ChangeLog revision 102644 
12002-08-26  Assar Westerlund  <assar@kth.se>
2
3	* ipropd_slave.c (receive_everything): type-correctness calling
4	_krb5_get_int
5
6	* context_s.c (find_db_spec): const-correctness in parameters to
7	krb5_config_get_next
8
92002-08-16  Johan Danielsson  <joda@pdc.kth.se>
10
11	* private.h: rename header file flag macro
12
13	* Makefile.am: generate kadm5-{protos,private}.h
14
152002-08-15  Johan Danielsson  <joda@pdc.kth.se>
16
17	* ipropd_master.c: check return value of krb5_sockaddr2address
18
192002-07-04  Johan Danielsson  <joda@pdc.kth.se>
20
21	* ipropd_master.c: handle slaves that come and go; add status
22	reporting (both from Love)
23
24	* iprop.h: KADM5_SLAVE_STATS
25
262002-03-25  Jacques Vidrine  <n@nectar.com>
27
28	* init_c.c (get_cred_cache): bug fix: the default credentials
29	cache was not being used if a client name was specified.
30
312002-03-25  Johan Danielsson  <joda@pdc.kth.se>
32
33	* init_c.c (get_cred_cache): when getting the default_client from
34	the cred cache, make sure the instance part is "admin"; this
35	should require fewer uses of -p
36
372002-03-11  Assar Westerlund  <assar@sics.se>
38
39	* Makefile.am (libkadm5srv_la_LDFLAGS): set version to 7:5:0
40	(libkadm5clnt_la_LDFLAGS): set version to 6:3:2
41
422002-02-08  Johan Danielsson  <joda@pdc.kth.se>
43
44	* init_c.c: we have to create our own param struct before
45	marshaling
46
472001-09-05  Johan Danielsson  <joda@pdc.kth.se>
48
49	* Makefile.am: link with LIB_pidfile
50
51	* iprop.h: include util.h for pidfile
52
532001-08-31  Assar Westerlund  <assar@sics.se>
54
55	* ipropd_slave.c (main): syslog with the correct name
56
572001-08-30  Jacques Vidrine <n@nectar.com>
58
59	* ipropd_slave.c, ipropd_master.c (main): call pidfile
60
612001-08-28  Assar Westerlund  <assar@sics.se>
62
63	* Makefile.am (libkadm5srv_la_LDFLAGS): set version to 7:4:0
64
652001-08-24  Assar Westerlund  <assar@sics.se>
66
67	* acl.c (fetch_acl): do not return bogus flags and re-organize
68	function
69
70	* Makefile.am: rename variable name to avoid error from current
71	automake
72
732001-08-13  Johan Danielsson  <joda@pdc.kth.se>
74
75	* set_keys.c: add easier afs configuration, defaulting to the
76	local realm in lower case; also try to remove duplicate salts
77
782001-07-12  Assar Westerlund  <assar@sics.se>
79
80	* Makefile.am: add required library dependencies
81
822001-07-03  Assar Westerlund  <assar@sics.se>
83
84	* Makefile.am (libkadm5clnt_la_LDFLAGS): set version to 6:2:2
85
862001-06-29  Johan Danielsson  <joda@pdc.kth.se>
87
88	* init_c.c: call krb5_get_init_creds_opt_set_default_flags
89
902001-02-19  Johan Danielsson  <joda@pdc.kth.se>
91
92	* replay_log.c: add --{start-end}-version flags to replay just
93	part of the log
94
952001-02-15  Assar Westerlund  <assar@sics.se>
96
97	* ipropd_master.c (main): fix select-loop to decrement ret
98	correctly.  from "Brandon S. Allbery KF8NH" <allbery@ece.cmu.edu>
99
1002001-01-30  Assar Westerlund  <assar@sics.se>
101
102	* Makefile.am: bump versions
103
1042000-12-31  Assar Westerlund  <assar@sics.se>
105
106	* init_s.c (*): handle krb5_init_context failure consistently
107	* init_c.c (init_context): handle krb5_init_context failure
108	consistently
109
1102000-12-11  Assar Westerlund  <assar@sics.se>
111
112	* Makefile.am (libkadm5srv_la_LDFLAGS): bump version to 7:2:0
113
1142000-11-16  Assar Westerlund  <assar@sics.se>
115
116	* set_keys.c (make_keys): clean-up salting loop and try not to
117	leak memory
118
119	* ipropd_master.c (main): check for fd's being too large to select
120	on
121
1222000-08-16  Assar Westerlund  <assar@sics.se>
123
124	* Makefile.am (libkadm5srv_la_LDFLAGS): bump version to 7:1:0
125
1262000-08-10  Assar Westerlund  <assar@sics.se>
127
128	* acl.c (fetch_acl): fix wrong cases, use krb5_principal_match
129
1302000-08-07  Assar Westerlund  <assar@sics.se>
131
132	* ipropd_master.c (main): ignore SIGPIPE
133
1342000-08-06  Assar Westerlund  <assar@sics.se>
135
136	* ipropd_slave.c (receive_everything): make `fd' an int instead of
137	a pointer.  From Derrick J Brashear <shadow@dementia.org>
138
1392000-08-04  Johan Danielsson  <joda@pdc.kth.se>
140
141	* admin.h: change void** to void*
142
1432000-07-25  Johan Danielsson  <joda@pdc.kth.se>
144
145	* Makefile.am: bump versions to 7:0:0 and 6:0:2
146
1472000-07-24  Assar Westerlund  <assar@sics.se>
148
149	* log.c (kadm5_log_get_version): rename kadm5_log_get_version_fd
150	and make a new that takes a context
151	(kadm5_log_nop): add logging of missing lengths
152	(kadm5_log_truncate): new function
153
154	* dump_log.c (print_entry): update and correct
155	* randkey_s.c: call _kadm5_bump_pw_expire
156	* truncate_log.c: new program for truncating the log
157	* Makefile.am (sbin_PROGRAMS): add truncate_log
158	(C_SOURCES): add bump_pw_expire.c
159	* bump_pw_expire.c: new function for extending password expiration
160
1612000-07-22  Assar Westerlund  <assar@sics.se>
162
163	* keys.c: new file with _kadm5_free_keys, _kadm5_init_keys
164
165	* set_keys.c (free_keys, init_keys): elevate to internal kadm5
166	functions
167
168	* chpass_s.c (kadm5_s_chpass_principal_cond): new function
169	* Makefile.am (C_SOURCES): add keys.c
170	* init_c.c: remove unused variable and handle some parameters
171	being NULL
172
1732000-07-22  Johan Danielsson  <joda@pdc.kth.se>
174
175	* ipropd_slave.c: use krb5_read_priv_message
176
177	* ipropd_master.c: use krb5_{read,write}_priv_message
178
179	* init_c.c: use krb5_write_priv_message
180
1812000-07-11  Johan Danielsson  <joda@pdc.kth.se>
182
183	* ipropd_slave.c: no need to call gethostname, since
184	sname_to_principal will
185
186	* send_recv.c: assert that we have a connected socket
187
188	* get_princs_c.c: call _kadm5_connect
189
190	* rename_c.c: call _kadm5_connect
191
192	* randkey_c.c: call _kadm5_connect
193
194	* privs_c.c: call _kadm5_connect
195
196	* modify_c.c: call _kadm5_connect
197
198	* get_c.c: call _kadm5_connect
199
200	* delete_c.c: call _kadm5_connect
201
202	* create_c.c: call _kadm5_connect
203
204	* chpass_c.c: call _kadm5_connect
205
206	* private.h: add more fields to client context; remove prototypes
207
208	* admin.h: remove prototypes
209
210	* kadm5-protos.h: move public prototypes here
211
212	* kadm5-private.h: move private prototypes here
213
214	* init_c.c: break out connection code to separate function, and
215	defer calling it until we actually do something
216
2172000-07-07  Assar Westerlund  <assar@sics.se>
218
219	* set_keys.c (make_keys): also support `[kadmin]use_v4_salt' for
220	backwards compatability
221
2222000-06-26  Johan Danielsson  <joda@pdc.kth.se>
223
224	* set_keys.c (_kadm5_set_keys): rewrite this to be more easily
225	adaptable to different salts
226	
2272000-06-19  Johan Danielsson  <joda@pdc.kth.se>
228
229	* get_s.c: pa_* -> KRB5_PADATA_*
230
2312000-06-16  Assar Westerlund  <assar@sics.se>
232
233	* ipropd_slave.c: change default keytab to default keytab (as in
234	typically FILE:/etc/krb5.keytab)
235
2362000-06-08  Assar Westerlund  <assar@sics.se>
237
238	* ipropd_slave.c: bug fixes, for actually writing the full dump to
239	the database.  based on a patch from Love <lha@stacken.kth.se>
240
2412000-06-07  Assar Westerlund  <assar@sics.se>
242
243	* acl.c: add support for patterns of principals
244	* log.c (kadm5_log_replay_create): handle more NULL pointers
245	(should they really happen?)
246	* log.c (kadm5_log_replay_modify): handle max_life == NULL and
247	max_renew == NULL
248
249	* ipropd_master.c: use syslog.  be less verbose
250	* ipropd_slave.c: use syslog
251
2522000-06-05  Assar Westerlund  <assar@sics.se>
253
254	* private.h (kadm_ops): add kadm_nop more prototypes
255	* log.c (kadm5_log_set_version, kadm5_log_reinit, kadm5_log_nop,
256	kadm5_log_replay_nop): add
257	* ipropd_slave.c: and some more improvements
258	* ipropd_master.c: lots of improvements
259	* iprop.h (IPROP_PORT, IPROP_SERVICE): add
260	(iprop_cmd): add new commands
261
262	* dump_log.c: add nop
263
2642000-05-15  Assar Westerlund  <assar@sics.se>
265
266	* Makefile.am (libkadm5clnt_la_LDFLAGS): set version to 5:1:1
267
2682000-05-12  Assar Westerlund  <assar@sics.se>
269
270	* get_s.c (kadm5_s_get_principal): set life, rlife to INT_MAX as a
271	fallback.  handle not having any creator.
272	* destroy_s.c (kadm5_s_destroy): free all allocated memory
273	* context_s.c (set_field): free variable if it's already set
274	(find_db_spec): malloc space for all strings
275
2762000-04-05  Assar Westerlund  <assar@sics.se>
277
278	* Makefile.am (LDADD): add LIB_openldap
279
2802000-04-03  Assar Westerlund  <assar@sics.se>
281
282	* Makefile.am (libkadm5srv_la_LDFLAGS): set version to 6:0:1
283	(libkadm5clnt_la_LDFLAGS): set version to 5:0:1
284
2852000-03-24  Assar Westerlund  <assar@sics.se>
286
287	* set_keys.c (_kadm5_set_keys2): rewrite
288	(_kadm5_set_keys3): add
289
290	* private.h (struct kadm_func): add chpass_principal_with_key
291	* init_c.c (set_funcs): add chpass_principal_with_key
292
2932000-03-23  Assar Westerlund  <assar@sics.se>
294
295	* context_s.c (set_funcs): add chpass_principal_with_key
296	* common_glue.c (kadm5_chpass_principal_with_key): add
297	* chpass_s.c: comment-ize and change calling convention for
298	_kadm5_set_keys*
299	* chpass_c.c (kadm5_c_chpass_principal_with_key): add
300
3012000-02-07  Assar Westerlund  <assar@sics.se>
302
303	* Makefile.am (libkadm5clnt_la_LDFLAGS): set version to 4:2:0
304
3052000-01-28  Assar Westerlund  <assar@sics.se>
306
307	* init_c.c (get_new_cache): make sure to request non-forwardable,
308	non-proxiable
309
3102000-01-06  Assar Westerlund  <assar@sics.se>
311
312	* Makefile.am (libkadm5srv.la): bump version to 5:1:0
313
314	* context_s.c (_kadm5_s_init_context): handle params == NULL
315
3161999-12-26  Assar Westerlund  <assar@sics.se>
317
318	* get_s.c (kadm5_s_get_principal): handle modified_by->principal
319 	== NULL
320
3211999-12-20  Assar Westerlund  <assar@sics.se>
322
323	* Makefile.am (libkadm5clnt_la_LDFLAGS): bump version to 4:1:0
324
325	* init_c.c (_kadm5_c_init_context): handle getting back port
326 	number from admin host
327	(kadm5_c_init_with_context): remove `proto/' part before doing
328	getaddrinfo()
329
3301999-12-06  Assar Westerlund  <assar@sics.se>
331
332	* Makefile.am: bump version to 5:0:0 and 4:0:0
333
334	* init_c.c (kadm5_c_init_with_context): don't use unitialized
335 	stuff
336
3371999-12-04  Assar Westerlund  <assar@sics.se>
338
339	* replay_log.c: adapt to changed kadm5_log_foreach
340
341	* log.c (kadm5_log_foreach): change to take a
342 	`kadm5_server_context'
343
344	* init_c.c: use krb5_warn{,x}
345
346	* dump_log.c: adapt to changed kadm5_log_foreach
347
348	* init_c.c: re-write to use getaddrinfo
349	* Makefile.am (install-build-headers): add dependency
350	
3511999-12-03  Johan Danielsson  <joda@pdc.kth.se>
352
353	* log.c (kadm5_log_foreach): pass context
354
355	* dump_log.c: print more interesting things
356
3571999-12-02  Johan Danielsson  <joda@pdc.kth.se>
358
359	* ipropd_master.c (process_msg): check for short reads
360
3611999-11-25  Assar Westerlund  <assar@sics.se>
362
363	* modify_s.c (kadm5_s_modify_principal): support key_data
364	(kadm5_s_modify_principal_with_key): remove
365
366	* admin.h (kadm5_s_modify_principal_with_key): remove
367
3681999-11-20  Assar Westerlund  <assar@sics.se>
369
370	* context_s.c (find_db_spec): ugly cast work-around.
371
3721999-11-14  Assar Westerlund  <assar@sics.se>
373
374	* context_s.c (_kadm5_s_init_context): call krb5_add_et_list so
375 	that we aren't dependent on the layout of krb5_context_data
376	* init_c.c (_kadm5_c_init_context): call krb5_add_et_list so that
377 	we aren't dependent on the layout of krb5_context_data
378
3791999-11-13  Assar Westerlund  <assar@sics.se>
380
381	* password_quality.c (kadm5_setup_passwd_quality_check): use
382	correct types for function pointers
383	
3841999-11-09  Johan Danielsson  <joda@pdc.kth.se>
385
386	* randkey_s.c: always bail out if the fetch fails
387
388	* admin.h (kadm5_config_params): remove fields we're not using
389
390	* ipropd_slave.c: allow passing a realm
391
392	* ipropd_master.c: allow passing a realm
393
394	* dump_log.c: allow passing a realm
395
396	* acl.c: correctly get acl file
397
398	* private.h (kadm5_server_context): add config_params struct and
399	remove acl_file; bump protocol version number
400
401	* marshall.c: marshalling of config parameters
402
403	* init_c.c (kadm5_c_init_with_context): try to cope with old
404	servers
405
406	* init_s.c (kadm5_s_init_with_context): actually use some passed
407	values
408
409	* context_s.c (_kadm5_s_init_context): get dbname, acl_file, and
410	stash_file from the config parameters, try to figure out these if
411	they're not provided
412
4131999-11-05  Assar Westerlund  <assar@sics.se>
414
415	* Makefile.am (install-build-headers): use `cp' instead of
416 	INSTALL_DATA
417
4181999-11-04  Assar Westerlund  <assar@sics.se>
419
420	* Makefile.am: bump version to 4:0:0 and 3:0:0 (they access fields
421 	directly in libkrb5's context - bad functions)
422
423	* set_keys.c (_kadm5_set_keys_randomly): set enctypes correctly in
424 	the copied keys
425
4261999-10-20  Assar Westerlund  <assar@sics.se>
427
428	* Makefile.am: set version of kadm5srv to 3:0:2 (new password
429 	quality functions).
430 	set version of kdam5clnt to 2:1:1 (no interface changes)
431
432	* Makefile.am (LDADD): add $(LIB_dlopen)
433
4341999-10-17  Assar Westerlund  <assar@sics.se>
435
436	* randkey_s.c (kadm5_s_randkey_principal): use
437 	_kadm5_set_keys_randomly
438
439	* set_keys.c (free_keys): free more memory
440	(_kadm5_set_keys): a little bit more generic
441	(_kadm5_set_keys_randomly): new function for setting random keys.
442
4431999-10-14  Assar Westerlund  <assar@sics.se>
444
445	* set_keys.c (_kadm5_set_keys): ignore old keys when setting new
446 	ones and always add 3 DES keys and one 3DES key
447
4481999-10-03  Assar Westerlund  <assar@sics.se>
449
450	* init_c.c (_kadm5_c_init_context): use `krb5_get_krb_admin_hst'.
451  	check return value from strdup
452
4531999-09-26  Assar Westerlund  <assar@sics.se>
454
455	* acl.c (_kadm5_privs_to_string): forgot one strcpy_truncate ->
456 	strlcpy
457
4581999-09-24  Johan Danielsson  <joda@pdc.kth.se>
459
460	* dump_log.c: remove unused `optind'
461
462	* replay_log.c: remove unused `optind'
463
4641999-09-13  Assar Westerlund  <assar@sics.se>
465
466	* chpass_c.c (kadm5_c_chpass_principal): new _kadm5_client_recv
467
468	* send_recv.c (_kadm5_client_recv): return result in a `krb5_data'
469 	so that we avoid copying it and don't need to dimension in
470 	advance.  change all callers.
471
4721999-09-10  Assar Westerlund  <assar@sics.se>
473
474	* password_quality.c: new file
475
476	* admin.h
477 	(kadm5_setup_passwd_quality_check,kadm5_check_password_quality):
478 	add prototypes
479
480	* Makefile.am (S_SOURCES): add password_quality.c
481
4821999-07-26  Assar Westerlund  <assar@sics.se>
483
484	* Makefile.am: update versions to 2:0:1
485
4861999-07-24  Assar Westerlund  <assar@sics.se>
487
488	* ent_setup.c (_kadm5_setup_entry): make princ_expire_time == 0
489 	and pw_expiration == 0 mean never
490
4911999-07-22  Assar Westerlund  <assar@sics.se>
492
493	* log.c (kadm5_log_flush): extra cast
494
4951999-07-07  Assar Westerlund  <assar@sics.se>
496
497	* marshall.c (store_principal_ent): encoding princ_expire_time and
498 	pw_expiration in correct order
499
5001999-06-28  Assar Westerlund  <assar@sics.se>
501
502	* randkey_s.c (kadm5_s_randkey_principal): nuke old mkvno,
503 	otherwise hdb will think that the new random keys are already
504 	encrypted which will cause lots of confusion later.
505
5061999-06-23  Assar Westerlund  <assar@sics.se>
507
508	* ent_setup.c (_kadm5_setup_entry): handle 0 == unlimited
509 	correctly.  From Michal Vocu <michal@karlin.mff.cuni.cz>
510
5111999-06-15  Assar Westerlund  <assar@sics.se>
512
513	* init_c.c (get_cred_cache): use get_default_username
514
5151999-05-23  Assar Westerlund  <assar@sics.se>
516
517	* create_s.c (create_principal): if there's no default entry the
518	mask should be zero.
519
5201999-05-21  Assar Westerlund  <assar@sics.se>
521
522	* init_c.c (get_cred_cache): use $USERNAME
523
5241999-05-17  Johan Danielsson  <joda@pdc.kth.se>
525
526	* init_c.c (get_cred_cache): figure out principal
527
5281999-05-05  Johan Danielsson  <joda@pdc.kth.se>
529
530	* send_recv.c: cleanup _kadm5_client_{send,recv}
531
5321999-05-04  Assar Westerlund  <assar@sics.se>
533
534	* set_keys.c (_kadm5_set_keys2): don't check the recently created
535 	memory for NULL pointers
536
537	* private.h (_kadm5_setup_entry): change prototype
538
539	* modify_s.c: call new _kadm5_setup_entry
540
541	* ent_setup.c (_kadm5_setup_entry): change so that it takes three
542 	masks, one for what bits to set and one for each of principal and
543 	def containing the bits that are set there.
544
545	* create_s.c: call new _kadm5_setup_entry
546
547	* create_s.c (get_default): check return value
548	(create_principal): send wider mask to _kadm5_setup_entry
549
5501999-05-04  Johan Danielsson  <joda@pdc.kth.se>
551
552	* send_recv.c (_kadm5_client_recv): handle arbitrarily sized
553	packets, check for errors
554
555	* get_c.c: check for failure from _kadm5_client_{send,recv}
556
5571999-05-04  Assar Westerlund  <assar@sics.se>
558
559	* init_c.c (get_new_cache): don't abort when interrupted from
560 	password prompt
561	
562	* destroy_c.c (kadm5_c_destroy): check if we should destroy the
563 	auth context
564
5651999-05-03  Johan Danielsson  <joda@pdc.kth.se>
566
567	* chpass_s.c: fix arguments to _kadm5_set_keys2
568
569	* private.h: proto
570
571	* set_keys.c: clear mkvno
572
573	* rename_s.c: add flags to fetch and store; seal keys before
574	logging
575
576	* randkey_s.c: add flags to fetch and store; seal keys before
577	logging
578
579	* modify_s.c: add flags to fetch and store; seal keys before
580	logging
581
582	* log.c: add flags to fetch and store; seal keys before logging
583
584	* get_s.c: add flags to fetch and store; seal keys before logging
585
586	* get_princs_s.c: add flags to fetch and store; seal keys before
587	logging
588
589	* delete_s.c: add flags to fetch and store; seal keys before
590	logging
591
592	* create_s.c: add flags to fetch and store; seal keys before
593	logging
594
595	* chpass_s.c: add flags to fetch and store; seal keys before
596	logging
597
598	* Makefile.am: remove server.c
599
600	* admin.h: add prototypes
601
602	* ent_setup.c (_kadm5_setup_entry): set key_data
603
604	* set_keys.c: add _kadm5_set_keys2 to sey keys from key_data
605
606	* modify_s.c: add kadm5_s_modify_principal_with_key
607
608	* create_s.c: add kadm5_s_create_principal_with_key
609
610	* chpass_s.c: add kadm5_s_chpass_principal_with_key
611
612	* kadm5_locl.h: move stuff to private.h
613
614	* private.h: move stuff from kadm5_locl.h
615	
616