ChangeLog revision 102644
12002-06-07 Jacques Vidrine <n@nectar.com> 2 3 * ank.c: do not attempt to free uninitialized pointer when 4 kadm5_randkey_principal fails. 5 62002-06-07 Johan Danielsson <joda@pdc.kth.se> 7 8 * util.c: remove unused variable; reported by Hans Insulander 9 102002-03-05 Johan Danielsson <joda@pdc.kth.se> 11 12 * kadmind.8: clarify some acl wording, and add an example file 13 142002-02-11 Johan Danielsson <joda@pdc.kth.se> 15 16 * ext.c: no need to use the "modify" keytab anymore 17 182001-09-20 Assar Westerlund <assar@sics.se> 19 20 * add-random-users.c: allocate several buffers for the list of 21 words, instead of one strdup per word (running under efence does 22 not work very well otherwise) 23 242001-09-13 Assar Westerlund <assar@sics.se> 25 26 * add-random-users.c: allow specifying the number of users to 27 create 28 292001-08-24 Assar Westerlund <assar@sics.se> 30 31 * Makefile.am: rename variable name to avoid error from current 32 automake 33 342001-08-22 Assar Westerlund <assar@sics.se> 35 36 * kadmin_locl.h: include libutil.h if it exists 37 382001-08-10 Johan Danielsson <joda@pdc.kth.se> 39 40 * util.c: do something to handle C-c in prompts 41 42 * load.c: remove unused etypes code, and add parsing of the 43 generation field 44 45 * ank.c: add a --use-defaults option to just use default values 46 without questions 47 48 * kadmin.c: add "del" alias for delete 49 50 * cpw.c: call this operation "passwd" in usage 51 52 * kadmin_locl.h: prototype for set_defaults 53 54 * util.c (edit_entry): move setting of default values to a 55 separate function, set_defaults 56 572001-08-01 Johan Danielsson <joda@pdc.kth.se> 58 59 * kadmin.c: print help message on bad options 60 612001-07-31 Assar Westerlund <assar@sics.se> 62 63 * add-random-users.c (main): handle --version 64 652001-07-30 Johan Danielsson <joda@pdc.kth.se> 66 67 * load.c: increase line buffer to 8k 68 692001-06-12 Assar Westerlund <assar@sics.se> 70 71 * ext.c (ext_keytab): use the default modify keytab per default 72 732001-05-17 Assar Westerlund <assar@sics.se> 74 75 * kadm_conn.c (start_server): fix krb5_eai_to_heim_errno call 76 772001-05-15 Assar Westerlund <assar@sics.se> 78 79 * kadmin.c (main): some error cleaning required 80 812001-05-14 Assar Westerlund <assar@sics.se> 82 83 * kadmind.c: new krb5_config_parse_file 84 * kadmin.c: new krb5_config_parse_file 85 * kadm_conn.c: update to new krb5_sockaddr2address 86 872001-05-07 Assar Westerlund <assar@sics.se> 88 89 * kadmin_locl.h (foreach_principal): update prototype 90 * get.c (getit): new foreach_principal 91 * ext.c (ext_keytab): new foreach_principal 92 * del.c (del_entry): new foreach_principal 93 * cpw.c (cpw_entry): new foreach_principal 94 * util.c (foreach_principal): add `funcname' and try printing the 95 error string 96 972001-05-04 Johan Danielsson <joda@pdc.kth.se> 98 99 * rename.c: fix argument number test 100 1012001-04-19 Johan Danielsson <joda@pdc.kth.se> 102 103 * del_enctype.c: fix argument count check after getarg change; 104 spotted by mark@MCS.VUW.AC.NZ 105 1062001-02-15 Assar Westerlund <assar@sics.se> 107 108 * kadmind.c (main): use a `struct sockaddr_storage' to be able to 109 store all types of addresses 110 1112001-02-07 Assar Westerlund <assar@sics.se> 112 113 * kadmin.c: add --keytab / _K, from Leif Johansson 114 <leifj@it.su.se> 115 1162001-01-29 Assar Westerlund <assar@sics.se> 117 118 * kadm_conn.c (spawn_child): close the newly created socket in the 119 packet, it's not used. from <shadow@dementia.org> 120 * version4.c (decode_packet): check success of 121 krb5_425_conv_principal. from <shadow@dementia.org> 122 1232001-01-12 Assar Westerlund <assar@sics.se> 124 125 * util.c (parse_attributes): make empty string mean no attributes, 126 specifying the empty string at the command line should give you no 127 attributes, but just pressing return at the prompt gives you 128 default attributes 129 (edit_entry): only pick up values from the default principal if they 130 aren't set in the principal being edited 131 1322001-01-04 Assar Westerlund <assar@sics.se> 133 134 * load.c (doit): print an error and bail out if storing an entry 135 in the database fails. The most likely reason for it failing is 136 out-of-space. 137 1382000-12-31 Assar Westerlund <assar@sics.se> 139 140 * kadmind.c (main): handle krb5_init_context failure consistently 141 * kadmin.c (main): handle krb5_init_context failure consistently 142 * add-random-users.c (add_user): handle krb5_init_context failure 143 consistently 144 145 * kadm_conn.c (spawn_child): use a struct sockaddr_storage 146 1472000-12-15 Johan Danielsson <joda@pdc.kth.se> 148 149 * get.c: avoid asprintf'ing NULL strings 150 1512000-12-14 Johan Danielsson <joda@pdc.kth.se> 152 153 * load.c: fix option parsing 154 1552000-11-16 Assar Westerlund <assar@sics.se> 156 157 * kadm_conn.c (wait_for_connection): check for fd's being too 158 large to select on 159 1602000-11-09 Johan Danielsson <joda@pdc.kth.se> 161 162 * get.c: don't try to print modifier name if it isn't set (from 163 Jacques A. Vidrine" <n@nectar.com>) 164 1652000-09-19 Assar Westerlund <assar@sics.se> 166 167 * server.c (kadmind_loop): send in keytab to v4 handling function 168 * version4.c: allow the specification of what keytab to use 169 170 * get.c (print_entry_long): actually print the actual saltvalue 171 used if it's not the default 172 1732000-09-10 Johan Danielsson <joda@pdc.kth.se> 174 175 * kadmin.c: add option parsing, and add `privs' as an alias for 176 `privileges' 177 178 * init.c: complain if there's no realm name specified 179 180 * rename.c: add option parsing 181 182 * load.c: add option parsing 183 184 * get.c: make `get' and `list' aliases to each other, but with 185 different defaults 186 187 * del_enctype.c: add option parsing 188 189 * del.c: add option parsing 190 191 * ank.c: calling the command `add' make more sense from an english 192 pov 193 194 * Makefile.am: add kadmin manpage 195 196 * kadmin.8: short manpage 197 198 * kadmin.c: `quit' should be a alias for `exit', not `help' 199 2002000-08-27 Assar Westerlund <assar@sics.se> 201 202 * server.c (handle_v5): do not try to perform stupid stunts when 203 printing errors 204 2052000-08-19 Assar Westerlund <assar@sics.se> 206 207 * util.c (str2time_t): add alias for `now'. 208 2092000-08-18 Assar Westerlund <assar@sics.se> 210 211 * server.c (handle_v5): accept any kadmin/admin@* principal as the 212 server 213 * kadmind.c: remove extra prototype of kadmind_loop 214 * kadmin_locl.h (kadmind_loop): add prototype 215 216 * init.c (usage): print init-usage and not add-dito 217 2182000-08-07 Johan Danielsson <joda@pdc.kth.se> 219 220 * kadmind.c: use roken_getsockname 221 2222000-08-07 Assar Westerlund <assar@sics.se> 223 224 * kadmind.c, kadm_conn.c: use socklen_t instead of int where 225 appropriate. From <thorpej@netbsd.org> 226 2272000-08-04 Johan Danielsson <joda@pdc.kth.se> 228 229 * Makefile.am: link with pidfile library 230 231 * kadmind.c: write a pid file, and setup password quality 232 functions 233 234 * kadmin_locl.h: util.h 235 2362000-07-27 Assar Westerlund <assar@sics.se> 237 238 * version4.c (decode_packet): be totally consistent with the 239 prototype of des_cbc_cksum 240 * kadmind.c: use sa_size instead of sa_len, some systems define 241 this to emulate anonymous unions 242 * kadm_conn.c: use sa_size instead of sa_len, some systems define 243 this to emulate anonymous unions 244 2452000-07-24 Assar Westerlund <assar@sics.se> 246 247 * kadmin.c (commands): add quit 248 * load.c (doit): truncate the log since there's no way of knowing 249 what changes are going to be added 250 2512000-07-23 Assar Westerlund <assar@sics.se> 252 253 * util.c (str2time_t): be more careful with strptime that might 254 zero out the `struct tm' 255 2562000-07-22 Johan Danielsson <joda@pdc.kth.se> 257 258 * kadm_conn.c: make the parent process wait for children and 259 terminate after receiving a signal, also terminate on SIGINT 260 2612000-07-22 Assar Westerlund <assar@sics.se> 262 263 * version4.c: map both princ_expire_time and pw_expiration to v4 264 principal expiration 265 2662000-07-22 Johan Danielsson <joda@pdc.kth.se> 267 268 * version4.c (handle_v4): check for termination 269 270 * server.c (v5_loop): check for termination 271 272 * kadm_conn.c (wait_term): if we're doing something, set just set 273 a flag otherwise exit rightaway 274 275 * server.c: use krb5_read_priv_message; (v5_loop): check for EOF 276 2772000-07-21 Assar Westerlund <assar@sics.se> 278 279 * kadm_conn.c: remove sys/select.h. make signal handlers 280 type-correct and static 281 282 * kadmin_locl.h: add limits.h and sys/select.h 283 2842000-07-20 Assar Westerlund <assar@sics.se> 285 286 * init.c (init): also create `kadmin/hprop' 287 * kadmind.c: ports is a string argument 288 * kadm_conn.c (start_server): fix printf format 289 290 * kadmin_locl.h: add <sys/select.h> 291 * kadm_conn.c: remove sys/select.h. make signal handlers 292 type-correct and static 293 294 * kadmin_locl.h: add limits.h and sys/select.h 295 2962000-07-17 Johan Danielsson <joda@pdc.kth.se> 297 298 * kadm_conn.c: put all processes in a new process group 299 300 * server.c (v5_loop): use krb5_{read,write}_priv_message 301 3022000-07-11 Johan Danielsson <joda@pdc.kth.se> 303 304 * version4.c: change log strings to match the v5 counterparts 305 306 * mod.c: allow setting kvno 307 308 * kadmind.c: if stdin is not a socket create and listen to sockets 309 310 * kadm_conn.c: socket creation functions 311 312 * util.c (deltat2str): treat 0 and INT_MAX as never 313 3142000-07-08 Assar Westerlund <assar@sics.se> 315 316 * Makefile.am (INCLUDES): add ../lib/krb5 317 * kadmin_locl.h: add krb5_locl.h (since we just use some stuff 318 from there) 319 3202000-06-07 Assar Westerlund <assar@sics.se> 321 322 * add-random-users.c: new testing program that adds a number of 323 randomly generated users 324 3252000-04-12 Assar Westerlund <assar@sics.se> 326 327 * cpw.c (do_cpw_entry): call set_password if no argument is given, 328 it will prompt for the password. 329 * kadmin.c: make help only print the commands that are actually 330 available. 331 3322000-04-03 Assar Westerlund <assar@sics.se> 333 334 * del_enctype.c (del_enctype): set ignore correctly 335 3362000-04-02 Assar Westerlund <assar@sics.se> 337 338 * kadmin.c (main): make parse errors a fatal error 339 * init.c (init): create changepw/kerberos with disallow-tgt and 340 pwchange attributes 341 3422000-03-23 Assar Westerlund <assar@sics.se> 343 344 * util.c (hex2n, parse_des_key): add 345 * server.c (kadmind_dispatch): add kadm_chpass_with_key 346 * cpw.c: add --key 347 * ank.c: add --key 348 3492000-02-16 Assar Westerlund <assar@sics.se> 350 351 * load.c (doit): check return value from parse_hdbflags2int 352 correctly 353 3542000-01-25 Assar Westerlund <assar@sics.se> 355 356 * load.c: checking all parsing for errors and all memory 357 allocations also 358 3592000-01-02 Assar Westerlund <assar@sics.se> 360 361 * server.c: check initial flag in ticket and allow users to change 362 their own password if it's set 363 * ext.c (do_ext_keytab): set timestamp 364 3651999-12-14 Assar Westerlund <assar@sics.se> 366 367 * del_enctype.c (usage): don't use arg_printusage 368 3691999-11-25 Assar Westerlund <assar@sics.se> 370 371 * del_enctype.c (del_enctype): try not to leak memory 372 373 * version4.c (kadm_ser_mod): use kadm5_s_modify_principal (no 374 _with_key) 375 376 * kadmin.c: add `del_enctype' 377 378 * del_enctype.c (del_enctype): new function for deleting enctypes 379 from a principal 380 381 * Makefile.am (kadmin_SOURCES): add del_enctype.c 382 3831999-11-09 Johan Danielsson <joda@pdc.kth.se> 384 385 * server.c: cope with old clients 386 387 * kadmin_locl.h: remove version string 388 3891999-10-17 Assar Westerlund <assar@sics.se> 390 391 * Makefile.am (kadmin_LDADD): add LIB_dlopen 392 3931999-10-01 Assar Westerlund <assar@sics.se> 394 395 * ank.c (add_one_principal): `password' can cactually be NULL in 396 the overwrite code, check for it. 397 3981999-09-20 Assar Westerlund <assar@sics.se> 399 400 * mod.c (mod_entry): print the correct principal name in error 401 messages. From Love <lha@e.kth.se> 402 4031999-09-10 Assar Westerlund <assar@sics.se> 404 405 * init.c (init): also create `changepw/kerberos' 406 407 * version4.c: only create you loose packets when we fail decoding 408 and not when an operation is not performed for some reason 409 (decode_packet): read the service key from the hdb 410 (dispatch, decode_packet): return proper error messages 411 412 * version4.c (kadm_ser_cpw): add password quality functions 413 4141999-08-27 Johan Danielsson <joda@pdc.kth.se> 415 416 * server.c (handle_v5): give more informative message if 417 KRB5_KT_NOTFOUND 418 4191999-08-26 Johan Danielsson <joda@pdc.kth.se> 420 421 * kadmind.c: use HDB keytabs 422 4231999-08-25 Assar Westerlund <assar@sics.se> 424 425 * cpw.c (set_password): use correct variable. From Love 426 <lha@e.kth.se> 427 428 * server.c (v5_loop): use correct error code 429 430 * ank.c (add_one_principal): initialize `default_ent' 431 4321999-08-21 Assar Westerlund <assar@sics.se> 433 434 * random_password.c: new file, stolen from krb4 435 436 * kadmin_locl.h: add prototype for random_password 437 438 * cpw.c: add support for --random-password 439 440 * ank.c: add support for --random-password 441 442 * Makefile.am (kadmin_SOURCES): add random_password.c 443 4441999-08-19 Assar Westerlund <assar@sics.se> 445 446 * util.c (edit_timet): break when we manage to parse the time not 447 the inverse. 448 449 * mod.c: add parsing of lots of options. From Love 450 <lha@stacken.kth.se> 451 452 * ank.c: add setting of expiration and password expiration 453 454 * kadmin_locl.h: update util.c prototypes 455 456 * util.c: move-around. clean-up, rename, make consistent (and 457 some other weird stuff). based on patches from Love 458 <lha@stacken.kth.se> 459 460 * version4.c (kadm_ser_cpw): initialize password 461 (handle_v4): remove unused variable `ret' 462 4631999-08-16 Assar Westerlund <assar@sics.se> 464 465 * version4.c (handle_v4): more error checking and more correct 466 error messages 467 468 * server.c (v5_loop, kadmind_loop): more error checking and more 469 correct error messages 470 4711999-07-24 Assar Westerlund <assar@sics.se> 472 473 * util.c (str2timeval, edit_time): functions for parsing and 474 editing times. Based on patches from Love <lha@stacken.kth.se>. 475 (edit_entry): call new functions 476 477 * mod.c (mod_entry): allow modifying expiration times 478 479 * kadmin_locl.h (str2timeval): add prototype 480 481 * ank.c (add_one_principal): allow setting expiration times 482 4831999-07-03 Assar Westerlund <assar@sics.se> 484 485 * server.c (v5_loop): handle data allocation with krb5_data_alloc 486 and check return value 487 4881999-06-23 Assar Westerlund <assar@sics.se> 489 490 * version4.c (kadm_ser_cpw): read the key in the strange order 491 it's sent 492 493 * util.c (edit_entry): look at default 494 (edit_time): always set mask even if value == 0 495 496 * kadmin_locl.h (edit_entry): update 497 498 * ank.c: make ank use the values of the default principal for 499 prompting 500 501 * version4.c (values_to_ent): convert key data correctly 502 5031999-05-23 Assar Westerlund <assar@sics.se> 504 505 * init.c (create_random_entry): more correct setting of mask 506 5071999-05-21 Assar Westerlund <assar@sics.se> 508 509 * server.c (handle_v5): read sendauth version correctly. 510 5111999-05-14 Assar Westerlund <assar@sics.se> 512 513 * version4.c (error_code): try to handle really old krb4 514 distributions 515 5161999-05-11 Assar Westerlund <assar@sics.se> 517 518 * init.c (init): initialize realm_max_life and realm_max_rlife 519 5201999-05-07 Assar Westerlund <assar@sics.se> 521 522 * ank.c (add_new_key): initialize more variables 523 5241999-05-04 Assar Westerlund <assar@sics.se> 525 526 * version4.c (kadm_ser_cpw): always allow a user to change her 527 password 528 (kadm_ser_*): make logging work 529 clean-up and restructure 530 531 * kadmin_locl.h (set_entry): add prototype 532 533 * kadmin.c (usage): update usage string 534 535 * init.c (init): new arguments realm-max-ticket-life and 536 realm-max-renewable-life 537 538 * util.c (edit_time, edit_attributes): don't do anything if it's 539 already set 540 (set_entry): new function 541 542 * ank.c (add_new_key): new options for setting max-ticket-life, 543 max-renewable-life, and attributes 544 545 * server.c (v5_loop): remove unused variable 546 547 * kadmin_locl.h: add prototypes 548 549 * version4.c: re-insert krb_err.h and other miss 550 551 * server.c (kadmind_loop): break-up and restructure 552 553 * version4.c: add ACL checks more error code checks restructure 554 5551999-05-03 Johan Danielsson <joda@pdc.kth.se> 556 557 * load.c: check for (un-)encrypted keys 558 559 * dump.c: use hdb_print_entry 560 561 * version4.c: version 4 support 562 563 * Makefile.am: link with krb4 564 565 * kadmin_locl.h: include <sys/un.h> 566 567 * server.c: move from lib/kadm5, and add basic support for krb4 568 kadmin protocol 569 570 * kadmind.c: move recvauth to kadmind_loop() 571