[Samba] Joining a Windows Server 2008 / 2008 R2 DC to a Samba AD - ISSUE - The RPC server is unavailable
Arjit Gupta
arjitk.gupta at gmail.com
Wed Sep 6 07:04:34 UTC 2017
Hi Andrew,
I have checked for the reason of below error
single_terminate: reason[socket_get_remote_addr() failed]
As mentioned by you earlier that it requires "credentials passing via
the getpeereid()
call or SO_PEERCRED"
On investigating it further i found below condition that fails
File :- lib/tsocket/tsocket_bsd.c
Function
int _tsocket_address_bsd_from_sockaddr(TALLOC_CTX *mem_ctx,
const struct sockaddr *sa,
size_t sa_socklen,
struct tsocket_address **_addr,
const char *location)
{
.......
if (*sa_socklen < sizeof(sa->sa_family*)) { *//sa_socklen is zero thus we
are getting above error*
errno = EINVAL;
return -1;
}
.......
}
The reason of sa_socklen in zero is below:-
File:- source4/lib/socket_socket_unix.c
Function :-
static struct socket_address *unixdom_get_peer_addr(struct socket_context
*sock, TALLOC_CTX *mem_ctx)
{
............
ret = getpeername(sock->fd, peer->sockaddr, &len); *//getpeername return
success but not modify **peer->sockaddr and len *
............
}
*Reason for above behavior:-*
getpeername() of HP-UX doesnt fill sockaddr structure and len variable for
AF_UNIX socket unless we explicitly bind client socket path.
So, for fixing above error, we have to bind client socket path in client
module.
Can you please let me know the code/module corresponding to the client in
this context below.
[2017/09/05 18:11:58.313530, 0, pid=17113, effective(0, 3), real(0, 3)]
../source4/lib/socket/socket.c:376(socket_address_to_tsocket_address)
[2017/09/05 18:11:58.313664, 3, pid=17113, effective(0, 3), real(0, 3)]
../source4/smbd/service_stream.c:66(stream_terminate_connection)
Terminating connection - 'socket_get_remote_addr() failed'
[2017/09/05 18:11:58.313744, 3, pid=17113, effective(0, 3), real(0, 3)]
../source4/smbd/process_single.c:114(single_terminate)
single_terminate: reason[socket_get_remote_addr() failed]
Please help with this so that we will make appropriate change to fix above
error.
Arjit Kumar
9650104435
On Thu, Jun 15, 2017 at 8:07 AM, Andrew Bartlett <abartlet at samba.org> wrote:
> On Wed, 2017-06-14 at 11:01 +0100, Rowland Penny via samba wrote:
> > On Wed, 14 Jun 2017 15:13:13 +0530
> > Arjit Gupta <arjitk.gupta at gmail.com> wrote:
> >
> > > Thanks for the response.
> > >
> > > Is this xattr causing this RPC server is unavailable issue ?
> > >
> > > Arjit Kumar
> > >
> > >
> >
> > Lets be perfectly honest here, the lack of POSIX ACLs means that UX
> > is
> > never going to be suitable as a Samba AD DC. You are going to be
> > connecting Windows machines to the DC and they definitely require
> > POSIX
> > ACLs.
> >
> > Can I suggest you forget UX if you want a DC and use Linux instead.
>
> BTW, I've looked back at the original logs. The issue is this:
>
> single_terminate: reason[socket_get_remote_addr() failed]
>
> The reason is that we require 'credentials passing' via the
> getpeereid() call or SO_PEERCRED, a feature not in posix but available
> one way or the other on multiple unix-like systems, which allows one
> end of the pipe to know the UID and GID of the other end.
>
> We don't have an implementation of this for HP-UX, so the AD DC won't
> run.
>
> I'm sorry the build doesn't fail earlier for you.
>
> Andrew Bartlett
>
> --
> Andrew Bartlett
> https://samba.org/~abartlet/
> Authentication Developer, Samba Team https://samba.org
> Samba Development and Support, Catalyst IT
> https://catalyst.net.nz/services/samba
>
>
>
>
>
More information about the samba
mailing list