_socket_address(),
912 AI_NUMERICHOST|AI_PASSIVE)) {
916 sock = open_socket_in( SOCK_DGRAM, 0, 3, &ss, true );
918 return NT_STATUS_UNSUCCESSFUL;
921 set_socket_options(sock,"SO_BROADCAST");
923 * Lookup the name on all the interfaces, return on
924 * the first successful match.
926 for( i = num_interfaces-1; i >= 0; i--) {
927 const struct sockaddr_storage *pss = iface_n_bcast(i);
930 /* Done this way to fix compiler error on IRIX 5.x */
934 ss_list = name_query(sock, name, name_type, true,
935 true, pss, return_count, &flags, NULL);
941 /* failed - no response */
944 return NT_STATUS_UNSUCCESSFUL;
948 status = NT_STATUS_OK;
949 if (!convert_ss2service(return_iplist, ss_list, *return_count) )
950 status = NT_STATUS_INVALID_PARAMETER;
957 /********************************************************
958 Resolve via "wins" method.
959 *********************************************************/
961 NTSTATUS resolve_wins(const char *name,
963 struct ip_service **return_iplist,
968 struct sockaddr_storage src_ss, *ss_list = NULL;
969 struct in_addr src_ip;
972 if (lp_disable_netbios()) {
973 DEBUG(5,("resolve_wins(%s#%02x): netbios is disabled\n",
975 return NT_STATUS_INVALID_PARAMETER;
978 *return_iplist = NULL;
981 DEBUG(3,("resolve_wins: Attempting wins lookup for name %s<0x%x>\n",
984 if (wins_srv_count() < 1) {
985 DEBUG(3,("resolve_wins: WINS server resolution selected "
986 "and no WINS servers listed.\n"));
987 return NT_STATUS_INVALID_PARAMETER;
990 /* we try a lookup on each of the WINS tags in turn */
991 wins_tags = wins_srv_tags();
994 /* huh? no tags?? give up in disgust */
995 return NT_STATUS_INVALID_PARAMETER;
998 /* the address we will be sending from */
999 if (!interpret_string_addr(&src_ss, lp_socket_address(),
1000 AI_NUMERICHOST|AI_PASSIVE)) {
1001 zero_sockaddr(&src_ss);
1004 if (src_ss.ss_family != AF_INET) {
1005 char addr[INET6_ADDRSTRLEN];
1006 print_sockaddr(addr, sizeof(addr), &src_ss);
1007 DEBUG(3,("resolve_wins: cannot receive WINS replies "
1008 "on IPv6 address %s\n",
1010 wins_srv_tags_free(wins_tags);
1011 return NT_STATUS_INVALID_PARAMETER;
1014 src_ip = ((struct sockaddr_in *)&src_ss)->sin_addr;
1016 /* in the worst case we will try every wins server with every
1018 for (t=0; wins_tags && wins_tags[t]; t++) {
1019 int srv_count = wins_srv_count_tag(wins_tags[t]);
1020 for (i=0; i<srv_count; i++) {
1021 struct sockaddr_storage wins_ss;
1022 struct in_addr wins_ip;
1026 wins_ip = wins_srv_ip_tag(wins_tags[t], src_ip);
1028 if (global_in_nmbd && ismyip_v4(wins_ip)) {
1029 /* yikes! we'll loop forever */
1033 /* skip any that have been unresponsive lately */
1034 if (wins_srv_is_dead(wins_ip, src_ip)) {
1038 DEBUG(3,("resolve_wins: using WINS server %s "
1040 inet_ntoa(wins_ip), wins_tags[t]));
1042 sock = open_socket_in(SOCK_DGRAM, 0, 3, &src_ss, true);
1047 in_addr_to_sockaddr_storage(&wins_ss, wins_ip);
1048 ss_list = name_query(sock,
1058 /* exit loop if we got a list of addresses */
1066 /* Timed out wating for WINS server to respond.
1068 wins_srv_died(wins_ip, src_ip);
1070 /* The name definately isn't in this
1071 group of WINS servers.
1072 goto the next group */
1078 wins_srv_tags_free(wins_tags);
1079 return NT_STATUS_NO_LOGON_SERVERS;
1083 status = NT_STATUS_OK;
1084 if (!convert_ss2service(return_iplist, ss_list, *return_count))
1085 status = NT_STATUS_INVALID_PARAMETER;
1088 wins_srv_tags_free(wins_tags);
1094 /********************************************************
1095 Resolve via "lmhosts" method.
1096 *********************************************************/
1098 static NTSTATUS resolve_lmhosts(const char *name, int name_type,
1099 struct ip_service **return_iplist,
1103 * "lmhosts" means parse the local lmhosts file.
1105 struct sockaddr_storage *ss_list;
1106 NTSTATUS status = NT_STATUS_DOMAIN_CONTROLLER_NOT_FOUND;
1107 TALLOC_CTX *ctx = NULL;
1109 *return_iplist = NULL;
1112 DEBUG(3,("resolve_lmhosts: "
1113 "Attempting lmhosts lookup for name %s<0x%x>\n",
1116 ctx = talloc_init("resolve_lmhosts");
1118 return NT_STATUS_NO_MEMORY;
1121 status = resolve_lmhosts_file_as_sockaddr(get_dyn_LMHOSTSFILE(),
1126 if (NT_STATUS_IS_OK(status)) {
1127 if (convert_ss2service(return_iplist,
1131 return NT_STATUS_OK;
1134 return NT_STATUS_NO_MEMORY;
1142 /********************************************************
1143 Resolve via "hosts" method.
1144 *********************************************************/
1146 static NTSTATUS resolve_hosts(const char *name, int name_type,
1147 struct ip_service **return_iplist,
1151 * "host" means do a localhost, or dns lookup.
1153 struct addrinfo hints;
1154 struct addrinfo *ailist = NULL;
1155 struct addrinfo *res = NULL;
1159 if ( name_type != 0x20 && name_type != 0x0) {
1160 DEBUG(5, ("resolve_hosts: not appropriate "
1161 "for name type <0x%x>\n",
1163 return NT_STATUS_INVALID_PARAMETER;
1166 *return_iplist = NULL;
1169 DEBUG(3,("resolve_hosts: Attempting host lookup for name %s<0x%x>\n",
1173 /* By default make sure it supports TCP. */
1174 hints.ai_socktype = SOCK_STREAM;
1175 hints.ai_flags = AI_ADDRCONFIG;
1177 #if !defined(HAVE_IPV6)
1178 /* Unless we have IPv6, we really only want IPv4 addresses back. */
1179 hints.ai_family = AF_INET;
1182 ret = getaddrinfo(name,
1187 DEBUG(3,("resolve_hosts: getaddrinfo failed for name %s [%s]\n",
1189 gai_strerror(ret) ));
1192 for (res = ailist; res; res = res->ai_next) {
1193 struct sockaddr_storage ss;
1195 if (!res->ai_addr || res->ai_addrlen == 0) {
1200 memcpy(&ss, res->ai_addr, res->ai_addrlen);
1204 *return_iplist = SMB_REALLOC_ARRAY(*return_iplist,
1207 if (!*return_iplist) {
1208 DEBUG(3,("resolve_hosts: malloc fail !\n"));
1209 freeaddrinfo(ailist);
1210 return NT_STATUS_NO_MEMORY;
1212 (*return_iplist)[i].ss = ss;
1213 (*return_iplist)[i].port = PORT_NONE;
1217 freeaddrinfo(ailist);
1219 if (*return_count) {
1220 return NT_STATUS_OK;
1222 return NT_STATUS_UNSUCCESSFUL;
1225 /********************************************************
1226 Resolve via "ADS" method.
1227 *********************************************************/
1229 static NTSTATUS resolve_ads(const char *name,
1231 const char *sitename,
1232 struct ip_service **return_iplist,
1238 struct dns_rr_srv *dcs = NULL;
1242 if ((name_type != 0x1c) && (name_type != KDC_NAME_TYPE) &&
1243 (name_type != 0x1b)) {
1244 return NT_STATUS_INVALID_PARAMETER;
1247 if ( (ctx = talloc_init("resolve_ads")) == NULL ) {
1248 DEBUG(0,("resolve_ads: talloc_init() failed!\n"));
1249 return NT_STATUS_NO_MEMORY;
1252 /* The DNS code needs fixing to find IPv6 addresses... JRA. */
1254 switch (name_type) {
1256 DEBUG(5,("resolve_ads: Attempting to resolve "
1257 "PDC for %s using DNS\n", name));
1258 status = ads_dns_query_pdc(ctx, name, &dcs, &numdcs);
1262 DEBUG(5,("resolve_ads: Attempting to resolve "
1263 "DCs for %s using DNS\n", name));
1264 status = ads_dns_query_dcs(ctx, name, sitename, &dcs,
1268 DEBUG(5,("resolve_ads: Attempting to resolve "
1269 "KDCs for %s using DNS\n", name));
1270 status = ads_dns_query_kdcs(ctx, name, sitename, &dcs,
1274 status = NT_STATUS_INVALID_PARAMETER;
1278 if ( !NT_STATUS_IS_OK( status ) ) {
1279 talloc_destroy(ctx);
1283 for (i=0;i<numdcs;i++) {
1284 numaddrs += MAX(dcs[i].num_ips,1);
1287 if ((*return_iplist = SMB_MALLOC_ARRAY(struct ip_service, numaddrs)) ==
1289 DEBUG(0,("resolve_ads: malloc failed for %d entries\n",
1291 talloc_destroy(ctx);
1292 return NT_STATUS_NO_MEMORY;
1295 /* now unroll the list of IP addresses */
1300 while ( i < numdcs && (*return_count<numaddrs) ) {
1301 struct ip_service *r = &(*return_iplist)[*return_count];
1303 r->port = dcs[i].port;
1305 /* If we don't have an IP list for a name, lookup it up */
1308 interpret_string_addr(&r->ss, dcs[i].hostname, 0);
1312 /* use the IP addresses from the SRV sresponse */
1314 if ( j >= dcs[i].num_ips ) {
1320 r->ss = dcs[i].ss_s[j];
1324 /* make sure it is a valid IP. I considered checking the
1325 * negative connection cache, but this is the wrong place
1326 * for it. Maybe only as a hack. After think about it, if
1327 * all of the IP addresses returned from DNS are dead, what
1328 * hope does a netbios name lookup have ? The standard reason
1329 * for falling back to netbios lookups is that our DNS server
1330 * doesn't know anything about the DC's -- jerry */
1332 if (!is_zero_addr((struct sockaddr *)&r->ss)) {
1337 talloc_destroy(ctx);
1338 return NT_STATUS_OK;
1341 /*******************************************************************
1342 Internal interface to resolve a name into an IP address.
1343 Use this function if the string is either an IP address, DNS
1344 or host name or NetBIOS name. This uses the name switch in the
1345 smb.conf to determine the order of name resolution.
1347 Added support for ip addr/port to support ADS ldap servers.
1348 the only place we currently care about the port is in the
1349 resolve_hosts() when looking up DC's via SRV RR entries in DNS
1350 **********************************************************************/
1352 NTSTATUS internal_resolve_name(const char *name,
1354 const char *sitename,
1355 struct ip_service **return_iplist,
1357 const char *resolve_order)
1361 NTSTATUS status = NT_STATUS_UNSUCCESSFUL;
1363 TALLOC_CTX *frame = NULL;
1365 *return_iplist = NULL;
1368 DEBUG(10, ("internal_resolve_name: looking up %s#%x (sitename %s)\n",
1369 name, name_type, sitename ? sitename : "(null)"));
1371 if (is_ipaddress(name)) {
1372 if ((*return_iplist = SMB_MALLOC_P(struct ip_service)) ==
1374 DEBUG(0,("internal_resolve_name: malloc fail !\n"));
1375 return NT_STATUS_NO_MEMORY;
1378 /* ignore the port here */
1379 (*return_iplist)->port = PORT_NONE;
1381 /* if it's in the form of an IP address then get the lib to interpret it */
1382 if (!interpret_string_addr(&(*return_iplist)->ss,
1383 name, AI_NUMERICHOST)) {
1384 DEBUG(1,("internal_resolve_name: interpret_string_addr "
1387 SAFE_FREE(*return_iplist);
1388 return NT_STATUS_INVALID_PARAMETER;
1391 return NT_STATUS_OK;
1394 /* Check name cache */
1396 if (namecache_fetch(name, name_type, return_iplist, return_count)) {
1397 /* This could be a negative response */
1398 if (*return_count > 0) {
1399 return NT_STATUS_OK;
1401 return NT_STATUS_UNSUCCESSFUL;
1405 /* set the name resolution order */
1407 if (strcmp( resolve_order, "NULL") == 0) {
1408 DEBUG(8,("internal_resolve_name: all lookups disabled\n"));
1409 return NT_STATUS_INVALID_PARAMETER;
1412 if (!resolve_order[0]) {
1415 ptr = resolve_order;
1418 /* iterate through the name resolution backends */
1420 frame = talloc_stackframe();
1421 while (next_token_talloc(frame, &ptr, &tok, LIST_SEP)) {
1422 if((strequal(tok, "host") || strequal(tok, "hosts"))) {
1423 status = resolve_hosts(name, name_type, return_iplist,
1425 if (NT_STATUS_IS_OK(status)) {
1428 } else if(strequal( tok, "kdc")) {
1429 /* deal with KDC_NAME_TYPE names here.
1430 * This will result in a SRV record lookup */
1431 status = resolve_ads(name, KDC_NAME_TYPE, sitename,
1432 return_iplist, return_count);
1433 if (NT_STATUS_IS_OK(status)) {
1434 /* Ensure we don't namecache
1435 * this with the KDC port. */
1436 name_type = KDC_NAME_TYPE;
1439 } else if(strequal( tok, "ads")) {
1440 /* deal with 0x1c and 0x1b names here.
1441 * This will result in a SRV record lookup */
1442 status = resolve_ads(name, name_type, sitename,
1443 return_iplist, return_count);
1444 if (NT_STATUS_IS_OK(status)) {
1447 } else if(strequal( tok, "lmhosts")) {
1448 status = resolve_lmhosts(name, name_type,
1449 return_iplist, return_count);
1450 if (NT_STATUS_IS_OK(status)) {
1453 } else if(strequal( tok, "wins")) {
1454 /* don't resolve 1D via WINS */
1455 if (name_type != 0x1D) {
1456 status = resolve_wins(name, name_type,
1459 if (NT_STATUS_IS_OK(status)) {
1463 } else if(strequal( tok, "bcast")) {
1464 status = name_resolve_bcast(name, name_type,
1467 if (NT_STATUS_IS_OK(status)) {
1471 DEBUG(0,("resolve_name: unknown name switch type %s\n",
1476 /* All of the resolve_* functions above have returned false. */
1479 SAFE_FREE(*return_iplist);
1482 return NT_STATUS_UNSUCCESSFUL;
1486 /* Remove duplicate entries. Some queries, notably #1c (domain
1487 controllers) return the PDC in iplist[0] and then all domain
1488 controllers including the PDC in iplist[1..n]. Iterating over
1489 the iplist when the PDC is down will cause two sets of timeouts. */
1491 if ( *return_count ) {
1492 *return_count = remove_duplicate_addrs2(*return_iplist,
1496 /* Save in name cache */
1497 if ( DEBUGLEVEL >= 100 ) {
1498 for (i = 0; i < *return_count && DEBUGLEVEL == 100; i++) {
1499 char addr[INET6_ADDRSTRLEN];
1500 print_sockaddr(addr, sizeof(addr),
1501 &(*return_iplist)[i].ss);
1502 DEBUG(100, ("Storing name %s of type %d (%s:%d)\n",
1506 (*return_iplist)[i].port));
1510 namecache_store(name, name_type, *return_count, *return_iplist);
1512 /* Display some debugging info */
1514 if ( DEBUGLEVEL >= 10 ) {
1515 DEBUG(10, ("internal_resolve_name: returning %d addresses: ",
1518 for (i = 0; i < *return_count; i++) {
1519 char addr[INET6_ADDRSTRLEN];
1520 print_sockaddr(addr, sizeof(addr),
1521 &(*return_iplist)[i].ss);
1522 DEBUGADD(10, ("%s:%d ",
1524 (*return_iplist)[i].port));
1533 /********************************************************
1534 Internal interface to resolve a name into one IP address.
1535 Use this function if the string is either an IP address, DNS
1536 or host name or NetBIOS name. This uses the name switch in the
1537 smb.conf to determine the order of name resolution.
1538 *********************************************************/
1540 bool resolve_name(const char *name,
1541 struct sockaddr_storage *return_ss,
1545 struct ip_service *ss_list = NULL;
1546 char *sitename = NULL;
1549 if (is_ipaddress(name)) {
1550 return interpret_string_addr(return_ss, name, AI_NUMERICHOST);
1553 sitename = sitename_fetch(lp_realm()); /* wild guess */
1555 if (NT_STATUS_IS_OK(internal_resolve_name(name, name_type, sitename,
1557 lp_name_resolve_order()))) {
1561 for (i=0; i<count; i++) {
1562 if (!is_zero_addr((struct sockaddr *)&ss_list[i].ss) &&
1563 !is_broadcast_addr((struct sockaddr *)&ss_list[i].ss) &&
1564 (ss_list[i].ss.ss_family == AF_INET)) {
1565 *return_ss = ss_list[i].ss;
1567 SAFE_FREE(sitename);
1573 /* only return valid addresses for TCP connections */
1574 for (i=0; i<count; i++) {
1575 if (!is_zero_addr((struct sockaddr *)&ss_list[i].ss) &&
1576 !is_broadcast_addr((struct sockaddr *)&ss_list[i].ss)) {
1577 *return_ss = ss_list[i].ss;
1579 SAFE_FREE(sitename);
1586 SAFE_FREE(sitename);
1590 /********************************************************
1591 Internal interface to resolve a name into a list of IP addresses.
1592 Use this function if the string is either an IP address, DNS
1593 or host name or NetBIOS name. This uses the name switch in the
1594 smb.conf to determine the order of name resolution.
1595 *********************************************************/
1597 NTSTATUS resolve_name_list(TALLOC_CTX *ctx,
1600 struct sockaddr_storage **return_ss_arr,
1601 unsigned int *p_num_entries)
1603 struct ip_service *ss_list = NULL;
1604 char *sitename = NULL;
1607 unsigned int num_entries;
1611 *return_ss_arr = NULL;
1613 if (is_ipaddress(name)) {
1614 *return_ss_arr = TALLOC_P(ctx, struct sockaddr_storage);
1615 if (!*return_ss_arr) {
1616 return NT_STATUS_NO_MEMORY;
1618 if (!interpret_string_addr(*return_ss_arr, name, AI_NUMERICHOST)) {
1619 TALLOC_FREE(*return_ss_arr);
1620 return NT_STATUS_BAD_NETWORK_NAME;
1623 return NT_STATUS_OK;
1626 sitename = sitename_fetch(lp_realm()); /* wild guess */
1628 status = internal_resolve_name(name, name_type, sitename,
1630 lp_name_resolve_order());
1631 SAFE_FREE(sitename);
1633 if (!NT_STATUS_IS_OK(status)) {
1637 /* only return valid addresses for TCP connections */
1638 for (i=0, num_entries = 0; i<count; i++) {
1639 if (!is_zero_addr((struct sockaddr *)&ss_list[i].ss) &&
1640 !is_broadcast_addr((struct sockaddr *)&ss_list[i].ss)) {
1644 if (num_entries == 0) {
1646 return NT_STATUS_BAD_NETWORK_NAME;
1649 *return_ss_arr = TALLOC_ARRAY(ctx,
1650 struct sockaddr_storage,
1652 if (!(*return_ss_arr)) {
1654 return NT_STATUS_NO_MEMORY;
1657 for (i=0, num_entries = 0; i<count; i++) {
1658 if (!is_zero_addr((struct sockaddr *)&ss_list[i].ss) &&
1659 !is_broadcast_addr((struct sockaddr *)&ss_list[i].ss)) {
1660 (*return_ss_arr)[num_entries++] = ss_list[i].ss;
1664 status = NT_STATUS_OK;
1665 *p_num_entries = num_entries;
1668 return NT_STATUS_OK;
1671 /********************************************************
1672 Find the IP address of the master browser or DMB for a workgroup.
1673 *********************************************************/
1675 bool find_master_ip(const char *group, struct sockaddr_storage *master_ss)
1677 struct ip_service *ip_list = NULL;
1681 if (lp_disable_netbios()) {
1682 DEBUG(5,("find_master_ip(%s): netbios is disabled\n", group));
1686 status = internal_resolve_name(group, 0x1D, NULL, &ip_list, &count,
1687 lp_name_resolve_order());
1688 if (NT_STATUS_IS_OK(status)) {
1689 *master_ss = ip_list[0].ss;
1694 status = internal_resolve_name(group, 0x1B, NULL, &ip_list, &count,
1695 lp_name_resolve_order());
1696 if (NT_STATUS_IS_OK(status)) {
1697 *master_ss = ip_list[0].ss;
1706 /********************************************************
1707 Get the IP address list of the primary domain controller
1709 *********************************************************/
1711 bool get_pdc_ip(const char *domain, struct sockaddr_storage *pss)
1713 struct ip_service *ip_list = NULL;
1715 NTSTATUS status = NT_STATUS_DOMAIN_CONTROLLER_NOT_FOUND;
1717 /* Look up #1B name */
1719 if (lp_security() == SEC_ADS) {
1720 status = internal_resolve_name(domain, 0x1b, NULL, &ip_list,
1724 if (!NT_STATUS_IS_OK(status) || count == 0) {
1725 status = internal_resolve_name(domain, 0x1b, NULL, &ip_list,
1727 lp_name_resolve_order());
1728 if (!NT_STATUS_IS_OK(status)) {
1733 /* if we get more than 1 IP back we have to assume it is a
1734 multi-homed PDC and not a mess up */
1737 DEBUG(6,("get_pdc_ip: PDC has %d IP addresses!\n", count));
1738 sort_service_list(ip_list, count);
1741 *pss = ip_list[0].ss;
1746 /* Private enum type for lookups. */
1748 enum dc_lookup_type { DC_NORMAL_LOOKUP, DC_ADS_ONLY, DC_KDC_ONLY };
1750 /********************************************************
1751 Get the IP address list of the domain controllers for
1753 *********************************************************/
1755 static NTSTATUS get_dc_list(const char *domain,
1756 const char *sitename,
1757 struct ip_service **ip_list,
1759 enum dc_lookup_type lookup_type,
1762 char *resolve_order = NULL;
1763 char *saf_servername = NULL;
1764 char *pserver = NULL;
1766 char *port_str = NULL;
1769 int num_addresses = 0;
1770 int local_count, i, j;
1771 struct ip_service *return_iplist = NULL;
1772 struct ip_service *auto_ip_list = NULL;
1773 bool done_auto_lookup = false;
1776 TALLOC_CTX *ctx = talloc_init("get_dc_list");
1782 return NT_STATUS_NO_MEMORY;
1787 /* if we are restricted to solely using DNS for looking
1788 up a domain controller, make sure that host lookups
1789 are enabled for the 'name resolve order'. If host lookups
1790 are disabled and ads_only is True, then set the string to
1793 resolve_order = talloc_strdup(ctx, lp_name_resolve_order());
1794 if (!resolve_order) {
1795 status = NT_STATUS_NO_MEMORY;
1798 strlower_m(resolve_order);
1799 if (lookup_type == DC_ADS_ONLY) {
1800 if (strstr( resolve_order, "host")) {
1801 resolve_order = talloc_strdup(ctx, "ads");
1803 /* DNS SRV lookups used by the ads resolver
1804 are already sorted by priority and weight */
1807 resolve_order = talloc_strdup(ctx, "NULL");
1809 } else if (lookup_type == DC_KDC_ONLY) {
1810 /* DNS SRV lookups used by the ads/kdc resolver
1811 are already sorted by priority and weight */
1813 resolve_order = talloc_strdup(ctx, "kdc");
1815 if (!resolve_order) {
1816 status = NT_STATUS_NO_MEMORY;
1820 /* fetch the server we have affinity for. Add the
1821 'password server' list to a search for our domain controllers */
1823 saf_servername = saf_fetch( domain);
1825 if (strequal(domain, lp_workgroup()) || strequal(domain, lp_realm())) {
1826 pserver = talloc_asprintf(NULL, "%s, %s",
1827 saf_servername ? saf_servername : "",
1828 lp_passwordserver());
1830 pserver = talloc_asprintf(NULL, "%s, *",
1831 saf_servername ? saf_servername : "");
1834 SAFE_FREE(saf_servername);
1836 status = NT_STATUS_NO_MEMORY;
1840 /* if we are starting from scratch, just lookup DOMAIN<0x1c> */
1843 DEBUG(10,("get_dc_list: no preferred domain controllers.\n"));
1844 status = internal_resolve_name(domain, 0x1C, sitename, ip_list,
1845 count, resolve_order);
1849 DEBUG(3,("get_dc_list: preferred server list: \"%s\"\n", pserver ));
1852 * if '*' appears in the "password server" list then add
1853 * an auto lookup to the list of manually configured
1854 * DC's. If any DC is listed by name, then the list should be
1855 * considered to be ordered
1859 while (next_token_talloc(ctx, &p, &name, LIST_SEP)) {
1860 if (!done_auto_lookup && strequal(name, "*")) {
1861 status = internal_resolve_name(domain, 0x1C, sitename,
1865 if (NT_STATUS_IS_OK(status)) {
1866 num_addresses += auto_count;
1868 done_auto_lookup = true;
1869 DEBUG(8,("Adding %d DC's from auto lookup\n",
1876 /* if we have no addresses and haven't done the auto lookup, then
1877 just return the list of DC's. Or maybe we just failed. */
1879 if ((num_addresses == 0)) {
1880 if (done_auto_lookup) {
1881 DEBUG(4,("get_dc_list: no servers found\n"));
1882 status = NT_STATUS_NO_LOGON_SERVERS;
1885 status = internal_resolve_name(domain, 0x1C, sitename, ip_list,
1886 count, resolve_order);
1890 if ((return_iplist = SMB_MALLOC_ARRAY(struct ip_service,
1891 num_addresses)) == NULL) {
1892 DEBUG(3,("get_dc_list: malloc fail !\n"));
1893 status = NT_STATUS_NO_MEMORY;
1900 /* fill in the return list now with real IP's */
1902 while ((local_count<num_addresses) &&
1903 next_token_talloc(ctx, &p, &name, LIST_SEP)) {
1904 struct sockaddr_storage name_ss;
1906 /* copy any addersses from the auto lookup */
1908 if (strequal(name, "*")) {
1909 for (j=0; j<auto_count; j++) {
1910 char addr[INET6_ADDRSTRLEN];
1911 print_sockaddr(addr,
1913 &auto_ip_list[j].ss);
1914 /* Check for and don't copy any
1915 * known bad DC IP's. */
1916 if(!NT_STATUS_IS_OK(check_negative_conn_cache(
1919 DEBUG(5,("get_dc_list: "
1920 "negative entry %s removed "
1925 return_iplist[local_count].ss =
1927 return_iplist[local_count].port =
1928 auto_ip_list[j].port;
1934 /* added support for address:port syntax for ads
1935 * (not that I think anyone will ever run the LDAP
1936 * server in an AD domain on something other than
1939 port = (lp_security() == SEC_ADS) ? LDAP_PORT : PORT_NONE;
1940 if ((port_str=strchr(name, ':')) != NULL) {
1943 port = atoi(port_str);
1946 /* explicit lookup; resolve_name() will
1947 * handle names & IP addresses */
1948 if (resolve_name( name, &name_ss, 0x20, true )) {
1949 char addr[INET6_ADDRSTRLEN];
1950 print_sockaddr(addr,
1954 /* Check for and don't copy any known bad DC IP's. */
1955 if( !NT_STATUS_IS_OK(check_negative_conn_cache(domain,
1957 DEBUG(5,("get_dc_list: negative entry %s "
1958 "removed from DC list\n",
1963 return_iplist[local_count].ss = name_ss;
1964 return_iplist[local_count].port = port;
1970 /* need to remove duplicates in the list if we have any
1971 explicit password servers */
1974 local_count = remove_duplicate_addrs2(return_iplist,
1978 /* For DC's we always prioritize IPv4 due to W2K3 not
1979 * supporting LDAP, KRB5 or CLDAP over IPv6. */
1981 if (local_count && return_iplist) {
1982 prioritize_ipv4_list(return_iplist, local_count);
1985 if ( DEBUGLEVEL >= 4 ) {
1986 DEBUG(4,("get_dc_list: returning %d ip addresses "
1987 "in an %sordered list\n",
1989 *ordered ? "":"un"));
1990 DEBUG(4,("get_dc_list: "));
1991 for ( i=0; i<local_count; i++ ) {
1992 char addr[INET6_ADDRSTRLEN];
1993 print_sockaddr(addr,
1995 &return_iplist[i].ss);
1996 DEBUGADD(4,("%s:%d ", addr, return_iplist[i].port ));
2001 *ip_list = return_iplist;
2002 *count = local_count;
2004 status = ( *count != 0 ? NT_STATUS_OK : NT_STATUS_NO_LOGON_SERVERS );
2008 if (!NT_STATUS_IS_OK(status)) {
2009 SAFE_FREE(return_iplist);
2014 SAFE_FREE(auto_ip_list);
2019 /*********************************************************************
2020 Small wrapper function to get the DC list and sort it if neccessary.
2021 *********************************************************************/
2023 NTSTATUS get_sorted_dc_list( const char *domain,
2024 const char *sitename,
2025 struct ip_service **ip_list,
2029 bool ordered = false;
2031 enum dc_lookup_type lookup_type = DC_NORMAL_LOOKUP;
2036 DEBUG(8,("get_sorted_dc_list: attempting lookup "
2037 "for name %s (sitename %s) using [%s]\n",
2039 sitename ? sitename : "NULL",
2040 (ads_only ? "ads" : lp_name_resolve_order())));
2043 lookup_type = DC_ADS_ONLY;
2046 status = get_dc_list(domain, sitename, ip_list,
2047 count, lookup_type, &ordered);
2048 if (NT_STATUS_EQUAL(status, NT_STATUS_NO_LOGON_SERVERS)
2050 DEBUG(3,("get_sorted_dc_list: no server for name %s available"
2051 " in site %s, fallback to all servers\n",
2053 status = get_dc_list(domain, NULL, ip_list,
2054 count, lookup_type, &ordered);
2057 if (!NT_STATUS_IS_OK(status)) {
2058 SAFE_FREE(*ip_list);
2063 /* only sort if we don't already have an ordered list */
2065 sort_service_list(*ip_list, *count);
2068 return NT_STATUS_OK;
2071 /*********************************************************************
2072 Get the KDC list - re-use all the logic in get_dc_list.
2073 *********************************************************************/
2075 NTSTATUS get_kdc_list( const char *realm,
2076 const char *sitename,
2077 struct ip_service **ip_list,
2086 status = get_dc_list(realm, sitename, ip_list,
2087 count, DC_KDC_ONLY, &ordered);
2089 if (!NT_STATUS_IS_OK(status)) {
2090 SAFE_FREE(*ip_list);
2095 /* only sort if we don't already have an ordered list */
2097 sort_service_list(*ip_list, *count);
2100 return NT_STATUS_OK;
git.samba.org / metze / samba / wip.git / blob