/* Unix SMB/CIFS implementation. implement the DRSUpdateRefs call Copyright (C) Andrew Tridgell 2009 This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 3 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program. If not, see . */ #include "includes.h" #include "rpc_server/dcerpc_server.h" #include "dsdb/samdb/samdb.h" #include "libcli/security/security.h" #include "libcli/security/session.h" #include "rpc_server/drsuapi/dcesrv_drsuapi.h" #include "auth/session.h" #include "librpc/gen_ndr/ndr_drsuapi.h" #include "librpc/gen_ndr/ndr_irpc_c.h" #include "lib/messaging/irpc.h" #undef DBGC_CLASS #define DBGC_CLASS DBGC_DRS_REPL struct repsTo { uint32_t count; struct repsFromToBlob *r; }; static WERROR uref_check_dest(struct ldb_context *sam_ctx, TALLOC_CTX *mem_ctx, struct ldb_dn *dn, struct GUID *dest_guid, uint32_t options) { struct repsTo reps; WERROR werr; unsigned int i; bool found = false; werr = dsdb_loadreps(sam_ctx, mem_ctx, dn, "repsTo", &reps.r, &reps.count); if (!W_ERROR_IS_OK(werr)) { return werr; } for (i=0; isource_dsa_obj_guid, &reps.r[i].ctr.ctr1.source_dsa_obj_guid)) { if (options & DRSUAPI_DRS_GETCHG_CHECK) { return WERR_OK; } else { return WERR_DS_DRA_REF_ALREADY_EXISTS; } } } reps.r = talloc_realloc(mem_ctx, reps.r, struct repsFromToBlob, reps.count+1); if (reps.r == NULL) { return WERR_DS_DRA_INTERNAL_ERROR; } ZERO_STRUCT(reps.r[reps.count]); reps.r[reps.count].version = 1; reps.r[reps.count].ctr.ctr1 = *dest; /* add the GCSPN flag if the client asked for it */ reps.r[reps.count].ctr.ctr1.replica_flags |= (options & DRSUAPI_DRS_REF_GCSPN); reps.count++; werr = dsdb_savereps(sam_ctx, mem_ctx, dn, "repsTo", reps.r, reps.count); if (!W_ERROR_IS_OK(werr)) { return werr; } return WERR_OK; } /* delete a replication destination for a given partition GUID */ static WERROR uref_del_dest(struct ldb_context *sam_ctx, TALLOC_CTX *mem_ctx, struct ldb_dn *dn, struct GUID *dest_guid, uint32_t options) { struct repsTo reps; WERROR werr; unsigned int i; bool found = false; werr = dsdb_loadreps(sam_ctx, mem_ctx, dn, "repsTo", &reps.r, &reps.count); if (!W_ERROR_IS_OK(werr)) { return werr; } for (i=0; isam_ctx_system?b_state->sam_ctx_system:b_state->sam_ctx; struct dcerpc_binding_handle *irpc_handle; struct tevent_req *subreq; struct drepl_refresh_state *state; DEBUG(4,("DsReplicaUpdateRefs for host '%s' with GUID %s options 0x%08x nc=%s\n", req->dest_dsa_dns_name, GUID_string(mem_ctx, &req->dest_dsa_guid), req->options, drs_ObjectIdentifier_to_debug_string(mem_ctx, req->naming_context))); /* * 4.1.26.2 Server Behavior of the IDL_DRSUpdateRefs Method * Implements the input validation checks */ if (GUID_all_zero(&req->dest_dsa_guid)) { return WERR_DS_DRA_INVALID_PARAMETER; } /* FIXME it seems that we should check the length of the stuff too*/ if (req->dest_dsa_dns_name == NULL) { return WERR_DS_DRA_INVALID_PARAMETER; } if (!(req->options & (DRSUAPI_DRS_DEL_REF|DRSUAPI_DRS_ADD_REF))) { return WERR_DS_DRA_INVALID_PARAMETER; } ret = drs_ObjectIdentifier_to_dn_and_nc_root(mem_ctx, sam_ctx, req->naming_context, &dn_normalised, &nc_root); if (ret != LDB_SUCCESS) { DBG_WARNING("Didn't find a nc for %s: %s\n", drs_ObjectIdentifier_to_debug_string(mem_ctx, req->naming_context), ldb_errstring(sam_ctx)); return WERR_DS_DRA_BAD_NC; } if (ldb_dn_compare(dn_normalised, nc_root) != 0) { DBG_NOTICE("dn %s is not equal to %s (from %s)\n", ldb_dn_get_linearized(dn_normalised), ldb_dn_get_linearized(nc_root), drs_ObjectIdentifier_to_debug_string(mem_ctx, req->naming_context)); return WERR_DS_DRA_BAD_NC; } /* * First check without a transaction open. * * This means that in the usual case, it will never open it and never * bother to refresh the dreplsrv. */ werr = uref_check_dest(sam_ctx, mem_ctx, dn_normalised, &req->dest_dsa_guid, req->options); if (W_ERROR_EQUAL(werr, WERR_DS_DRA_REF_ALREADY_EXISTS) || W_ERROR_EQUAL(werr, WERR_DS_DRA_REF_NOT_FOUND)) { if (req->options & DRSUAPI_DRS_GETCHG_CHECK) { return WERR_OK; } return werr; } if (ldb_transaction_start(sam_ctx) != LDB_SUCCESS) { DEBUG(0,(__location__ ": Failed to start transaction on samdb: %s\n", ldb_errstring(sam_ctx))); return WERR_DS_DRA_INTERNAL_ERROR; } if (req->options & DRSUAPI_DRS_DEL_REF) { werr = uref_del_dest(sam_ctx, mem_ctx, dn_normalised, &req->dest_dsa_guid, req->options); if (!W_ERROR_IS_OK(werr)) { DEBUG(0,("Failed to delete repsTo for %s: %s\n", GUID_string(mem_ctx, &req->dest_dsa_guid), win_errstr(werr))); goto failed; } } if (req->options & DRSUAPI_DRS_ADD_REF) { struct repsFromTo1 dest; struct repsFromTo1OtherInfo oi; ZERO_STRUCT(dest); ZERO_STRUCT(oi); oi.dns_name = req->dest_dsa_dns_name; dest.other_info = &oi; dest.source_dsa_obj_guid = req->dest_dsa_guid; dest.replica_flags = req->options; werr = uref_add_dest(sam_ctx, mem_ctx, dn_normalised, &dest, req->options); if (!W_ERROR_IS_OK(werr)) { DEBUG(0,("Failed to add repsTo for %s: %s\n", GUID_string(mem_ctx, &dest.source_dsa_obj_guid), win_errstr(werr))); goto failed; } } if (ldb_transaction_commit(sam_ctx) != LDB_SUCCESS) { DEBUG(0,(__location__ ": Failed to commit transaction on samdb: %s\n", ldb_errstring(sam_ctx))); return WERR_DS_DRA_INTERNAL_ERROR; } state = talloc_zero(mem_ctx, struct drepl_refresh_state); if (state == NULL) { return WERR_OK; } irpc_handle = irpc_binding_handle_by_name(mem_ctx, msg_ctx, "dreplsrv", &ndr_table_irpc); if (irpc_handle == NULL) { /* dreplsrv is not running yet */ TALLOC_FREE(state); return WERR_OK; } /* * [Taken from auth_sam_trigger_repl_secret in auth_sam.c] * * This seem to rely on the current IRPC implementation, * which delivers the message in the _send function. * * TODO: we need a ONE_WAY IRPC handle and register * a callback and wait for it to be triggered! */ subreq = dcerpc_dreplsrv_refresh_r_send(state, event_ctx, irpc_handle, &state->r); TALLOC_FREE(subreq); TALLOC_FREE(state); return WERR_OK; failed: ldb_transaction_cancel(sam_ctx); return werr; } /* drsuapi_DsReplicaUpdateRefs */ WERROR dcesrv_drsuapi_DsReplicaUpdateRefs(struct dcesrv_call_state *dce_call, TALLOC_CTX *mem_ctx, struct drsuapi_DsReplicaUpdateRefs *r) { struct auth_session_info *session_info = dcesrv_call_session_info(dce_call); struct imessaging_context *imsg_ctx = dcesrv_imessaging_context(dce_call->conn); struct dcesrv_handle *h; struct drsuapi_bind_state *b_state; struct drsuapi_DsReplicaUpdateRefsRequest1 *req; WERROR werr; int ret; enum security_user_level security_level; DCESRV_PULL_HANDLE_WERR(h, r->in.bind_handle, DRSUAPI_BIND_HANDLE); b_state = h->data; if (r->in.level != 1) { DEBUG(0,("DrReplicUpdateRefs - unsupported level %u\n", r->in.level)); return WERR_DS_DRA_INVALID_PARAMETER; } req = &r->in.req.req1; werr = drs_security_access_check(b_state->sam_ctx, mem_ctx, session_info->security_token, req->naming_context, GUID_DRS_MANAGE_TOPOLOGY); if (!W_ERROR_IS_OK(werr)) { return werr; } security_level = security_session_user_level(session_info, NULL); if (security_level < SECURITY_ADMINISTRATOR) { /* check that they are using an DSA objectGUID that they own */ ret = dsdb_validate_dsa_guid(b_state->sam_ctx, &req->dest_dsa_guid, &session_info->security_token->sids[PRIMARY_USER_SID_INDEX]); if (ret != LDB_SUCCESS) { DEBUG(0,(__location__ ": Refusing DsReplicaUpdateRefs for sid %s with GUID %s\n", dom_sid_string(mem_ctx, &session_info->security_token->sids[PRIMARY_USER_SID_INDEX]), GUID_string(mem_ctx, &req->dest_dsa_guid))); return WERR_DS_DRA_ACCESS_DENIED; } } werr = drsuapi_UpdateRefs(imsg_ctx, dce_call->event_ctx, b_state, mem_ctx, req); #if 0 NDR_PRINT_FUNCTION_DEBUG(drsuapi_DsReplicaUpdateRefs, NDR_BOTH, r); #endif return werr; }