Bug 6098 - When the DNS server is invalid, the ads_find_dc() does not work correctly with "security = domain".
When the DNS server is invalid, the ads_find_dc() does not work correctly wit...
Status: ASSIGNED
Product: Samba 3.0
Classification: Unclassified
Component: Domain Control
3.0.30
All Linux
: P3 normal
: none
Assigned To: Samba Bugzilla Account
Samba QA Contact
:
Depends on:
Blocks:
  Show dependency treegraph
 
Reported: 2009-02-10 04:26 UTC by Yasuma Takeda
Modified: 2009-02-11 15:57 UTC (History)
0 users

See Also:


Attachments
call get_sorted_dc_list with FQDN and DOMAIN (734 bytes, patch)
2009-02-10 04:27 UTC, Yasuma Takeda
no flags Details

Note You need to log in before you can comment on or make changes to this bug.
Description Yasuma Takeda 2009-02-10 04:26:23 UTC
I confirmed this problem on samba 3.0.30. But I think this problem happens also on other versions.

This problem happens only on "security=domain".
If DNS server is invalid, the ads_find_dc() fails.

1. If DNS server is invalid, the get_sorted_dc_list() is called with realm(FQDN) and it fails.
2. On the next step, the get_sorted_dc_list() is called with realm(FQDN) again.

I think "again" is wrong place. 
On the 2nd step, get_sorted_dc_list() should be called with realm(WORKGROUP).

I will attach a patch. More modifications may be needed for samba 3.2.8.
Comment 1 Yasuma Takeda 2009-02-10 04:27:56 UTC
Created attachment 3931 [details]
call get_sorted_dc_list with FQDN and DOMAIN
Comment 2 Jeremy Allison 2009-02-11 15:57:41 UTC
Looks correct to me. I'll apply to the 3.0.x git tree and look into the problem on 3.2.x and above.
Jeremy.