s4:dsdb/password_hash: only allow pwdLastSet as "0" or "-1"

author Stefan Metzmacher <metze@samba.org>

Tue, 31 May 2016 13:21:58 +0000 (15:21 +0200)

committer Andrew Bartlett <abartlet@samba.org>

Mon, 27 Jun 2016 03:00:18 +0000 (05:00 +0200)
author Stefan Metzmacher <metze@samba.org>
Tue, 31 May 2016 13:21:58 +0000 (15:21 +0200)
committer Andrew Bartlett <abartlet@samba.org>
Mon, 27 Jun 2016 03:00:18 +0000 (05:00 +0200)
diff --git a/source4/dsdb/samdb/ldb_modules/password_hash.c b/source4/dsdb/samdb/ldb_modules/password_hash.c

index 010c5e9d392aa5386d168014392b414b33306750..76c63a655b90367b8917c2bcdeb5adb213ad6e1a 100644 (file)
--- a/source4/dsdb/samdb/ldb_modules/password_hash.c
+++ b/source4/dsdb/samdb/ldb_modules/password_hash.c
@@ -1809,11 +1809,15 @@ static int setup_last_set_field(struct setup_password_fields_io *io)
                         break;
                 }
                 /* -1 means set it as now */
-               /* fall through */
-       default:
                 GetTimeOfDay(&tv);
                 io->g.last_set = timeval_to_nttime(&tv);
                 break;
+       default:
+               return dsdb_module_werror(io->ac->module,
+                                         LDB_ERR_OTHER,
+                                         WERR_INVALID_PARAM,
+                                         "setup_last_set_field: "
+                                         "pwdLastSet must be 0 or -1 only!");
         }
  
         if (io->ac->req->operation == LDB_ADD) {
author	Stefan Metzmacher <metze@samba.org>
	Tue, 31 May 2016 13:21:58 +0000 (15:21 +0200)
committer	Andrew Bartlett <abartlet@samba.org>
	Mon, 27 Jun 2016 03:00:18 +0000 (05:00 +0200)