2 Unix SMB/CIFS implementation.
4 Copyright (C) Andrew Tridgell 1994-1998
5 Copyright (C) Jeremy Allison 2007.
7 This program is free software; you can redistribute it and/or modify
8 it under the terms of the GNU General Public License as published by
9 the Free Software Foundation; either version 3 of the License, or
10 (at your option) any later version.
12 This program is distributed in the hope that it will be useful,
13 but WITHOUT ANY WARRANTY; without even the implied warranty of
14 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
15 GNU General Public License for more details.
17 You should have received a copy of the GNU General Public License
18 along with this program. If not, see <http://www.gnu.org/licenses/>.
22 #include "../lib/util/tevent_ntstatus.h"
23 #include "libads/sitename_cache.h"
24 #include "../lib/addns/dnsquery.h"
25 #include "../libcli/netlogon/netlogon.h"
26 #include "lib/async_req/async_sock.h"
27 #include "libsmb/nmblib.h"
28 #include "../libcli/nbt/libnbt.h"
30 /* nmbd.c sets this to True. */
31 bool global_in_nmbd = False;
33 /****************************
34 * SERVER AFFINITY ROUTINES *
35 ****************************/
37 /* Server affinity is the concept of preferring the last domain
38 controller with whom you had a successful conversation */
40 /****************************************************************************
41 ****************************************************************************/
42 #define SAFKEY_FMT "SAF/DOMAIN/%s"
44 #define SAFJOINKEY_FMT "SAFJOIN/DOMAIN/%s"
45 #define SAFJOIN_TTL 3600
47 static char *saf_key(TALLOC_CTX *mem_ctx, const char *domain)
49 return talloc_asprintf_strupper_m(mem_ctx, SAFKEY_FMT, domain);
52 static char *saf_join_key(TALLOC_CTX *mem_ctx, const char *domain)
54 return talloc_asprintf_strupper_m(mem_ctx, SAFJOINKEY_FMT, domain);
57 /****************************************************************************
58 ****************************************************************************/
60 bool saf_store( const char *domain, const char *servername )
66 if ( !domain || !servername ) {
67 DEBUG(2,("saf_store: "
68 "Refusing to store empty domain or servername!\n"));
72 if ( (strlen(domain) == 0) || (strlen(servername) == 0) ) {
73 DEBUG(0,("saf_store: "
74 "refusing to store 0 length domain or servername!\n"));
78 key = saf_key(talloc_tos(), domain);
80 DEBUG(1, ("saf_key() failed\n"));
83 expire = time( NULL ) + lp_parm_int(-1, "saf","ttl", SAF_TTL);
85 DEBUG(10,("saf_store: domain = [%s], server = [%s], expire = [%u]\n",
86 domain, servername, (unsigned int)expire ));
88 ret = gencache_set( key, servername, expire );
95 bool saf_join_store( const char *domain, const char *servername )
101 if ( !domain || !servername ) {
102 DEBUG(2,("saf_join_store: Refusing to store empty domain or servername!\n"));
106 if ( (strlen(domain) == 0) || (strlen(servername) == 0) ) {
107 DEBUG(0,("saf_join_store: refusing to store 0 length domain or servername!\n"));
111 key = saf_join_key(talloc_tos(), domain);
113 DEBUG(1, ("saf_join_key() failed\n"));
116 expire = time( NULL ) + lp_parm_int(-1, "saf","join ttl", SAFJOIN_TTL);
118 DEBUG(10,("saf_join_store: domain = [%s], server = [%s], expire = [%u]\n",
119 domain, servername, (unsigned int)expire ));
121 ret = gencache_set( key, servername, expire );
128 bool saf_delete( const char *domain )
134 DEBUG(2,("saf_delete: Refusing to delete empty domain\n"));
138 key = saf_join_key(talloc_tos(), domain);
140 DEBUG(1, ("saf_join_key() failed\n"));
143 ret = gencache_del(key);
147 DEBUG(10,("saf_delete[join]: domain = [%s]\n", domain ));
150 key = saf_key(talloc_tos(), domain);
152 DEBUG(1, ("saf_key() failed\n"));
155 ret = gencache_del(key);
159 DEBUG(10,("saf_delete: domain = [%s]\n", domain ));
165 /****************************************************************************
166 ****************************************************************************/
168 char *saf_fetch(TALLOC_CTX *mem_ctx, const char *domain )
175 if ( !domain || strlen(domain) == 0) {
176 DEBUG(2,("saf_fetch: Empty domain name!\n"));
180 key = saf_join_key(talloc_tos(), domain);
182 DEBUG(1, ("saf_join_key() failed\n"));
186 ret = gencache_get( key, mem_ctx, &server, &timeout );
191 DEBUG(5,("saf_fetch[join]: Returning \"%s\" for \"%s\" domain\n",
196 key = saf_key(talloc_tos(), domain);
198 DEBUG(1, ("saf_key() failed\n"));
202 ret = gencache_get( key, mem_ctx, &server, &timeout );
207 DEBUG(5,("saf_fetch: failed to find server for \"%s\" domain\n",
210 DEBUG(5,("saf_fetch: Returning \"%s\" for \"%s\" domain\n",
217 static void set_socket_addr_v4(struct sockaddr_storage *addr)
219 if (!interpret_string_addr(addr, lp_nbt_client_socket_address(),
220 AI_NUMERICHOST|AI_PASSIVE)) {
223 if (addr->ss_family != AF_INET) {
228 static struct in_addr my_socket_addr_v4(void)
230 struct sockaddr_storage my_addr;
231 struct sockaddr_in *in_addr = (struct sockaddr_in *)((char *)&my_addr);
233 set_socket_addr_v4(&my_addr);
234 return in_addr->sin_addr;
237 /****************************************************************************
238 Generate a random trn_id.
239 ****************************************************************************/
241 static int generate_trn_id(void)
245 generate_random_buffer((uint8_t *)&id, sizeof(id));
247 return id % (unsigned)0x7FFF;
250 /****************************************************************************
251 Parse a node status response into an array of structures.
252 ****************************************************************************/
254 static struct node_status *parse_node_status(TALLOC_CTX *mem_ctx, char *p,
256 struct node_status_extra *extra)
258 struct node_status *ret;
261 *num_names = CVAL(p,0);
266 ret = talloc_array(mem_ctx, struct node_status,*num_names);
271 for (i=0;i< *num_names;i++) {
272 StrnCpy(ret[i].name,p,15);
273 trim_char(ret[i].name,'\0',' ');
274 ret[i].type = CVAL(p,15);
275 ret[i].flags = p[16];
277 DEBUG(10, ("%s#%02x: flags = 0x%02x\n", ret[i].name,
278 ret[i].type, ret[i].flags));
281 * Also, pick up the MAC address ...
284 memcpy(&extra->mac_addr, p, 6); /* Fill in the mac addr */
289 struct sock_packet_read_state {
290 struct tevent_context *ev;
291 enum packet_type type;
294 struct nb_packet_reader *reader;
295 struct tevent_req *reader_req;
298 struct tevent_req *socket_req;
300 struct sockaddr_storage addr;
303 bool (*validator)(struct packet_struct *p,
307 struct packet_struct *packet;
310 static int sock_packet_read_state_destructor(struct sock_packet_read_state *s);
311 static void sock_packet_read_got_packet(struct tevent_req *subreq);
312 static void sock_packet_read_got_socket(struct tevent_req *subreq);
314 static struct tevent_req *sock_packet_read_send(
316 struct tevent_context *ev,
317 int sock, /* dgram socket */
318 struct nb_packet_reader *reader,
319 enum packet_type type,
321 bool (*validator)(struct packet_struct *p, void *private_data),
324 struct tevent_req *req;
325 struct sock_packet_read_state *state;
327 req = tevent_req_create(mem_ctx, &state,
328 struct sock_packet_read_state);
332 talloc_set_destructor(state, sock_packet_read_state_destructor);
334 state->reader = reader;
337 state->trn_id = trn_id;
338 state->validator = validator;
339 state->private_data = private_data;
341 if (reader != NULL) {
342 state->reader_req = nb_packet_read_send(state, ev, reader);
343 if (tevent_req_nomem(state->reader_req, req)) {
344 return tevent_req_post(req, ev);
346 tevent_req_set_callback(
347 state->reader_req, sock_packet_read_got_packet, req);
350 state->addr_len = sizeof(state->addr);
351 state->socket_req = recvfrom_send(state, ev, sock,
352 state->buf, sizeof(state->buf), 0,
353 &state->addr, &state->addr_len);
354 if (tevent_req_nomem(state->socket_req, req)) {
355 return tevent_req_post(req, ev);
357 tevent_req_set_callback(state->socket_req, sock_packet_read_got_socket,
363 static int sock_packet_read_state_destructor(struct sock_packet_read_state *s)
365 if (s->packet != NULL) {
366 free_packet(s->packet);
372 static void sock_packet_read_got_packet(struct tevent_req *subreq)
374 struct tevent_req *req = tevent_req_callback_data(
375 subreq, struct tevent_req);
376 struct sock_packet_read_state *state = tevent_req_data(
377 req, struct sock_packet_read_state);
380 status = nb_packet_read_recv(subreq, &state->packet);
382 TALLOC_FREE(state->reader_req);
384 if (!NT_STATUS_IS_OK(status)) {
385 if (state->socket_req != NULL) {
387 * Still waiting for socket
392 * Both socket and packet reader failed
394 tevent_req_nterror(req, status);
398 if ((state->validator != NULL) &&
399 !state->validator(state->packet, state->private_data)) {
400 DEBUG(10, ("validator failed\n"));
402 free_packet(state->packet);
403 state->packet = NULL;
405 state->reader_req = nb_packet_read_send(state, state->ev,
407 if (tevent_req_nomem(state->reader_req, req)) {
410 tevent_req_set_callback(
411 state->reader_req, sock_packet_read_got_packet, req);
415 TALLOC_FREE(state->socket_req);
416 tevent_req_done(req);
419 static void sock_packet_read_got_socket(struct tevent_req *subreq)
421 struct tevent_req *req = tevent_req_callback_data(
422 subreq, struct tevent_req);
423 struct sock_packet_read_state *state = tevent_req_data(
424 req, struct sock_packet_read_state);
425 struct sockaddr_in *in_addr;
429 received = recvfrom_recv(subreq, &err);
431 TALLOC_FREE(state->socket_req);
433 if (received == -1) {
434 if (state->reader_req != NULL) {
436 * Still waiting for reader
441 * Both socket and reader failed
443 tevent_req_nterror(req, map_nt_error_from_unix(err));
446 if (state->addr.ss_family != AF_INET) {
449 in_addr = (struct sockaddr_in *)(void *)&state->addr;
451 state->packet = parse_packet((char *)state->buf, received, state->type,
452 in_addr->sin_addr, in_addr->sin_port);
453 if (state->packet == NULL) {
454 DEBUG(10, ("parse_packet failed\n"));
457 if ((state->trn_id != -1) &&
458 (state->trn_id != packet_trn_id(state->packet))) {
459 DEBUG(10, ("Expected transaction id %d, got %d\n",
460 state->trn_id, packet_trn_id(state->packet)));
464 if ((state->validator != NULL) &&
465 !state->validator(state->packet, state->private_data)) {
466 DEBUG(10, ("validator failed\n"));
470 tevent_req_done(req);
474 if (state->packet != NULL) {
475 free_packet(state->packet);
476 state->packet = NULL;
478 state->socket_req = recvfrom_send(state, state->ev, state->sock,
479 state->buf, sizeof(state->buf), 0,
480 &state->addr, &state->addr_len);
481 if (tevent_req_nomem(state->socket_req, req)) {
484 tevent_req_set_callback(state->socket_req, sock_packet_read_got_socket,
488 static NTSTATUS sock_packet_read_recv(struct tevent_req *req,
489 struct packet_struct **ppacket)
491 struct sock_packet_read_state *state = tevent_req_data(
492 req, struct sock_packet_read_state);
495 if (tevent_req_is_nterror(req, &status)) {
498 *ppacket = state->packet;
499 state->packet = NULL;
503 struct nb_trans_state {
504 struct tevent_context *ev;
506 struct nb_packet_reader *reader;
508 const struct sockaddr_storage *dst_addr;
511 enum packet_type type;
514 bool (*validator)(struct packet_struct *p,
518 struct packet_struct *packet;
521 static int nb_trans_state_destructor(struct nb_trans_state *s);
522 static void nb_trans_got_reader(struct tevent_req *subreq);
523 static void nb_trans_done(struct tevent_req *subreq);
524 static void nb_trans_sent(struct tevent_req *subreq);
525 static void nb_trans_send_next(struct tevent_req *subreq);
527 static struct tevent_req *nb_trans_send(
529 struct tevent_context *ev,
530 const struct sockaddr_storage *my_addr,
531 const struct sockaddr_storage *dst_addr,
533 uint8_t *buf, size_t buflen,
534 enum packet_type type, int trn_id,
535 bool (*validator)(struct packet_struct *p,
539 struct tevent_req *req, *subreq;
540 struct nb_trans_state *state;
542 req = tevent_req_create(mem_ctx, &state, struct nb_trans_state);
546 talloc_set_destructor(state, nb_trans_state_destructor);
548 state->dst_addr = dst_addr;
550 state->buflen = buflen;
552 state->trn_id = trn_id;
553 state->validator = validator;
554 state->private_data = private_data;
556 state->sock = open_socket_in(SOCK_DGRAM, 0, 3, my_addr, True);
557 if (state->sock == -1) {
558 tevent_req_nterror(req, map_nt_error_from_unix(errno));
559 DEBUG(10, ("open_socket_in failed: %s\n", strerror(errno)));
560 return tevent_req_post(req, ev);
564 set_socket_options(state->sock,"SO_BROADCAST");
567 subreq = nb_packet_reader_send(state, ev, type, state->trn_id, NULL);
568 if (tevent_req_nomem(subreq, req)) {
569 return tevent_req_post(req, ev);
571 tevent_req_set_callback(subreq, nb_trans_got_reader, req);
575 static int nb_trans_state_destructor(struct nb_trans_state *s)
581 if (s->packet != NULL) {
582 free_packet(s->packet);
588 static void nb_trans_got_reader(struct tevent_req *subreq)
590 struct tevent_req *req = tevent_req_callback_data(
591 subreq, struct tevent_req);
592 struct nb_trans_state *state = tevent_req_data(
593 req, struct nb_trans_state);
596 status = nb_packet_reader_recv(subreq, state, &state->reader);
599 if (!NT_STATUS_IS_OK(status)) {
600 DEBUG(10, ("nmbd not around\n"));
601 state->reader = NULL;
604 subreq = sock_packet_read_send(
605 state, state->ev, state->sock,
606 state->reader, state->type, state->trn_id,
607 state->validator, state->private_data);
608 if (tevent_req_nomem(subreq, req)) {
611 tevent_req_set_callback(subreq, nb_trans_done, req);
613 subreq = sendto_send(state, state->ev, state->sock,
614 state->buf, state->buflen, 0, state->dst_addr);
615 if (tevent_req_nomem(subreq, req)) {
618 tevent_req_set_callback(subreq, nb_trans_sent, req);
621 static void nb_trans_sent(struct tevent_req *subreq)
623 struct tevent_req *req = tevent_req_callback_data(
624 subreq, struct tevent_req);
625 struct nb_trans_state *state = tevent_req_data(
626 req, struct nb_trans_state);
630 sent = sendto_recv(subreq, &err);
633 DEBUG(10, ("sendto failed: %s\n", strerror(err)));
634 tevent_req_nterror(req, map_nt_error_from_unix(err));
637 subreq = tevent_wakeup_send(state, state->ev,
638 timeval_current_ofs(1, 0));
639 if (tevent_req_nomem(subreq, req)) {
642 tevent_req_set_callback(subreq, nb_trans_send_next, req);
645 static void nb_trans_send_next(struct tevent_req *subreq)
647 struct tevent_req *req = tevent_req_callback_data(
648 subreq, struct tevent_req);
649 struct nb_trans_state *state = tevent_req_data(
650 req, struct nb_trans_state);
653 ret = tevent_wakeup_recv(subreq);
656 tevent_req_nterror(req, NT_STATUS_INTERNAL_ERROR);
659 subreq = sendto_send(state, state->ev, state->sock,
660 state->buf, state->buflen, 0, state->dst_addr);
661 if (tevent_req_nomem(subreq, req)) {
664 tevent_req_set_callback(subreq, nb_trans_sent, req);
667 static void nb_trans_done(struct tevent_req *subreq)
669 struct tevent_req *req = tevent_req_callback_data(
670 subreq, struct tevent_req);
671 struct nb_trans_state *state = tevent_req_data(
672 req, struct nb_trans_state);
675 status = sock_packet_read_recv(subreq, &state->packet);
677 if (tevent_req_nterror(req, status)) {
680 tevent_req_done(req);
683 static NTSTATUS nb_trans_recv(struct tevent_req *req,
684 struct packet_struct **ppacket)
686 struct nb_trans_state *state = tevent_req_data(
687 req, struct nb_trans_state);
690 if (tevent_req_is_nterror(req, &status)) {
693 *ppacket = state->packet;
694 state->packet = NULL;
698 /****************************************************************************
699 Do a NBT node status query on an open socket and return an array of
700 structures holding the returned names or NULL if the query failed.
701 **************************************************************************/
703 struct node_status_query_state {
704 struct sockaddr_storage my_addr;
705 struct sockaddr_storage addr;
708 struct packet_struct *packet;
711 static int node_status_query_state_destructor(
712 struct node_status_query_state *s);
713 static bool node_status_query_validator(struct packet_struct *p,
715 static void node_status_query_done(struct tevent_req *subreq);
717 struct tevent_req *node_status_query_send(TALLOC_CTX *mem_ctx,
718 struct tevent_context *ev,
719 struct nmb_name *name,
720 const struct sockaddr_storage *addr)
722 struct tevent_req *req, *subreq;
723 struct node_status_query_state *state;
724 struct packet_struct p;
725 struct nmb_packet *nmb = &p.packet.nmb;
726 struct sockaddr_in *in_addr;
728 req = tevent_req_create(mem_ctx, &state,
729 struct node_status_query_state);
733 talloc_set_destructor(state, node_status_query_state_destructor);
735 if (addr->ss_family != AF_INET) {
736 /* Can't do node status to IPv6 */
737 tevent_req_nterror(req, NT_STATUS_INVALID_ADDRESS);
738 return tevent_req_post(req, ev);
742 in_addr = (struct sockaddr_in *)(void *)&state->addr;
743 in_addr->sin_port = htons(NMB_PORT);
745 set_socket_addr_v4(&state->my_addr);
748 nmb->header.name_trn_id = generate_trn_id();
749 nmb->header.opcode = 0;
750 nmb->header.response = false;
751 nmb->header.nm_flags.bcast = false;
752 nmb->header.nm_flags.recursion_available = false;
753 nmb->header.nm_flags.recursion_desired = false;
754 nmb->header.nm_flags.trunc = false;
755 nmb->header.nm_flags.authoritative = false;
756 nmb->header.rcode = 0;
757 nmb->header.qdcount = 1;
758 nmb->header.ancount = 0;
759 nmb->header.nscount = 0;
760 nmb->header.arcount = 0;
761 nmb->question.question_name = *name;
762 nmb->question.question_type = 0x21;
763 nmb->question.question_class = 0x1;
765 state->buflen = build_packet((char *)state->buf, sizeof(state->buf),
767 if (state->buflen == 0) {
768 tevent_req_nterror(req, NT_STATUS_INTERNAL_ERROR);
769 DEBUG(10, ("build_packet failed\n"));
770 return tevent_req_post(req, ev);
773 subreq = nb_trans_send(state, ev, &state->my_addr, &state->addr, false,
774 state->buf, state->buflen,
775 NMB_PACKET, nmb->header.name_trn_id,
776 node_status_query_validator, NULL);
777 if (tevent_req_nomem(subreq, req)) {
778 DEBUG(10, ("nb_trans_send failed\n"));
779 return tevent_req_post(req, ev);
781 if (!tevent_req_set_endtime(req, ev, timeval_current_ofs(10, 0))) {
782 return tevent_req_post(req, ev);
784 tevent_req_set_callback(subreq, node_status_query_done, req);
788 static bool node_status_query_validator(struct packet_struct *p,
791 struct nmb_packet *nmb = &p->packet.nmb;
794 if (nmb->header.opcode != 0 ||
795 nmb->header.nm_flags.bcast ||
797 !nmb->header.ancount ||
798 nmb->answers->rr_type != 0x21) {
800 * XXXX what do we do with this? could be a redirect,
801 * but we'll discard it for the moment
808 static int node_status_query_state_destructor(
809 struct node_status_query_state *s)
811 if (s->packet != NULL) {
812 free_packet(s->packet);
818 static void node_status_query_done(struct tevent_req *subreq)
820 struct tevent_req *req = tevent_req_callback_data(
821 subreq, struct tevent_req);
822 struct node_status_query_state *state = tevent_req_data(
823 req, struct node_status_query_state);
826 status = nb_trans_recv(subreq, &state->packet);
828 if (tevent_req_nterror(req, status)) {
831 tevent_req_done(req);
834 NTSTATUS node_status_query_recv(struct tevent_req *req, TALLOC_CTX *mem_ctx,
835 struct node_status **pnode_status,
837 struct node_status_extra *extra)
839 struct node_status_query_state *state = tevent_req_data(
840 req, struct node_status_query_state);
841 struct node_status *node_status;
845 if (tevent_req_is_nterror(req, &status)) {
848 node_status = parse_node_status(
849 mem_ctx, &state->packet->packet.nmb.answers->rdata[0],
851 if (node_status == NULL) {
852 return NT_STATUS_NO_MEMORY;
854 *pnode_status = node_status;
855 *pnum_names = num_names;
859 NTSTATUS node_status_query(TALLOC_CTX *mem_ctx, struct nmb_name *name,
860 const struct sockaddr_storage *addr,
861 struct node_status **pnode_status,
863 struct node_status_extra *extra)
865 TALLOC_CTX *frame = talloc_stackframe();
866 struct tevent_context *ev;
867 struct tevent_req *req;
868 NTSTATUS status = NT_STATUS_NO_MEMORY;
870 ev = samba_tevent_context_init(frame);
874 req = node_status_query_send(ev, ev, name, addr);
878 if (!tevent_req_poll_ntstatus(req, ev, &status)) {
881 status = node_status_query_recv(req, mem_ctx, pnode_status,
888 /****************************************************************************
889 Find the first type XX name in a node status reply - used for finding
890 a servers name given its IP. Return the matched name in *name.
891 **************************************************************************/
893 bool name_status_find(const char *q_name,
896 const struct sockaddr_storage *to_ss,
899 char addr[INET6_ADDRSTRLEN];
900 struct sockaddr_storage ss;
901 struct node_status *addrs = NULL;
902 struct nmb_name nname;
907 if (lp_disable_netbios()) {
908 DEBUG(5,("name_status_find(%s#%02x): netbios is disabled\n",
913 print_sockaddr(addr, sizeof(addr), to_ss);
915 DEBUG(10, ("name_status_find: looking up %s#%02x at %s\n", q_name,
918 /* Check the cache first. */
920 if (namecache_status_fetch(q_name, q_type, type, to_ss, name)) {
924 if (to_ss->ss_family != AF_INET) {
925 /* Can't do node status to IPv6 */
929 set_socket_addr_v4(&ss);
931 /* W2K PDC's seem not to respond to '*'#0. JRA */
932 make_nmb_name(&nname, q_name, q_type);
933 status = node_status_query(talloc_tos(), &nname, to_ss,
934 &addrs, &count, NULL);
935 if (!NT_STATUS_IS_OK(status)) {
939 for (i=0;i<count;i++) {
940 /* Find first one of the requested type that's not a GROUP. */
941 if (addrs[i].type == type && ! (addrs[i].flags & 0x80))
947 pull_ascii_nstring(name, sizeof(fstring), addrs[i].name);
949 /* Store the result in the cache. */
950 /* but don't store an entry for 0x1c names here. Here we have
951 a single host and DOMAIN<0x1c> names should be a list of hosts */
953 if ( q_type != 0x1c ) {
954 namecache_status_store(q_name, q_type, type, to_ss, name);
962 DEBUG(10, ("name_status_find: name %sfound", result ? "" : "not "));
965 DEBUGADD(10, (", name %s ip address is %s", name, addr));
973 comparison function used by sort_addr_list
976 static int addr_compare(const struct sockaddr_storage *ss1,
977 const struct sockaddr_storage *ss2)
979 int max_bits1=0, max_bits2=0;
980 int num_interfaces = iface_count();
983 /* Sort IPv4 addresses first. */
984 if (ss1->ss_family != ss2->ss_family) {
985 if (ss2->ss_family == AF_INET) {
992 /* Here we know both addresses are of the same
995 for (i=0;i<num_interfaces;i++) {
996 const struct sockaddr_storage *pss = iface_n_bcast(i);
997 const unsigned char *p_ss1 = NULL;
998 const unsigned char *p_ss2 = NULL;
999 const unsigned char *p_if = NULL;
1003 if (pss->ss_family != ss1->ss_family) {
1004 /* Ignore interfaces of the wrong type. */
1007 if (pss->ss_family == AF_INET) {
1008 p_if = (const unsigned char *)
1009 &((const struct sockaddr_in *)pss)->sin_addr;
1010 p_ss1 = (const unsigned char *)
1011 &((const struct sockaddr_in *)ss1)->sin_addr;
1012 p_ss2 = (const unsigned char *)
1013 &((const struct sockaddr_in *)ss2)->sin_addr;
1016 #if defined(HAVE_IPV6)
1017 if (pss->ss_family == AF_INET6) {
1018 p_if = (const unsigned char *)
1019 &((const struct sockaddr_in6 *)pss)->sin6_addr;
1020 p_ss1 = (const unsigned char *)
1021 &((const struct sockaddr_in6 *)ss1)->sin6_addr;
1022 p_ss2 = (const unsigned char *)
1023 &((const struct sockaddr_in6 *)ss2)->sin6_addr;
1027 if (!p_ss1 || !p_ss2 || !p_if || len == 0) {
1030 bits1 = matching_len_bits(p_ss1, p_if, len);
1031 bits2 = matching_len_bits(p_ss2, p_if, len);
1032 max_bits1 = MAX(bits1, max_bits1);
1033 max_bits2 = MAX(bits2, max_bits2);
1036 /* Bias towards directly reachable IPs */
1037 if (iface_local((const struct sockaddr *)ss1)) {
1038 if (ss1->ss_family == AF_INET) {
1044 if (iface_local((const struct sockaddr *)ss2)) {
1045 if (ss2->ss_family == AF_INET) {
1051 return max_bits2 - max_bits1;
1054 /*******************************************************************
1055 compare 2 ldap IPs by nearness to our interfaces - used in qsort
1056 *******************************************************************/
1058 static int ip_service_compare(struct ip_service *ss1, struct ip_service *ss2)
1062 if ((result = addr_compare(&ss1->ss, &ss2->ss)) != 0) {
1066 if (ss1->port > ss2->port) {
1070 if (ss1->port < ss2->port) {
1078 sort an IP list so that names that are close to one of our interfaces
1079 are at the top. This prevents the problem where a WINS server returns an IP
1080 that is not reachable from our subnet as the first match
1083 static void sort_addr_list(struct sockaddr_storage *sslist, int count)
1089 TYPESAFE_QSORT(sslist, count, addr_compare);
1092 static void sort_service_list(struct ip_service *servlist, int count)
1098 TYPESAFE_QSORT(servlist, count, ip_service_compare);
1101 /**********************************************************************
1102 Remove any duplicate address/port pairs in the list
1103 *********************************************************************/
1105 int remove_duplicate_addrs2(struct ip_service *iplist, int count )
1109 DEBUG(10,("remove_duplicate_addrs2: "
1110 "looking for duplicate address/port pairs\n"));
1112 /* One loop to set duplicates to a zero addr. */
1113 for ( i=0; i<count; i++ ) {
1114 if ( is_zero_addr(&iplist[i].ss)) {
1118 for ( j=i+1; j<count; j++ ) {
1119 if (sockaddr_equal((struct sockaddr *)(void *)&iplist[i].ss,
1120 (struct sockaddr *)(void *)&iplist[j].ss) &&
1121 iplist[i].port == iplist[j].port) {
1122 zero_sockaddr(&iplist[j].ss);
1127 /* Now remove any addresses set to zero above. */
1128 for (i = 0; i < count; i++) {
1130 is_zero_addr(&iplist[i].ss)) {
1134 (count-i-1)*sizeof(struct ip_service));
1143 static bool prioritize_ipv4_list(struct ip_service *iplist, int count)
1145 TALLOC_CTX *frame = talloc_stackframe();
1146 struct ip_service *iplist_new = talloc_array(frame, struct ip_service, count);
1149 if (iplist_new == NULL) {
1156 /* Copy IPv4 first. */
1157 for (i = 0; i < count; i++) {
1158 if (iplist[i].ss.ss_family == AF_INET) {
1159 iplist_new[j++] = iplist[i];
1164 for (i = 0; i < count; i++) {
1165 if (iplist[i].ss.ss_family != AF_INET) {
1166 iplist_new[j++] = iplist[i];
1170 memcpy(iplist, iplist_new, sizeof(struct ip_service)*count);
1175 /****************************************************************************
1176 Do a netbios name query to find someones IP.
1177 Returns an array of IP addresses or NULL if none.
1178 *count will be set to the number of addresses returned.
1179 *timed_out is set if we failed by timing out
1180 ****************************************************************************/
1182 struct name_query_state {
1183 struct sockaddr_storage my_addr;
1184 struct sockaddr_storage addr;
1191 NTSTATUS validate_error;
1194 struct sockaddr_storage *addrs;
1198 static bool name_query_validator(struct packet_struct *p, void *private_data);
1199 static void name_query_done(struct tevent_req *subreq);
1201 struct tevent_req *name_query_send(TALLOC_CTX *mem_ctx,
1202 struct tevent_context *ev,
1203 const char *name, int name_type,
1204 bool bcast, bool recurse,
1205 const struct sockaddr_storage *addr)
1207 struct tevent_req *req, *subreq;
1208 struct name_query_state *state;
1209 struct packet_struct p;
1210 struct nmb_packet *nmb = &p.packet.nmb;
1211 struct sockaddr_in *in_addr;
1213 req = tevent_req_create(mem_ctx, &state, struct name_query_state);
1217 state->bcast = bcast;
1219 if (addr->ss_family != AF_INET) {
1220 /* Can't do node status to IPv6 */
1221 tevent_req_nterror(req, NT_STATUS_INVALID_ADDRESS);
1222 return tevent_req_post(req, ev);
1225 if (lp_disable_netbios()) {
1226 DEBUG(5,("name_query(%s#%02x): netbios is disabled\n",
1228 tevent_req_nterror(req, NT_STATUS_NOT_SUPPORTED);
1229 return tevent_req_post(req, ev);
1232 state->addr = *addr;
1233 in_addr = (struct sockaddr_in *)(void *)&state->addr;
1234 in_addr->sin_port = htons(NMB_PORT);
1236 set_socket_addr_v4(&state->my_addr);
1239 nmb->header.name_trn_id = generate_trn_id();
1240 nmb->header.opcode = 0;
1241 nmb->header.response = false;
1242 nmb->header.nm_flags.bcast = bcast;
1243 nmb->header.nm_flags.recursion_available = false;
1244 nmb->header.nm_flags.recursion_desired = recurse;
1245 nmb->header.nm_flags.trunc = false;
1246 nmb->header.nm_flags.authoritative = false;
1247 nmb->header.rcode = 0;
1248 nmb->header.qdcount = 1;
1249 nmb->header.ancount = 0;
1250 nmb->header.nscount = 0;
1251 nmb->header.arcount = 0;
1253 make_nmb_name(&nmb->question.question_name,name,name_type);
1255 nmb->question.question_type = 0x20;
1256 nmb->question.question_class = 0x1;
1258 state->buflen = build_packet((char *)state->buf, sizeof(state->buf),
1260 if (state->buflen == 0) {
1261 tevent_req_nterror(req, NT_STATUS_INTERNAL_ERROR);
1262 DEBUG(10, ("build_packet failed\n"));
1263 return tevent_req_post(req, ev);
1266 subreq = nb_trans_send(state, ev, &state->my_addr, &state->addr, bcast,
1267 state->buf, state->buflen,
1268 NMB_PACKET, nmb->header.name_trn_id,
1269 name_query_validator, state);
1270 if (tevent_req_nomem(subreq, req)) {
1271 DEBUG(10, ("nb_trans_send failed\n"));
1272 return tevent_req_post(req, ev);
1274 tevent_req_set_callback(subreq, name_query_done, req);
1278 static bool name_query_validator(struct packet_struct *p, void *private_data)
1280 struct name_query_state *state = talloc_get_type_abort(
1281 private_data, struct name_query_state);
1282 struct nmb_packet *nmb = &p->packet.nmb;
1283 struct sockaddr_storage *tmp_addrs;
1284 bool got_unique_netbios_name = false;
1287 debug_nmb_packet(p);
1290 * If we get a Negative Name Query Response from a WINS
1291 * server, we should report it and give up.
1293 if( 0 == nmb->header.opcode /* A query response */
1294 && !state->bcast /* from a WINS server */
1295 && nmb->header.rcode /* Error returned */
1298 if( DEBUGLVL( 3 ) ) {
1299 /* Only executed if DEBUGLEVEL >= 3 */
1300 dbgtext( "Negative name query "
1301 "response, rcode 0x%02x: ",
1302 nmb->header.rcode );
1303 switch( nmb->header.rcode ) {
1305 dbgtext("Request was invalidly formatted.\n");
1308 dbgtext("Problem with NBNS, cannot process "
1312 dbgtext("The name requested does not "
1316 dbgtext("Unsupported request error.\n");
1319 dbgtext("Query refused error.\n");
1322 dbgtext("Unrecognized error code.\n" );
1328 * We accept this packet as valid, but tell the upper
1329 * layers that it's a negative response.
1331 state->validate_error = NT_STATUS_NOT_FOUND;
1335 if (nmb->header.opcode != 0 ||
1336 nmb->header.nm_flags.bcast ||
1337 nmb->header.rcode ||
1338 !nmb->header.ancount) {
1340 * XXXX what do we do with this? Could be a redirect,
1341 * but we'll discard it for the moment.
1346 tmp_addrs = talloc_realloc(
1347 state, state->addrs, struct sockaddr_storage,
1348 state->num_addrs + nmb->answers->rdlength/6);
1349 if (tmp_addrs == NULL) {
1350 state->validate_error = NT_STATUS_NO_MEMORY;
1353 state->addrs = tmp_addrs;
1355 DEBUG(2,("Got a positive name query response "
1356 "from %s ( ", inet_ntoa(p->ip)));
1358 for (i=0; i<nmb->answers->rdlength/6; i++) {
1361 struct sockaddr_storage addr;
1364 flags = RSVAL(&nmb->answers->rdata[i*6], 0);
1365 got_unique_netbios_name |= ((flags & 0x8000) == 0);
1367 putip((char *)&ip,&nmb->answers->rdata[2+i*6]);
1368 in_addr_to_sockaddr_storage(&addr, ip);
1370 if (is_zero_addr(&addr)) {
1374 for (j=0; j<state->num_addrs; j++) {
1376 (struct sockaddr *)(void *)&addr,
1377 (struct sockaddr *)(void *)&state->addrs[j])) {
1381 if (j < state->num_addrs) {
1382 /* Already got it */
1386 DEBUGADD(2,("%s ",inet_ntoa(ip)));
1388 state->addrs[state->num_addrs] = addr;
1389 state->num_addrs += 1;
1391 DEBUGADD(2,(")\n"));
1393 /* We add the flags back ... */
1394 if (nmb->header.response)
1395 state->flags |= NM_FLAGS_RS;
1396 if (nmb->header.nm_flags.authoritative)
1397 state->flags |= NM_FLAGS_AA;
1398 if (nmb->header.nm_flags.trunc)
1399 state->flags |= NM_FLAGS_TC;
1400 if (nmb->header.nm_flags.recursion_desired)
1401 state->flags |= NM_FLAGS_RD;
1402 if (nmb->header.nm_flags.recursion_available)
1403 state->flags |= NM_FLAGS_RA;
1404 if (nmb->header.nm_flags.bcast)
1405 state->flags |= NM_FLAGS_B;
1409 * We have to collect all entries coming in from broadcast
1410 * queries. If we got a unique name, we're done.
1412 return got_unique_netbios_name;
1415 * WINS responses are accepted when they are received
1420 static void name_query_done(struct tevent_req *subreq)
1422 struct tevent_req *req = tevent_req_callback_data(
1423 subreq, struct tevent_req);
1424 struct name_query_state *state = tevent_req_data(
1425 req, struct name_query_state);
1427 struct packet_struct *p = NULL;
1429 status = nb_trans_recv(subreq, &p);
1430 TALLOC_FREE(subreq);
1431 if (tevent_req_nterror(req, status)) {
1434 if (!NT_STATUS_IS_OK(state->validate_error)) {
1435 tevent_req_nterror(req, state->validate_error);
1440 * Free the packet here, we've collected the response in the
1445 tevent_req_done(req);
1448 NTSTATUS name_query_recv(struct tevent_req *req, TALLOC_CTX *mem_ctx,
1449 struct sockaddr_storage **addrs, int *num_addrs,
1452 struct name_query_state *state = tevent_req_data(
1453 req, struct name_query_state);
1456 if (tevent_req_is_nterror(req, &status)) {
1458 NT_STATUS_EQUAL(status, NT_STATUS_IO_TIMEOUT)) {
1460 * In the broadcast case we collect replies until the
1463 status = NT_STATUS_OK;
1465 if (!NT_STATUS_IS_OK(status)) {
1469 if (state->num_addrs == 0) {
1470 return NT_STATUS_NOT_FOUND;
1472 *addrs = talloc_move(mem_ctx, &state->addrs);
1473 sort_addr_list(*addrs, state->num_addrs);
1474 *num_addrs = state->num_addrs;
1475 if (flags != NULL) {
1476 *flags = state->flags;
1478 return NT_STATUS_OK;
1481 NTSTATUS name_query(const char *name, int name_type,
1482 bool bcast, bool recurse,
1483 const struct sockaddr_storage *to_ss,
1484 TALLOC_CTX *mem_ctx,
1485 struct sockaddr_storage **addrs,
1486 int *num_addrs, uint8_t *flags)
1488 TALLOC_CTX *frame = talloc_stackframe();
1489 struct tevent_context *ev;
1490 struct tevent_req *req;
1491 struct timeval timeout;
1492 NTSTATUS status = NT_STATUS_NO_MEMORY;
1494 ev = samba_tevent_context_init(frame);
1498 req = name_query_send(ev, ev, name, name_type, bcast, recurse, to_ss);
1503 timeout = timeval_current_ofs(0, 250000);
1505 timeout = timeval_current_ofs(2, 0);
1507 if (!tevent_req_set_endtime(req, ev, timeout)) {
1510 if (!tevent_req_poll_ntstatus(req, ev, &status)) {
1513 status = name_query_recv(req, mem_ctx, addrs, num_addrs, flags);
1519 /********************************************************
1520 Convert an array if struct sockaddr_storage to struct ip_service
1521 return false on failure. Port is set to PORT_NONE;
1522 pcount is [in/out] - it is the length of ss_list on input,
1523 and the length of return_iplist on output as we remove any
1524 zero addresses from ss_list.
1525 *********************************************************/
1527 static bool convert_ss2service(struct ip_service **return_iplist,
1528 const struct sockaddr_storage *ss_list,
1532 int orig_count = *pcount;
1535 if (orig_count==0 || !ss_list )
1538 /* Filter out zero addrs. */
1539 for ( i=0; i<orig_count; i++ ) {
1540 if (is_zero_addr(&ss_list[i])) {
1545 if (real_count==0) {
1549 /* copy the ip address; port will be PORT_NONE */
1550 if ((*return_iplist = SMB_MALLOC_ARRAY(struct ip_service, real_count)) ==
1552 DEBUG(0,("convert_ip2service: malloc failed "
1553 "for %d enetries!\n", real_count ));
1557 for ( i=0, real_count = 0; i<orig_count; i++ ) {
1558 if (is_zero_addr(&ss_list[i])) {
1561 (*return_iplist)[real_count].ss = ss_list[i];
1562 (*return_iplist)[real_count].port = PORT_NONE;
1566 *pcount = real_count;
1570 struct name_queries_state {
1571 struct tevent_context *ev;
1576 const struct sockaddr_storage *addrs;
1581 struct tevent_req **subreqs;
1586 struct sockaddr_storage *result_addrs;
1587 int num_result_addrs;
1591 static void name_queries_done(struct tevent_req *subreq);
1592 static void name_queries_next(struct tevent_req *subreq);
1595 * Send a name query to multiple destinations with a wait time in between
1598 static struct tevent_req *name_queries_send(
1599 TALLOC_CTX *mem_ctx, struct tevent_context *ev,
1600 const char *name, int name_type,
1601 bool bcast, bool recurse,
1602 const struct sockaddr_storage *addrs,
1603 int num_addrs, int wait_msec, int timeout_msec)
1605 struct tevent_req *req, *subreq;
1606 struct name_queries_state *state;
1608 req = tevent_req_create(mem_ctx, &state,
1609 struct name_queries_state);
1615 state->name_type = name_type;
1616 state->bcast = bcast;
1617 state->recurse = recurse;
1618 state->addrs = addrs;
1619 state->num_addrs = num_addrs;
1620 state->wait_msec = wait_msec;
1621 state->timeout_msec = timeout_msec;
1623 state->subreqs = talloc_zero_array(
1624 state, struct tevent_req *, num_addrs);
1625 if (tevent_req_nomem(state->subreqs, req)) {
1626 return tevent_req_post(req, ev);
1628 state->num_sent = 0;
1630 subreq = name_query_send(
1631 state->subreqs, state->ev, name, name_type, bcast, recurse,
1632 &state->addrs[state->num_sent]);
1633 if (tevent_req_nomem(subreq, req)) {
1634 return tevent_req_post(req, ev);
1636 if (!tevent_req_set_endtime(
1638 timeval_current_ofs(0, state->timeout_msec * 1000))) {
1639 tevent_req_oom(req);
1640 return tevent_req_post(req, ev);
1642 tevent_req_set_callback(subreq, name_queries_done, req);
1644 state->subreqs[state->num_sent] = subreq;
1645 state->num_sent += 1;
1647 if (state->num_sent < state->num_addrs) {
1648 subreq = tevent_wakeup_send(
1650 timeval_current_ofs(0, state->wait_msec * 1000));
1651 if (tevent_req_nomem(subreq, req)) {
1652 return tevent_req_post(req, ev);
1654 tevent_req_set_callback(subreq, name_queries_next, req);
1659 static void name_queries_done(struct tevent_req *subreq)
1661 struct tevent_req *req = tevent_req_callback_data(
1662 subreq, struct tevent_req);
1663 struct name_queries_state *state = tevent_req_data(
1664 req, struct name_queries_state);
1668 status = name_query_recv(subreq, state, &state->result_addrs,
1669 &state->num_result_addrs, &state->flags);
1671 for (i=0; i<state->num_sent; i++) {
1672 if (state->subreqs[i] == subreq) {
1676 if (i == state->num_sent) {
1677 tevent_req_nterror(req, NT_STATUS_INTERNAL_ERROR);
1680 TALLOC_FREE(state->subreqs[i]);
1682 state->num_received += 1;
1684 if (!NT_STATUS_IS_OK(status)) {
1686 if (state->num_received >= state->num_addrs) {
1687 tevent_req_nterror(req, status);
1691 * Still outstanding requests, just wait
1695 state->received_index = i;
1696 tevent_req_done(req);
1699 static void name_queries_next(struct tevent_req *subreq)
1701 struct tevent_req *req = tevent_req_callback_data(
1702 subreq, struct tevent_req);
1703 struct name_queries_state *state = tevent_req_data(
1704 req, struct name_queries_state);
1706 if (!tevent_wakeup_recv(subreq)) {
1707 tevent_req_nterror(req, NT_STATUS_INTERNAL_ERROR);
1711 subreq = name_query_send(
1712 state->subreqs, state->ev,
1713 state->name, state->name_type, state->bcast, state->recurse,
1714 &state->addrs[state->num_sent]);
1715 if (tevent_req_nomem(subreq, req)) {
1718 tevent_req_set_callback(subreq, name_queries_done, req);
1719 if (!tevent_req_set_endtime(
1721 timeval_current_ofs(0, state->timeout_msec * 1000))) {
1722 tevent_req_oom(req);
1725 state->subreqs[state->num_sent] = subreq;
1726 state->num_sent += 1;
1728 if (state->num_sent < state->num_addrs) {
1729 subreq = tevent_wakeup_send(
1731 timeval_current_ofs(0, state->wait_msec * 1000));
1732 if (tevent_req_nomem(subreq, req)) {
1735 tevent_req_set_callback(subreq, name_queries_next, req);
1739 static NTSTATUS name_queries_recv(struct tevent_req *req, TALLOC_CTX *mem_ctx,
1740 struct sockaddr_storage **result_addrs,
1741 int *num_result_addrs, uint8_t *flags,
1742 int *received_index)
1744 struct name_queries_state *state = tevent_req_data(
1745 req, struct name_queries_state);
1748 if (tevent_req_is_nterror(req, &status)) {
1752 if (result_addrs != NULL) {
1753 *result_addrs = talloc_move(mem_ctx, &state->result_addrs);
1755 if (num_result_addrs != NULL) {
1756 *num_result_addrs = state->num_result_addrs;
1758 if (flags != NULL) {
1759 *flags = state->flags;
1761 if (received_index != NULL) {
1762 *received_index = state->received_index;
1764 return NT_STATUS_OK;
1767 /********************************************************
1768 Resolve via "bcast" method.
1769 *********************************************************/
1771 struct name_resolve_bcast_state {
1772 struct sockaddr_storage *addrs;
1776 static void name_resolve_bcast_done(struct tevent_req *subreq);
1778 struct tevent_req *name_resolve_bcast_send(TALLOC_CTX *mem_ctx,
1779 struct tevent_context *ev,
1783 struct tevent_req *req, *subreq;
1784 struct name_resolve_bcast_state *state;
1785 struct sockaddr_storage *bcast_addrs;
1786 int i, num_addrs, num_bcast_addrs;
1788 req = tevent_req_create(mem_ctx, &state,
1789 struct name_resolve_bcast_state);
1794 if (lp_disable_netbios()) {
1795 DEBUG(5, ("name_resolve_bcast(%s#%02x): netbios is disabled\n",
1797 tevent_req_nterror(req, NT_STATUS_INVALID_PARAMETER);
1798 return tevent_req_post(req, ev);
1802 * "bcast" means do a broadcast lookup on all the local interfaces.
1805 DEBUG(3, ("name_resolve_bcast: Attempting broadcast lookup "
1806 "for name %s<0x%x>\n", name, name_type));
1808 num_addrs = iface_count();
1809 bcast_addrs = talloc_array(state, struct sockaddr_storage, num_addrs);
1810 if (tevent_req_nomem(bcast_addrs, req)) {
1811 return tevent_req_post(req, ev);
1815 * Lookup the name on all the interfaces, return on
1816 * the first successful match.
1818 num_bcast_addrs = 0;
1820 for (i=0; i<num_addrs; i++) {
1821 const struct sockaddr_storage *pss = iface_n_bcast(i);
1823 if (pss->ss_family != AF_INET) {
1826 bcast_addrs[num_bcast_addrs] = *pss;
1827 num_bcast_addrs += 1;
1830 subreq = name_queries_send(state, ev, name, name_type, true, true,
1831 bcast_addrs, num_bcast_addrs, 0, 1000);
1832 if (tevent_req_nomem(subreq, req)) {
1833 return tevent_req_post(req, ev);
1835 tevent_req_set_callback(subreq, name_resolve_bcast_done, req);
1839 static void name_resolve_bcast_done(struct tevent_req *subreq)
1841 struct tevent_req *req = tevent_req_callback_data(
1842 subreq, struct tevent_req);
1843 struct name_resolve_bcast_state *state = tevent_req_data(
1844 req, struct name_resolve_bcast_state);
1847 status = name_queries_recv(subreq, state,
1848 &state->addrs, &state->num_addrs,
1850 TALLOC_FREE(subreq);
1851 if (tevent_req_nterror(req, status)) {
1854 tevent_req_done(req);
1857 NTSTATUS name_resolve_bcast_recv(struct tevent_req *req, TALLOC_CTX *mem_ctx,
1858 struct sockaddr_storage **addrs,
1861 struct name_resolve_bcast_state *state = tevent_req_data(
1862 req, struct name_resolve_bcast_state);
1865 if (tevent_req_is_nterror(req, &status)) {
1868 *addrs = talloc_move(mem_ctx, &state->addrs);
1869 *num_addrs = state->num_addrs;
1870 return NT_STATUS_OK;
1873 NTSTATUS name_resolve_bcast(const char *name,
1875 TALLOC_CTX *mem_ctx,
1876 struct sockaddr_storage **return_iplist,
1879 TALLOC_CTX *frame = talloc_stackframe();
1880 struct tevent_context *ev;
1881 struct tevent_req *req;
1882 NTSTATUS status = NT_STATUS_NO_MEMORY;
1884 ev = samba_tevent_context_init(frame);
1888 req = name_resolve_bcast_send(frame, ev, name, name_type);
1892 if (!tevent_req_poll_ntstatus(req, ev, &status)) {
1895 status = name_resolve_bcast_recv(req, mem_ctx, return_iplist,
1902 struct query_wins_list_state {
1903 struct tevent_context *ev;
1906 struct in_addr *servers;
1907 uint32_t num_servers;
1908 struct sockaddr_storage server;
1911 struct sockaddr_storage *addrs;
1916 static void query_wins_list_done(struct tevent_req *subreq);
1919 * Query a list of (replicating) wins servers in sequence, call them
1920 * dead if they don't reply
1923 static struct tevent_req *query_wins_list_send(
1924 TALLOC_CTX *mem_ctx, struct tevent_context *ev,
1925 struct in_addr src_ip, const char *name, uint8_t name_type,
1926 struct in_addr *servers, int num_servers)
1928 struct tevent_req *req, *subreq;
1929 struct query_wins_list_state *state;
1931 req = tevent_req_create(mem_ctx, &state,
1932 struct query_wins_list_state);
1938 state->name_type = name_type;
1939 state->servers = servers;
1940 state->num_servers = num_servers;
1942 if (state->num_servers == 0) {
1943 tevent_req_nterror(req, NT_STATUS_NOT_FOUND);
1944 return tevent_req_post(req, ev);
1947 in_addr_to_sockaddr_storage(
1948 &state->server, state->servers[state->num_sent]);
1950 subreq = name_query_send(state, state->ev,
1951 state->name, state->name_type,
1952 false, true, &state->server);
1953 state->num_sent += 1;
1954 if (tevent_req_nomem(subreq, req)) {
1955 return tevent_req_post(req, ev);
1957 if (!tevent_req_set_endtime(subreq, state->ev,
1958 timeval_current_ofs(2, 0))) {
1959 tevent_req_oom(req);
1960 return tevent_req_post(req, ev);
1962 tevent_req_set_callback(subreq, query_wins_list_done, req);
1966 static void query_wins_list_done(struct tevent_req *subreq)
1968 struct tevent_req *req = tevent_req_callback_data(
1969 subreq, struct tevent_req);
1970 struct query_wins_list_state *state = tevent_req_data(
1971 req, struct query_wins_list_state);
1974 status = name_query_recv(subreq, state,
1975 &state->addrs, &state->num_addrs,
1977 TALLOC_FREE(subreq);
1978 if (NT_STATUS_IS_OK(status)) {
1979 tevent_req_done(req);
1982 if (!NT_STATUS_EQUAL(status, NT_STATUS_IO_TIMEOUT)) {
1983 tevent_req_nterror(req, status);
1986 wins_srv_died(state->servers[state->num_sent-1],
1987 my_socket_addr_v4());
1989 if (state->num_sent == state->num_servers) {
1990 tevent_req_nterror(req, NT_STATUS_NOT_FOUND);
1994 in_addr_to_sockaddr_storage(
1995 &state->server, state->servers[state->num_sent]);
1997 subreq = name_query_send(state, state->ev,
1998 state->name, state->name_type,
1999 false, true, &state->server);
2000 state->num_sent += 1;
2001 if (tevent_req_nomem(subreq, req)) {
2004 if (!tevent_req_set_endtime(subreq, state->ev,
2005 timeval_current_ofs(2, 0))) {
2006 tevent_req_oom(req);
2009 tevent_req_set_callback(subreq, query_wins_list_done, req);
2012 static NTSTATUS query_wins_list_recv(struct tevent_req *req,
2013 TALLOC_CTX *mem_ctx,
2014 struct sockaddr_storage **addrs,
2018 struct query_wins_list_state *state = tevent_req_data(
2019 req, struct query_wins_list_state);
2022 if (tevent_req_is_nterror(req, &status)) {
2025 if (addrs != NULL) {
2026 *addrs = talloc_move(mem_ctx, &state->addrs);
2028 if (num_addrs != NULL) {
2029 *num_addrs = state->num_addrs;
2031 if (flags != NULL) {
2032 *flags = state->flags;
2034 return NT_STATUS_OK;
2037 struct resolve_wins_state {
2041 struct sockaddr_storage *addrs;
2046 static void resolve_wins_done(struct tevent_req *subreq);
2048 struct tevent_req *resolve_wins_send(TALLOC_CTX *mem_ctx,
2049 struct tevent_context *ev,
2053 struct tevent_req *req, *subreq;
2054 struct resolve_wins_state *state;
2055 char **wins_tags = NULL;
2056 struct sockaddr_storage src_ss;
2057 struct in_addr src_ip;
2058 int i, num_wins_tags;
2060 req = tevent_req_create(mem_ctx, &state,
2061 struct resolve_wins_state);
2066 if (wins_srv_count() < 1) {
2067 DEBUG(3,("resolve_wins: WINS server resolution selected "
2068 "and no WINS servers listed.\n"));
2069 tevent_req_nterror(req, NT_STATUS_INVALID_PARAMETER);
2073 /* the address we will be sending from */
2074 if (!interpret_string_addr(&src_ss, lp_nbt_client_socket_address(),
2075 AI_NUMERICHOST|AI_PASSIVE)) {
2076 zero_sockaddr(&src_ss);
2079 if (src_ss.ss_family != AF_INET) {
2080 char addr[INET6_ADDRSTRLEN];
2081 print_sockaddr(addr, sizeof(addr), &src_ss);
2082 DEBUG(3,("resolve_wins: cannot receive WINS replies "
2083 "on IPv6 address %s\n",
2085 tevent_req_nterror(req, NT_STATUS_INVALID_PARAMETER);
2089 src_ip = ((const struct sockaddr_in *)(void *)&src_ss)->sin_addr;
2091 wins_tags = wins_srv_tags();
2092 if (wins_tags == NULL) {
2093 tevent_req_nterror(req, NT_STATUS_INVALID_PARAMETER);
2098 while (wins_tags[num_wins_tags] != NULL) {
2102 for (i=0; i<num_wins_tags; i++) {
2103 int num_servers, num_alive;
2104 struct in_addr *servers, *alive;
2107 if (!wins_server_tag_ips(wins_tags[i], talloc_tos(),
2108 &servers, &num_servers)) {
2109 DEBUG(10, ("wins_server_tag_ips failed for tag %s\n",
2114 alive = talloc_array(state, struct in_addr, num_servers);
2115 if (tevent_req_nomem(alive, req)) {
2120 for (j=0; j<num_servers; j++) {
2121 struct in_addr wins_ip = servers[j];
2123 if (global_in_nmbd && ismyip_v4(wins_ip)) {
2124 /* yikes! we'll loop forever */
2127 /* skip any that have been unresponsive lately */
2128 if (wins_srv_is_dead(wins_ip, src_ip)) {
2131 DEBUG(3, ("resolve_wins: using WINS server %s "
2133 inet_ntoa(wins_ip), wins_tags[i]));
2134 alive[num_alive] = wins_ip;
2137 TALLOC_FREE(servers);
2139 if (num_alive == 0) {
2143 subreq = query_wins_list_send(
2144 state, ev, src_ip, name, name_type,
2146 if (tevent_req_nomem(subreq, req)) {
2149 tevent_req_set_callback(subreq, resolve_wins_done, req);
2150 state->num_sent += 1;
2153 if (state->num_sent == 0) {
2154 tevent_req_nterror(req, NT_STATUS_NOT_FOUND);
2158 wins_srv_tags_free(wins_tags);
2161 wins_srv_tags_free(wins_tags);
2162 return tevent_req_post(req, ev);
2165 static void resolve_wins_done(struct tevent_req *subreq)
2167 struct tevent_req *req = tevent_req_callback_data(
2168 subreq, struct tevent_req);
2169 struct resolve_wins_state *state = tevent_req_data(
2170 req, struct resolve_wins_state);
2173 status = query_wins_list_recv(subreq, state, &state->addrs,
2174 &state->num_addrs, &state->flags);
2175 if (NT_STATUS_IS_OK(status)) {
2176 tevent_req_done(req);
2180 state->num_received += 1;
2182 if (state->num_received < state->num_sent) {
2184 * Wait for the others
2188 tevent_req_nterror(req, status);
2191 NTSTATUS resolve_wins_recv(struct tevent_req *req, TALLOC_CTX *mem_ctx,
2192 struct sockaddr_storage **addrs,
2193 int *num_addrs, uint8_t *flags)
2195 struct resolve_wins_state *state = tevent_req_data(
2196 req, struct resolve_wins_state);
2199 if (tevent_req_is_nterror(req, &status)) {
2202 if (addrs != NULL) {
2203 *addrs = talloc_move(mem_ctx, &state->addrs);
2205 if (num_addrs != NULL) {
2206 *num_addrs = state->num_addrs;
2208 if (flags != NULL) {
2209 *flags = state->flags;
2211 return NT_STATUS_OK;
2214 /********************************************************
2215 Resolve via "wins" method.
2216 *********************************************************/
2218 NTSTATUS resolve_wins(const char *name,
2220 TALLOC_CTX *mem_ctx,
2221 struct sockaddr_storage **return_iplist,
2224 struct tevent_context *ev;
2225 struct tevent_req *req;
2226 NTSTATUS status = NT_STATUS_NO_MEMORY;
2228 ev = samba_tevent_context_init(talloc_tos());
2232 req = resolve_wins_send(ev, ev, name, name_type);
2236 if (!tevent_req_poll_ntstatus(req, ev, &status)) {
2239 status = resolve_wins_recv(req, mem_ctx, return_iplist, return_count,
2246 /********************************************************
2247 Resolve via "lmhosts" method.
2248 *********************************************************/
2250 static NTSTATUS resolve_lmhosts(const char *name, int name_type,
2251 struct ip_service **return_iplist,
2255 * "lmhosts" means parse the local lmhosts file.
2257 struct sockaddr_storage *ss_list;
2258 NTSTATUS status = NT_STATUS_DOMAIN_CONTROLLER_NOT_FOUND;
2259 TALLOC_CTX *ctx = NULL;
2261 *return_iplist = NULL;
2264 DEBUG(3,("resolve_lmhosts: "
2265 "Attempting lmhosts lookup for name %s<0x%x>\n",
2268 ctx = talloc_init("resolve_lmhosts");
2270 return NT_STATUS_NO_MEMORY;
2273 status = resolve_lmhosts_file_as_sockaddr(get_dyn_LMHOSTSFILE(),
2278 if (NT_STATUS_IS_OK(status)) {
2279 if (convert_ss2service(return_iplist,
2283 return NT_STATUS_OK;
2286 return NT_STATUS_NO_MEMORY;
2294 /********************************************************
2295 Resolve via "hosts" method.
2296 *********************************************************/
2298 static NTSTATUS resolve_hosts(const char *name, int name_type,
2299 struct ip_service **return_iplist,
2303 * "host" means do a localhost, or dns lookup.
2305 struct addrinfo hints;
2306 struct addrinfo *ailist = NULL;
2307 struct addrinfo *res = NULL;
2311 if ( name_type != 0x20 && name_type != 0x0) {
2312 DEBUG(5, ("resolve_hosts: not appropriate "
2313 "for name type <0x%x>\n",
2315 return NT_STATUS_INVALID_PARAMETER;
2318 *return_iplist = NULL;
2321 DEBUG(3,("resolve_hosts: Attempting host lookup for name %s<0x%x>\n",
2325 /* By default make sure it supports TCP. */
2326 hints.ai_socktype = SOCK_STREAM;
2327 hints.ai_flags = AI_ADDRCONFIG;
2329 #if !defined(HAVE_IPV6)
2330 /* Unless we have IPv6, we really only want IPv4 addresses back. */
2331 hints.ai_family = AF_INET;
2334 ret = getaddrinfo(name,
2339 DEBUG(3,("resolve_hosts: getaddrinfo failed for name %s [%s]\n",
2341 gai_strerror(ret) ));
2344 for (res = ailist; res; res = res->ai_next) {
2345 struct sockaddr_storage ss;
2347 if (!res->ai_addr || res->ai_addrlen == 0) {
2352 memcpy(&ss, res->ai_addr, res->ai_addrlen);
2354 if (is_zero_addr(&ss)) {
2360 *return_iplist = SMB_REALLOC_ARRAY(*return_iplist,
2363 if (!*return_iplist) {
2364 DEBUG(3,("resolve_hosts: malloc fail !\n"));
2365 freeaddrinfo(ailist);
2366 return NT_STATUS_NO_MEMORY;
2368 (*return_iplist)[i].ss = ss;
2369 (*return_iplist)[i].port = PORT_NONE;
2373 freeaddrinfo(ailist);
2375 if (*return_count) {
2376 return NT_STATUS_OK;
2378 return NT_STATUS_UNSUCCESSFUL;
2381 /********************************************************
2382 Resolve via "ADS" method.
2383 *********************************************************/
2385 /* Special name type used to cause a _kerberos DNS lookup. */
2386 #define KDC_NAME_TYPE 0xDCDC
2388 static NTSTATUS resolve_ads(const char *name,
2390 const char *sitename,
2391 struct ip_service **return_iplist,
2397 struct dns_rr_srv *dcs = NULL;
2401 if ((name_type != 0x1c) && (name_type != KDC_NAME_TYPE) &&
2402 (name_type != 0x1b)) {
2403 return NT_STATUS_INVALID_PARAMETER;
2406 if ( (ctx = talloc_init("resolve_ads")) == NULL ) {
2407 DEBUG(0,("resolve_ads: talloc_init() failed!\n"));
2408 return NT_STATUS_NO_MEMORY;
2411 /* The DNS code needs fixing to find IPv6 addresses... JRA. */
2412 switch (name_type) {
2414 DEBUG(5,("resolve_ads: Attempting to resolve "
2415 "PDC for %s using DNS\n", name));
2416 status = ads_dns_query_pdc(ctx,
2423 DEBUG(5,("resolve_ads: Attempting to resolve "
2424 "DCs for %s using DNS\n", name));
2425 status = ads_dns_query_dcs(ctx,
2432 DEBUG(5,("resolve_ads: Attempting to resolve "
2433 "KDCs for %s using DNS\n", name));
2434 status = ads_dns_query_kdcs(ctx,
2441 status = NT_STATUS_INVALID_PARAMETER;
2445 if ( !NT_STATUS_IS_OK( status ) ) {
2446 talloc_destroy(ctx);
2450 for (i=0;i<numdcs;i++) {
2454 numaddrs += dcs[i].num_ips;
2458 if ((*return_iplist = SMB_MALLOC_ARRAY(struct ip_service, numaddrs)) ==
2460 DEBUG(0,("resolve_ads: malloc failed for %d entries\n",
2462 talloc_destroy(ctx);
2463 return NT_STATUS_NO_MEMORY;
2466 /* now unroll the list of IP addresses */
2470 for (i = 0; i < numdcs && (*return_count<numaddrs); i++ ) {
2471 /* If we don't have an IP list for a name, lookup it up */
2473 /* We need to get all IP addresses here. */
2474 struct addrinfo *res = NULL;
2476 int extra_addrs = 0;
2478 if (!interpret_string_addr_internal(&res,
2483 /* Add in every IP from the lookup. How
2485 for (p = res; p; p = p->ai_next) {
2486 struct sockaddr_storage ss;
2487 memcpy(&ss, p->ai_addr, p->ai_addrlen);
2488 if (is_zero_addr(&ss)) {
2493 if (extra_addrs > 1) {
2494 /* We need to expand the return_iplist array
2495 as we only budgeted for one address. */
2496 numaddrs += (extra_addrs-1);
2497 *return_iplist = SMB_REALLOC_ARRAY(*return_iplist,
2500 if (*return_iplist == NULL) {
2504 talloc_destroy(ctx);
2505 return NT_STATUS_NO_MEMORY;
2508 for (p = res; p; p = p->ai_next) {
2509 (*return_iplist)[*return_count].port = dcs[i].port;
2510 memcpy(&(*return_iplist)[*return_count].ss,
2513 if (is_zero_addr(&(*return_iplist)[*return_count].ss)) {
2517 /* Should never happen, but still... */
2518 if (*return_count>=numaddrs) {
2526 /* use all the IP addresses from the SRV sresponse */
2528 for (j = 0; j < dcs[i].num_ips; j++) {
2529 (*return_iplist)[*return_count].port = dcs[i].port;
2530 (*return_iplist)[*return_count].ss = dcs[i].ss_s[j];
2531 if (is_zero_addr(&(*return_iplist)[*return_count].ss)) {
2535 /* Should never happen, but still... */
2536 if (*return_count>=numaddrs) {
2543 talloc_destroy(ctx);
2544 return NT_STATUS_OK;
2547 static const char **filter_out_nbt_lookup(TALLOC_CTX *mem_ctx,
2548 const char **resolve_order)
2550 size_t i, len, result_idx;
2551 const char **result;
2554 while (resolve_order[len] != NULL) {
2558 result = talloc_array(mem_ctx, const char *, len+1);
2559 if (result == NULL) {
2565 for (i=0; i<len; i++) {
2566 const char *tok = resolve_order[i];
2568 if (strequal(tok, "lmhosts") || strequal(tok, "wins") ||
2569 strequal(tok, "bcast")) {
2572 result[result_idx++] = tok;
2574 result[result_idx] = NULL;
2579 /*******************************************************************
2580 Internal interface to resolve a name into an IP address.
2581 Use this function if the string is either an IP address, DNS
2582 or host name or NetBIOS name. This uses the name switch in the
2583 smb.conf to determine the order of name resolution.
2585 Added support for ip addr/port to support ADS ldap servers.
2586 the only place we currently care about the port is in the
2587 resolve_hosts() when looking up DC's via SRV RR entries in DNS
2588 **********************************************************************/
2590 NTSTATUS internal_resolve_name(const char *name,
2592 const char *sitename,
2593 struct ip_service **return_iplist,
2595 const char **resolve_order)
2598 NTSTATUS status = NT_STATUS_UNSUCCESSFUL;
2600 TALLOC_CTX *frame = NULL;
2602 *return_iplist = NULL;
2605 DEBUG(10, ("internal_resolve_name: looking up %s#%x (sitename %s)\n",
2606 name, name_type, sitename ? sitename : "(null)"));
2608 if (is_ipaddress(name)) {
2609 if ((*return_iplist = SMB_MALLOC_P(struct ip_service)) ==
2611 DEBUG(0,("internal_resolve_name: malloc fail !\n"));
2612 return NT_STATUS_NO_MEMORY;
2615 /* ignore the port here */
2616 (*return_iplist)->port = PORT_NONE;
2618 /* if it's in the form of an IP address then get the lib to interpret it */
2619 if (!interpret_string_addr(&(*return_iplist)->ss,
2620 name, AI_NUMERICHOST)) {
2621 DEBUG(1,("internal_resolve_name: interpret_string_addr "
2624 SAFE_FREE(*return_iplist);
2625 return NT_STATUS_INVALID_PARAMETER;
2627 if (is_zero_addr(&(*return_iplist)->ss)) {
2628 SAFE_FREE(*return_iplist);
2629 return NT_STATUS_UNSUCCESSFUL;
2632 return NT_STATUS_OK;
2635 /* Check name cache */
2637 if (namecache_fetch(name, name_type, return_iplist, return_count)) {
2638 *return_count = remove_duplicate_addrs2(*return_iplist,
2640 /* This could be a negative response */
2641 if (*return_count > 0) {
2642 return NT_STATUS_OK;
2644 return NT_STATUS_UNSUCCESSFUL;
2648 /* set the name resolution order */
2650 if (resolve_order && strcmp(resolve_order[0], "NULL") == 0) {
2651 DEBUG(8,("internal_resolve_name: all lookups disabled\n"));
2652 return NT_STATUS_INVALID_PARAMETER;
2655 if (!resolve_order || !resolve_order[0]) {
2656 static const char *host_order[] = { "host", NULL };
2657 resolve_order = host_order;
2660 frame = talloc_stackframe();
2662 if ((strlen(name) > MAX_NETBIOSNAME_LEN - 1) ||
2663 (strchr(name, '.') != NULL)) {
2665 * Don't do NBT lookup, the name would not fit anyway
2667 resolve_order = filter_out_nbt_lookup(frame, resolve_order);
2668 if (resolve_order == NULL) {
2669 return NT_STATUS_NO_MEMORY;
2673 /* iterate through the name resolution backends */
2675 for (i=0; resolve_order[i]; i++) {
2676 tok = resolve_order[i];
2678 if((strequal(tok, "host") || strequal(tok, "hosts"))) {
2679 status = resolve_hosts(name, name_type, return_iplist,
2681 if (NT_STATUS_IS_OK(status)) {
2684 } else if(strequal( tok, "kdc")) {
2685 /* deal with KDC_NAME_TYPE names here.
2686 * This will result in a SRV record lookup */
2687 status = resolve_ads(name, KDC_NAME_TYPE, sitename,
2688 return_iplist, return_count);
2689 if (NT_STATUS_IS_OK(status)) {
2690 /* Ensure we don't namecache
2691 * this with the KDC port. */
2692 name_type = KDC_NAME_TYPE;
2695 } else if(strequal( tok, "ads")) {
2696 /* deal with 0x1c and 0x1b names here.
2697 * This will result in a SRV record lookup */
2698 status = resolve_ads(name, name_type, sitename,
2699 return_iplist, return_count);
2700 if (NT_STATUS_IS_OK(status)) {
2703 } else if (strequal(tok, "lmhosts")) {
2704 status = resolve_lmhosts(name, name_type,
2705 return_iplist, return_count);
2706 if (NT_STATUS_IS_OK(status)) {
2709 } else if (strequal(tok, "wins")) {
2710 /* don't resolve 1D via WINS */
2711 struct sockaddr_storage *ss_list;
2712 if (name_type != 0x1D) {
2713 status = resolve_wins(name, name_type,
2717 if (NT_STATUS_IS_OK(status)) {
2718 if (!convert_ss2service(return_iplist,
2721 status = NT_STATUS_NO_MEMORY;
2726 } else if (strequal(tok, "bcast")) {
2727 struct sockaddr_storage *ss_list;
2728 status = name_resolve_bcast(
2729 name, name_type, talloc_tos(),
2730 &ss_list, return_count);
2731 if (NT_STATUS_IS_OK(status)) {
2732 if (!convert_ss2service(return_iplist,
2735 status = NT_STATUS_NO_MEMORY;
2740 DEBUG(0,("resolve_name: unknown name switch type %s\n",
2745 /* All of the resolve_* functions above have returned false. */
2748 SAFE_FREE(*return_iplist);
2751 return NT_STATUS_UNSUCCESSFUL;
2755 /* Remove duplicate entries. Some queries, notably #1c (domain
2756 controllers) return the PDC in iplist[0] and then all domain
2757 controllers including the PDC in iplist[1..n]. Iterating over
2758 the iplist when the PDC is down will cause two sets of timeouts. */
2760 *return_count = remove_duplicate_addrs2(*return_iplist, *return_count );
2762 /* Save in name cache */
2763 if ( DEBUGLEVEL >= 100 ) {
2764 for (i = 0; i < *return_count && DEBUGLEVEL == 100; i++) {
2765 char addr[INET6_ADDRSTRLEN];
2766 print_sockaddr(addr, sizeof(addr),
2767 &(*return_iplist)[i].ss);
2768 DEBUG(100, ("Storing name %s of type %d (%s:%d)\n",
2772 (*return_iplist)[i].port));
2776 if (*return_count) {
2777 namecache_store(name, name_type, *return_count, *return_iplist);
2780 /* Display some debugging info */
2782 if ( DEBUGLEVEL >= 10 ) {
2783 DEBUG(10, ("internal_resolve_name: returning %d addresses: ",
2786 for (i = 0; i < *return_count; i++) {
2787 char addr[INET6_ADDRSTRLEN];
2788 print_sockaddr(addr, sizeof(addr),
2789 &(*return_iplist)[i].ss);
2790 DEBUGADD(10, ("%s:%d ",
2792 (*return_iplist)[i].port));
2801 /********************************************************
2802 Internal interface to resolve a name into one IP address.
2803 Use this function if the string is either an IP address, DNS
2804 or host name or NetBIOS name. This uses the name switch in the
2805 smb.conf to determine the order of name resolution.
2806 *********************************************************/
2808 bool resolve_name(const char *name,
2809 struct sockaddr_storage *return_ss,
2813 struct ip_service *ss_list = NULL;
2814 char *sitename = NULL;
2818 if (is_ipaddress(name)) {
2819 return interpret_string_addr(return_ss, name, AI_NUMERICHOST);
2822 sitename = sitename_fetch(talloc_tos(), lp_realm()); /* wild guess */
2824 status = internal_resolve_name(name, name_type, sitename,
2826 lp_name_resolve_order());
2827 if (NT_STATUS_IS_OK(status)) {
2831 for (i=0; i<count; i++) {
2832 if (!is_zero_addr(&ss_list[i].ss) &&
2833 !is_broadcast_addr((struct sockaddr *)(void *)&ss_list[i].ss) &&
2834 (ss_list[i].ss.ss_family == AF_INET)) {
2835 *return_ss = ss_list[i].ss;
2837 TALLOC_FREE(sitename);
2843 /* only return valid addresses for TCP connections */
2844 for (i=0; i<count; i++) {
2845 if (!is_zero_addr(&ss_list[i].ss) &&
2846 !is_broadcast_addr((struct sockaddr *)(void *)&ss_list[i].ss)) {
2847 *return_ss = ss_list[i].ss;
2849 TALLOC_FREE(sitename);
2856 TALLOC_FREE(sitename);
2860 /********************************************************
2861 Internal interface to resolve a name into a list of IP addresses.
2862 Use this function if the string is either an IP address, DNS
2863 or host name or NetBIOS name. This uses the name switch in the
2864 smb.conf to determine the order of name resolution.
2865 *********************************************************/
2867 NTSTATUS resolve_name_list(TALLOC_CTX *ctx,
2870 struct sockaddr_storage **return_ss_arr,
2871 unsigned int *p_num_entries)
2873 struct ip_service *ss_list = NULL;
2874 char *sitename = NULL;
2877 unsigned int num_entries;
2881 *return_ss_arr = NULL;
2883 if (is_ipaddress(name)) {
2884 *return_ss_arr = talloc(ctx, struct sockaddr_storage);
2885 if (!*return_ss_arr) {
2886 return NT_STATUS_NO_MEMORY;
2888 if (!interpret_string_addr(*return_ss_arr, name, AI_NUMERICHOST)) {
2889 TALLOC_FREE(*return_ss_arr);
2890 return NT_STATUS_BAD_NETWORK_NAME;
2893 return NT_STATUS_OK;
2896 sitename = sitename_fetch(ctx, lp_realm()); /* wild guess */
2898 status = internal_resolve_name(name, name_type, sitename,
2900 lp_name_resolve_order());
2901 TALLOC_FREE(sitename);
2903 if (!NT_STATUS_IS_OK(status)) {
2907 /* only return valid addresses for TCP connections */
2908 for (i=0, num_entries = 0; i<count; i++) {
2909 if (!is_zero_addr(&ss_list[i].ss) &&
2910 !is_broadcast_addr((struct sockaddr *)(void *)&ss_list[i].ss)) {
2914 if (num_entries == 0) {
2916 return NT_STATUS_BAD_NETWORK_NAME;
2919 *return_ss_arr = talloc_array(ctx,
2920 struct sockaddr_storage,
2922 if (!(*return_ss_arr)) {
2924 return NT_STATUS_NO_MEMORY;
2927 for (i=0, num_entries = 0; i<count; i++) {
2928 if (!is_zero_addr(&ss_list[i].ss) &&
2929 !is_broadcast_addr((struct sockaddr *)(void *)&ss_list[i].ss)) {
2930 (*return_ss_arr)[num_entries++] = ss_list[i].ss;
2934 status = NT_STATUS_OK;
2935 *p_num_entries = num_entries;
2938 return NT_STATUS_OK;
2941 /********************************************************
2942 Find the IP address of the master browser or DMB for a workgroup.
2943 *********************************************************/
2945 bool find_master_ip(const char *group, struct sockaddr_storage *master_ss)
2947 struct ip_service *ip_list = NULL;
2951 if (lp_disable_netbios()) {
2952 DEBUG(5,("find_master_ip(%s): netbios is disabled\n", group));
2956 status = internal_resolve_name(group, 0x1D, NULL, &ip_list, &count,
2957 lp_name_resolve_order());
2958 if (NT_STATUS_IS_OK(status)) {
2959 *master_ss = ip_list[0].ss;
2964 status = internal_resolve_name(group, 0x1B, NULL, &ip_list, &count,
2965 lp_name_resolve_order());
2966 if (NT_STATUS_IS_OK(status)) {
2967 *master_ss = ip_list[0].ss;
2976 /********************************************************
2977 Get the IP address list of the primary domain controller
2979 *********************************************************/
2981 bool get_pdc_ip(const char *domain, struct sockaddr_storage *pss)
2983 struct ip_service *ip_list = NULL;
2985 NTSTATUS status = NT_STATUS_DOMAIN_CONTROLLER_NOT_FOUND;
2986 static const char *ads_order[] = { "ads", NULL };
2987 /* Look up #1B name */
2989 if (lp_security() == SEC_ADS) {
2990 status = internal_resolve_name(domain, 0x1b, NULL, &ip_list,
2994 if (!NT_STATUS_IS_OK(status) || count == 0) {
2995 status = internal_resolve_name(domain, 0x1b, NULL, &ip_list,
2997 lp_name_resolve_order());
2998 if (!NT_STATUS_IS_OK(status)) {
3004 /* if we get more than 1 IP back we have to assume it is a
3005 multi-homed PDC and not a mess up */
3008 DEBUG(6,("get_pdc_ip: PDC has %d IP addresses!\n", count));
3009 sort_service_list(ip_list, count);
3012 *pss = ip_list[0].ss;
3017 /* Private enum type for lookups. */
3019 enum dc_lookup_type { DC_NORMAL_LOOKUP, DC_ADS_ONLY, DC_KDC_ONLY };
3021 /********************************************************
3022 Get the IP address list of the domain controllers for
3024 *********************************************************/
3026 static NTSTATUS get_dc_list(const char *domain,
3027 const char *sitename,
3028 struct ip_service **ip_list,
3030 enum dc_lookup_type lookup_type,
3033 const char **resolve_order = NULL;
3034 char *saf_servername = NULL;
3035 char *pserver = NULL;
3037 char *port_str = NULL;
3040 int num_addresses = 0;
3041 int local_count, i, j;
3042 struct ip_service *return_iplist = NULL;
3043 struct ip_service *auto_ip_list = NULL;
3044 bool done_auto_lookup = false;
3047 TALLOC_CTX *ctx = talloc_init("get_dc_list");
3053 return NT_STATUS_NO_MEMORY;
3058 /* if we are restricted to solely using DNS for looking
3059 up a domain controller, make sure that host lookups
3060 are enabled for the 'name resolve order'. If host lookups
3061 are disabled and ads_only is True, then set the string to
3064 resolve_order = lp_name_resolve_order();
3065 if (!resolve_order) {
3066 status = NT_STATUS_NO_MEMORY;
3069 if (lookup_type == DC_ADS_ONLY) {
3070 if (str_list_check_ci(resolve_order, "host")) {
3071 static const char *ads_order[] = { "ads", NULL };
3072 resolve_order = ads_order;
3074 /* DNS SRV lookups used by the ads resolver
3075 are already sorted by priority and weight */
3078 /* this is quite bizarre! */
3079 static const char *null_order[] = { "NULL", NULL };
3080 resolve_order = null_order;
3082 } else if (lookup_type == DC_KDC_ONLY) {
3083 static const char *kdc_order[] = { "kdc", NULL };
3084 /* DNS SRV lookups used by the ads/kdc resolver
3085 are already sorted by priority and weight */
3087 resolve_order = kdc_order;
3089 if (!resolve_order) {
3090 status = NT_STATUS_NO_MEMORY;
3094 /* fetch the server we have affinity for. Add the
3095 'password server' list to a search for our domain controllers */
3097 saf_servername = saf_fetch(ctx, domain);
3099 if (strequal(domain, lp_workgroup()) || strequal(domain, lp_realm())) {
3100 pserver = talloc_asprintf(ctx, "%s, %s",
3101 saf_servername ? saf_servername : "",
3102 lp_password_server());
3104 pserver = talloc_asprintf(ctx, "%s, *",
3105 saf_servername ? saf_servername : "");
3108 TALLOC_FREE(saf_servername);
3110 status = NT_STATUS_NO_MEMORY;
3114 /* if we are starting from scratch, just lookup DOMAIN<0x1c> */
3117 DEBUG(10,("get_dc_list: no preferred domain controllers.\n"));
3118 status = internal_resolve_name(domain, 0x1C, sitename, ip_list,
3119 count, resolve_order);
3123 DEBUG(3,("get_dc_list: preferred server list: \"%s\"\n", pserver ));
3126 * if '*' appears in the "password server" list then add
3127 * an auto lookup to the list of manually configured
3128 * DC's. If any DC is listed by name, then the list should be
3129 * considered to be ordered
3133 while (next_token_talloc(ctx, &p, &name, LIST_SEP)) {
3134 if (!done_auto_lookup && strequal(name, "*")) {
3135 status = internal_resolve_name(domain, 0x1C, sitename,
3139 if (NT_STATUS_IS_OK(status)) {
3140 num_addresses += auto_count;
3142 done_auto_lookup = true;
3143 DEBUG(8,("Adding %d DC's from auto lookup\n",
3150 /* if we have no addresses and haven't done the auto lookup, then
3151 just return the list of DC's. Or maybe we just failed. */
3153 if (num_addresses == 0) {
3154 if (done_auto_lookup) {
3155 DEBUG(4,("get_dc_list: no servers found\n"));
3156 status = NT_STATUS_NO_LOGON_SERVERS;
3159 status = internal_resolve_name(domain, 0x1C, sitename, ip_list,
3160 count, resolve_order);
3164 if ((return_iplist = SMB_MALLOC_ARRAY(struct ip_service,
3165 num_addresses)) == NULL) {
3166 DEBUG(3,("get_dc_list: malloc fail !\n"));
3167 status = NT_STATUS_NO_MEMORY;
3174 /* fill in the return list now with real IP's */
3176 while ((local_count<num_addresses) &&
3177 next_token_talloc(ctx, &p, &name, LIST_SEP)) {
3178 struct sockaddr_storage name_ss;
3180 /* copy any addersses from the auto lookup */
3182 if (strequal(name, "*")) {
3183 for (j=0; j<auto_count; j++) {
3184 char addr[INET6_ADDRSTRLEN];
3185 print_sockaddr(addr,
3187 &auto_ip_list[j].ss);
3188 /* Check for and don't copy any
3189 * known bad DC IP's. */
3190 if(!NT_STATUS_IS_OK(check_negative_conn_cache(
3193 DEBUG(5,("get_dc_list: "
3194 "negative entry %s removed "
3199 return_iplist[local_count].ss =
3201 return_iplist[local_count].port =
3202 auto_ip_list[j].port;
3208 /* added support for address:port syntax for ads
3209 * (not that I think anyone will ever run the LDAP
3210 * server in an AD domain on something other than
3213 port = (lp_security() == SEC_ADS) ? LDAP_PORT : PORT_NONE;
3214 if ((port_str=strchr(name, ':')) != NULL) {
3217 port = atoi(port_str);
3220 /* explicit lookup; resolve_name() will
3221 * handle names & IP addresses */
3222 if (resolve_name( name, &name_ss, 0x20, true )) {
3223 char addr[INET6_ADDRSTRLEN];
3224 print_sockaddr(addr,
3228 /* Check for and don't copy any known bad DC IP's. */
3229 if( !NT_STATUS_IS_OK(check_negative_conn_cache(domain,
3231 DEBUG(5,("get_dc_list: negative entry %s "
3232 "removed from DC list\n",
3237 return_iplist[local_count].ss = name_ss;
3238 return_iplist[local_count].port = port;
3244 /* need to remove duplicates in the list if we have any
3245 explicit password servers */
3247 local_count = remove_duplicate_addrs2(return_iplist, local_count );
3249 /* For DC's we always prioritize IPv4 due to W2K3 not
3250 * supporting LDAP, KRB5 or CLDAP over IPv6. */
3252 if (local_count && return_iplist) {
3253 prioritize_ipv4_list(return_iplist, local_count);
3256 if ( DEBUGLEVEL >= 4 ) {
3257 DEBUG(4,("get_dc_list: returning %d ip addresses "
3258 "in an %sordered list\n",
3260 *ordered ? "":"un"));
3261 DEBUG(4,("get_dc_list: "));
3262 for ( i=0; i<local_count; i++ ) {
3263 char addr[INET6_ADDRSTRLEN];
3264 print_sockaddr(addr,
3266 &return_iplist[i].ss);
3267 DEBUGADD(4,("%s:%d ", addr, return_iplist[i].port ));
3272 *ip_list = return_iplist;
3273 *count = local_count;
3275 status = ( *count != 0 ? NT_STATUS_OK : NT_STATUS_NO_LOGON_SERVERS );
3279 if (!NT_STATUS_IS_OK(status)) {
3280 SAFE_FREE(return_iplist);
3285 SAFE_FREE(auto_ip_list);
3290 /*********************************************************************
3291 Small wrapper function to get the DC list and sort it if neccessary.
3292 *********************************************************************/
3294 NTSTATUS get_sorted_dc_list( const char *domain,
3295 const char *sitename,
3296 struct ip_service **ip_list,
3300 bool ordered = false;
3302 enum dc_lookup_type lookup_type = DC_NORMAL_LOOKUP;
3307 DEBUG(8,("get_sorted_dc_list: attempting lookup "
3308 "for name %s (sitename %s)\n",
3310 sitename ? sitename : "NULL"));
3313 lookup_type = DC_ADS_ONLY;
3316 status = get_dc_list(domain, sitename, ip_list,
3317 count, lookup_type, &ordered);
3318 if (NT_STATUS_EQUAL(status, NT_STATUS_NO_LOGON_SERVERS)
3320 DEBUG(3,("get_sorted_dc_list: no server for name %s available"
3321 " in site %s, fallback to all servers\n",
3323 status = get_dc_list(domain, NULL, ip_list,
3324 count, lookup_type, &ordered);
3327 if (!NT_STATUS_IS_OK(status)) {
3328 SAFE_FREE(*ip_list);
3333 /* only sort if we don't already have an ordered list */
3335 sort_service_list(*ip_list, *count);
3338 return NT_STATUS_OK;
3341 /*********************************************************************
3342 Get the KDC list - re-use all the logic in get_dc_list.
3343 *********************************************************************/
3345 NTSTATUS get_kdc_list( const char *realm,
3346 const char *sitename,
3347 struct ip_service **ip_list,
3356 status = get_dc_list(realm, sitename, ip_list,
3357 count, DC_KDC_ONLY, &ordered);
3359 if (!NT_STATUS_IS_OK(status)) {
3360 SAFE_FREE(*ip_list);
3365 /* only sort if we don't already have an ordered list */
3367 sort_service_list(*ip_list, *count);
3370 return NT_STATUS_OK;
git.samba.org / bbaumbach / samba-autobuild / .git / blob