svn commit: samba r24760 - in branches/SAMBA_4_0/source:
scripting/libjs setup
abartlet at samba.org
abartlet at samba.org
Wed Aug 29 01:37:27 GMT 2007
Author: abartlet
Date: 2007-08-29 01:37:26 +0000 (Wed, 29 Aug 2007)
New Revision: 24760
WebSVN: http://websvn.samba.org/cgi-bin/viewcvs.cgi?view=rev&root=samba&rev=24760
Log:
Ensure we base64 encode any password being put into LDIF, to avoid
provision failures when some of the random password values are illigal
LDIF.
Andrew Bartlett
Modified:
branches/SAMBA_4_0/source/scripting/libjs/provision.js
branches/SAMBA_4_0/source/setup/provision_self_join.ldif
branches/SAMBA_4_0/source/setup/provision_users.ldif
branches/SAMBA_4_0/source/setup/secrets.ldif
Changeset:
Modified: branches/SAMBA_4_0/source/scripting/libjs/provision.js
===================================================================
--- branches/SAMBA_4_0/source/scripting/libjs/provision.js 2007-08-29 01:23:31 UTC (rev 24759)
+++ branches/SAMBA_4_0/source/scripting/libjs/provision.js 2007-08-29 01:37:26 UTC (rev 24760)
@@ -449,6 +449,8 @@
function provision_fix_subobj(subobj, paths)
{
+ var ldb = ldb_init();
+
subobj.REALM = strupper(subobj.REALM);
subobj.HOSTNAME = strlower(subobj.HOSTNAME);
subobj.DOMAIN = strupper(subobj.DOMAIN);
@@ -465,6 +467,11 @@
subobj.CONFIGDN = "CN=Configuration," + subobj.ROOTDN;
subobj.SCHEMADN = "CN=Schema," + subobj.CONFIGDN;
+ subobj.MACHINEPASS_B64 = ldb.encode(subobj.MACHINEPASS);
+ subobj.KRBTGTPASS_B64 = ldb.encode(subobj.KRBTGTPASS);
+ subobj.ADMINPASS_B64 = ldb.encode(subobj.ADMINPASS);
+ subobj.DNSPASS_B64 = ldb.encode(subobj.DNSPASS);
+
var rdns = split(",", subobj.DOMAINDN);
subobj.RDN_DC = substr(rdns[0], strlen("DC="));
Modified: branches/SAMBA_4_0/source/setup/provision_self_join.ldif
===================================================================
--- branches/SAMBA_4_0/source/setup/provision_self_join.ldif 2007-08-29 01:23:31 UTC (rev 24759)
+++ branches/SAMBA_4_0/source/setup/provision_self_join.ldif 2007-08-29 01:37:26 UTC (rev 24760)
@@ -13,7 +13,7 @@
operatingSystemVersion: 4.0
dNSHostName: ${DNSNAME}
isCriticalSystemObject: TRUE
-sambaPassword: ${MACHINEPASS}
+sambaPassword:: ${MACHINEPASS_B64}
servicePrincipalName: HOST/${DNSNAME}
servicePrincipalName: HOST/${NETBIOSNAME}
servicePrincipalName: HOST/${DNSNAME}/${REALM}
Modified: branches/SAMBA_4_0/source/setup/provision_users.ldif
===================================================================
--- branches/SAMBA_4_0/source/setup/provision_users.ldif 2007-08-29 01:23:31 UTC (rev 24759)
+++ branches/SAMBA_4_0/source/setup/provision_users.ldif 2007-08-29 01:37:26 UTC (rev 24760)
@@ -13,7 +13,7 @@
accountExpires: -1
sAMAccountName: Administrator
isCriticalSystemObject: TRUE
-sambaPassword: ${ADMINPASS}
+sambaPassword:: ${ADMINPASS_B64}
dn: CN=Guest,CN=Users,${DOMAINDN}
objectClass: user
@@ -203,7 +203,7 @@
sAMAccountType: 805306368
servicePrincipalName: kadmin/changepw
isCriticalSystemObject: TRUE
-sambaPassword: ${KRBTGTPASS}
+sambaPassword:: ${KRBTGTPASS_B64}
dn: CN=dns,CN=Users,${DOMAINDN}
objectClass: top
@@ -219,7 +219,7 @@
sAMAccountType: 805306368
servicePrincipalName: DNS/${DNSDOMAIN}
isCriticalSystemObject: TRUE
-sambaPassword: ${DNSPASS}
+sambaPassword:: ${DNSPASS_B64}
dn: CN=Domain Computers,CN=Users,${DOMAINDN}
objectClass: top
Modified: branches/SAMBA_4_0/source/setup/secrets.ldif
===================================================================
--- branches/SAMBA_4_0/source/setup/secrets.ldif 2007-08-29 01:23:31 UTC (rev 24759)
+++ branches/SAMBA_4_0/source/setup/secrets.ldif 2007-08-29 01:37:26 UTC (rev 24760)
@@ -14,7 +14,7 @@
objectClass: kerberosSecret
flatname: ${DOMAIN}
realm: ${REALM}
-secret: ${MACHINEPASS}
+secret:: ${MACHINEPASS_B64}
secureChannelType: 6
sAMAccountName: ${NETBIOSNAME}$
whenCreated: ${LDAPTIME}
@@ -50,5 +50,5 @@
whenChanged: ${LDAPTIME}
servicePrincipalName: DNS/${DNSDOMAIN}
privateKeytab: ${DNS_KEYTAB}
-secret: ${DNSPASS}
+secret:: ${DNSPASS_B64}
More information about the samba-cvs
mailing list