ChangeLog revision 103423 
12002-09-10  Johan Danielsson  <joda@pdc.kth.se>
2
3	* server.c: constify match_appl_version()
4
5	* version4.c: change some lingering krb_err_base
6
72002-09-09  Jacques Vidrine  <nectar@kth.se>
8
9	* server.c (kadmind_dispatch): while decoding arguments for
10	kadm_chpass_with_key, sanity check the number of keys given.
11	Potential problem pointed out by
12	Sebastian Krahmer <krahmer@suse.de>.
13
142002-09-04  Johan Danielsson  <joda@pdc.kth.se>
15
16	* load.c (parse_generation): return if there is no generation
17	(spotted by Daniel Kouril)
18
192002-06-07  Jacques Vidrine <n@nectar.com>
20
21	* ank.c: do not attempt to free uninitialized pointer when
22	kadm5_randkey_principal fails.
23
242002-06-07  Johan Danielsson  <joda@pdc.kth.se>
25
26	* util.c: remove unused variable; reported by Hans Insulander
27
282002-03-05  Johan Danielsson  <joda@pdc.kth.se>
29
30	* kadmind.8: clarify some acl wording, and add an example file
31
322002-02-11  Johan Danielsson  <joda@pdc.kth.se>
33
34	* ext.c: no need to use the "modify" keytab anymore
35
362001-09-20  Assar Westerlund  <assar@sics.se>
37
38	* add-random-users.c: allocate several buffers for the list of
39	words, instead of one strdup per word (running under efence does
40	not work very well otherwise)
41
422001-09-13  Assar Westerlund  <assar@sics.se>
43
44	* add-random-users.c: allow specifying the number of users to
45	create
46
472001-08-24  Assar Westerlund  <assar@sics.se>
48
49	* Makefile.am: rename variable name to avoid error from current
50	automake
51
522001-08-22  Assar Westerlund  <assar@sics.se>
53
54	* kadmin_locl.h: include libutil.h if it exists
55
562001-08-10  Johan Danielsson  <joda@pdc.kth.se>
57
58	* util.c: do something to handle C-c in prompts
59
60	* load.c: remove unused etypes code, and add parsing of the
61	generation field
62
63	* ank.c: add a --use-defaults option to just use default values
64	without questions
65
66	* kadmin.c: add "del" alias for delete
67
68	* cpw.c: call this operation "passwd" in usage
69
70	* kadmin_locl.h: prototype for set_defaults
71
72	* util.c (edit_entry): move setting of default values to a
73	separate function, set_defaults
74
752001-08-01  Johan Danielsson  <joda@pdc.kth.se>
76
77	* kadmin.c: print help message on bad options
78
792001-07-31  Assar Westerlund  <assar@sics.se>
80
81	* add-random-users.c (main): handle --version
82
832001-07-30  Johan Danielsson  <joda@pdc.kth.se>
84
85	* load.c: increase line buffer to 8k
86
872001-06-12  Assar Westerlund  <assar@sics.se>
88
89	* ext.c (ext_keytab): use the default modify keytab per default
90
912001-05-17  Assar Westerlund  <assar@sics.se>
92
93	* kadm_conn.c (start_server): fix krb5_eai_to_heim_errno call
94
952001-05-15  Assar Westerlund  <assar@sics.se>
96
97	* kadmin.c (main): some error cleaning required
98
992001-05-14  Assar Westerlund  <assar@sics.se>
100
101	* kadmind.c: new krb5_config_parse_file
102	* kadmin.c: new krb5_config_parse_file
103	* kadm_conn.c: update to new krb5_sockaddr2address
104
1052001-05-07  Assar Westerlund  <assar@sics.se>
106
107	* kadmin_locl.h (foreach_principal): update prototype
108	* get.c (getit): new foreach_principal
109	* ext.c (ext_keytab): new foreach_principal
110	* del.c (del_entry): new foreach_principal
111	* cpw.c (cpw_entry): new foreach_principal
112	* util.c (foreach_principal): add `funcname' and try printing the
113	error string
114
1152001-05-04  Johan Danielsson  <joda@pdc.kth.se>
116
117	* rename.c: fix argument number test
118	
1192001-04-19  Johan Danielsson  <joda@pdc.kth.se>
120
121	* del_enctype.c: fix argument count check after getarg change;
122	spotted by mark@MCS.VUW.AC.NZ
123
1242001-02-15  Assar Westerlund  <assar@sics.se>
125
126	* kadmind.c (main): use a `struct sockaddr_storage' to be able to
127	store all types of addresses
128
1292001-02-07  Assar Westerlund  <assar@sics.se>
130
131	* kadmin.c: add --keytab / _K, from Leif Johansson
132	<leifj@it.su.se>
133
1342001-01-29  Assar Westerlund  <assar@sics.se>
135
136	* kadm_conn.c (spawn_child): close the newly created socket in the
137	packet, it's not used.  from <shadow@dementia.org>
138	* version4.c (decode_packet): check success of
139	krb5_425_conv_principal.  from <shadow@dementia.org>
140
1412001-01-12  Assar Westerlund  <assar@sics.se>
142
143	* util.c (parse_attributes): make empty string mean no attributes,
144	specifying the empty string at the command line should give you no
145	attributes, but just pressing return at the prompt gives you
146	default attributes
147	(edit_entry): only pick up values from the default principal if they
148	aren't set in the principal being edited
149
1502001-01-04  Assar Westerlund  <assar@sics.se>
151
152	* load.c (doit): print an error and bail out if storing an entry
153	in the database fails.  The most likely reason for it failing is
154	out-of-space.
155
1562000-12-31  Assar Westerlund  <assar@sics.se>
157
158	* kadmind.c (main): handle krb5_init_context failure consistently
159	* kadmin.c (main): handle krb5_init_context failure consistently
160	* add-random-users.c (add_user): handle krb5_init_context failure
161	consistently
162
163	* kadm_conn.c (spawn_child): use a struct sockaddr_storage
164
1652000-12-15  Johan Danielsson  <joda@pdc.kth.se>
166
167	* get.c: avoid asprintf'ing NULL strings
168
1692000-12-14  Johan Danielsson  <joda@pdc.kth.se>
170
171	* load.c: fix option parsing
172
1732000-11-16  Assar Westerlund  <assar@sics.se>
174
175	* kadm_conn.c (wait_for_connection): check for fd's being too
176	large to select on
177
1782000-11-09  Johan Danielsson  <joda@pdc.kth.se>
179
180	* get.c: don't try to print modifier name if it isn't set (from
181	Jacques A. Vidrine" <n@nectar.com>)
182
1832000-09-19  Assar Westerlund  <assar@sics.se>
184
185	* server.c (kadmind_loop): send in keytab to v4 handling function
186	* version4.c: allow the specification of what keytab to use
187
188	* get.c (print_entry_long): actually print the actual saltvalue
189	used if it's not the default
190
1912000-09-10  Johan Danielsson  <joda@pdc.kth.se>
192
193	* kadmin.c: add option parsing, and add `privs' as an alias for
194	`privileges'
195
196	* init.c: complain if there's no realm name specified
197
198	* rename.c: add option parsing
199
200	* load.c: add option parsing
201
202	* get.c: make `get' and `list' aliases to each other, but with
203	different defaults
204
205	* del_enctype.c: add option parsing
206
207	* del.c: add option parsing
208
209	* ank.c: calling the command `add' make more sense from an english
210	pov
211
212	* Makefile.am: add kadmin manpage
213
214	* kadmin.8: short manpage
215
216	* kadmin.c: `quit' should be a alias for `exit', not `help'
217
2182000-08-27  Assar Westerlund  <assar@sics.se>
219
220	* server.c (handle_v5): do not try to perform stupid stunts when
221	printing errors
222
2232000-08-19  Assar Westerlund  <assar@sics.se>
224
225	* util.c (str2time_t): add alias for `now'.
226
2272000-08-18  Assar Westerlund  <assar@sics.se>
228
229	* server.c (handle_v5): accept any kadmin/admin@* principal as the
230	server
231	* kadmind.c: remove extra prototype of kadmind_loop
232	* kadmin_locl.h (kadmind_loop): add prototype
233	
234	* init.c (usage): print init-usage and not add-dito
235	
2362000-08-07  Johan Danielsson  <joda@pdc.kth.se>
237
238	* kadmind.c: use roken_getsockname
239
2402000-08-07  Assar Westerlund  <assar@sics.se>
241
242	* kadmind.c, kadm_conn.c: use socklen_t instead of int where
243	appropriate.  From <thorpej@netbsd.org>
244
2452000-08-04  Johan Danielsson  <joda@pdc.kth.se>
246
247	* Makefile.am: link with pidfile library
248
249	* kadmind.c: write a pid file, and setup password quality
250	functions
251
252	* kadmin_locl.h: util.h
253
2542000-07-27  Assar Westerlund  <assar@sics.se>
255
256	* version4.c (decode_packet): be totally consistent with the
257	prototype of des_cbc_cksum
258	* kadmind.c: use sa_size instead of sa_len, some systems define
259	this to emulate anonymous unions
260	* kadm_conn.c: use sa_size instead of sa_len, some systems define
261	this to emulate anonymous unions
262
2632000-07-24  Assar Westerlund  <assar@sics.se>
264
265	* kadmin.c (commands): add quit
266	* load.c (doit): truncate the log since there's no way of knowing
267	what changes are going to be added
268
2692000-07-23  Assar Westerlund  <assar@sics.se>
270
271	* util.c (str2time_t): be more careful with strptime that might
272	zero out the `struct tm'
273
2742000-07-22  Johan Danielsson  <joda@pdc.kth.se>
275
276	* kadm_conn.c: make the parent process wait for children and
277	terminate after receiving a signal, also terminate on SIGINT
278
2792000-07-22  Assar Westerlund  <assar@sics.se>
280
281	* version4.c: map both princ_expire_time and pw_expiration to v4
282	principal expiration
283
2842000-07-22  Johan Danielsson  <joda@pdc.kth.se>
285
286	* version4.c (handle_v4): check for termination
287
288	* server.c (v5_loop): check for termination
289
290	* kadm_conn.c (wait_term): if we're doing something, set just set
291	a flag otherwise exit rightaway
292
293	* server.c: use krb5_read_priv_message; (v5_loop): check for EOF
294
2952000-07-21  Assar Westerlund  <assar@sics.se>
296
297	* kadm_conn.c: remove sys/select.h.  make signal handlers
298	type-correct and static
299
300	* kadmin_locl.h: add limits.h and sys/select.h
301
3022000-07-20  Assar Westerlund  <assar@sics.se>
303
304	* init.c (init): also create `kadmin/hprop'
305	* kadmind.c: ports is a string argument
306	* kadm_conn.c (start_server): fix printf format
307
308	* kadmin_locl.h: add <sys/select.h>
309	* kadm_conn.c: remove sys/select.h.  make signal handlers
310	type-correct and static
311
312	* kadmin_locl.h: add limits.h and sys/select.h
313
3142000-07-17  Johan Danielsson  <joda@pdc.kth.se>
315
316	* kadm_conn.c: put all processes in a new process group
317
318	* server.c (v5_loop): use krb5_{read,write}_priv_message
319
3202000-07-11  Johan Danielsson  <joda@pdc.kth.se>
321
322	* version4.c: change log strings to match the v5 counterparts
323
324	* mod.c: allow setting kvno
325
326	* kadmind.c: if stdin is not a socket create and listen to sockets
327
328	* kadm_conn.c: socket creation functions
329
330	* util.c (deltat2str): treat 0 and INT_MAX as never
331
3322000-07-08  Assar Westerlund  <assar@sics.se>
333
334	* Makefile.am (INCLUDES): add ../lib/krb5
335	* kadmin_locl.h: add krb5_locl.h (since we just use some stuff
336	from there)
337
3382000-06-07  Assar Westerlund  <assar@sics.se>
339
340	* add-random-users.c: new testing program that adds a number of
341	randomly generated users
342
3432000-04-12  Assar Westerlund  <assar@sics.se>
344
345	* cpw.c (do_cpw_entry): call set_password if no argument is given,
346	it will prompt for the password.
347	* kadmin.c: make help only print the commands that are actually
348	available.
349
3502000-04-03  Assar Westerlund  <assar@sics.se>
351
352	* del_enctype.c (del_enctype): set ignore correctly
353
3542000-04-02  Assar Westerlund  <assar@sics.se>
355
356	* kadmin.c (main): make parse errors a fatal error
357	* init.c (init): create changepw/kerberos with disallow-tgt and
358	pwchange attributes
359
3602000-03-23  Assar Westerlund  <assar@sics.se>
361
362	* util.c (hex2n, parse_des_key): add
363	* server.c (kadmind_dispatch): add kadm_chpass_with_key
364	* cpw.c: add --key
365	* ank.c: add --key
366
3672000-02-16  Assar Westerlund  <assar@sics.se>
368
369	* load.c (doit): check return value from parse_hdbflags2int
370	correctly
371
3722000-01-25  Assar Westerlund  <assar@sics.se>
373
374	* load.c: checking all parsing for errors and all memory
375	allocations also
376
3772000-01-02  Assar Westerlund  <assar@sics.se>
378
379	* server.c: check initial flag in ticket and allow users to change
380	their own password if it's set
381	* ext.c (do_ext_keytab): set timestamp
382
3831999-12-14  Assar Westerlund  <assar@sics.se>
384
385	* del_enctype.c (usage): don't use arg_printusage
386
3871999-11-25  Assar Westerlund  <assar@sics.se>
388
389	* del_enctype.c (del_enctype): try not to leak memory
390
391	* version4.c (kadm_ser_mod): use kadm5_s_modify_principal (no
392 	_with_key)
393
394	* kadmin.c: add `del_enctype'
395
396	* del_enctype.c (del_enctype): new function for deleting enctypes
397	from a principal
398
399	* Makefile.am (kadmin_SOURCES): add del_enctype.c
400
4011999-11-09  Johan Danielsson  <joda@pdc.kth.se>
402
403	* server.c: cope with old clients
404
405	* kadmin_locl.h: remove version string
406
4071999-10-17  Assar Westerlund  <assar@sics.se>
408
409	* Makefile.am (kadmin_LDADD): add LIB_dlopen
410
4111999-10-01  Assar Westerlund  <assar@sics.se>
412
413	* ank.c (add_one_principal): `password' can cactually be NULL in
414 	the overwrite code, check for it.
415
4161999-09-20  Assar Westerlund  <assar@sics.se>
417
418	* mod.c (mod_entry): print the correct principal name in error
419 	messages.  From Love <lha@e.kth.se>
420
4211999-09-10  Assar Westerlund  <assar@sics.se>
422
423	* init.c (init): also create `changepw/kerberos'
424
425	* version4.c: only create you loose packets when we fail decoding
426 	and not when an operation is not performed for some reason
427	(decode_packet): read the service key from the hdb
428	(dispatch, decode_packet): return proper error messages
429
430	* version4.c (kadm_ser_cpw): add password quality functions
431
4321999-08-27  Johan Danielsson  <joda@pdc.kth.se>
433
434	* server.c (handle_v5): give more informative message if
435	KRB5_KT_NOTFOUND
436
4371999-08-26  Johan Danielsson  <joda@pdc.kth.se>
438
439	* kadmind.c: use HDB keytabs
440
4411999-08-25  Assar Westerlund  <assar@sics.se>
442
443	* cpw.c (set_password): use correct variable.  From Love
444 	<lha@e.kth.se>
445
446	* server.c (v5_loop): use correct error code
447
448	* ank.c (add_one_principal): initialize `default_ent'
449
4501999-08-21  Assar Westerlund  <assar@sics.se>
451
452	* random_password.c: new file, stolen from krb4
453
454	* kadmin_locl.h: add prototype for random_password
455
456	* cpw.c: add support for --random-password
457
458	* ank.c: add support for --random-password
459
460	* Makefile.am (kadmin_SOURCES): add random_password.c
461
4621999-08-19  Assar Westerlund  <assar@sics.se>
463
464	* util.c (edit_timet): break when we manage to parse the time not
465 	the inverse.
466
467	* mod.c: add parsing of lots of options.  From Love
468 	<lha@stacken.kth.se>
469
470	* ank.c: add setting of expiration and password expiration
471
472	* kadmin_locl.h: update util.c prototypes
473
474	* util.c: move-around.  clean-up, rename, make consistent (and
475 	some other weird stuff).  based on patches from Love
476 	<lha@stacken.kth.se>
477
478	* version4.c (kadm_ser_cpw): initialize password
479	(handle_v4): remove unused variable `ret'
480
4811999-08-16  Assar Westerlund  <assar@sics.se>
482
483	* version4.c (handle_v4): more error checking and more correct
484 	error messages
485
486	* server.c (v5_loop, kadmind_loop): more error checking and more
487 	correct error messages
488
4891999-07-24  Assar Westerlund  <assar@sics.se>
490
491	* util.c (str2timeval, edit_time): functions for parsing and
492 	editing times.  Based on patches from Love <lha@stacken.kth.se>.
493	(edit_entry): call new functions
494
495	* mod.c (mod_entry): allow modifying expiration times
496
497	* kadmin_locl.h (str2timeval): add prototype
498
499	* ank.c (add_one_principal): allow setting expiration times
500
5011999-07-03  Assar Westerlund  <assar@sics.se>
502
503	* server.c (v5_loop): handle data allocation with krb5_data_alloc
504 	and check return value
505
5061999-06-23  Assar Westerlund  <assar@sics.se>
507
508	* version4.c (kadm_ser_cpw): read the key in the strange order
509 	it's sent
510
511	* util.c (edit_entry): look at default
512	(edit_time): always set mask even if value == 0
513
514	* kadmin_locl.h (edit_entry): update
515
516	* ank.c: make ank use the values of the default principal for
517 	prompting
518
519	* version4.c (values_to_ent): convert key data correctly
520
5211999-05-23  Assar Westerlund  <assar@sics.se>
522
523	* init.c (create_random_entry): more correct setting of mask
524
5251999-05-21  Assar Westerlund  <assar@sics.se>
526
527	* server.c (handle_v5): read sendauth version correctly.
528
5291999-05-14  Assar Westerlund  <assar@sics.se>
530
531	* version4.c (error_code): try to handle really old krb4
532 	distributions
533
5341999-05-11  Assar Westerlund  <assar@sics.se>
535
536	* init.c (init): initialize realm_max_life and realm_max_rlife
537
5381999-05-07  Assar Westerlund  <assar@sics.se>
539
540	* ank.c (add_new_key): initialize more variables
541
5421999-05-04  Assar Westerlund  <assar@sics.se>
543
544	* version4.c (kadm_ser_cpw): always allow a user to change her
545 	password
546	(kadm_ser_*): make logging work
547	clean-up and restructure
548	
549	* kadmin_locl.h (set_entry): add prototype
550
551	* kadmin.c (usage): update usage string
552
553	* init.c (init): new arguments realm-max-ticket-life and
554 	realm-max-renewable-life
555
556	* util.c (edit_time, edit_attributes): don't do anything if it's
557 	already set
558	(set_entry): new function
559
560	* ank.c (add_new_key): new options for setting max-ticket-life,
561 	max-renewable-life, and attributes
562
563	* server.c (v5_loop): remove unused variable
564
565	* kadmin_locl.h: add prototypes
566
567	* version4.c: re-insert krb_err.h and other miss
568
569	* server.c (kadmind_loop): break-up and restructure
570
571	* version4.c: add ACL checks more error code checks restructure
572	
5731999-05-03  Johan Danielsson  <joda@pdc.kth.se>
574
575	* load.c: check for (un-)encrypted keys
576
577	* dump.c: use hdb_print_entry
578	
579	* version4.c: version 4 support
580
581	* Makefile.am: link with krb4
582
583	* kadmin_locl.h: include <sys/un.h>
584
585	* server.c: move from lib/kadm5, and add basic support for krb4
586	kadmin protocol
587
588	* kadmind.c: move recvauth to kadmind_loop()
589