s3:winbindd: let wb_dsgetdcname* normalize to dns names on an ad_dc

wb_dsgetdcname() is typically used by dcerpc_wbint_DsGetDcName_send()
from netr_DsRGetDCName* in the netlogon server, when domain members
try to ask for domain controllers of a trusted domain.

The domain might disabled netbios support, so we better try the
already dns name if available.

Signed-off-by: Stefan Metzmacher <metze@samba.org>
Reviewed-by: Andreas Schneider <asn@samba.org>

diff --git a/source3/winbindd/wb_dsgetdcname.c b/source3/winbindd/wb_dsgetdcname.c
index 0f6acaae04a02d39a7425812049ef41e0f97ca0b..14d5ee34d8419f442dfce76bc23844e02f6c7f22 100644 (file)
--- a/source3/winbindd/wb_dsgetdcname.c
+++ b/source3/winbindd/wb_dsgetdcname.c
@@ -79,6 +79,22 @@ struct tevent_req *wb_dsgetdcname_send(TALLOC_CTX *mem_ctx,
                 * We have to figure out the DC ourselves
                 */
                child_binding_handle = locator_child_handle();
+
+               if (IS_AD_DC) {
+                       struct winbindd_domain *domain = NULL;
+
+                       /*
+                        * If we know about the domain
+                        * we replace a possible netbios domain name to
+                        * a dns domain name, which means we'll always use
+                        * dns+cldap because we have a fixed known number
+                        * of trusted domains on a DC.
+                        */
+                       domain = find_domain_from_name_noinit(domain_name);
+                       if (domain != NULL && domain->active_directory) {
+                               domain_name = domain->alt_name;
+                       }
+               }
        } else {
                struct winbindd_domain *domain = find_our_domain();
                child_binding_handle = dom_child_handle(domain);