ChangeLog revision 72445 
12001-01-30  Assar Westerlund  <assar@sics.se>
2
3	* Makefile.am: bump versions
4
52000-12-31  Assar Westerlund  <assar@sics.se>
6
7	* init_s.c (*): handle krb5_init_context failure consistently
8	* init_c.c (init_context): handle krb5_init_context failure
9	consistently
10
112000-12-11  Assar Westerlund  <assar@sics.se>
12
13	* Makefile.am (libkadm5srv_la_LDFLAGS): bump version to 7:2:0
14
152000-11-16  Assar Westerlund  <assar@sics.se>
16
17	* set_keys.c (make_keys): clean-up salting loop and try not to
18	leak memory
19
20	* ipropd_master.c (main): check for fd's being too large to select
21	on
22
232000-08-16  Assar Westerlund  <assar@sics.se>
24
25	* Makefile.am (libkadm5srv_la_LDFLAGS): bump version to 7:1:0
26
272000-08-10  Assar Westerlund  <assar@sics.se>
28
29	* acl.c (fetch_acl): fix wrong cases, use krb5_principal_match
30
312000-08-07  Assar Westerlund  <assar@sics.se>
32
33	* ipropd_master.c (main): ignore SIGPIPE
34
352000-08-06  Assar Westerlund  <assar@sics.se>
36
37	* ipropd_slave.c (receive_everything): make `fd' an int instead of
38	a pointer.  From Derrick J Brashear <shadow@dementia.org>
39
402000-08-04  Johan Danielsson  <joda@pdc.kth.se>
41
42	* admin.h: change void** to void*
43
442000-07-25  Johan Danielsson  <joda@pdc.kth.se>
45
46	* Makefile.am: bump versions to 7:0:0 and 6:0:2
47
482000-07-24  Assar Westerlund  <assar@sics.se>
49
50	* log.c (kadm5_log_get_version): rename kadm5_log_get_version_fd
51	and make a new that takes a context
52	(kadm5_log_nop): add logging of missing lengths
53	(kadm5_log_truncate): new function
54
55	* dump_log.c (print_entry): update and correct
56	* randkey_s.c: call _kadm5_bump_pw_expire
57	* truncate_log.c: new program for truncating the log
58	* Makefile.am (sbin_PROGRAMS): add truncate_log
59	(C_SOURCES): add bump_pw_expire.c
60	* bump_pw_expire.c: new function for extending password expiration
61
622000-07-22  Assar Westerlund  <assar@sics.se>
63
64	* keys.c: new file with _kadm5_free_keys, _kadm5_init_keys
65
66	* set_keys.c (free_keys, init_keys): elevate to internal kadm5
67	functions
68
69	* chpass_s.c (kadm5_s_chpass_principal_cond): new function
70	* Makefile.am (C_SOURCES): add keys.c
71	* init_c.c: remove unused variable and handle some parameters
72	being NULL
73
742000-07-22  Johan Danielsson  <joda@pdc.kth.se>
75
76	* ipropd_slave.c: use krb5_read_priv_message
77
78	* ipropd_master.c: use krb5_{read,write}_priv_message
79
80	* init_c.c: use krb5_write_priv_message
81
822000-07-11  Johan Danielsson  <joda@pdc.kth.se>
83
84	* ipropd_slave.c: no need to call gethostname, since
85	sname_to_principal will
86
87	* send_recv.c: assert that we have a connected socket
88
89	* get_princs_c.c: call _kadm5_connect
90
91	* rename_c.c: call _kadm5_connect
92
93	* randkey_c.c: call _kadm5_connect
94
95	* privs_c.c: call _kadm5_connect
96
97	* modify_c.c: call _kadm5_connect
98
99	* get_c.c: call _kadm5_connect
100
101	* delete_c.c: call _kadm5_connect
102
103	* create_c.c: call _kadm5_connect
104
105	* chpass_c.c: call _kadm5_connect
106
107	* private.h: add more fields to client context; remove prototypes
108
109	* admin.h: remove prototypes
110
111	* kadm5-protos.h: move public prototypes here
112
113	* kadm5-private.h: move private prototypes here
114
115	* init_c.c: break out connection code to separate function, and
116	defer calling it until we actually do something
117
1182000-07-07  Assar Westerlund  <assar@sics.se>
119
120	* set_keys.c (make_keys): also support `[kadmin]use_v4_salt' for
121	backwards compatability
122
1232000-06-26  Johan Danielsson  <joda@pdc.kth.se>
124
125	* set_keys.c (_kadm5_set_keys): rewrite this to be more easily
126	adaptable to different salts
127	
1282000-06-19  Johan Danielsson  <joda@pdc.kth.se>
129
130	* get_s.c: pa_* -> KRB5_PADATA_*
131
1322000-06-16  Assar Westerlund  <assar@sics.se>
133
134	* ipropd_slave.c: change default keytab to default keytab (as in
135	typically FILE:/etc/krb5.keytab)
136
1372000-06-08  Assar Westerlund  <assar@sics.se>
138
139	* ipropd_slave.c: bug fixes, for actually writing the full dump to
140	the database.  based on a patch from Love <lha@stacken.kth.se>
141
1422000-06-07  Assar Westerlund  <assar@sics.se>
143
144	* acl.c: add support for patterns of principals
145	* log.c (kadm5_log_replay_create): handle more NULL pointers
146	(should they really happen?)
147	* log.c (kadm5_log_replay_modify): handle max_life == NULL and
148	max_renew == NULL
149
150	* ipropd_master.c: use syslog.  be less verbose
151	* ipropd_slave.c: use syslog
152
1532000-06-05  Assar Westerlund  <assar@sics.se>
154
155	* private.h (kadm_ops): add kadm_nop more prototypes
156	* log.c (kadm5_log_set_version, kadm5_log_reinit, kadm5_log_nop,
157	kadm5_log_replay_nop): add
158	* ipropd_slave.c: and some more improvements
159	* ipropd_master.c: lots of improvements
160	* iprop.h (IPROP_PORT, IPROP_SERVICE): add
161	(iprop_cmd): add new commands
162
163	* dump_log.c: add nop
164
1652000-05-15  Assar Westerlund  <assar@sics.se>
166
167	* Makefile.am (libkadm5clnt_la_LDFLAGS): set version to 5:1:1
168
1692000-05-12  Assar Westerlund  <assar@sics.se>
170
171	* get_s.c (kadm5_s_get_principal): set life, rlife to INT_MAX as a
172	fallback.  handle not having any creator.
173	* destroy_s.c (kadm5_s_destroy): free all allocated memory
174	* context_s.c (set_field): free variable if it's already set
175	(find_db_spec): malloc space for all strings
176
1772000-04-05  Assar Westerlund  <assar@sics.se>
178
179	* Makefile.am (LDADD): add LIB_openldap
180
1812000-04-03  Assar Westerlund  <assar@sics.se>
182
183	* Makefile.am (libkadm5srv_la_LDFLAGS): set version to 6:0:1
184	(libkadm5clnt_la_LDFLAGS): set version to 5:0:1
185
1862000-03-24  Assar Westerlund  <assar@sics.se>
187
188	* set_keys.c (_kadm5_set_keys2): rewrite
189	(_kadm5_set_keys3): add
190
191	* private.h (struct kadm_func): add chpass_principal_with_key
192	* init_c.c (set_funcs): add chpass_principal_with_key
193
1942000-03-23  Assar Westerlund  <assar@sics.se>
195
196	* context_s.c (set_funcs): add chpass_principal_with_key
197	* common_glue.c (kadm5_chpass_principal_with_key): add
198	* chpass_s.c: comment-ize and change calling convention for
199	_kadm5_set_keys*
200	* chpass_c.c (kadm5_c_chpass_principal_with_key): add
201
2022000-02-07  Assar Westerlund  <assar@sics.se>
203
204	* Makefile.am (libkadm5clnt_la_LDFLAGS): set version to 4:2:0
205
2062000-01-28  Assar Westerlund  <assar@sics.se>
207
208	* init_c.c (get_new_cache): make sure to request non-forwardable,
209	non-proxiable
210
2112000-01-06  Assar Westerlund  <assar@sics.se>
212
213	* Makefile.am (libkadm5srv.la): bump version to 5:1:0
214
215	* context_s.c (_kadm5_s_init_context): handle params == NULL
216
2171999-12-26  Assar Westerlund  <assar@sics.se>
218
219	* get_s.c (kadm5_s_get_principal): handle modified_by->principal
220 	== NULL
221
2221999-12-20  Assar Westerlund  <assar@sics.se>
223
224	* Makefile.am (libkadm5clnt_la_LDFLAGS): bump version to 4:1:0
225
226	* init_c.c (_kadm5_c_init_context): handle getting back port
227 	number from admin host
228	(kadm5_c_init_with_context): remove `proto/' part before doing
229	getaddrinfo()
230
2311999-12-06  Assar Westerlund  <assar@sics.se>
232
233	* Makefile.am: bump version to 5:0:0 and 4:0:0
234
235	* init_c.c (kadm5_c_init_with_context): don't use unitialized
236 	stuff
237
2381999-12-04  Assar Westerlund  <assar@sics.se>
239
240	* replay_log.c: adapt to changed kadm5_log_foreach
241
242	* log.c (kadm5_log_foreach): change to take a
243 	`kadm5_server_context'
244
245	* init_c.c: use krb5_warn{,x}
246
247	* dump_log.c: adapt to changed kadm5_log_foreach
248
249	* init_c.c: re-write to use getaddrinfo
250	* Makefile.am (install-build-headers): add dependency
251	
2521999-12-03  Johan Danielsson  <joda@pdc.kth.se>
253
254	* log.c (kadm5_log_foreach): pass context
255
256	* dump_log.c: print more interesting things
257
2581999-12-02  Johan Danielsson  <joda@pdc.kth.se>
259
260	* ipropd_master.c (process_msg): check for short reads
261
2621999-11-25  Assar Westerlund  <assar@sics.se>
263
264	* modify_s.c (kadm5_s_modify_principal): support key_data
265	(kadm5_s_modify_principal_with_key): remove
266
267	* admin.h (kadm5_s_modify_principal_with_key): remove
268
2691999-11-20  Assar Westerlund  <assar@sics.se>
270
271	* context_s.c (find_db_spec): ugly cast work-around.
272
2731999-11-14  Assar Westerlund  <assar@sics.se>
274
275	* context_s.c (_kadm5_s_init_context): call krb5_add_et_list so
276 	that we aren't dependent on the layout of krb5_context_data
277	* init_c.c (_kadm5_c_init_context): call krb5_add_et_list so that
278 	we aren't dependent on the layout of krb5_context_data
279
2801999-11-13  Assar Westerlund  <assar@sics.se>
281
282	* password_quality.c (kadm5_setup_passwd_quality_check): use
283	correct types for function pointers
284	
2851999-11-09  Johan Danielsson  <joda@pdc.kth.se>
286
287	* randkey_s.c: always bail out if the fetch fails
288
289	* admin.h (kadm5_config_params): remove fields we're not using
290
291	* ipropd_slave.c: allow passing a realm
292
293	* ipropd_master.c: allow passing a realm
294
295	* dump_log.c: allow passing a realm
296
297	* acl.c: correctly get acl file
298
299	* private.h (kadm5_server_context): add config_params struct and
300	remove acl_file; bump protocol version number
301
302	* marshall.c: marshalling of config parameters
303
304	* init_c.c (kadm5_c_init_with_context): try to cope with old
305	servers
306
307	* init_s.c (kadm5_s_init_with_context): actually use some passed
308	values
309
310	* context_s.c (_kadm5_s_init_context): get dbname, acl_file, and
311	stash_file from the config parameters, try to figure out these if
312	they're not provided
313
3141999-11-05  Assar Westerlund  <assar@sics.se>
315
316	* Makefile.am (install-build-headers): use `cp' instead of
317 	INSTALL_DATA
318
3191999-11-04  Assar Westerlund  <assar@sics.se>
320
321	* Makefile.am: bump version to 4:0:0 and 3:0:0 (they access fields
322 	directly in libkrb5's context - bad functions)
323
324	* set_keys.c (_kadm5_set_keys_randomly): set enctypes correctly in
325 	the copied keys
326
3271999-10-20  Assar Westerlund  <assar@sics.se>
328
329	* Makefile.am: set version of kadm5srv to 3:0:2 (new password
330 	quality functions).
331 	set version of kdam5clnt to 2:1:1 (no interface changes)
332
333	* Makefile.am (LDADD): add $(LIB_dlopen)
334
3351999-10-17  Assar Westerlund  <assar@sics.se>
336
337	* randkey_s.c (kadm5_s_randkey_principal): use
338 	_kadm5_set_keys_randomly
339
340	* set_keys.c (free_keys): free more memory
341	(_kadm5_set_keys): a little bit more generic
342	(_kadm5_set_keys_randomly): new function for setting random keys.
343
3441999-10-14  Assar Westerlund  <assar@sics.se>
345
346	* set_keys.c (_kadm5_set_keys): ignore old keys when setting new
347 	ones and always add 3 DES keys and one 3DES key
348
3491999-10-03  Assar Westerlund  <assar@sics.se>
350
351	* init_c.c (_kadm5_c_init_context): use `krb5_get_krb_admin_hst'.
352  	check return value from strdup
353
3541999-09-26  Assar Westerlund  <assar@sics.se>
355
356	* acl.c (_kadm5_privs_to_string): forgot one strcpy_truncate ->
357 	strlcpy
358
3591999-09-24  Johan Danielsson  <joda@pdc.kth.se>
360
361	* dump_log.c: remove unused `optind'
362
363	* replay_log.c: remove unused `optind'
364
3651999-09-13  Assar Westerlund  <assar@sics.se>
366
367	* chpass_c.c (kadm5_c_chpass_principal): new _kadm5_client_recv
368
369	* send_recv.c (_kadm5_client_recv): return result in a `krb5_data'
370 	so that we avoid copying it and don't need to dimension in
371 	advance.  change all callers.
372
3731999-09-10  Assar Westerlund  <assar@sics.se>
374
375	* password_quality.c: new file
376
377	* admin.h
378 	(kadm5_setup_passwd_quality_check,kadm5_check_password_quality):
379 	add prototypes
380
381	* Makefile.am (S_SOURCES): add password_quality.c
382
3831999-07-26  Assar Westerlund  <assar@sics.se>
384
385	* Makefile.am: update versions to 2:0:1
386
3871999-07-24  Assar Westerlund  <assar@sics.se>
388
389	* ent_setup.c (_kadm5_setup_entry): make princ_expire_time == 0
390 	and pw_expiration == 0 mean never
391
3921999-07-22  Assar Westerlund  <assar@sics.se>
393
394	* log.c (kadm5_log_flush): extra cast
395
3961999-07-07  Assar Westerlund  <assar@sics.se>
397
398	* marshall.c (store_principal_ent): encoding princ_expire_time and
399 	pw_expiration in correct order
400
4011999-06-28  Assar Westerlund  <assar@sics.se>
402
403	* randkey_s.c (kadm5_s_randkey_principal): nuke old mkvno,
404 	otherwise hdb will think that the new random keys are already
405 	encrypted which will cause lots of confusion later.
406
4071999-06-23  Assar Westerlund  <assar@sics.se>
408
409	* ent_setup.c (_kadm5_setup_entry): handle 0 == unlimited
410 	correctly.  From Michal Vocu <michal@karlin.mff.cuni.cz>
411
4121999-06-15  Assar Westerlund  <assar@sics.se>
413
414	* init_c.c (get_cred_cache): use get_default_username
415
4161999-05-23  Assar Westerlund  <assar@sics.se>
417
418	* create_s.c (create_principal): if there's no default entry the
419	mask should be zero.
420
4211999-05-21  Assar Westerlund  <assar@sics.se>
422
423	* init_c.c (get_cred_cache): use $USERNAME
424
4251999-05-17  Johan Danielsson  <joda@pdc.kth.se>
426
427	* init_c.c (get_cred_cache): figure out principal
428
4291999-05-05  Johan Danielsson  <joda@pdc.kth.se>
430
431	* send_recv.c: cleanup _kadm5_client_{send,recv}
432
4331999-05-04  Assar Westerlund  <assar@sics.se>
434
435	* set_keys.c (_kadm5_set_keys2): don't check the recently created
436 	memory for NULL pointers
437
438	* private.h (_kadm5_setup_entry): change prototype
439
440	* modify_s.c: call new _kadm5_setup_entry
441
442	* ent_setup.c (_kadm5_setup_entry): change so that it takes three
443 	masks, one for what bits to set and one for each of principal and
444 	def containing the bits that are set there.
445
446	* create_s.c: call new _kadm5_setup_entry
447
448	* create_s.c (get_default): check return value
449	(create_principal): send wider mask to _kadm5_setup_entry
450
4511999-05-04  Johan Danielsson  <joda@pdc.kth.se>
452
453	* send_recv.c (_kadm5_client_recv): handle arbitrarily sized
454	packets, check for errors
455
456	* get_c.c: check for failure from _kadm5_client_{send,recv}
457
4581999-05-04  Assar Westerlund  <assar@sics.se>
459
460	* init_c.c (get_new_cache): don't abort when interrupted from
461 	password prompt
462	
463	* destroy_c.c (kadm5_c_destroy): check if we should destroy the
464 	auth context
465
4661999-05-03  Johan Danielsson  <joda@pdc.kth.se>
467
468	* chpass_s.c: fix arguments to _kadm5_set_keys2
469
470	* private.h: proto
471
472	* set_keys.c: clear mkvno
473
474	* rename_s.c: add flags to fetch and store; seal keys before
475	logging
476
477	* randkey_s.c: add flags to fetch and store; seal keys before
478	logging
479
480	* modify_s.c: add flags to fetch and store; seal keys before
481	logging
482
483	* log.c: add flags to fetch and store; seal keys before logging
484
485	* get_s.c: add flags to fetch and store; seal keys before logging
486
487	* get_princs_s.c: add flags to fetch and store; seal keys before
488	logging
489
490	* delete_s.c: add flags to fetch and store; seal keys before
491	logging
492
493	* create_s.c: add flags to fetch and store; seal keys before
494	logging
495
496	* chpass_s.c: add flags to fetch and store; seal keys before
497	logging
498
499	* Makefile.am: remove server.c
500
501	* admin.h: add prototypes
502
503	* ent_setup.c (_kadm5_setup_entry): set key_data
504
505	* set_keys.c: add _kadm5_set_keys2 to sey keys from key_data
506
507	* modify_s.c: add kadm5_s_modify_principal_with_key
508
509	* create_s.c: add kadm5_s_create_principal_with_key
510
511	* chpass_s.c: add kadm5_s_chpass_principal_with_key
512
513	* kadm5_locl.h: move stuff to private.h
514
515	* private.h: move stuff from kadm5_locl.h
516