ChangeLog revision 102644 
12002-06-07  Jacques Vidrine <n@nectar.com>
2
3	* ank.c: do not attempt to free uninitialized pointer when
4	kadm5_randkey_principal fails.
5
62002-06-07  Johan Danielsson  <joda@pdc.kth.se>
7
8	* util.c: remove unused variable; reported by Hans Insulander
9
102002-03-05  Johan Danielsson  <joda@pdc.kth.se>
11
12	* kadmind.8: clarify some acl wording, and add an example file
13
142002-02-11  Johan Danielsson  <joda@pdc.kth.se>
15
16	* ext.c: no need to use the "modify" keytab anymore
17
182001-09-20  Assar Westerlund  <assar@sics.se>
19
20	* add-random-users.c: allocate several buffers for the list of
21	words, instead of one strdup per word (running under efence does
22	not work very well otherwise)
23
242001-09-13  Assar Westerlund  <assar@sics.se>
25
26	* add-random-users.c: allow specifying the number of users to
27	create
28
292001-08-24  Assar Westerlund  <assar@sics.se>
30
31	* Makefile.am: rename variable name to avoid error from current
32	automake
33
342001-08-22  Assar Westerlund  <assar@sics.se>
35
36	* kadmin_locl.h: include libutil.h if it exists
37
382001-08-10  Johan Danielsson  <joda@pdc.kth.se>
39
40	* util.c: do something to handle C-c in prompts
41
42	* load.c: remove unused etypes code, and add parsing of the
43	generation field
44
45	* ank.c: add a --use-defaults option to just use default values
46	without questions
47
48	* kadmin.c: add "del" alias for delete
49
50	* cpw.c: call this operation "passwd" in usage
51
52	* kadmin_locl.h: prototype for set_defaults
53
54	* util.c (edit_entry): move setting of default values to a
55	separate function, set_defaults
56
572001-08-01  Johan Danielsson  <joda@pdc.kth.se>
58
59	* kadmin.c: print help message on bad options
60
612001-07-31  Assar Westerlund  <assar@sics.se>
62
63	* add-random-users.c (main): handle --version
64
652001-07-30  Johan Danielsson  <joda@pdc.kth.se>
66
67	* load.c: increase line buffer to 8k
68
692001-06-12  Assar Westerlund  <assar@sics.se>
70
71	* ext.c (ext_keytab): use the default modify keytab per default
72
732001-05-17  Assar Westerlund  <assar@sics.se>
74
75	* kadm_conn.c (start_server): fix krb5_eai_to_heim_errno call
76
772001-05-15  Assar Westerlund  <assar@sics.se>
78
79	* kadmin.c (main): some error cleaning required
80
812001-05-14  Assar Westerlund  <assar@sics.se>
82
83	* kadmind.c: new krb5_config_parse_file
84	* kadmin.c: new krb5_config_parse_file
85	* kadm_conn.c: update to new krb5_sockaddr2address
86
872001-05-07  Assar Westerlund  <assar@sics.se>
88
89	* kadmin_locl.h (foreach_principal): update prototype
90	* get.c (getit): new foreach_principal
91	* ext.c (ext_keytab): new foreach_principal
92	* del.c (del_entry): new foreach_principal
93	* cpw.c (cpw_entry): new foreach_principal
94	* util.c (foreach_principal): add `funcname' and try printing the
95	error string
96
972001-05-04  Johan Danielsson  <joda@pdc.kth.se>
98
99	* rename.c: fix argument number test
100	
1012001-04-19  Johan Danielsson  <joda@pdc.kth.se>
102
103	* del_enctype.c: fix argument count check after getarg change;
104	spotted by mark@MCS.VUW.AC.NZ
105
1062001-02-15  Assar Westerlund  <assar@sics.se>
107
108	* kadmind.c (main): use a `struct sockaddr_storage' to be able to
109	store all types of addresses
110
1112001-02-07  Assar Westerlund  <assar@sics.se>
112
113	* kadmin.c: add --keytab / _K, from Leif Johansson
114	<leifj@it.su.se>
115
1162001-01-29  Assar Westerlund  <assar@sics.se>
117
118	* kadm_conn.c (spawn_child): close the newly created socket in the
119	packet, it's not used.  from <shadow@dementia.org>
120	* version4.c (decode_packet): check success of
121	krb5_425_conv_principal.  from <shadow@dementia.org>
122
1232001-01-12  Assar Westerlund  <assar@sics.se>
124
125	* util.c (parse_attributes): make empty string mean no attributes,
126	specifying the empty string at the command line should give you no
127	attributes, but just pressing return at the prompt gives you
128	default attributes
129	(edit_entry): only pick up values from the default principal if they
130	aren't set in the principal being edited
131
1322001-01-04  Assar Westerlund  <assar@sics.se>
133
134	* load.c (doit): print an error and bail out if storing an entry
135	in the database fails.  The most likely reason for it failing is
136	out-of-space.
137
1382000-12-31  Assar Westerlund  <assar@sics.se>
139
140	* kadmind.c (main): handle krb5_init_context failure consistently
141	* kadmin.c (main): handle krb5_init_context failure consistently
142	* add-random-users.c (add_user): handle krb5_init_context failure
143	consistently
144
145	* kadm_conn.c (spawn_child): use a struct sockaddr_storage
146
1472000-12-15  Johan Danielsson  <joda@pdc.kth.se>
148
149	* get.c: avoid asprintf'ing NULL strings
150
1512000-12-14  Johan Danielsson  <joda@pdc.kth.se>
152
153	* load.c: fix option parsing
154
1552000-11-16  Assar Westerlund  <assar@sics.se>
156
157	* kadm_conn.c (wait_for_connection): check for fd's being too
158	large to select on
159
1602000-11-09  Johan Danielsson  <joda@pdc.kth.se>
161
162	* get.c: don't try to print modifier name if it isn't set (from
163	Jacques A. Vidrine" <n@nectar.com>)
164
1652000-09-19  Assar Westerlund  <assar@sics.se>
166
167	* server.c (kadmind_loop): send in keytab to v4 handling function
168	* version4.c: allow the specification of what keytab to use
169
170	* get.c (print_entry_long): actually print the actual saltvalue
171	used if it's not the default
172
1732000-09-10  Johan Danielsson  <joda@pdc.kth.se>
174
175	* kadmin.c: add option parsing, and add `privs' as an alias for
176	`privileges'
177
178	* init.c: complain if there's no realm name specified
179
180	* rename.c: add option parsing
181
182	* load.c: add option parsing
183
184	* get.c: make `get' and `list' aliases to each other, but with
185	different defaults
186
187	* del_enctype.c: add option parsing
188
189	* del.c: add option parsing
190
191	* ank.c: calling the command `add' make more sense from an english
192	pov
193
194	* Makefile.am: add kadmin manpage
195
196	* kadmin.8: short manpage
197
198	* kadmin.c: `quit' should be a alias for `exit', not `help'
199
2002000-08-27  Assar Westerlund  <assar@sics.se>
201
202	* server.c (handle_v5): do not try to perform stupid stunts when
203	printing errors
204
2052000-08-19  Assar Westerlund  <assar@sics.se>
206
207	* util.c (str2time_t): add alias for `now'.
208
2092000-08-18  Assar Westerlund  <assar@sics.se>
210
211	* server.c (handle_v5): accept any kadmin/admin@* principal as the
212	server
213	* kadmind.c: remove extra prototype of kadmind_loop
214	* kadmin_locl.h (kadmind_loop): add prototype
215	
216	* init.c (usage): print init-usage and not add-dito
217	
2182000-08-07  Johan Danielsson  <joda@pdc.kth.se>
219
220	* kadmind.c: use roken_getsockname
221
2222000-08-07  Assar Westerlund  <assar@sics.se>
223
224	* kadmind.c, kadm_conn.c: use socklen_t instead of int where
225	appropriate.  From <thorpej@netbsd.org>
226
2272000-08-04  Johan Danielsson  <joda@pdc.kth.se>
228
229	* Makefile.am: link with pidfile library
230
231	* kadmind.c: write a pid file, and setup password quality
232	functions
233
234	* kadmin_locl.h: util.h
235
2362000-07-27  Assar Westerlund  <assar@sics.se>
237
238	* version4.c (decode_packet): be totally consistent with the
239	prototype of des_cbc_cksum
240	* kadmind.c: use sa_size instead of sa_len, some systems define
241	this to emulate anonymous unions
242	* kadm_conn.c: use sa_size instead of sa_len, some systems define
243	this to emulate anonymous unions
244
2452000-07-24  Assar Westerlund  <assar@sics.se>
246
247	* kadmin.c (commands): add quit
248	* load.c (doit): truncate the log since there's no way of knowing
249	what changes are going to be added
250
2512000-07-23  Assar Westerlund  <assar@sics.se>
252
253	* util.c (str2time_t): be more careful with strptime that might
254	zero out the `struct tm'
255
2562000-07-22  Johan Danielsson  <joda@pdc.kth.se>
257
258	* kadm_conn.c: make the parent process wait for children and
259	terminate after receiving a signal, also terminate on SIGINT
260
2612000-07-22  Assar Westerlund  <assar@sics.se>
262
263	* version4.c: map both princ_expire_time and pw_expiration to v4
264	principal expiration
265
2662000-07-22  Johan Danielsson  <joda@pdc.kth.se>
267
268	* version4.c (handle_v4): check for termination
269
270	* server.c (v5_loop): check for termination
271
272	* kadm_conn.c (wait_term): if we're doing something, set just set
273	a flag otherwise exit rightaway
274
275	* server.c: use krb5_read_priv_message; (v5_loop): check for EOF
276
2772000-07-21  Assar Westerlund  <assar@sics.se>
278
279	* kadm_conn.c: remove sys/select.h.  make signal handlers
280	type-correct and static
281
282	* kadmin_locl.h: add limits.h and sys/select.h
283
2842000-07-20  Assar Westerlund  <assar@sics.se>
285
286	* init.c (init): also create `kadmin/hprop'
287	* kadmind.c: ports is a string argument
288	* kadm_conn.c (start_server): fix printf format
289
290	* kadmin_locl.h: add <sys/select.h>
291	* kadm_conn.c: remove sys/select.h.  make signal handlers
292	type-correct and static
293
294	* kadmin_locl.h: add limits.h and sys/select.h
295
2962000-07-17  Johan Danielsson  <joda@pdc.kth.se>
297
298	* kadm_conn.c: put all processes in a new process group
299
300	* server.c (v5_loop): use krb5_{read,write}_priv_message
301
3022000-07-11  Johan Danielsson  <joda@pdc.kth.se>
303
304	* version4.c: change log strings to match the v5 counterparts
305
306	* mod.c: allow setting kvno
307
308	* kadmind.c: if stdin is not a socket create and listen to sockets
309
310	* kadm_conn.c: socket creation functions
311
312	* util.c (deltat2str): treat 0 and INT_MAX as never
313
3142000-07-08  Assar Westerlund  <assar@sics.se>
315
316	* Makefile.am (INCLUDES): add ../lib/krb5
317	* kadmin_locl.h: add krb5_locl.h (since we just use some stuff
318	from there)
319
3202000-06-07  Assar Westerlund  <assar@sics.se>
321
322	* add-random-users.c: new testing program that adds a number of
323	randomly generated users
324
3252000-04-12  Assar Westerlund  <assar@sics.se>
326
327	* cpw.c (do_cpw_entry): call set_password if no argument is given,
328	it will prompt for the password.
329	* kadmin.c: make help only print the commands that are actually
330	available.
331
3322000-04-03  Assar Westerlund  <assar@sics.se>
333
334	* del_enctype.c (del_enctype): set ignore correctly
335
3362000-04-02  Assar Westerlund  <assar@sics.se>
337
338	* kadmin.c (main): make parse errors a fatal error
339	* init.c (init): create changepw/kerberos with disallow-tgt and
340	pwchange attributes
341
3422000-03-23  Assar Westerlund  <assar@sics.se>
343
344	* util.c (hex2n, parse_des_key): add
345	* server.c (kadmind_dispatch): add kadm_chpass_with_key
346	* cpw.c: add --key
347	* ank.c: add --key
348
3492000-02-16  Assar Westerlund  <assar@sics.se>
350
351	* load.c (doit): check return value from parse_hdbflags2int
352	correctly
353
3542000-01-25  Assar Westerlund  <assar@sics.se>
355
356	* load.c: checking all parsing for errors and all memory
357	allocations also
358
3592000-01-02  Assar Westerlund  <assar@sics.se>
360
361	* server.c: check initial flag in ticket and allow users to change
362	their own password if it's set
363	* ext.c (do_ext_keytab): set timestamp
364
3651999-12-14  Assar Westerlund  <assar@sics.se>
366
367	* del_enctype.c (usage): don't use arg_printusage
368
3691999-11-25  Assar Westerlund  <assar@sics.se>
370
371	* del_enctype.c (del_enctype): try not to leak memory
372
373	* version4.c (kadm_ser_mod): use kadm5_s_modify_principal (no
374 	_with_key)
375
376	* kadmin.c: add `del_enctype'
377
378	* del_enctype.c (del_enctype): new function for deleting enctypes
379	from a principal
380
381	* Makefile.am (kadmin_SOURCES): add del_enctype.c
382
3831999-11-09  Johan Danielsson  <joda@pdc.kth.se>
384
385	* server.c: cope with old clients
386
387	* kadmin_locl.h: remove version string
388
3891999-10-17  Assar Westerlund  <assar@sics.se>
390
391	* Makefile.am (kadmin_LDADD): add LIB_dlopen
392
3931999-10-01  Assar Westerlund  <assar@sics.se>
394
395	* ank.c (add_one_principal): `password' can cactually be NULL in
396 	the overwrite code, check for it.
397
3981999-09-20  Assar Westerlund  <assar@sics.se>
399
400	* mod.c (mod_entry): print the correct principal name in error
401 	messages.  From Love <lha@e.kth.se>
402
4031999-09-10  Assar Westerlund  <assar@sics.se>
404
405	* init.c (init): also create `changepw/kerberos'
406
407	* version4.c: only create you loose packets when we fail decoding
408 	and not when an operation is not performed for some reason
409	(decode_packet): read the service key from the hdb
410	(dispatch, decode_packet): return proper error messages
411
412	* version4.c (kadm_ser_cpw): add password quality functions
413
4141999-08-27  Johan Danielsson  <joda@pdc.kth.se>
415
416	* server.c (handle_v5): give more informative message if
417	KRB5_KT_NOTFOUND
418
4191999-08-26  Johan Danielsson  <joda@pdc.kth.se>
420
421	* kadmind.c: use HDB keytabs
422
4231999-08-25  Assar Westerlund  <assar@sics.se>
424
425	* cpw.c (set_password): use correct variable.  From Love
426 	<lha@e.kth.se>
427
428	* server.c (v5_loop): use correct error code
429
430	* ank.c (add_one_principal): initialize `default_ent'
431
4321999-08-21  Assar Westerlund  <assar@sics.se>
433
434	* random_password.c: new file, stolen from krb4
435
436	* kadmin_locl.h: add prototype for random_password
437
438	* cpw.c: add support for --random-password
439
440	* ank.c: add support for --random-password
441
442	* Makefile.am (kadmin_SOURCES): add random_password.c
443
4441999-08-19  Assar Westerlund  <assar@sics.se>
445
446	* util.c (edit_timet): break when we manage to parse the time not
447 	the inverse.
448
449	* mod.c: add parsing of lots of options.  From Love
450 	<lha@stacken.kth.se>
451
452	* ank.c: add setting of expiration and password expiration
453
454	* kadmin_locl.h: update util.c prototypes
455
456	* util.c: move-around.  clean-up, rename, make consistent (and
457 	some other weird stuff).  based on patches from Love
458 	<lha@stacken.kth.se>
459
460	* version4.c (kadm_ser_cpw): initialize password
461	(handle_v4): remove unused variable `ret'
462
4631999-08-16  Assar Westerlund  <assar@sics.se>
464
465	* version4.c (handle_v4): more error checking and more correct
466 	error messages
467
468	* server.c (v5_loop, kadmind_loop): more error checking and more
469 	correct error messages
470
4711999-07-24  Assar Westerlund  <assar@sics.se>
472
473	* util.c (str2timeval, edit_time): functions for parsing and
474 	editing times.  Based on patches from Love <lha@stacken.kth.se>.
475	(edit_entry): call new functions
476
477	* mod.c (mod_entry): allow modifying expiration times
478
479	* kadmin_locl.h (str2timeval): add prototype
480
481	* ank.c (add_one_principal): allow setting expiration times
482
4831999-07-03  Assar Westerlund  <assar@sics.se>
484
485	* server.c (v5_loop): handle data allocation with krb5_data_alloc
486 	and check return value
487
4881999-06-23  Assar Westerlund  <assar@sics.se>
489
490	* version4.c (kadm_ser_cpw): read the key in the strange order
491 	it's sent
492
493	* util.c (edit_entry): look at default
494	(edit_time): always set mask even if value == 0
495
496	* kadmin_locl.h (edit_entry): update
497
498	* ank.c: make ank use the values of the default principal for
499 	prompting
500
501	* version4.c (values_to_ent): convert key data correctly
502
5031999-05-23  Assar Westerlund  <assar@sics.se>
504
505	* init.c (create_random_entry): more correct setting of mask
506
5071999-05-21  Assar Westerlund  <assar@sics.se>
508
509	* server.c (handle_v5): read sendauth version correctly.
510
5111999-05-14  Assar Westerlund  <assar@sics.se>
512
513	* version4.c (error_code): try to handle really old krb4
514 	distributions
515
5161999-05-11  Assar Westerlund  <assar@sics.se>
517
518	* init.c (init): initialize realm_max_life and realm_max_rlife
519
5201999-05-07  Assar Westerlund  <assar@sics.se>
521
522	* ank.c (add_new_key): initialize more variables
523
5241999-05-04  Assar Westerlund  <assar@sics.se>
525
526	* version4.c (kadm_ser_cpw): always allow a user to change her
527 	password
528	(kadm_ser_*): make logging work
529	clean-up and restructure
530	
531	* kadmin_locl.h (set_entry): add prototype
532
533	* kadmin.c (usage): update usage string
534
535	* init.c (init): new arguments realm-max-ticket-life and
536 	realm-max-renewable-life
537
538	* util.c (edit_time, edit_attributes): don't do anything if it's
539 	already set
540	(set_entry): new function
541
542	* ank.c (add_new_key): new options for setting max-ticket-life,
543 	max-renewable-life, and attributes
544
545	* server.c (v5_loop): remove unused variable
546
547	* kadmin_locl.h: add prototypes
548
549	* version4.c: re-insert krb_err.h and other miss
550
551	* server.c (kadmind_loop): break-up and restructure
552
553	* version4.c: add ACL checks more error code checks restructure
554	
5551999-05-03  Johan Danielsson  <joda@pdc.kth.se>
556
557	* load.c: check for (un-)encrypted keys
558
559	* dump.c: use hdb_print_entry
560	
561	* version4.c: version 4 support
562
563	* Makefile.am: link with krb4
564
565	* kadmin_locl.h: include <sys/un.h>
566
567	* server.c: move from lib/kadm5, and add basic support for krb4
568	kadmin protocol
569
570	* kadmind.c: move recvauth to kadmind_loop()
571