ChangeLog revision 72445
1258065Spjd2001-01-29 Assar Westerlund <assar@sics.se> 2258065Spjd 3298107Sgjb * kadm_conn.c (spawn_child): close the newly created socket in the 4284421Sbapt packet, it's not used. from <shadow@dementia.org> 5271241Sngie * version4.c (decode_packet): check success of 6269603Sngie krb5_425_conv_principal. from <shadow@dementia.org> 7269603Sngie 8258065Spjd2001-01-12 Assar Westerlund <assar@sics.se> 9258065Spjd 10258065Spjd * util.c (parse_attributes): make empty string mean no attributes, 11313538Sngie specifying the empty string at the command line should give you no 12337561Skevans attributes, but just pressing return at the prompt gives you 13279439Srstone default attributes 14336345Skevans (edit_entry): only pick up values from the default principal if they 15336345Skevans aren't set in the principal being edited 16258065Spjd 17285139Soshogbo2001-01-04 Assar Westerlund <assar@sics.se> 18285139Soshogbo 19258065Spjd * load.c (doit): print an error and bail out if storing an entry 20269603Sngie in the database fails. The most likely reason for it failing is 21269603Sngie out-of-space. 22269603Sngie 23269603Sngie2000-12-31 Assar Westerlund <assar@sics.se> 24258065Spjd 25 * kadmind.c (main): handle krb5_init_context failure consistently 26 * kadmin.c (main): handle krb5_init_context failure consistently 27 * add-random-users.c (add_user): handle krb5_init_context failure 28 consistently 29 30 * kadm_conn.c (spawn_child): use a struct sockaddr_storage 31 322000-12-15 Johan Danielsson <joda@pdc.kth.se> 33 34 * get.c: avoid asprintf'ing NULL strings 35 362000-12-14 Johan Danielsson <joda@pdc.kth.se> 37 38 * load.c: fix option parsing 39 402000-11-16 Assar Westerlund <assar@sics.se> 41 42 * kadm_conn.c (wait_for_connection): check for fd's being too 43 large to select on 44 452000-11-09 Johan Danielsson <joda@pdc.kth.se> 46 47 * get.c: don't try to print modifier name if it isn't set (from 48 Jacques A. Vidrine" <n@nectar.com>) 49 502000-09-19 Assar Westerlund <assar@sics.se> 51 52 * server.c (kadmind_loop): send in keytab to v4 handling function 53 * version4.c: allow the specification of what keytab to use 54 55 * get.c (print_entry_long): actually print the actual saltvalue 56 used if it's not the default 57 582000-09-10 Johan Danielsson <joda@pdc.kth.se> 59 60 * kadmin.c: add option parsing, and add `privs' as an alias for 61 `privileges' 62 63 * init.c: complain if there's no realm name specified 64 65 * rename.c: add option parsing 66 67 * load.c: add option parsing 68 69 * get.c: make `get' and `list' aliases to each other, but with 70 different defaults 71 72 * del_enctype.c: add option parsing 73 74 * del.c: add option parsing 75 76 * ank.c: calling the command `add' make more sense from an english 77 pov 78 79 * Makefile.am: add kadmin manpage 80 81 * kadmin.8: short manpage 82 83 * kadmin.c: `quit' should be a alias for `exit', not `help' 84 852000-08-27 Assar Westerlund <assar@sics.se> 86 87 * server.c (handle_v5): do not try to perform stupid stunts when 88 printing errors 89 902000-08-19 Assar Westerlund <assar@sics.se> 91 92 * util.c (str2time_t): add alias for `now'. 93 942000-08-18 Assar Westerlund <assar@sics.se> 95 96 * server.c (handle_v5): accept any kadmin/admin@* principal as the 97 server 98 * kadmind.c: remove extra prototype of kadmind_loop 99 * kadmin_locl.h (kadmind_loop): add prototype 100 101 * init.c (usage): print init-usage and not add-dito 102 1032000-08-07 Johan Danielsson <joda@pdc.kth.se> 104 105 * kadmind.c: use roken_getsockname 106 1072000-08-07 Assar Westerlund <assar@sics.se> 108 109 * kadmind.c, kadm_conn.c: use socklen_t instead of int where 110 appropriate. From <thorpej@netbsd.org> 111 1122000-08-04 Johan Danielsson <joda@pdc.kth.se> 113 114 * Makefile.am: link with pidfile library 115 116 * kadmind.c: write a pid file, and setup password quality 117 functions 118 119 * kadmin_locl.h: util.h 120 1212000-07-27 Assar Westerlund <assar@sics.se> 122 123 * version4.c (decode_packet): be totally consistent with the 124 prototype of des_cbc_cksum 125 * kadmind.c: use sa_size instead of sa_len, some systems define 126 this to emulate anonymous unions 127 * kadm_conn.c: use sa_size instead of sa_len, some systems define 128 this to emulate anonymous unions 129 1302000-07-24 Assar Westerlund <assar@sics.se> 131 132 * kadmin.c (commands): add quit 133 * load.c (doit): truncate the log since there's no way of knowing 134 what changes are going to be added 135 1362000-07-23 Assar Westerlund <assar@sics.se> 137 138 * util.c (str2time_t): be more careful with strptime that might 139 zero out the `struct tm' 140 1412000-07-22 Johan Danielsson <joda@pdc.kth.se> 142 143 * kadm_conn.c: make the parent process wait for children and 144 terminate after receiving a signal, also terminate on SIGINT 145 1462000-07-22 Assar Westerlund <assar@sics.se> 147 148 * version4.c: map both princ_expire_time and pw_expiration to v4 149 principal expiration 150 1512000-07-22 Johan Danielsson <joda@pdc.kth.se> 152 153 * version4.c (handle_v4): check for termination 154 155 * server.c (v5_loop): check for termination 156 157 * kadm_conn.c (wait_term): if we're doing something, set just set 158 a flag otherwise exit rightaway 159 160 * server.c: use krb5_read_priv_message; (v5_loop): check for EOF 161 1622000-07-21 Assar Westerlund <assar@sics.se> 163 164 * kadm_conn.c: remove sys/select.h. make signal handlers 165 type-correct and static 166 167 * kadmin_locl.h: add limits.h and sys/select.h 168 1692000-07-20 Assar Westerlund <assar@sics.se> 170 171 * init.c (init): also create `kadmin/hprop' 172 * kadmind.c: ports is a string argument 173 * kadm_conn.c (start_server): fix printf format 174 175 * kadmin_locl.h: add <sys/select.h> 176 * kadm_conn.c: remove sys/select.h. make signal handlers 177 type-correct and static 178 179 * kadmin_locl.h: add limits.h and sys/select.h 180 1812000-07-17 Johan Danielsson <joda@pdc.kth.se> 182 183 * kadm_conn.c: put all processes in a new process group 184 185 * server.c (v5_loop): use krb5_{read,write}_priv_message 186 1872000-07-11 Johan Danielsson <joda@pdc.kth.se> 188 189 * version4.c: change log strings to match the v5 counterparts 190 191 * mod.c: allow setting kvno 192 193 * kadmind.c: if stdin is not a socket create and listen to sockets 194 195 * kadm_conn.c: socket creation functions 196 197 * util.c (deltat2str): treat 0 and INT_MAX as never 198 1992000-07-08 Assar Westerlund <assar@sics.se> 200 201 * Makefile.am (INCLUDES): add ../lib/krb5 202 * kadmin_locl.h: add krb5_locl.h (since we just use some stuff 203 from there) 204 2052000-06-07 Assar Westerlund <assar@sics.se> 206 207 * add-random-users.c: new testing program that adds a number of 208 randomly generated users 209 2102000-04-12 Assar Westerlund <assar@sics.se> 211 212 * cpw.c (do_cpw_entry): call set_password if no argument is given, 213 it will prompt for the password. 214 * kadmin.c: make help only print the commands that are actually 215 available. 216 2172000-04-03 Assar Westerlund <assar@sics.se> 218 219 * del_enctype.c (del_enctype): set ignore correctly 220 2212000-04-02 Assar Westerlund <assar@sics.se> 222 223 * kadmin.c (main): make parse errors a fatal error 224 * init.c (init): create changepw/kerberos with disallow-tgt and 225 pwchange attributes 226 2272000-03-23 Assar Westerlund <assar@sics.se> 228 229 * util.c (hex2n, parse_des_key): add 230 * server.c (kadmind_dispatch): add kadm_chpass_with_key 231 * cpw.c: add --key 232 * ank.c: add --key 233 2342000-02-16 Assar Westerlund <assar@sics.se> 235 236 * load.c (doit): check return value from parse_hdbflags2int 237 correctly 238 2392000-01-25 Assar Westerlund <assar@sics.se> 240 241 * load.c: checking all parsing for errors and all memory 242 allocations also 243 2442000-01-02 Assar Westerlund <assar@sics.se> 245 246 * server.c: check initial flag in ticket and allow users to change 247 their own password if it's set 248 * ext.c (do_ext_keytab): set timestamp 249 2501999-12-14 Assar Westerlund <assar@sics.se> 251 252 * del_enctype.c (usage): don't use arg_printusage 253 2541999-11-25 Assar Westerlund <assar@sics.se> 255 256 * del_enctype.c (del_enctype): try not to leak memory 257 258 * version4.c (kadm_ser_mod): use kadm5_s_modify_principal (no 259 _with_key) 260 261 * kadmin.c: add `del_enctype' 262 263 * del_enctype.c (del_enctype): new function for deleting enctypes 264 from a principal 265 266 * Makefile.am (kadmin_SOURCES): add del_enctype.c 267 2681999-11-09 Johan Danielsson <joda@pdc.kth.se> 269 270 * server.c: cope with old clients 271 272 * kadmin_locl.h: remove version string 273 2741999-10-17 Assar Westerlund <assar@sics.se> 275 276 * Makefile.am (kadmin_LDADD): add LIB_dlopen 277 2781999-10-01 Assar Westerlund <assar@sics.se> 279 280 * ank.c (add_one_principal): `password' can cactually be NULL in 281 the overwrite code, check for it. 282 2831999-09-20 Assar Westerlund <assar@sics.se> 284 285 * mod.c (mod_entry): print the correct principal name in error 286 messages. From Love <lha@e.kth.se> 287 2881999-09-10 Assar Westerlund <assar@sics.se> 289 290 * init.c (init): also create `changepw/kerberos' 291 292 * version4.c: only create you loose packets when we fail decoding 293 and not when an operation is not performed for some reason 294 (decode_packet): read the service key from the hdb 295 (dispatch, decode_packet): return proper error messages 296 297 * version4.c (kadm_ser_cpw): add password quality functions 298 2991999-08-27 Johan Danielsson <joda@pdc.kth.se> 300 301 * server.c (handle_v5): give more informative message if 302 KRB5_KT_NOTFOUND 303 3041999-08-26 Johan Danielsson <joda@pdc.kth.se> 305 306 * kadmind.c: use HDB keytabs 307 3081999-08-25 Assar Westerlund <assar@sics.se> 309 310 * cpw.c (set_password): use correct variable. From Love 311 <lha@e.kth.se> 312 313 * server.c (v5_loop): use correct error code 314 315 * ank.c (add_one_principal): initialize `default_ent' 316 3171999-08-21 Assar Westerlund <assar@sics.se> 318 319 * random_password.c: new file, stolen from krb4 320 321 * kadmin_locl.h: add prototype for random_password 322 323 * cpw.c: add support for --random-password 324 325 * ank.c: add support for --random-password 326 327 * Makefile.am (kadmin_SOURCES): add random_password.c 328 3291999-08-19 Assar Westerlund <assar@sics.se> 330 331 * util.c (edit_timet): break when we manage to parse the time not 332 the inverse. 333 334 * mod.c: add parsing of lots of options. From Love 335 <lha@stacken.kth.se> 336 337 * ank.c: add setting of expiration and password expiration 338 339 * kadmin_locl.h: update util.c prototypes 340 341 * util.c: move-around. clean-up, rename, make consistent (and 342 some other weird stuff). based on patches from Love 343 <lha@stacken.kth.se> 344 345 * version4.c (kadm_ser_cpw): initialize password 346 (handle_v4): remove unused variable `ret' 347 3481999-08-16 Assar Westerlund <assar@sics.se> 349 350 * version4.c (handle_v4): more error checking and more correct 351 error messages 352 353 * server.c (v5_loop, kadmind_loop): more error checking and more 354 correct error messages 355 3561999-07-24 Assar Westerlund <assar@sics.se> 357 358 * util.c (str2timeval, edit_time): functions for parsing and 359 editing times. Based on patches from Love <lha@stacken.kth.se>. 360 (edit_entry): call new functions 361 362 * mod.c (mod_entry): allow modifying expiration times 363 364 * kadmin_locl.h (str2timeval): add prototype 365 366 * ank.c (add_one_principal): allow setting expiration times 367 3681999-07-03 Assar Westerlund <assar@sics.se> 369 370 * server.c (v5_loop): handle data allocation with krb5_data_alloc 371 and check return value 372 3731999-06-23 Assar Westerlund <assar@sics.se> 374 375 * version4.c (kadm_ser_cpw): read the key in the strange order 376 it's sent 377 378 * util.c (edit_entry): look at default 379 (edit_time): always set mask even if value == 0 380 381 * kadmin_locl.h (edit_entry): update 382 383 * ank.c: make ank use the values of the default principal for 384 prompting 385 386 * version4.c (values_to_ent): convert key data correctly 387 3881999-05-23 Assar Westerlund <assar@sics.se> 389 390 * init.c (create_random_entry): more correct setting of mask 391 3921999-05-21 Assar Westerlund <assar@sics.se> 393 394 * server.c (handle_v5): read sendauth version correctly. 395 3961999-05-14 Assar Westerlund <assar@sics.se> 397 398 * version4.c (error_code): try to handle really old krb4 399 distributions 400 4011999-05-11 Assar Westerlund <assar@sics.se> 402 403 * init.c (init): initialize realm_max_life and realm_max_rlife 404 4051999-05-07 Assar Westerlund <assar@sics.se> 406 407 * ank.c (add_new_key): initialize more variables 408 4091999-05-04 Assar Westerlund <assar@sics.se> 410 411 * version4.c (kadm_ser_cpw): always allow a user to change her 412 password 413 (kadm_ser_*): make logging work 414 clean-up and restructure 415 416 * kadmin_locl.h (set_entry): add prototype 417 418 * kadmin.c (usage): update usage string 419 420 * init.c (init): new arguments realm-max-ticket-life and 421 realm-max-renewable-life 422 423 * util.c (edit_time, edit_attributes): don't do anything if it's 424 already set 425 (set_entry): new function 426 427 * ank.c (add_new_key): new options for setting max-ticket-life, 428 max-renewable-life, and attributes 429 430 * server.c (v5_loop): remove unused variable 431 432 * kadmin_locl.h: add prototypes 433 434 * version4.c: re-insert krb_err.h and other miss 435 436 * server.c (kadmind_loop): break-up and restructure 437 438 * version4.c: add ACL checks more error code checks restructure 439 4401999-05-03 Johan Danielsson <joda@pdc.kth.se> 441 442 * load.c: check for (un-)encrypted keys 443 444 * dump.c: use hdb_print_entry 445 446 * version4.c: version 4 support 447 448 * Makefile.am: link with krb4 449 450 * kadmin_locl.h: include <sys/un.h> 451 452 * server.c: move from lib/kadm5, and add basic support for krb4 453 kadmin protocol 454 455 * kadmind.c: move recvauth to kadmind_loop() 456