2 Unix SMB/CIFS implementation.
4 Copyright (C) Stefan Metzmacher 2006
6 This program is free software; you can redistribute it and/or modify
7 it under the terms of the GNU General Public License as published by
8 the Free Software Foundation; either version 2 of the License, or
9 (at your option) any later version.
11 This program is distributed in the hope that it will be useful,
12 but WITHOUT ANY WARRANTY; without even the implied warranty of
13 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
14 GNU General Public License for more details.
16 You should have received a copy of the GNU General Public License
17 along with this program; if not, write to the Free Software
18 Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
22 #include "libnet/libnet.h"
23 #include "libcli/composite/composite.h"
24 #include "libcli/cldap/cldap.h"
25 #include "lib/ldb/include/ldb.h"
26 #include "lib/ldb/include/ldb_errors.h"
27 #include "lib/db_wrap.h"
28 #include "dsdb/samdb/samdb.h"
29 #include "dsdb/common/flags.h"
30 #include "librpc/gen_ndr/ndr_drsuapi_c.h"
32 struct libnet_UnbecomeDC_state {
33 struct composite_context *creq;
35 struct libnet_context *libnet;
38 struct cldap_socket *sock;
39 struct cldap_netlogon io;
40 struct nbt_cldap_netlogon_5 netlogon5;
44 struct ldb_context *ldb;
48 struct dcerpc_binding *binding;
49 struct dcerpc_pipe *pipe;
50 struct drsuapi_DsBind bind_r;
51 struct GUID bind_guid;
52 struct drsuapi_DsBindInfoCtr bind_info_ctr;
53 struct drsuapi_DsBindInfo28 local_info28;
54 struct drsuapi_DsBindInfo28 remote_info28;
55 struct policy_handle bind_handle;
56 struct drsuapi_DsRemoveDSServer rm_ds_srv_r;
62 const char *netbios_name;
71 const char *config_dn_str;
80 const char *netbios_name;
81 const char *site_name;
86 const char *netbios_name;
90 const char *site_name;
91 const char *computer_dn_str;
92 const char *server_dn_str;
93 uint32_t user_account_control;
97 static void unbecomeDC_connect_ldap(struct libnet_UnbecomeDC_state *s);
99 static void unbecomeDC_recv_cldap(struct cldap_request *req)
101 struct libnet_UnbecomeDC_state *s = talloc_get_type(req->async.private,
102 struct libnet_UnbecomeDC_state);
103 struct composite_context *c = s->creq;
105 c->status = cldap_netlogon_recv(req, s, &s->cldap.io);
106 if (!composite_is_ok(c)) return;
108 s->cldap.netlogon5 = s->cldap.io.out.netlogon.logon5;
110 s->domain.dns_name = s->cldap.netlogon5.dns_domain;
111 s->domain.netbios_name = s->cldap.netlogon5.domain;
112 s->domain.guid = s->cldap.netlogon5.domain_uuid;
114 s->source_dsa.dns_name = s->cldap.netlogon5.pdc_dns_name;
115 s->source_dsa.netbios_name = s->cldap.netlogon5.pdc_name;
116 s->source_dsa.site_name = s->cldap.netlogon5.server_site;
118 s->dest_dsa.site_name = s->cldap.netlogon5.client_site;
120 unbecomeDC_connect_ldap(s);
123 static void unbecomeDC_send_cldap(struct libnet_UnbecomeDC_state *s)
125 struct composite_context *c = s->creq;
126 struct cldap_request *req;
128 s->cldap.io.in.dest_address = s->source_dsa.address;
129 s->cldap.io.in.realm = s->domain.dns_name;
130 s->cldap.io.in.host = s->dest_dsa.netbios_name;
131 s->cldap.io.in.user = NULL;
132 s->cldap.io.in.domain_guid = NULL;
133 s->cldap.io.in.domain_sid = NULL;
134 s->cldap.io.in.acct_control = -1;
135 s->cldap.io.in.version = 6;
137 s->cldap.sock = cldap_socket_init(s, s->libnet->event_ctx);
138 if (composite_nomem(s->cldap.sock, c)) return;
140 req = cldap_netlogon_send(s->cldap.sock, &s->cldap.io);
141 if (composite_nomem(req, c)) return;
142 req->async.fn = unbecomeDC_recv_cldap;
143 req->async.private = s;
146 static NTSTATUS unbecomeDC_ldap_connect(struct libnet_UnbecomeDC_state *s)
150 url = talloc_asprintf(s, "ldap://%s/", s->source_dsa.dns_name);
151 NT_STATUS_HAVE_NO_MEMORY(url);
153 s->ldap.ldb = ldb_wrap_connect(s, url,
158 if (s->ldap.ldb == NULL) {
159 return NT_STATUS_UNEXPECTED_NETWORK_ERROR;
165 static NTSTATUS unbecomeDC_ldap_rootdse(struct libnet_UnbecomeDC_state *s)
168 struct ldb_result *r;
169 struct ldb_dn *basedn;
170 static const char *attrs[] = {
171 "defaultNamingContext",
172 "configurationNamingContext",
176 basedn = ldb_dn_new(s, s->ldap.ldb, NULL);
177 NT_STATUS_HAVE_NO_MEMORY(basedn);
179 ret = ldb_search(s->ldap.ldb, basedn, LDB_SCOPE_BASE,
180 "(objectClass=*)", attrs, &r);
182 if (ret != LDB_SUCCESS) {
183 return NT_STATUS_LDAP(ret);
184 } else if (r->count != 1) {
186 return NT_STATUS_INVALID_NETWORK_RESPONSE;
190 s->domain.dn_str = ldb_msg_find_attr_as_string(r->msgs[0], "defaultNamingContext", NULL);
191 if (!s->domain.dn_str) return NT_STATUS_INVALID_NETWORK_RESPONSE;
192 talloc_steal(s, s->domain.dn_str);
194 s->forest.config_dn_str = ldb_msg_find_attr_as_string(r->msgs[0], "configurationNamingContext", NULL);
195 if (!s->forest.config_dn_str) return NT_STATUS_INVALID_NETWORK_RESPONSE;
196 talloc_steal(s, s->forest.config_dn_str);
198 s->dest_dsa.server_dn_str = talloc_asprintf(s, "CN=%s,CN=Servers,CN=%s,CN=Sites,%s",
199 s->dest_dsa.netbios_name,
200 s->dest_dsa.site_name,
201 s->forest.config_dn_str);
202 NT_STATUS_HAVE_NO_MEMORY(s->dest_dsa.server_dn_str);
208 static NTSTATUS unbecomeDC_ldap_computer_object(struct libnet_UnbecomeDC_state *s)
211 struct ldb_result *r;
212 struct ldb_dn *basedn;
214 static const char *attrs[] = {
216 "userAccountControl",
220 basedn = ldb_dn_new(s, s->ldap.ldb, s->domain.dn_str);
221 NT_STATUS_HAVE_NO_MEMORY(basedn);
223 filter = talloc_asprintf(basedn, "(&(|(objectClass=user)(objectClass=computer))(sAMAccountName=%s$))",
224 s->dest_dsa.netbios_name);
225 NT_STATUS_HAVE_NO_MEMORY(filter);
227 ret = ldb_search(s->ldap.ldb, basedn, LDB_SCOPE_SUBTREE,
230 if (ret != LDB_SUCCESS) {
231 return NT_STATUS_LDAP(ret);
232 } else if (r->count != 1) {
234 return NT_STATUS_INVALID_NETWORK_RESPONSE;
237 s->dest_dsa.computer_dn_str = samdb_result_string(r->msgs[0], "distinguishedName", NULL);
238 if (!s->dest_dsa.computer_dn_str) return NT_STATUS_INVALID_NETWORK_RESPONSE;
239 talloc_steal(s, s->dest_dsa.computer_dn_str);
241 s->dest_dsa.user_account_control = samdb_result_uint(r->msgs[0], "userAccountControl", 0);
247 static NTSTATUS unbecomeDC_ldap_modify_computer(struct libnet_UnbecomeDC_state *s)
250 struct ldb_message *msg;
251 uint32_t user_account_control = UF_WORKSTATION_TRUST_ACCOUNT;
254 /* as the value is already as we want it to be, we're done */
255 if (s->dest_dsa.user_account_control == user_account_control) {
259 /* make a 'modify' msg, and only for serverReference */
260 msg = ldb_msg_new(s);
261 NT_STATUS_HAVE_NO_MEMORY(msg);
262 msg->dn = ldb_dn_new(msg, s->ldap.ldb, s->dest_dsa.computer_dn_str);
263 NT_STATUS_HAVE_NO_MEMORY(msg->dn);
265 ret = ldb_msg_add_fmt(msg, "userAccountControl", "%u", user_account_control);
268 return NT_STATUS_NO_MEMORY;
271 /* mark all the message elements (should be just one)
272 as LDB_FLAG_MOD_REPLACE */
273 for (i=0;i<msg->num_elements;i++) {
274 msg->elements[i].flags = LDB_FLAG_MOD_REPLACE;
277 ret = ldb_modify(s->ldap.ldb, msg);
279 if (ret != LDB_SUCCESS) {
280 return NT_STATUS_LDAP(ret);
283 s->dest_dsa.user_account_control = user_account_control;
288 static NTSTATUS unbecomeDC_ldap_move_computer(struct libnet_UnbecomeDC_state *s)
291 struct ldb_result *r;
292 struct ldb_dn *basedn;
293 struct ldb_dn *old_dn;
294 struct ldb_dn *new_dn;
295 static const char *_1_1_attrs[] = {
300 basedn = ldb_dn_new_fmt(s, s->ldap.ldb, "<WKGUID=aa312825768811d1aded00c04fd8d5cd,%s>",
302 NT_STATUS_HAVE_NO_MEMORY(basedn);
304 ret = ldb_search(s->ldap.ldb, basedn, LDB_SCOPE_BASE,
305 "(objectClass=*)", _1_1_attrs, &r);
307 if (ret != LDB_SUCCESS) {
308 return NT_STATUS_LDAP(ret);
309 } else if (r->count != 1) {
311 return NT_STATUS_INVALID_NETWORK_RESPONSE;
314 old_dn = ldb_dn_new(r, s->ldap.ldb, s->dest_dsa.computer_dn_str);
315 NT_STATUS_HAVE_NO_MEMORY(old_dn);
317 new_dn = r->msgs[0]->dn;
319 if (!ldb_dn_add_child_fmt(new_dn, "CN=%s", s->dest_dsa.netbios_name)) {
321 return NT_STATUS_NO_MEMORY;
324 if (ldb_dn_compare(old_dn, new_dn) == 0) {
325 /* we don't need to rename if the old and new dn match */
330 ret = ldb_rename(s->ldap.ldb, old_dn, new_dn);
332 if (ret != LDB_SUCCESS) {
333 return NT_STATUS_LDAP(ret);
339 static void unbecomeDC_drsuapi_connect_send(struct libnet_UnbecomeDC_state *s);
341 static void unbecomeDC_connect_ldap(struct libnet_UnbecomeDC_state *s)
343 struct composite_context *c = s->creq;
345 c->status = unbecomeDC_ldap_connect(s);
346 if (!composite_is_ok(c)) return;
348 c->status = unbecomeDC_ldap_rootdse(s);
349 if (!composite_is_ok(c)) return;
351 c->status = unbecomeDC_ldap_computer_object(s);
352 if (!composite_is_ok(c)) return;
354 c->status = unbecomeDC_ldap_modify_computer(s);
355 if (!composite_is_ok(c)) return;
357 c->status = unbecomeDC_ldap_move_computer(s);
358 if (!composite_is_ok(c)) return;
360 unbecomeDC_drsuapi_connect_send(s);
363 static void unbecomeDC_drsuapi_connect_recv(struct composite_context *creq);
365 static void unbecomeDC_drsuapi_connect_send(struct libnet_UnbecomeDC_state *s)
367 struct composite_context *c = s->creq;
368 struct composite_context *creq;
371 binding_str = talloc_asprintf(s, "ncacn_ip_tcp:%s[seal]", s->source_dsa.dns_name);
372 if (composite_nomem(binding_str, c)) return;
374 c->status = dcerpc_parse_binding(s, binding_str, &s->drsuapi.binding);
375 talloc_free(binding_str);
376 if (!composite_is_ok(c)) return;
378 creq = dcerpc_pipe_connect_b_send(s, s->drsuapi.binding, &dcerpc_table_drsuapi,
379 s->libnet->cred, s->libnet->event_ctx);
380 composite_continue(c, creq, unbecomeDC_drsuapi_connect_recv, s);
383 static void unbecomeDC_drsuapi_bind_send(struct libnet_UnbecomeDC_state *s);
385 static void unbecomeDC_drsuapi_connect_recv(struct composite_context *req)
387 struct libnet_UnbecomeDC_state *s = talloc_get_type(req->async.private_data,
388 struct libnet_UnbecomeDC_state);
389 struct composite_context *c = s->creq;
391 c->status = dcerpc_pipe_connect_b_recv(req, s, &s->drsuapi.pipe);
392 if (!composite_is_ok(c)) return;
394 unbecomeDC_drsuapi_bind_send(s);
397 static void unbecomeDC_drsuapi_bind_recv(struct rpc_request *req);
399 static void unbecomeDC_drsuapi_bind_send(struct libnet_UnbecomeDC_state *s)
401 struct composite_context *c = s->creq;
402 struct rpc_request *req;
403 struct drsuapi_DsBindInfo28 *bind_info28;
405 GUID_from_string(DRSUAPI_DS_BIND_GUID, &s->drsuapi.bind_guid);
407 bind_info28 = &s->drsuapi.local_info28;
408 bind_info28->supported_extensions = 0;
409 bind_info28->site_guid = GUID_zero();
410 bind_info28->u1 = 508;
411 bind_info28->repl_epoch = 0;
413 s->drsuapi.bind_info_ctr.length = 28;
414 s->drsuapi.bind_info_ctr.info.info28 = *bind_info28;
416 s->drsuapi.bind_r.in.bind_guid = &s->drsuapi.bind_guid;
417 s->drsuapi.bind_r.in.bind_info = &s->drsuapi.bind_info_ctr;
418 s->drsuapi.bind_r.out.bind_handle = &s->drsuapi.bind_handle;
420 req = dcerpc_drsuapi_DsBind_send(s->drsuapi.pipe, s, &s->drsuapi.bind_r);
421 composite_continue_rpc(c, req, unbecomeDC_drsuapi_bind_recv, s);
424 static void unbecomeDC_drsuapi_remove_ds_server_send(struct libnet_UnbecomeDC_state *s);
426 static void unbecomeDC_drsuapi_bind_recv(struct rpc_request *req)
428 struct libnet_UnbecomeDC_state *s = talloc_get_type(req->async.private,
429 struct libnet_UnbecomeDC_state);
430 struct composite_context *c = s->creq;
432 c->status = dcerpc_ndr_request_recv(req);
433 if (!composite_is_ok(c)) return;
435 if (!W_ERROR_IS_OK(s->drsuapi.bind_r.out.result)) {
436 composite_error(c, werror_to_ntstatus(s->drsuapi.bind_r.out.result));
440 ZERO_STRUCT(s->drsuapi.remote_info28);
441 if (s->drsuapi.bind_r.out.bind_info) {
442 switch (s->drsuapi.bind_r.out.bind_info->length) {
444 struct drsuapi_DsBindInfo24 *info24;
445 info24 = &s->drsuapi.bind_r.out.bind_info->info.info24;
446 s->drsuapi.remote_info28.supported_extensions = info24->supported_extensions;
447 s->drsuapi.remote_info28.site_guid = info24->site_guid;
448 s->drsuapi.remote_info28.u1 = info24->u1;
449 s->drsuapi.remote_info28.repl_epoch = 0;
453 s->drsuapi.remote_info28 = s->drsuapi.bind_r.out.bind_info->info.info28;
458 unbecomeDC_drsuapi_remove_ds_server_send(s);
461 static void unbecomeDC_drsuapi_remove_ds_server_recv(struct rpc_request *req);
463 static void unbecomeDC_drsuapi_remove_ds_server_send(struct libnet_UnbecomeDC_state *s)
465 struct composite_context *c = s->creq;
466 struct rpc_request *req;
467 struct drsuapi_DsRemoveDSServer *r = &s->drsuapi.rm_ds_srv_r;
469 r->in.bind_handle = &s->drsuapi.bind_handle;
471 r->in.req.req1.server_dn= s->dest_dsa.server_dn_str;
472 r->in.req.req1.domain_dn= s->domain.dn_str;
473 r->in.req.req1.unknown = 0x00000001;
475 req = dcerpc_drsuapi_DsRemoveDSServer_send(s->drsuapi.pipe, s, r);
476 composite_continue_rpc(c, req, unbecomeDC_drsuapi_remove_ds_server_recv, s);
479 static void unbecomeDC_drsuapi_remove_ds_server_recv(struct rpc_request *req)
481 struct libnet_UnbecomeDC_state *s = talloc_get_type(req->async.private,
482 struct libnet_UnbecomeDC_state);
483 struct composite_context *c = s->creq;
484 struct drsuapi_DsRemoveDSServer *r = &s->drsuapi.rm_ds_srv_r;
486 c->status = dcerpc_ndr_request_recv(req);
487 if (!composite_is_ok(c)) return;
489 if (!W_ERROR_IS_OK(r->out.result)) {
490 composite_error(c, werror_to_ntstatus(r->out.result));
494 if (r->out.level != 1) {
495 composite_error(c, NT_STATUS_INVALID_NETWORK_RESPONSE);
499 if (!W_ERROR_IS_OK(r->out.res.res1.status)) {
500 composite_error(c, werror_to_ntstatus(r->out.res.res1.status));
507 struct composite_context *libnet_UnbecomeDC_send(struct libnet_context *ctx, TALLOC_CTX *mem_ctx, struct libnet_UnbecomeDC *r)
509 struct composite_context *c;
510 struct libnet_UnbecomeDC_state *s;
513 c = composite_create(mem_ctx, ctx->event_ctx);
514 if (c == NULL) return NULL;
516 s = talloc_zero(c, struct libnet_UnbecomeDC_state);
517 if (composite_nomem(s, c)) return c;
523 s->domain.dns_name = talloc_strdup(s, r->in.domain_dns_name);
524 if (composite_nomem(s->domain.dns_name, c)) return c;
525 s->domain.netbios_name = talloc_strdup(s, r->in.domain_netbios_name);
526 if (composite_nomem(s->domain.netbios_name, c)) return c;
528 /* Source DSA input */
529 s->source_dsa.address = talloc_strdup(s, r->in.source_dsa_address);
530 if (composite_nomem(s->source_dsa.address, c)) return c;
532 /* Destination DSA input */
533 s->dest_dsa.netbios_name= talloc_strdup(s, r->in.dest_dsa_netbios_name);
534 if (composite_nomem(s->dest_dsa.netbios_name, c)) return c;
536 /* Destination DSA dns_name construction */
537 tmp_name = strlower_talloc(s, s->dest_dsa.netbios_name);
538 if (composite_nomem(tmp_name, c)) return c;
539 s->dest_dsa.dns_name = talloc_asprintf_append(tmp_name, ".%s",
541 if (composite_nomem(s->dest_dsa.dns_name, c)) return c;
543 unbecomeDC_send_cldap(s);
547 NTSTATUS libnet_UnbecomeDC_recv(struct composite_context *c, TALLOC_CTX *mem_ctx, struct libnet_UnbecomeDC *r)
551 status = composite_wait(c);
559 NTSTATUS libnet_UnbecomeDC(struct libnet_context *ctx, TALLOC_CTX *mem_ctx, struct libnet_UnbecomeDC *r)
562 struct composite_context *c;
563 c = libnet_UnbecomeDC_send(ctx, mem_ctx, r);
564 status = libnet_UnbecomeDC_recv(c, mem_ctx, r);