From fb250d1328033888a33037a2d0ca9d36614cf6bc Mon Sep 17 00:00:00 2001
From: Andrew Bartlett <abartlet@samba.org>
Date: Mon, 23 Feb 2015 16:22:29 +1300
Subject: [PATCH] testprogs-test_chgdcpass.sh: Improve comments to explain why
 we check about changing the password twice

Signed-off-by: Andrew Bartlett <abartlet@samba.org>
Reviewed-by: Jelmer Vernooij <jelmer@samba.org>
---
 testprogs/blackbox/test_chgdcpass.sh | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/testprogs/blackbox/test_chgdcpass.sh b/testprogs/blackbox/test_chgdcpass.sh
index 35161251716..ca7987e45e0 100755
--- a/testprogs/blackbox/test_chgdcpass.sh
+++ b/testprogs/blackbox/test_chgdcpass.sh
@@ -96,7 +96,8 @@ test_drs options "Test drs options with new password" || failed=`expr $failed +
 
 testit "change dc password (2nd time)" $samba4srcdir/scripting/devel/chgtdcpass -s $PROVDIR/etc/smb.conf || failed=`expr $failed + 1`
 
-#This is important because it shows that the old ticket remains valid (as it must) for incoming connections after the DC pass
+# This is important because it shows that the old ticket is discarded if the server rejects it (as it must) after the password was changed twice in succession.
+# This also ensures we handle the case where the domain is re-provisioned etc
 test_smbclient "Test login with kerberos ccache after 2nd password change" 'ls' -k yes || failed=`expr $failed + 1`
 
 #check that drs bind works after we change the password a 2nd time