ChangeLog revision 72445 
12001-01-29  Assar Westerlund  <assar@sics.se>
2
3	* kadm_conn.c (spawn_child): close the newly created socket in the
4	packet, it's not used.  from <shadow@dementia.org>
5	* version4.c (decode_packet): check success of
6	krb5_425_conv_principal.  from <shadow@dementia.org>
7
82001-01-12  Assar Westerlund  <assar@sics.se>
9
10	* util.c (parse_attributes): make empty string mean no attributes,
11	specifying the empty string at the command line should give you no
12	attributes, but just pressing return at the prompt gives you
13	default attributes
14	(edit_entry): only pick up values from the default principal if they
15	aren't set in the principal being edited
16
172001-01-04  Assar Westerlund  <assar@sics.se>
18
19	* load.c (doit): print an error and bail out if storing an entry
20	in the database fails.  The most likely reason for it failing is
21	out-of-space.
22
232000-12-31  Assar Westerlund  <assar@sics.se>
24
25	* kadmind.c (main): handle krb5_init_context failure consistently
26	* kadmin.c (main): handle krb5_init_context failure consistently
27	* add-random-users.c (add_user): handle krb5_init_context failure
28	consistently
29
30	* kadm_conn.c (spawn_child): use a struct sockaddr_storage
31
322000-12-15  Johan Danielsson  <joda@pdc.kth.se>
33
34	* get.c: avoid asprintf'ing NULL strings
35
362000-12-14  Johan Danielsson  <joda@pdc.kth.se>
37
38	* load.c: fix option parsing
39
402000-11-16  Assar Westerlund  <assar@sics.se>
41
42	* kadm_conn.c (wait_for_connection): check for fd's being too
43	large to select on
44
452000-11-09  Johan Danielsson  <joda@pdc.kth.se>
46
47	* get.c: don't try to print modifier name if it isn't set (from
48	Jacques A. Vidrine" <n@nectar.com>)
49
502000-09-19  Assar Westerlund  <assar@sics.se>
51
52	* server.c (kadmind_loop): send in keytab to v4 handling function
53	* version4.c: allow the specification of what keytab to use
54
55	* get.c (print_entry_long): actually print the actual saltvalue
56	used if it's not the default
57
582000-09-10  Johan Danielsson  <joda@pdc.kth.se>
59
60	* kadmin.c: add option parsing, and add `privs' as an alias for
61	`privileges'
62
63	* init.c: complain if there's no realm name specified
64
65	* rename.c: add option parsing
66
67	* load.c: add option parsing
68
69	* get.c: make `get' and `list' aliases to each other, but with
70	different defaults
71
72	* del_enctype.c: add option parsing
73
74	* del.c: add option parsing
75
76	* ank.c: calling the command `add' make more sense from an english
77	pov
78
79	* Makefile.am: add kadmin manpage
80
81	* kadmin.8: short manpage
82
83	* kadmin.c: `quit' should be a alias for `exit', not `help'
84
852000-08-27  Assar Westerlund  <assar@sics.se>
86
87	* server.c (handle_v5): do not try to perform stupid stunts when
88	printing errors
89
902000-08-19  Assar Westerlund  <assar@sics.se>
91
92	* util.c (str2time_t): add alias for `now'.
93
942000-08-18  Assar Westerlund  <assar@sics.se>
95
96	* server.c (handle_v5): accept any kadmin/admin@* principal as the
97	server
98	* kadmind.c: remove extra prototype of kadmind_loop
99	* kadmin_locl.h (kadmind_loop): add prototype
100	
101	* init.c (usage): print init-usage and not add-dito
102	
1032000-08-07  Johan Danielsson  <joda@pdc.kth.se>
104
105	* kadmind.c: use roken_getsockname
106
1072000-08-07  Assar Westerlund  <assar@sics.se>
108
109	* kadmind.c, kadm_conn.c: use socklen_t instead of int where
110	appropriate.  From <thorpej@netbsd.org>
111
1122000-08-04  Johan Danielsson  <joda@pdc.kth.se>
113
114	* Makefile.am: link with pidfile library
115
116	* kadmind.c: write a pid file, and setup password quality
117	functions
118
119	* kadmin_locl.h: util.h
120
1212000-07-27  Assar Westerlund  <assar@sics.se>
122
123	* version4.c (decode_packet): be totally consistent with the
124	prototype of des_cbc_cksum
125	* kadmind.c: use sa_size instead of sa_len, some systems define
126	this to emulate anonymous unions
127	* kadm_conn.c: use sa_size instead of sa_len, some systems define
128	this to emulate anonymous unions
129
1302000-07-24  Assar Westerlund  <assar@sics.se>
131
132	* kadmin.c (commands): add quit
133	* load.c (doit): truncate the log since there's no way of knowing
134	what changes are going to be added
135
1362000-07-23  Assar Westerlund  <assar@sics.se>
137
138	* util.c (str2time_t): be more careful with strptime that might
139	zero out the `struct tm'
140
1412000-07-22  Johan Danielsson  <joda@pdc.kth.se>
142
143	* kadm_conn.c: make the parent process wait for children and
144	terminate after receiving a signal, also terminate on SIGINT
145
1462000-07-22  Assar Westerlund  <assar@sics.se>
147
148	* version4.c: map both princ_expire_time and pw_expiration to v4
149	principal expiration
150
1512000-07-22  Johan Danielsson  <joda@pdc.kth.se>
152
153	* version4.c (handle_v4): check for termination
154
155	* server.c (v5_loop): check for termination
156
157	* kadm_conn.c (wait_term): if we're doing something, set just set
158	a flag otherwise exit rightaway
159
160	* server.c: use krb5_read_priv_message; (v5_loop): check for EOF
161
1622000-07-21  Assar Westerlund  <assar@sics.se>
163
164	* kadm_conn.c: remove sys/select.h.  make signal handlers
165	type-correct and static
166
167	* kadmin_locl.h: add limits.h and sys/select.h
168
1692000-07-20  Assar Westerlund  <assar@sics.se>
170
171	* init.c (init): also create `kadmin/hprop'
172	* kadmind.c: ports is a string argument
173	* kadm_conn.c (start_server): fix printf format
174
175	* kadmin_locl.h: add <sys/select.h>
176	* kadm_conn.c: remove sys/select.h.  make signal handlers
177	type-correct and static
178
179	* kadmin_locl.h: add limits.h and sys/select.h
180
1812000-07-17  Johan Danielsson  <joda@pdc.kth.se>
182
183	* kadm_conn.c: put all processes in a new process group
184
185	* server.c (v5_loop): use krb5_{read,write}_priv_message
186
1872000-07-11  Johan Danielsson  <joda@pdc.kth.se>
188
189	* version4.c: change log strings to match the v5 counterparts
190
191	* mod.c: allow setting kvno
192
193	* kadmind.c: if stdin is not a socket create and listen to sockets
194
195	* kadm_conn.c: socket creation functions
196
197	* util.c (deltat2str): treat 0 and INT_MAX as never
198
1992000-07-08  Assar Westerlund  <assar@sics.se>
200
201	* Makefile.am (INCLUDES): add ../lib/krb5
202	* kadmin_locl.h: add krb5_locl.h (since we just use some stuff
203	from there)
204
2052000-06-07  Assar Westerlund  <assar@sics.se>
206
207	* add-random-users.c: new testing program that adds a number of
208	randomly generated users
209
2102000-04-12  Assar Westerlund  <assar@sics.se>
211
212	* cpw.c (do_cpw_entry): call set_password if no argument is given,
213	it will prompt for the password.
214	* kadmin.c: make help only print the commands that are actually
215	available.
216
2172000-04-03  Assar Westerlund  <assar@sics.se>
218
219	* del_enctype.c (del_enctype): set ignore correctly
220
2212000-04-02  Assar Westerlund  <assar@sics.se>
222
223	* kadmin.c (main): make parse errors a fatal error
224	* init.c (init): create changepw/kerberos with disallow-tgt and
225	pwchange attributes
226
2272000-03-23  Assar Westerlund  <assar@sics.se>
228
229	* util.c (hex2n, parse_des_key): add
230	* server.c (kadmind_dispatch): add kadm_chpass_with_key
231	* cpw.c: add --key
232	* ank.c: add --key
233
2342000-02-16  Assar Westerlund  <assar@sics.se>
235
236	* load.c (doit): check return value from parse_hdbflags2int
237	correctly
238
2392000-01-25  Assar Westerlund  <assar@sics.se>
240
241	* load.c: checking all parsing for errors and all memory
242	allocations also
243
2442000-01-02  Assar Westerlund  <assar@sics.se>
245
246	* server.c: check initial flag in ticket and allow users to change
247	their own password if it's set
248	* ext.c (do_ext_keytab): set timestamp
249
2501999-12-14  Assar Westerlund  <assar@sics.se>
251
252	* del_enctype.c (usage): don't use arg_printusage
253
2541999-11-25  Assar Westerlund  <assar@sics.se>
255
256	* del_enctype.c (del_enctype): try not to leak memory
257
258	* version4.c (kadm_ser_mod): use kadm5_s_modify_principal (no
259 	_with_key)
260
261	* kadmin.c: add `del_enctype'
262
263	* del_enctype.c (del_enctype): new function for deleting enctypes
264	from a principal
265
266	* Makefile.am (kadmin_SOURCES): add del_enctype.c
267
2681999-11-09  Johan Danielsson  <joda@pdc.kth.se>
269
270	* server.c: cope with old clients
271
272	* kadmin_locl.h: remove version string
273
2741999-10-17  Assar Westerlund  <assar@sics.se>
275
276	* Makefile.am (kadmin_LDADD): add LIB_dlopen
277
2781999-10-01  Assar Westerlund  <assar@sics.se>
279
280	* ank.c (add_one_principal): `password' can cactually be NULL in
281 	the overwrite code, check for it.
282
2831999-09-20  Assar Westerlund  <assar@sics.se>
284
285	* mod.c (mod_entry): print the correct principal name in error
286 	messages.  From Love <lha@e.kth.se>
287
2881999-09-10  Assar Westerlund  <assar@sics.se>
289
290	* init.c (init): also create `changepw/kerberos'
291
292	* version4.c: only create you loose packets when we fail decoding
293 	and not when an operation is not performed for some reason
294	(decode_packet): read the service key from the hdb
295	(dispatch, decode_packet): return proper error messages
296
297	* version4.c (kadm_ser_cpw): add password quality functions
298
2991999-08-27  Johan Danielsson  <joda@pdc.kth.se>
300
301	* server.c (handle_v5): give more informative message if
302	KRB5_KT_NOTFOUND
303
3041999-08-26  Johan Danielsson  <joda@pdc.kth.se>
305
306	* kadmind.c: use HDB keytabs
307
3081999-08-25  Assar Westerlund  <assar@sics.se>
309
310	* cpw.c (set_password): use correct variable.  From Love
311 	<lha@e.kth.se>
312
313	* server.c (v5_loop): use correct error code
314
315	* ank.c (add_one_principal): initialize `default_ent'
316
3171999-08-21  Assar Westerlund  <assar@sics.se>
318
319	* random_password.c: new file, stolen from krb4
320
321	* kadmin_locl.h: add prototype for random_password
322
323	* cpw.c: add support for --random-password
324
325	* ank.c: add support for --random-password
326
327	* Makefile.am (kadmin_SOURCES): add random_password.c
328
3291999-08-19  Assar Westerlund  <assar@sics.se>
330
331	* util.c (edit_timet): break when we manage to parse the time not
332 	the inverse.
333
334	* mod.c: add parsing of lots of options.  From Love
335 	<lha@stacken.kth.se>
336
337	* ank.c: add setting of expiration and password expiration
338
339	* kadmin_locl.h: update util.c prototypes
340
341	* util.c: move-around.  clean-up, rename, make consistent (and
342 	some other weird stuff).  based on patches from Love
343 	<lha@stacken.kth.se>
344
345	* version4.c (kadm_ser_cpw): initialize password
346	(handle_v4): remove unused variable `ret'
347
3481999-08-16  Assar Westerlund  <assar@sics.se>
349
350	* version4.c (handle_v4): more error checking and more correct
351 	error messages
352
353	* server.c (v5_loop, kadmind_loop): more error checking and more
354 	correct error messages
355
3561999-07-24  Assar Westerlund  <assar@sics.se>
357
358	* util.c (str2timeval, edit_time): functions for parsing and
359 	editing times.  Based on patches from Love <lha@stacken.kth.se>.
360	(edit_entry): call new functions
361
362	* mod.c (mod_entry): allow modifying expiration times
363
364	* kadmin_locl.h (str2timeval): add prototype
365
366	* ank.c (add_one_principal): allow setting expiration times
367
3681999-07-03  Assar Westerlund  <assar@sics.se>
369
370	* server.c (v5_loop): handle data allocation with krb5_data_alloc
371 	and check return value
372
3731999-06-23  Assar Westerlund  <assar@sics.se>
374
375	* version4.c (kadm_ser_cpw): read the key in the strange order
376 	it's sent
377
378	* util.c (edit_entry): look at default
379	(edit_time): always set mask even if value == 0
380
381	* kadmin_locl.h (edit_entry): update
382
383	* ank.c: make ank use the values of the default principal for
384 	prompting
385
386	* version4.c (values_to_ent): convert key data correctly
387
3881999-05-23  Assar Westerlund  <assar@sics.se>
389
390	* init.c (create_random_entry): more correct setting of mask
391
3921999-05-21  Assar Westerlund  <assar@sics.se>
393
394	* server.c (handle_v5): read sendauth version correctly.
395
3961999-05-14  Assar Westerlund  <assar@sics.se>
397
398	* version4.c (error_code): try to handle really old krb4
399 	distributions
400
4011999-05-11  Assar Westerlund  <assar@sics.se>
402
403	* init.c (init): initialize realm_max_life and realm_max_rlife
404
4051999-05-07  Assar Westerlund  <assar@sics.se>
406
407	* ank.c (add_new_key): initialize more variables
408
4091999-05-04  Assar Westerlund  <assar@sics.se>
410
411	* version4.c (kadm_ser_cpw): always allow a user to change her
412 	password
413	(kadm_ser_*): make logging work
414	clean-up and restructure
415	
416	* kadmin_locl.h (set_entry): add prototype
417
418	* kadmin.c (usage): update usage string
419
420	* init.c (init): new arguments realm-max-ticket-life and
421 	realm-max-renewable-life
422
423	* util.c (edit_time, edit_attributes): don't do anything if it's
424 	already set
425	(set_entry): new function
426
427	* ank.c (add_new_key): new options for setting max-ticket-life,
428 	max-renewable-life, and attributes
429
430	* server.c (v5_loop): remove unused variable
431
432	* kadmin_locl.h: add prototypes
433
434	* version4.c: re-insert krb_err.h and other miss
435
436	* server.c (kadmind_loop): break-up and restructure
437
438	* version4.c: add ACL checks more error code checks restructure
439	
4401999-05-03  Johan Danielsson  <joda@pdc.kth.se>
441
442	* load.c: check for (un-)encrypted keys
443
444	* dump.c: use hdb_print_entry
445	
446	* version4.c: version 4 support
447
448	* Makefile.am: link with krb4
449
450	* kadmin_locl.h: include <sys/un.h>
451
452	* server.c: move from lib/kadm5, and add basic support for krb4
453	kadmin protocol
454
455	* kadmind.c: move recvauth to kadmind_loop()
456