2 Unix SMB/CIFS implementation.
4 Copyright (C) Stefan Metzmacher 2006
6 This program is free software; you can redistribute it and/or modify
7 it under the terms of the GNU General Public License as published by
8 the Free Software Foundation; either version 2 of the License, or
9 (at your option) any later version.
11 This program is distributed in the hope that it will be useful,
12 but WITHOUT ANY WARRANTY; without even the implied warranty of
13 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
14 GNU General Public License for more details.
16 You should have received a copy of the GNU General Public License
17 along with this program; if not, write to the Free Software
18 Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
22 #include "libnet/libnet.h"
23 #include "libcli/composite/composite.h"
24 #include "libcli/cldap/cldap.h"
25 #include "lib/ldb/include/ldb.h"
26 #include "lib/ldb/include/ldb_errors.h"
27 #include "lib/db_wrap.h"
28 #include "dsdb/samdb/samdb.h"
29 #include "dsdb/common/flags.h"
30 #include "librpc/gen_ndr/ndr_drsuapi_c.h"
31 #include "libcli/security/security.h"
33 struct libnet_BecomeDC_state {
34 struct composite_context *creq;
36 struct libnet_context *libnet;
38 struct dom_sid zero_sid;
41 struct cldap_socket *sock;
42 struct cldap_netlogon io;
43 struct nbt_cldap_netlogon_5 netlogon5;
46 struct becomeDC_ldap {
47 struct ldb_context *ldb;
48 const struct ldb_message *rootdse;
51 struct becomeDC_drsuapi {
52 struct libnet_BecomeDC_state *s;
53 struct dcerpc_binding *binding;
54 struct dcerpc_pipe *pipe;
55 struct drsuapi_DsBind bind_r;
56 struct GUID bind_guid;
57 struct drsuapi_DsBindInfoCtr bind_info_ctr;
58 struct drsuapi_DsBindInfo28 local_info28;
59 struct drsuapi_DsBindInfo28 remote_info28;
60 struct policy_handle bind_handle;
66 const char *netbios_name;
67 const struct dom_sid *sid;
77 const char *root_dn_str;
78 const char *config_dn_str;
79 const char *schema_dn_str;
88 const char *netbios_name;
89 const char *site_name;
90 const char *server_dn_str;
91 const char *ntds_dn_str;
96 const char *netbios_name;
100 const char *site_name;
101 struct GUID site_guid;
102 const char *computer_dn_str;
103 const char *server_dn_str;
104 const char *ntds_dn_str;
105 struct GUID invocation_id;
106 uint32_t user_account_control;
110 uint32_t domain_behavior_version;
111 uint32_t config_behavior_version;
112 uint32_t schema_object_version;
113 uint32_t w2k3_update_revision;
116 struct becomeDC_fsmo {
117 const char *dns_name;
118 const char *server_dn_str;
119 const char *ntds_dn_str;
120 struct GUID ntds_guid;
121 } infrastructure_fsmo;
123 struct becomeDC_fsmo rid_manager_fsmo;
126 static void becomeDC_connect_ldap1(struct libnet_BecomeDC_state *s);
128 static void becomeDC_recv_cldap(struct cldap_request *req)
130 struct libnet_BecomeDC_state *s = talloc_get_type(req->async.private,
131 struct libnet_BecomeDC_state);
132 struct composite_context *c = s->creq;
134 c->status = cldap_netlogon_recv(req, s, &s->cldap.io);
135 if (!composite_is_ok(c)) return;
137 s->cldap.netlogon5 = s->cldap.io.out.netlogon.logon5;
139 s->domain.dns_name = s->cldap.netlogon5.dns_domain;
140 s->domain.netbios_name = s->cldap.netlogon5.domain;
141 s->domain.guid = s->cldap.netlogon5.domain_uuid;
143 s->forest.dns_name = s->cldap.netlogon5.forest;
145 s->source_dsa.dns_name = s->cldap.netlogon5.pdc_dns_name;
146 s->source_dsa.netbios_name = s->cldap.netlogon5.pdc_name;
147 s->source_dsa.site_name = s->cldap.netlogon5.server_site;
149 s->dest_dsa.site_name = s->cldap.netlogon5.client_site;
151 becomeDC_connect_ldap1(s);
154 static void becomeDC_send_cldap(struct libnet_BecomeDC_state *s)
156 struct composite_context *c = s->creq;
157 struct cldap_request *req;
159 s->cldap.io.in.dest_address = s->source_dsa.address;
160 s->cldap.io.in.realm = s->domain.dns_name;
161 s->cldap.io.in.host = s->dest_dsa.netbios_name;
162 s->cldap.io.in.user = NULL;
163 s->cldap.io.in.domain_guid = NULL;
164 s->cldap.io.in.domain_sid = NULL;
165 s->cldap.io.in.acct_control = -1;
166 s->cldap.io.in.version = 6;
168 s->cldap.sock = cldap_socket_init(s, s->libnet->event_ctx);
169 if (composite_nomem(s->cldap.sock, c)) return;
171 req = cldap_netlogon_send(s->cldap.sock, &s->cldap.io);
172 if (composite_nomem(req, c)) return;
173 req->async.fn = becomeDC_recv_cldap;
174 req->async.private = s;
177 static NTSTATUS becomeDC_ldap_connect(struct libnet_BecomeDC_state *s, struct becomeDC_ldap *ldap)
181 url = talloc_asprintf(s, "ldap://%s/", s->source_dsa.dns_name);
182 NT_STATUS_HAVE_NO_MEMORY(url);
184 ldap->ldb = ldb_wrap_connect(s, url,
189 if (ldap->ldb == NULL) {
190 return NT_STATUS_UNEXPECTED_NETWORK_ERROR;
196 static NTSTATUS becomeDC_ldap1_rootdse(struct libnet_BecomeDC_state *s)
199 struct ldb_result *r;
200 struct ldb_dn *basedn;
201 static const char *attrs[] = {
206 basedn = ldb_dn_new(s, s->ldap1.ldb, NULL);
207 NT_STATUS_HAVE_NO_MEMORY(basedn);
209 ret = ldb_search(s->ldap1.ldb, basedn, LDB_SCOPE_BASE,
210 "(objectClass=*)", attrs, &r);
212 if (ret != LDB_SUCCESS) {
213 return NT_STATUS_LDAP(ret);
214 } else if (r->count != 1) {
216 return NT_STATUS_INVALID_NETWORK_RESPONSE;
220 s->ldap1.rootdse = r->msgs[0];
222 s->domain.dn_str = ldb_msg_find_attr_as_string(s->ldap1.rootdse, "defaultNamingContext", NULL);
223 if (!s->domain.dn_str) return NT_STATUS_INVALID_NETWORK_RESPONSE;
225 s->forest.root_dn_str = ldb_msg_find_attr_as_string(s->ldap1.rootdse, "rootDomainNamingContext", NULL);
226 if (!s->forest.root_dn_str) return NT_STATUS_INVALID_NETWORK_RESPONSE;
227 s->forest.config_dn_str = ldb_msg_find_attr_as_string(s->ldap1.rootdse, "configurationNamingContext", NULL);
228 if (!s->forest.config_dn_str) return NT_STATUS_INVALID_NETWORK_RESPONSE;
229 s->forest.schema_dn_str = ldb_msg_find_attr_as_string(s->ldap1.rootdse, "schemaNamingContext", NULL);
230 if (!s->forest.schema_dn_str) return NT_STATUS_INVALID_NETWORK_RESPONSE;
232 s->source_dsa.server_dn_str = ldb_msg_find_attr_as_string(s->ldap1.rootdse, "serverName", NULL);
233 if (!s->source_dsa.server_dn_str) return NT_STATUS_INVALID_NETWORK_RESPONSE;
234 s->source_dsa.ntds_dn_str = ldb_msg_find_attr_as_string(s->ldap1.rootdse, "dsServiceName", NULL);
235 if (!s->source_dsa.ntds_dn_str) return NT_STATUS_INVALID_NETWORK_RESPONSE;
240 static NTSTATUS becomeDC_ldap1_config_behavior_version(struct libnet_BecomeDC_state *s)
243 struct ldb_result *r;
244 struct ldb_dn *basedn;
245 static const char *attrs[] = {
246 "msDs-Behavior-Version",
250 basedn = ldb_dn_new(s, s->ldap1.ldb, s->forest.config_dn_str);
251 NT_STATUS_HAVE_NO_MEMORY(basedn);
253 ret = ldb_search(s->ldap1.ldb, basedn, LDB_SCOPE_ONELEVEL,
254 "(cn=Partitions)", attrs, &r);
256 if (ret != LDB_SUCCESS) {
257 return NT_STATUS_LDAP(ret);
258 } else if (r->count != 1) {
260 return NT_STATUS_INVALID_NETWORK_RESPONSE;
263 s->ads_options.config_behavior_version = ldb_msg_find_attr_as_uint(r->msgs[0], "msDs-Behavior-Version", 0);
269 static NTSTATUS becomeDC_ldap1_domain_behavior_version(struct libnet_BecomeDC_state *s)
272 struct ldb_result *r;
273 struct ldb_dn *basedn;
274 static const char *attrs[] = {
275 "msDs-Behavior-Version",
279 basedn = ldb_dn_new(s, s->ldap1.ldb, s->domain.dn_str);
280 NT_STATUS_HAVE_NO_MEMORY(basedn);
282 ret = ldb_search(s->ldap1.ldb, basedn, LDB_SCOPE_BASE,
283 "(objectClass=*)", attrs, &r);
285 if (ret != LDB_SUCCESS) {
286 return NT_STATUS_LDAP(ret);
287 } else if (r->count != 1) {
289 return NT_STATUS_INVALID_NETWORK_RESPONSE;
292 s->ads_options.domain_behavior_version = ldb_msg_find_attr_as_uint(r->msgs[0], "msDs-Behavior-Version", 0);
298 static NTSTATUS becomeDC_ldap1_schema_object_version(struct libnet_BecomeDC_state *s)
301 struct ldb_result *r;
302 struct ldb_dn *basedn;
303 static const char *attrs[] = {
308 basedn = ldb_dn_new(s, s->ldap1.ldb, s->forest.schema_dn_str);
309 NT_STATUS_HAVE_NO_MEMORY(basedn);
311 ret = ldb_search(s->ldap1.ldb, basedn, LDB_SCOPE_BASE,
312 "(objectClass=*)", attrs, &r);
314 if (ret != LDB_SUCCESS) {
315 return NT_STATUS_LDAP(ret);
316 } else if (r->count != 1) {
318 return NT_STATUS_INVALID_NETWORK_RESPONSE;
321 s->ads_options.schema_object_version = ldb_msg_find_attr_as_uint(r->msgs[0], "objectVersion", 0);
327 static NTSTATUS becomeDC_ldap1_w2k3_update_revision(struct libnet_BecomeDC_state *s)
330 struct ldb_result *r;
331 struct ldb_dn *basedn;
332 static const char *attrs[] = {
337 basedn = ldb_dn_new_fmt(s, s->ldap1.ldb, "CN=Windows2003Update,CN=DomainUpdates,CN=System,%s",
339 NT_STATUS_HAVE_NO_MEMORY(basedn);
341 ret = ldb_search(s->ldap1.ldb, basedn, LDB_SCOPE_BASE,
342 "(objectClass=*)", attrs, &r);
344 if (ret != LDB_SUCCESS) {
345 return NT_STATUS_LDAP(ret);
346 } else if (r->count != 1) {
348 return NT_STATUS_INVALID_NETWORK_RESPONSE;
351 s->ads_options.w2k3_update_revision = ldb_msg_find_attr_as_uint(r->msgs[0], "revision", 0);
357 static NTSTATUS becomeDC_ldap1_infrastructure_fsmo(struct libnet_BecomeDC_state *s)
360 struct ldb_result *r;
361 struct ldb_dn *basedn;
362 struct ldb_dn *ntds_dn;
363 struct ldb_dn *server_dn;
364 static const char *_1_1_attrs[] = {
368 static const char *fsmo_attrs[] = {
372 static const char *dns_attrs[] = {
376 static const char *guid_attrs[] = {
381 basedn = ldb_dn_new_fmt(s, s->ldap1.ldb, "<WKGUID=2fbac1870ade11d297c400c04fd8d5cd,%s>",
383 NT_STATUS_HAVE_NO_MEMORY(basedn);
385 ret = ldb_search(s->ldap1.ldb, basedn, LDB_SCOPE_BASE,
386 "(objectClass=*)", _1_1_attrs, &r);
388 if (ret != LDB_SUCCESS) {
389 return NT_STATUS_LDAP(ret);
390 } else if (r->count != 1) {
392 return NT_STATUS_INVALID_NETWORK_RESPONSE;
395 basedn = talloc_steal(s, r->msgs[0]->dn);
398 ret = ldb_search(s->ldap1.ldb, basedn, LDB_SCOPE_BASE,
399 "(objectClass=*)", fsmo_attrs, &r);
401 if (ret != LDB_SUCCESS) {
402 return NT_STATUS_LDAP(ret);
403 } else if (r->count != 1) {
405 return NT_STATUS_INVALID_NETWORK_RESPONSE;
408 s->infrastructure_fsmo.ntds_dn_str = samdb_result_string(r->msgs[0], "fSMORoleOwner", NULL);
409 if (!s->infrastructure_fsmo.ntds_dn_str) return NT_STATUS_INVALID_NETWORK_RESPONSE;
410 talloc_steal(s, s->infrastructure_fsmo.ntds_dn_str);
414 ntds_dn = ldb_dn_new(s, s->ldap1.ldb, s->infrastructure_fsmo.ntds_dn_str);
415 NT_STATUS_HAVE_NO_MEMORY(ntds_dn);
417 server_dn = ldb_dn_get_parent(s, ntds_dn);
418 NT_STATUS_HAVE_NO_MEMORY(server_dn);
420 s->infrastructure_fsmo.server_dn_str = ldb_dn_alloc_linearized(s, server_dn);
421 NT_STATUS_HAVE_NO_MEMORY(s->infrastructure_fsmo.server_dn_str);
423 ret = ldb_search(s->ldap1.ldb, server_dn, LDB_SCOPE_BASE,
424 "(objectClass=*)", dns_attrs, &r);
425 if (ret != LDB_SUCCESS) {
426 return NT_STATUS_LDAP(ret);
427 } else if (r->count != 1) {
429 return NT_STATUS_INVALID_NETWORK_RESPONSE;
432 s->infrastructure_fsmo.dns_name = samdb_result_string(r->msgs[0], "dnsHostName", NULL);
433 if (!s->infrastructure_fsmo.dns_name) return NT_STATUS_INVALID_NETWORK_RESPONSE;
434 talloc_steal(s, s->infrastructure_fsmo.dns_name);
438 ret = ldb_search(s->ldap1.ldb, ntds_dn, LDB_SCOPE_BASE,
439 "(objectClass=*)", guid_attrs, &r);
440 if (ret != LDB_SUCCESS) {
441 return NT_STATUS_LDAP(ret);
442 } else if (r->count != 1) {
444 return NT_STATUS_INVALID_NETWORK_RESPONSE;
447 s->infrastructure_fsmo.ntds_guid = samdb_result_guid(r->msgs[0], "objectGUID");
454 static NTSTATUS becomeDC_ldap1_rid_manager_fsmo(struct libnet_BecomeDC_state *s)
457 struct ldb_result *r;
458 struct ldb_dn *basedn;
459 const char *reference_dn_str;
460 struct ldb_dn *ntds_dn;
461 struct ldb_dn *server_dn;
462 static const char *rid_attrs[] = {
463 "rIDManagerReference",
466 static const char *fsmo_attrs[] = {
470 static const char *dns_attrs[] = {
474 static const char *guid_attrs[] = {
479 basedn = ldb_dn_new(s, s->ldap1.ldb, s->domain.dn_str);
480 NT_STATUS_HAVE_NO_MEMORY(basedn);
482 ret = ldb_search(s->ldap1.ldb, basedn, LDB_SCOPE_BASE,
483 "(objectClass=*)", rid_attrs, &r);
485 if (ret != LDB_SUCCESS) {
486 return NT_STATUS_LDAP(ret);
487 } else if (r->count != 1) {
489 return NT_STATUS_INVALID_NETWORK_RESPONSE;
492 reference_dn_str = samdb_result_string(r->msgs[0], "rIDManagerReference", NULL);
493 if (!reference_dn_str) return NT_STATUS_INVALID_NETWORK_RESPONSE;
495 basedn = ldb_dn_new(s, s->ldap1.ldb, reference_dn_str);
496 NT_STATUS_HAVE_NO_MEMORY(basedn);
500 ret = ldb_search(s->ldap1.ldb, basedn, LDB_SCOPE_BASE,
501 "(objectClass=*)", fsmo_attrs, &r);
503 if (ret != LDB_SUCCESS) {
504 return NT_STATUS_LDAP(ret);
505 } else if (r->count != 1) {
507 return NT_STATUS_INVALID_NETWORK_RESPONSE;
510 s->rid_manager_fsmo.ntds_dn_str = samdb_result_string(r->msgs[0], "fSMORoleOwner", NULL);
511 if (!s->rid_manager_fsmo.ntds_dn_str) return NT_STATUS_INVALID_NETWORK_RESPONSE;
512 talloc_steal(s, s->rid_manager_fsmo.ntds_dn_str);
516 ntds_dn = ldb_dn_new(s, s->ldap1.ldb, s->rid_manager_fsmo.ntds_dn_str);
517 NT_STATUS_HAVE_NO_MEMORY(ntds_dn);
519 server_dn = ldb_dn_get_parent(s, ntds_dn);
520 NT_STATUS_HAVE_NO_MEMORY(server_dn);
522 s->rid_manager_fsmo.server_dn_str = ldb_dn_alloc_linearized(s, server_dn);
523 NT_STATUS_HAVE_NO_MEMORY(s->rid_manager_fsmo.server_dn_str);
525 ret = ldb_search(s->ldap1.ldb, server_dn, LDB_SCOPE_BASE,
526 "(objectClass=*)", dns_attrs, &r);
527 if (ret != LDB_SUCCESS) {
528 return NT_STATUS_LDAP(ret);
529 } else if (r->count != 1) {
531 return NT_STATUS_INVALID_NETWORK_RESPONSE;
534 s->rid_manager_fsmo.dns_name = samdb_result_string(r->msgs[0], "dnsHostName", NULL);
535 if (!s->rid_manager_fsmo.dns_name) return NT_STATUS_INVALID_NETWORK_RESPONSE;
536 talloc_steal(s, s->rid_manager_fsmo.dns_name);
540 ret = ldb_search(s->ldap1.ldb, ntds_dn, LDB_SCOPE_BASE,
541 "(objectClass=*)", guid_attrs, &r);
542 if (ret != LDB_SUCCESS) {
543 return NT_STATUS_LDAP(ret);
544 } else if (r->count != 1) {
546 return NT_STATUS_INVALID_NETWORK_RESPONSE;
549 s->rid_manager_fsmo.ntds_guid = samdb_result_guid(r->msgs[0], "objectGUID");
556 static NTSTATUS becomeDC_ldap1_site_object(struct libnet_BecomeDC_state *s)
559 struct ldb_result *r;
560 struct ldb_dn *basedn;
562 basedn = ldb_dn_new_fmt(s, s->ldap1.ldb, "CN=%s,CN=Sites,%s",
563 s->dest_dsa.site_name,
564 s->forest.config_dn_str);
565 NT_STATUS_HAVE_NO_MEMORY(basedn);
567 ret = ldb_search(s->ldap1.ldb, basedn, LDB_SCOPE_BASE,
568 "(objectClass=*)", NULL, &r);
570 if (ret != LDB_SUCCESS) {
571 return NT_STATUS_LDAP(ret);
572 } else if (r->count != 1) {
574 return NT_STATUS_INVALID_NETWORK_RESPONSE;
577 s->dest_dsa.site_guid = samdb_result_guid(r->msgs[0], "objectGUID");
583 static NTSTATUS becomeDC_ldap1_computer_object(struct libnet_BecomeDC_state *s)
586 struct ldb_result *r;
587 struct ldb_dn *basedn;
589 static const char *attrs[] = {
591 "userAccountControl",
595 basedn = ldb_dn_new(s, s->ldap1.ldb, s->domain.dn_str);
596 NT_STATUS_HAVE_NO_MEMORY(basedn);
598 filter = talloc_asprintf(basedn, "(&(|(objectClass=user)(objectClass=computer))(sAMAccountName=%s$))",
599 s->dest_dsa.netbios_name);
600 NT_STATUS_HAVE_NO_MEMORY(filter);
602 ret = ldb_search(s->ldap1.ldb, basedn, LDB_SCOPE_SUBTREE,
605 if (ret != LDB_SUCCESS) {
606 return NT_STATUS_LDAP(ret);
607 } else if (r->count != 1) {
609 return NT_STATUS_INVALID_NETWORK_RESPONSE;
612 s->dest_dsa.computer_dn_str = samdb_result_string(r->msgs[0], "distinguishedName", NULL);
613 if (!s->dest_dsa.computer_dn_str) return NT_STATUS_INVALID_NETWORK_RESPONSE;
614 talloc_steal(s, s->dest_dsa.computer_dn_str);
616 s->dest_dsa.user_account_control = samdb_result_uint(r->msgs[0], "userAccountControl", 0);
622 static NTSTATUS becomeDC_ldap1_server_object_1(struct libnet_BecomeDC_state *s)
625 struct ldb_result *r;
626 struct ldb_dn *basedn;
627 const char *server_reference_dn_str;
628 struct ldb_dn *server_reference_dn;
629 struct ldb_dn *computer_dn;
631 basedn = ldb_dn_new_fmt(s, s->ldap1.ldb, "CN=%s,CN=Servers,CN=%s,CN=Sites,%s",
632 s->dest_dsa.netbios_name,
633 s->dest_dsa.site_name,
634 s->forest.config_dn_str);
635 NT_STATUS_HAVE_NO_MEMORY(basedn);
637 ret = ldb_search(s->ldap1.ldb, basedn, LDB_SCOPE_BASE,
638 "(objectClass=*)", NULL, &r);
640 if (ret == LDB_ERR_NO_SUCH_OBJECT) {
641 /* if the object doesn't exist, we'll create it later */
643 } else if (ret != LDB_SUCCESS) {
644 return NT_STATUS_LDAP(ret);
645 } else if (r->count != 1) {
647 return NT_STATUS_INVALID_NETWORK_RESPONSE;
650 server_reference_dn_str = samdb_result_string(r->msgs[0], "serverReference", NULL);
651 if (server_reference_dn_str) {
652 server_reference_dn = ldb_dn_new(r, s->ldap1.ldb, server_reference_dn_str);
653 NT_STATUS_HAVE_NO_MEMORY(server_reference_dn);
655 computer_dn = ldb_dn_new(r, s->ldap1.ldb, s->dest_dsa.computer_dn_str);
656 NT_STATUS_HAVE_NO_MEMORY(computer_dn);
659 * if the server object belongs to another DC in another domain in the forest,
660 * we should not touch this object!
662 if (ldb_dn_compare(computer_dn, server_reference_dn) != 0) {
664 return NT_STATUS_OBJECT_NAME_COLLISION;
668 /* if the server object is already for the dest_dsa, then we don't need to create it */
669 s->dest_dsa.server_dn_str = samdb_result_string(r->msgs[0], "distinguishedName", NULL);
670 if (!s->dest_dsa.server_dn_str) return NT_STATUS_INVALID_NETWORK_RESPONSE;
671 talloc_steal(s, s->dest_dsa.server_dn_str);
677 static NTSTATUS becomeDC_ldap1_server_object_2(struct libnet_BecomeDC_state *s)
680 struct ldb_result *r;
681 struct ldb_dn *basedn;
682 const char *server_reference_bl_dn_str;
683 static const char *attrs[] = {
688 /* if the server_dn_str has a valid value, we skip this lookup */
689 if (s->dest_dsa.server_dn_str) return NT_STATUS_OK;
691 basedn = ldb_dn_new(s, s->ldap1.ldb, s->dest_dsa.computer_dn_str);
692 NT_STATUS_HAVE_NO_MEMORY(basedn);
694 ret = ldb_search(s->ldap1.ldb, basedn, LDB_SCOPE_BASE,
695 "(objectClass=*)", attrs, &r);
697 if (ret != LDB_SUCCESS) {
698 return NT_STATUS_LDAP(ret);
699 } else if (r->count != 1) {
701 return NT_STATUS_INVALID_NETWORK_RESPONSE;
704 server_reference_bl_dn_str = samdb_result_string(r->msgs[0], "serverReferenceBL", NULL);
705 if (!server_reference_bl_dn_str) {
706 /* if no back link is present, we're done for this function */
711 /* if the server object is already for the dest_dsa, then we don't need to create it */
712 s->dest_dsa.server_dn_str = samdb_result_string(r->msgs[0], "serverReferenceBL", NULL);
713 if (s->dest_dsa.server_dn_str) {
714 /* if a back link is present, we know that the server object is present */
715 talloc_steal(s, s->dest_dsa.server_dn_str);
722 static NTSTATUS becomeDC_ldap1_server_object_add(struct libnet_BecomeDC_state *s)
725 struct ldb_message *msg;
728 /* if the server_dn_str has a valid value, we skip this lookup */
729 if (s->dest_dsa.server_dn_str) return NT_STATUS_OK;
731 msg = ldb_msg_new(s);
732 NT_STATUS_HAVE_NO_MEMORY(msg);
734 msg->dn = ldb_dn_new_fmt(msg, s->ldap1.ldb, "CN=%s,CN=Servers,CN=%s,CN=Sites,%s",
735 s->dest_dsa.netbios_name,
736 s->dest_dsa.site_name,
737 s->forest.config_dn_str);
738 NT_STATUS_HAVE_NO_MEMORY(msg->dn);
740 ret = ldb_msg_add_string(msg, "objectClass", "server");
743 return NT_STATUS_NO_MEMORY;
745 ret = ldb_msg_add_string(msg, "systemFlags", "50000000");
748 return NT_STATUS_NO_MEMORY;
750 ret = ldb_msg_add_string(msg, "serverReference", s->dest_dsa.computer_dn_str);
753 return NT_STATUS_NO_MEMORY;
756 server_dn_str = ldb_dn_alloc_linearized(s, msg->dn);
757 NT_STATUS_HAVE_NO_MEMORY(server_dn_str);
759 ret = ldb_add(s->ldap1.ldb, msg);
761 if (ret != LDB_SUCCESS) {
762 talloc_free(server_dn_str);
763 return NT_STATUS_LDAP(ret);
766 s->dest_dsa.server_dn_str = server_dn_str;
771 static NTSTATUS becomeDC_ldap1_server_object_modify(struct libnet_BecomeDC_state *s)
774 struct ldb_message *msg;
777 /* make a 'modify' msg, and only for serverReference */
778 msg = ldb_msg_new(s);
779 NT_STATUS_HAVE_NO_MEMORY(msg);
780 msg->dn = ldb_dn_new(msg, s->ldap1.ldb, s->dest_dsa.server_dn_str);
781 NT_STATUS_HAVE_NO_MEMORY(msg->dn);
783 ret = ldb_msg_add_string(msg, "serverReference", s->dest_dsa.computer_dn_str);
786 return NT_STATUS_NO_MEMORY;
789 /* mark all the message elements (should be just one)
790 as LDB_FLAG_MOD_ADD */
791 for (i=0;i<msg->num_elements;i++) {
792 msg->elements[i].flags = LDB_FLAG_MOD_ADD;
795 ret = ldb_modify(s->ldap1.ldb, msg);
796 if (ret == LDB_SUCCESS) {
799 } else if (ret == LDB_ERR_ATTRIBUTE_OR_VALUE_EXISTS) {
800 /* retry with LDB_FLAG_MOD_REPLACE */
803 return NT_STATUS_LDAP(ret);
806 /* mark all the message elements (should be just one)
807 as LDB_FLAG_MOD_REPLACE */
808 for (i=0;i<msg->num_elements;i++) {
809 msg->elements[i].flags = LDB_FLAG_MOD_REPLACE;
812 ret = ldb_modify(s->ldap1.ldb, msg);
814 if (ret != LDB_SUCCESS) {
815 return NT_STATUS_LDAP(ret);
821 static void becomeDC_drsuapi_connect_send(struct libnet_BecomeDC_state *s,
822 struct becomeDC_drsuapi *drsuapi,
823 void (*recv_fn)(struct composite_context *req));
824 static void becomeDC_drsuapi1_connect_recv(struct composite_context *req);
825 static void becomeDC_connect_ldap2(struct libnet_BecomeDC_state *s);
827 static void becomeDC_connect_ldap1(struct libnet_BecomeDC_state *s)
829 struct composite_context *c = s->creq;
831 c->status = becomeDC_ldap_connect(s, &s->ldap1);
832 if (!composite_is_ok(c)) return;
834 c->status = becomeDC_ldap1_rootdse(s);
835 if (!composite_is_ok(c)) return;
837 c->status = becomeDC_ldap1_config_behavior_version(s);
838 if (!composite_is_ok(c)) return;
840 c->status = becomeDC_ldap1_domain_behavior_version(s);
841 if (!composite_is_ok(c)) return;
843 c->status = becomeDC_ldap1_schema_object_version(s);
844 if (!composite_is_ok(c)) return;
846 c->status = becomeDC_ldap1_w2k3_update_revision(s);
847 if (!composite_is_ok(c)) return;
849 c->status = becomeDC_ldap1_infrastructure_fsmo(s);
850 if (!composite_is_ok(c)) return;
852 c->status = becomeDC_ldap1_rid_manager_fsmo(s);
853 if (!composite_is_ok(c)) return;
855 c->status = becomeDC_ldap1_site_object(s);
856 if (!composite_is_ok(c)) return;
858 c->status = becomeDC_ldap1_computer_object(s);
859 if (!composite_is_ok(c)) return;
861 c->status = becomeDC_ldap1_server_object_1(s);
862 if (!composite_is_ok(c)) return;
864 c->status = becomeDC_ldap1_server_object_2(s);
865 if (!composite_is_ok(c)) return;
867 c->status = becomeDC_ldap1_server_object_add(s);
868 if (!composite_is_ok(c)) return;
870 c->status = becomeDC_ldap1_server_object_modify(s);
871 if (!composite_is_ok(c)) return;
873 becomeDC_drsuapi_connect_send(s, &s->drsuapi1, becomeDC_drsuapi1_connect_recv);
876 static void becomeDC_drsuapi_connect_send(struct libnet_BecomeDC_state *s,
877 struct becomeDC_drsuapi *drsuapi,
878 void (*recv_fn)(struct composite_context *req))
880 struct composite_context *c = s->creq;
881 struct composite_context *creq;
886 binding_str = talloc_asprintf(s, "ncacn_ip_tcp:%s[krb5,seal]", s->source_dsa.dns_name);
887 if (composite_nomem(binding_str, c)) return;
889 c->status = dcerpc_parse_binding(s, binding_str, &drsuapi->binding);
890 talloc_free(binding_str);
891 if (!composite_is_ok(c)) return;
893 creq = dcerpc_pipe_connect_b_send(s, drsuapi->binding, &dcerpc_table_drsuapi,
894 s->libnet->cred, s->libnet->event_ctx);
895 composite_continue(c, creq, recv_fn, s);
898 static void becomeDC_drsuapi_bind_send(struct libnet_BecomeDC_state *s,
899 struct becomeDC_drsuapi *drsuapi,
900 void (*recv_fn)(struct rpc_request *req));
901 static void becomeDC_drsuapi1_bind_recv(struct rpc_request *req);
903 static void becomeDC_drsuapi1_connect_recv(struct composite_context *req)
905 struct libnet_BecomeDC_state *s = talloc_get_type(req->async.private_data,
906 struct libnet_BecomeDC_state);
907 struct composite_context *c = s->creq;
909 c->status = dcerpc_pipe_connect_b_recv(req, s, &s->drsuapi1.pipe);
910 if (!composite_is_ok(c)) return;
912 becomeDC_drsuapi_bind_send(s, &s->drsuapi1, becomeDC_drsuapi1_bind_recv);
915 static void becomeDC_drsuapi_bind_send(struct libnet_BecomeDC_state *s,
916 struct becomeDC_drsuapi *drsuapi,
917 void (*recv_fn)(struct rpc_request *req))
919 struct composite_context *c = s->creq;
920 struct rpc_request *req;
921 struct drsuapi_DsBindInfo28 *bind_info28;
923 GUID_from_string(DRSUAPI_DS_BIND_GUID_W2K3, &drsuapi->bind_guid);
925 bind_info28 = &drsuapi->local_info28;
926 bind_info28->supported_extensions |= DRSUAPI_SUPPORTED_EXTENSION_BASE;
927 bind_info28->supported_extensions |= DRSUAPI_SUPPORTED_EXTENSION_ASYNC_REPLICATION;
928 bind_info28->supported_extensions |= DRSUAPI_SUPPORTED_EXTENSION_REMOVEAPI;
929 bind_info28->supported_extensions |= DRSUAPI_SUPPORTED_EXTENSION_MOVEREQ_V2;
930 bind_info28->supported_extensions |= DRSUAPI_SUPPORTED_EXTENSION_GETCHG_COMPRESS;
931 bind_info28->supported_extensions |= DRSUAPI_SUPPORTED_EXTENSION_DCINFO_V1;
932 bind_info28->supported_extensions |= DRSUAPI_SUPPORTED_EXTENSION_RESTORE_USN_OPTIMIZATION;
933 bind_info28->supported_extensions |= DRSUAPI_SUPPORTED_EXTENSION_KCC_EXECUTE;
934 bind_info28->supported_extensions |= DRSUAPI_SUPPORTED_EXTENSION_ADDENTRY_V2;
935 if (s->ads_options.domain_behavior_version == 2) {
936 /* TODO: find out how this is really triggered! */
937 bind_info28->supported_extensions |= DRSUAPI_SUPPORTED_EXTENSION_LINKED_VALUE_REPLICATION;
939 bind_info28->supported_extensions |= DRSUAPI_SUPPORTED_EXTENSION_DCINFO_V2;
940 bind_info28->supported_extensions |= DRSUAPI_SUPPORTED_EXTENSION_INSTANCE_TYPE_NOT_REQ_ON_MOD;
941 bind_info28->supported_extensions |= DRSUAPI_SUPPORTED_EXTENSION_CRYPTO_BIND;
942 bind_info28->supported_extensions |= DRSUAPI_SUPPORTED_EXTENSION_GET_REPL_INFO;
943 bind_info28->supported_extensions |= DRSUAPI_SUPPORTED_EXTENSION_STRONG_ENCRYPTION;
944 bind_info28->supported_extensions |= DRSUAPI_SUPPORTED_EXTENSION_DCINFO_V01;
945 bind_info28->supported_extensions |= DRSUAPI_SUPPORTED_EXTENSION_TRANSITIVE_MEMBERSHIP;
946 bind_info28->supported_extensions |= DRSUAPI_SUPPORTED_EXTENSION_ADD_SID_HISTORY;
947 bind_info28->supported_extensions |= DRSUAPI_SUPPORTED_EXTENSION_POST_BETA3;
948 bind_info28->supported_extensions |= DRSUAPI_SUPPORTED_EXTENSION_00100000;
949 bind_info28->supported_extensions |= DRSUAPI_SUPPORTED_EXTENSION_GET_MEMBERSHIPS2;
950 bind_info28->supported_extensions |= DRSUAPI_SUPPORTED_EXTENSION_GETCHGREQ_V6;
951 bind_info28->supported_extensions |= DRSUAPI_SUPPORTED_EXTENSION_NONDOMAIN_NCS;
952 bind_info28->supported_extensions |= DRSUAPI_SUPPORTED_EXTENSION_GETCHGREQ_V8;
953 bind_info28->supported_extensions |= DRSUAPI_SUPPORTED_EXTENSION_GETCHGREPLY_V5;
954 bind_info28->supported_extensions |= DRSUAPI_SUPPORTED_EXTENSION_GETCHGREPLY_V6;
955 bind_info28->supported_extensions |= DRSUAPI_SUPPORTED_EXTENSION_ADDENTRYREPLY_V3;
956 bind_info28->supported_extensions |= DRSUAPI_SUPPORTED_EXTENSION_GETCHGREPLY_V7;
957 bind_info28->supported_extensions |= DRSUAPI_SUPPORTED_EXTENSION_VERIFY_OBJECT;
958 #if 0 /* we don't support XPRESS compression yet */
959 bind_info28->supported_extensions |= DRSUAPI_SUPPORTED_EXTENSION_XPRESS_COMPRESS;
961 bind_info28->site_guid = s->dest_dsa.site_guid;
962 if (s->ads_options.domain_behavior_version == 2) {
963 /* TODO: find out how this is really triggered! */
964 bind_info28->u1 = 528;
966 bind_info28->u1 = 516;
968 bind_info28->repl_epoch = 0;
970 drsuapi->bind_info_ctr.length = 28;
971 drsuapi->bind_info_ctr.info.info28 = *bind_info28;
973 drsuapi->bind_r.in.bind_guid = &drsuapi->bind_guid;
974 drsuapi->bind_r.in.bind_info = &drsuapi->bind_info_ctr;
975 drsuapi->bind_r.out.bind_handle = &drsuapi->bind_handle;
977 req = dcerpc_drsuapi_DsBind_send(drsuapi->pipe, s, &drsuapi->bind_r);
978 composite_continue_rpc(c, req, recv_fn, s);
981 static void becomeDC_drsuapi1_add_entry_send(struct libnet_BecomeDC_state *s);
983 static void becomeDC_drsuapi1_bind_recv(struct rpc_request *req)
985 struct libnet_BecomeDC_state *s = talloc_get_type(req->async.private,
986 struct libnet_BecomeDC_state);
987 struct composite_context *c = s->creq;
989 c->status = dcerpc_ndr_request_recv(req);
990 if (!composite_is_ok(c)) return;
992 if (!W_ERROR_IS_OK(s->drsuapi1.bind_r.out.result)) {
993 composite_error(c, werror_to_ntstatus(s->drsuapi1.bind_r.out.result));
997 ZERO_STRUCT(s->drsuapi1.remote_info28);
998 if (s->drsuapi1.bind_r.out.bind_info) {
999 switch (s->drsuapi1.bind_r.out.bind_info->length) {
1001 struct drsuapi_DsBindInfo24 *info24;
1002 info24 = &s->drsuapi1.bind_r.out.bind_info->info.info24;
1003 s->drsuapi1.remote_info28.supported_extensions = info24->supported_extensions;
1004 s->drsuapi1.remote_info28.site_guid = info24->site_guid;
1005 s->drsuapi1.remote_info28.u1 = info24->u1;
1006 s->drsuapi1.remote_info28.repl_epoch = 0;
1010 s->drsuapi1.remote_info28 = s->drsuapi1.bind_r.out.bind_info->info.info28;
1015 becomeDC_drsuapi1_add_entry_send(s);
1018 static void becomeDC_drsuapi1_add_entry_recv(struct rpc_request *req);
1020 static void becomeDC_drsuapi1_add_entry_send(struct libnet_BecomeDC_state *s)
1022 struct composite_context *c = s->creq;
1023 struct rpc_request *req;
1024 struct drsuapi_DsAddEntry *r;
1025 struct drsuapi_DsReplicaObjectIdentifier *identifier;
1026 uint32_t num_attrs, i = 0;
1027 struct drsuapi_DsReplicaAttribute *attrs;
1029 /* choose a random invocationId */
1030 s->dest_dsa.invocation_id = GUID_random();
1032 r = talloc_zero(s, struct drsuapi_DsAddEntry);
1033 if (composite_nomem(r, c)) return;
1035 /* setup identifier */
1036 identifier = talloc(r, struct drsuapi_DsReplicaObjectIdentifier);
1037 if (composite_nomem(identifier, c)) return;
1038 identifier->guid = GUID_zero();
1039 identifier->sid = s->zero_sid;
1040 identifier->dn = talloc_asprintf(identifier, "CN=NTDS Settings,%s",
1041 s->dest_dsa.server_dn_str);
1042 if (composite_nomem(identifier->dn, c)) return;
1044 /* allocate attribute array */
1046 attrs = talloc_array(r, struct drsuapi_DsReplicaAttribute, num_attrs);
1047 if (composite_nomem(attrs, c)) return;
1049 /* ntSecurityDescriptor */
1051 struct drsuapi_DsAttributeValueSecurityDescriptor *vs;
1052 struct security_descriptor *v;
1053 struct dom_sid *domain_admins_sid;
1054 const char *domain_admins_sid_str;
1056 vs = talloc_array(attrs, struct drsuapi_DsAttributeValueSecurityDescriptor, 1);
1057 if (composite_nomem(vs, c)) return;
1059 domain_admins_sid = dom_sid_add_rid(vs, s->domain.sid, DOMAIN_RID_ADMINS);
1060 if (composite_nomem(domain_admins_sid, c)) return;
1062 domain_admins_sid_str = dom_sid_string(domain_admins_sid, domain_admins_sid);
1063 if (composite_nomem(domain_admins_sid_str, c)) return;
1065 v = security_descriptor_create(vs,
1066 /* owner: domain admins */
1067 domain_admins_sid_str,
1068 /* owner group: domain admins */
1069 domain_admins_sid_str,
1070 /* authenticated users */
1071 SID_NT_AUTHENTICATED_USERS,
1072 SEC_ACE_TYPE_ACCESS_ALLOWED,
1073 SEC_STD_READ_CONTROL |
1076 SEC_ADS_LIST_OBJECT,
1079 domain_admins_sid_str,
1080 SEC_ACE_TYPE_ACCESS_ALLOWED,
1082 SEC_ADS_CREATE_CHILD |
1084 SEC_ADS_SELF_WRITE |
1086 SEC_ADS_WRITE_PROP |
1087 SEC_ADS_DELETE_TREE |
1088 SEC_ADS_LIST_OBJECT |
1089 SEC_ADS_CONTROL_ACCESS,
1093 SEC_ACE_TYPE_ACCESS_ALLOWED,
1095 SEC_ADS_CREATE_CHILD |
1096 SEC_ADS_DELETE_CHILD |
1098 SEC_ADS_SELF_WRITE |
1100 SEC_ADS_WRITE_PROP |
1101 SEC_ADS_DELETE_TREE |
1102 SEC_ADS_LIST_OBJECT |
1103 SEC_ADS_CONTROL_ACCESS,
1107 if (composite_nomem(v, c)) return;
1111 attrs[i].attid = DRSUAPI_ATTRIBUTE_ntSecurityDescriptor;
1112 attrs[i].value_ctr.security_descriptor.num_values = 1;
1113 attrs[i].value_ctr.security_descriptor.values = vs;
1118 /* objectClass: nTDSDSA */
1120 struct drsuapi_DsAttributeValueObjectClassId *vs;
1121 enum drsuapi_DsObjectClassId *v;
1123 vs = talloc_array(attrs, struct drsuapi_DsAttributeValueObjectClassId, 1);
1124 if (composite_nomem(vs, c)) return;
1126 v = talloc_array(vs, enum drsuapi_DsObjectClassId, 1);
1127 if (composite_nomem(v, c)) return;
1129 /* value for nTDSDSA */
1132 vs[0].objectClassId = &v[0];
1134 attrs[i].attid = DRSUAPI_ATTRIBUTE_objectClass;
1135 attrs[i].value_ctr.object_class_id.num_values = 1;
1136 attrs[i].value_ctr.object_class_id.values = vs;
1141 /* objectCategory: CN=NTDS-DSA,CN=Schema,... */
1143 struct drsuapi_DsAttributeValueDNString *vs;
1144 struct drsuapi_DsReplicaObjectIdentifier3 *v;
1146 vs = talloc_array(attrs, struct drsuapi_DsAttributeValueDNString, 1);
1147 if (composite_nomem(vs, c)) return;
1149 v = talloc_array(vs, struct drsuapi_DsReplicaObjectIdentifier3, 1);
1150 if (composite_nomem(v, c)) return;
1152 /* value for nTDSDSA */
1153 v[0].guid = GUID_zero();
1154 v[0].sid = s->zero_sid;
1155 v[0].dn = talloc_asprintf(v, "CN=NTDS-DSA,%s",
1156 s->forest.schema_dn_str);
1157 if (composite_nomem(v->dn, c)) return;
1159 vs[0].object = &v[0];
1161 attrs[i].attid = DRSUAPI_ATTRIBUTE_objectCategory;
1162 attrs[i].value_ctr.dn_string.num_values = 1;
1163 attrs[i].value_ctr.dn_string.values = vs;
1168 /* invocationId: random guid */
1170 struct drsuapi_DsAttributeValueGUID *vs;
1173 vs = talloc_array(attrs, struct drsuapi_DsAttributeValueGUID, 1);
1174 if (composite_nomem(vs, c)) return;
1176 v = talloc_array(vs, struct GUID, 1);
1177 if (composite_nomem(v, c)) return;
1179 /* value for nTDSDSA */
1180 v[0] = s->dest_dsa.invocation_id;
1184 attrs[i].attid = DRSUAPI_ATTRIBUTE_invocationId;
1185 attrs[i].value_ctr.guid.num_values = 1;
1186 attrs[i].value_ctr.guid.values = vs;
1191 /* hasMasterNCs: ... */
1193 struct drsuapi_DsAttributeValueDNString *vs;
1194 struct drsuapi_DsReplicaObjectIdentifier3 *v;
1196 vs = talloc_array(attrs, struct drsuapi_DsAttributeValueDNString, 3);
1197 if (composite_nomem(vs, c)) return;
1199 v = talloc_array(vs, struct drsuapi_DsReplicaObjectIdentifier3, 3);
1200 if (composite_nomem(v, c)) return;
1202 v[0].guid = GUID_zero();
1203 v[0].sid = s->zero_sid;
1204 v[0].dn = s->forest.config_dn_str;
1206 v[1].guid = GUID_zero();
1207 v[1].sid = s->zero_sid;
1208 v[1].dn = s->domain.dn_str;
1210 v[2].guid = GUID_zero();
1211 v[2].sid = s->zero_sid;
1212 v[2].dn = s->forest.schema_dn_str;
1214 vs[0].object = &v[0];
1215 vs[1].object = &v[1];
1216 vs[2].object = &v[2];
1218 attrs[i].attid = DRSUAPI_ATTRIBUTE_hasMasterNCs;
1219 attrs[i].value_ctr.dn_string.num_values = 3;
1220 attrs[i].value_ctr.dn_string.values = vs;
1225 /* msDS-hasMasterNCs: ... */
1227 struct drsuapi_DsAttributeValueDNString *vs;
1228 struct drsuapi_DsReplicaObjectIdentifier3 *v;
1230 vs = talloc_array(attrs, struct drsuapi_DsAttributeValueDNString, 3);
1231 if (composite_nomem(vs, c)) return;
1233 v = talloc_array(vs, struct drsuapi_DsReplicaObjectIdentifier3, 3);
1234 if (composite_nomem(v, c)) return;
1236 v[0].guid = GUID_zero();
1237 v[0].sid = s->zero_sid;
1238 v[0].dn = s->forest.config_dn_str;
1240 v[1].guid = GUID_zero();
1241 v[1].sid = s->zero_sid;
1242 v[1].dn = s->domain.dn_str;
1244 v[2].guid = GUID_zero();
1245 v[2].sid = s->zero_sid;
1246 v[2].dn = s->forest.schema_dn_str;
1248 vs[0].object = &v[0];
1249 vs[1].object = &v[1];
1250 vs[2].object = &v[2];
1252 attrs[i].attid = DRSUAPI_ATTRIBUTE_msDS_hasMasterNCs;
1253 attrs[i].value_ctr.dn_string.num_values = 3;
1254 attrs[i].value_ctr.dn_string.values = vs;
1259 /* dMDLocation: CN=Schema,... */
1261 struct drsuapi_DsAttributeValueDNString *vs;
1262 struct drsuapi_DsReplicaObjectIdentifier3 *v;
1264 vs = talloc_array(attrs, struct drsuapi_DsAttributeValueDNString, 1);
1265 if (composite_nomem(vs, c)) return;
1267 v = talloc_array(vs, struct drsuapi_DsReplicaObjectIdentifier3, 1);
1268 if (composite_nomem(v, c)) return;
1270 v[0].guid = GUID_zero();
1271 v[0].sid = s->zero_sid;
1272 v[0].dn = s->forest.schema_dn_str;
1274 vs[0].object = &v[0];
1276 attrs[i].attid = DRSUAPI_ATTRIBUTE_dMDLocation;
1277 attrs[i].value_ctr.dn_string.num_values = 1;
1278 attrs[i].value_ctr.dn_string.values = vs;
1283 /* msDS-HasDomainNCs: <domain_partition> */
1285 struct drsuapi_DsAttributeValueDNString *vs;
1286 struct drsuapi_DsReplicaObjectIdentifier3 *v;
1288 vs = talloc_array(attrs, struct drsuapi_DsAttributeValueDNString, 1);
1289 if (composite_nomem(vs, c)) return;
1291 v = talloc_array(vs, struct drsuapi_DsReplicaObjectIdentifier3, 1);
1292 if (composite_nomem(v, c)) return;
1294 v[0].guid = GUID_zero();
1295 v[0].sid = s->zero_sid;
1296 v[0].dn = s->domain.dn_str;
1298 vs[0].object = &v[0];
1300 attrs[i].attid = DRSUAPI_ATTRIBUTE_msDS_HasDomainNCs;
1301 attrs[i].value_ctr.dn_string.num_values = 1;
1302 attrs[i].value_ctr.dn_string.values = vs;
1307 /* msDS-Behavior-Version */
1309 struct drsuapi_DsAttributeValueUINT32 *vs;
1312 vs = talloc_array(attrs, struct drsuapi_DsAttributeValueUINT32, 1);
1313 if (composite_nomem(vs, c)) return;
1315 v = talloc_array(vs, uint32_t, 1);
1316 if (composite_nomem(v, c)) return;
1320 vs[0].value = &v[0];
1322 attrs[i].attid = DRSUAPI_ATTRIBUTE_msDS_Behavior_Version;
1323 attrs[i].value_ctr.uint32.num_values = 1;
1324 attrs[i].value_ctr.uint32.values = vs;
1331 struct drsuapi_DsAttributeValueUINT32 *vs;
1334 vs = talloc_array(attrs, struct drsuapi_DsAttributeValueUINT32, 1);
1335 if (composite_nomem(vs, c)) return;
1337 v = talloc_array(vs, uint32_t, 1);
1338 if (composite_nomem(v, c)) return;
1340 v[0] = SYSTEM_FLAG_DISALLOW_MOVE_ON_DELETE;
1342 vs[0].value = &v[0];
1344 attrs[i].attid = DRSUAPI_ATTRIBUTE_systemFlags;
1345 attrs[i].value_ctr.uint32.num_values = 1;
1346 attrs[i].value_ctr.uint32.values = vs;
1351 /* serverReference: ... */
1353 struct drsuapi_DsAttributeValueDNString *vs;
1354 struct drsuapi_DsReplicaObjectIdentifier3 *v;
1356 vs = talloc_array(attrs, struct drsuapi_DsAttributeValueDNString, 1);
1357 if (composite_nomem(vs, c)) return;
1359 v = talloc_array(vs, struct drsuapi_DsReplicaObjectIdentifier3, 1);
1360 if (composite_nomem(v, c)) return;
1362 v[0].guid = GUID_zero();
1363 v[0].sid = s->zero_sid;
1364 v[0].dn = s->dest_dsa.computer_dn_str;
1366 vs[0].object = &v[0];
1368 attrs[i].attid = DRSUAPI_ATTRIBUTE_serverReference;
1369 attrs[i].value_ctr.dn_string.num_values = 1;
1370 attrs[i].value_ctr.dn_string.values = vs;
1375 /* truncate the attribute list to the attribute count we have filled in */
1378 /* setup request structure */
1379 r->in.bind_handle = &s->drsuapi1.bind_handle;
1381 r->in.req.req2.first_object.next_object = NULL;
1382 r->in.req.req2.first_object.object.identifier = identifier;
1383 r->in.req.req2.first_object.object.unknown1 = 0x00000000;
1384 r->in.req.req2.first_object.object.attribute_ctr.num_attributes = num_attrs;
1385 r->in.req.req2.first_object.object.attribute_ctr.attributes = attrs;
1387 req = dcerpc_drsuapi_DsAddEntry_send(s->drsuapi1.pipe, r, r);
1388 composite_continue_rpc(c, req, becomeDC_drsuapi1_add_entry_recv, s);
1391 static void becomeDC_drsuapi1_add_entry_recv(struct rpc_request *req)
1393 struct libnet_BecomeDC_state *s = talloc_get_type(req->async.private,
1394 struct libnet_BecomeDC_state);
1395 struct composite_context *c = s->creq;
1396 struct drsuapi_DsAddEntry *r = talloc_get_type(req->ndr.struct_ptr,
1397 struct drsuapi_DsAddEntry);
1399 c->status = dcerpc_ndr_request_recv(req);
1400 if (!composite_is_ok(c)) return;
1402 if (!W_ERROR_IS_OK(r->out.result)) {
1403 composite_error(c, werror_to_ntstatus(r->out.result));
1407 becomeDC_connect_ldap2(s);
1410 static NTSTATUS becomeDC_ldap2_modify_computer(struct libnet_BecomeDC_state *s)
1413 struct ldb_message *msg;
1415 uint32_t user_account_control = UF_SERVER_TRUST_ACCOUNT |
1416 UF_TRUSTED_FOR_DELEGATION;
1418 /* as the value is already as we want it to be, we're done */
1419 if (s->dest_dsa.user_account_control == user_account_control) {
1420 return NT_STATUS_OK;
1423 /* make a 'modify' msg, and only for serverReference */
1424 msg = ldb_msg_new(s);
1425 NT_STATUS_HAVE_NO_MEMORY(msg);
1426 msg->dn = ldb_dn_new(msg, s->ldap2.ldb, s->dest_dsa.computer_dn_str);
1427 NT_STATUS_HAVE_NO_MEMORY(msg->dn);
1429 ret = ldb_msg_add_fmt(msg, "userAccountControl", "%u", user_account_control);
1432 return NT_STATUS_NO_MEMORY;
1435 /* mark all the message elements (should be just one)
1436 as LDB_FLAG_MOD_REPLACE */
1437 for (i=0;i<msg->num_elements;i++) {
1438 msg->elements[i].flags = LDB_FLAG_MOD_REPLACE;
1441 ret = ldb_modify(s->ldap2.ldb, msg);
1443 if (ret != LDB_SUCCESS) {
1444 return NT_STATUS_LDAP(ret);
1447 s->dest_dsa.user_account_control = user_account_control;
1449 return NT_STATUS_OK;
1452 static NTSTATUS becomeDC_ldap2_move_computer(struct libnet_BecomeDC_state *s)
1455 struct ldb_result *r;
1456 struct ldb_dn *basedn;
1457 struct ldb_dn *old_dn;
1458 struct ldb_dn *new_dn;
1459 static const char *_1_1_attrs[] = {
1464 basedn = ldb_dn_new_fmt(s, s->ldap2.ldb, "<WKGUID=a361b2ffffd211d1aa4b00c04fd7d83a,%s>",
1466 NT_STATUS_HAVE_NO_MEMORY(basedn);
1468 ret = ldb_search(s->ldap2.ldb, basedn, LDB_SCOPE_BASE,
1469 "(objectClass=*)", _1_1_attrs, &r);
1470 talloc_free(basedn);
1471 if (ret != LDB_SUCCESS) {
1472 return NT_STATUS_LDAP(ret);
1473 } else if (r->count != 1) {
1475 return NT_STATUS_INVALID_NETWORK_RESPONSE;
1478 old_dn = ldb_dn_new(r, s->ldap2.ldb, s->dest_dsa.computer_dn_str);
1479 NT_STATUS_HAVE_NO_MEMORY(old_dn);
1481 new_dn = r->msgs[0]->dn;
1483 if (!ldb_dn_add_child_fmt(new_dn, "CN=%s", s->dest_dsa.netbios_name)) {
1485 return NT_STATUS_NO_MEMORY;
1488 if (ldb_dn_compare(old_dn, new_dn) == 0) {
1489 /* we don't need to rename if the old and new dn match */
1491 return NT_STATUS_OK;
1494 ret = ldb_rename(s->ldap2.ldb, old_dn, new_dn);
1496 if (ret != LDB_SUCCESS) {
1497 return NT_STATUS_LDAP(ret);
1500 return NT_STATUS_OK;
1503 static void becomeDC_connect_ldap2(struct libnet_BecomeDC_state *s)
1505 struct composite_context *c = s->creq;
1507 c->status = becomeDC_ldap_connect(s, &s->ldap2);
1508 if (!composite_is_ok(c)) return;
1510 c->status = becomeDC_ldap2_modify_computer(s);
1511 if (!composite_is_ok(c)) return;
1513 c->status = becomeDC_ldap2_move_computer(s);
1514 if (!composite_is_ok(c)) return;
1516 composite_error(c, NT_STATUS_NOT_IMPLEMENTED);
1519 struct composite_context *libnet_BecomeDC_send(struct libnet_context *ctx, TALLOC_CTX *mem_ctx, struct libnet_BecomeDC *r)
1521 struct composite_context *c;
1522 struct libnet_BecomeDC_state *s;
1525 c = composite_create(mem_ctx, ctx->event_ctx);
1526 if (c == NULL) return NULL;
1528 s = talloc_zero(c, struct libnet_BecomeDC_state);
1529 if (composite_nomem(s, c)) return c;
1530 c->private_data = s;
1535 s->domain.dns_name = talloc_strdup(s, r->in.domain_dns_name);
1536 if (composite_nomem(s->domain.dns_name, c)) return c;
1537 s->domain.netbios_name = talloc_strdup(s, r->in.domain_netbios_name);
1538 if (composite_nomem(s->domain.netbios_name, c)) return c;
1539 s->domain.sid = dom_sid_dup(s, r->in.domain_sid);
1540 if (composite_nomem(s->domain.sid, c)) return c;
1542 /* Source DSA input */
1543 s->source_dsa.address = talloc_strdup(s, r->in.source_dsa_address);
1544 if (composite_nomem(s->source_dsa.address, c)) return c;
1546 /* Destination DSA input */
1547 s->dest_dsa.netbios_name= talloc_strdup(s, r->in.dest_dsa_netbios_name);
1548 if (composite_nomem(s->dest_dsa.netbios_name, c)) return c;
1550 /* Destination DSA dns_name construction */
1551 tmp_name = strlower_talloc(s, s->dest_dsa.netbios_name);
1552 if (composite_nomem(tmp_name, c)) return c;
1553 s->dest_dsa.dns_name = talloc_asprintf_append(tmp_name, ".%s",
1554 s->domain.dns_name);
1555 if (composite_nomem(s->dest_dsa.dns_name, c)) return c;
1557 becomeDC_send_cldap(s);
1561 NTSTATUS libnet_BecomeDC_recv(struct composite_context *c, TALLOC_CTX *mem_ctx, struct libnet_BecomeDC *r)
1565 status = composite_wait(c);
1567 ZERO_STRUCT(r->out);
1573 NTSTATUS libnet_BecomeDC(struct libnet_context *ctx, TALLOC_CTX *mem_ctx, struct libnet_BecomeDC *r)
1576 struct composite_context *c;
1577 c = libnet_BecomeDC_send(ctx, mem_ctx, r);
1578 status = libnet_BecomeDC_recv(c, mem_ctx, r);