ChangeLog revision 78527 
12001-05-17  Assar Westerlund  <assar@sics.se>
2
3	* kadm_conn.c (start_server): fix krb5_eai_to_heim_errno call
4
52001-05-15  Assar Westerlund  <assar@sics.se>
6
7	* kadmin.c (main): some error cleaning required
8
92001-05-14  Assar Westerlund  <assar@sics.se>
10
11	* kadmind.c: new krb5_config_parse_file
12	* kadmin.c: new krb5_config_parse_file
13	* kadm_conn.c: update to new krb5_sockaddr2address
14
152001-05-07  Assar Westerlund  <assar@sics.se>
16
17	* kadmin_locl.h (foreach_principal): update prototype
18	* get.c (getit): new foreach_principal
19	* ext.c (ext_keytab): new foreach_principal
20	* del.c (del_entry): new foreach_principal
21	* cpw.c (cpw_entry): new foreach_principal
22	* util.c (foreach_principal): add `funcname' and try printing the
23	error string
24
252001-05-04  Johan Danielsson  <joda@pdc.kth.se>
26
27	* rename.c: fix argument number test
28	
292001-04-19  Johan Danielsson  <joda@pdc.kth.se>
30
31	* del_enctype.c: fix argument count check after getarg change;
32	spotted by mark@MCS.VUW.AC.NZ
33
342001-02-15  Assar Westerlund  <assar@sics.se>
35
36	* kadmind.c (main): use a `struct sockaddr_storage' to be able to
37	store all types of addresses
38
392001-02-07  Assar Westerlund  <assar@sics.se>
40
41	* kadmin.c: add --keytab / _K, from Leif Johansson
42	<leifj@it.su.se>
43
442001-01-29  Assar Westerlund  <assar@sics.se>
45
46	* kadm_conn.c (spawn_child): close the newly created socket in the
47	packet, it's not used.  from <shadow@dementia.org>
48	* version4.c (decode_packet): check success of
49	krb5_425_conv_principal.  from <shadow@dementia.org>
50
512001-01-12  Assar Westerlund  <assar@sics.se>
52
53	* util.c (parse_attributes): make empty string mean no attributes,
54	specifying the empty string at the command line should give you no
55	attributes, but just pressing return at the prompt gives you
56	default attributes
57	(edit_entry): only pick up values from the default principal if they
58	aren't set in the principal being edited
59
602001-01-04  Assar Westerlund  <assar@sics.se>
61
62	* load.c (doit): print an error and bail out if storing an entry
63	in the database fails.  The most likely reason for it failing is
64	out-of-space.
65
662000-12-31  Assar Westerlund  <assar@sics.se>
67
68	* kadmind.c (main): handle krb5_init_context failure consistently
69	* kadmin.c (main): handle krb5_init_context failure consistently
70	* add-random-users.c (add_user): handle krb5_init_context failure
71	consistently
72
73	* kadm_conn.c (spawn_child): use a struct sockaddr_storage
74
752000-12-15  Johan Danielsson  <joda@pdc.kth.se>
76
77	* get.c: avoid asprintf'ing NULL strings
78
792000-12-14  Johan Danielsson  <joda@pdc.kth.se>
80
81	* load.c: fix option parsing
82
832000-11-16  Assar Westerlund  <assar@sics.se>
84
85	* kadm_conn.c (wait_for_connection): check for fd's being too
86	large to select on
87
882000-11-09  Johan Danielsson  <joda@pdc.kth.se>
89
90	* get.c: don't try to print modifier name if it isn't set (from
91	Jacques A. Vidrine" <n@nectar.com>)
92
932000-09-19  Assar Westerlund  <assar@sics.se>
94
95	* server.c (kadmind_loop): send in keytab to v4 handling function
96	* version4.c: allow the specification of what keytab to use
97
98	* get.c (print_entry_long): actually print the actual saltvalue
99	used if it's not the default
100
1012000-09-10  Johan Danielsson  <joda@pdc.kth.se>
102
103	* kadmin.c: add option parsing, and add `privs' as an alias for
104	`privileges'
105
106	* init.c: complain if there's no realm name specified
107
108	* rename.c: add option parsing
109
110	* load.c: add option parsing
111
112	* get.c: make `get' and `list' aliases to each other, but with
113	different defaults
114
115	* del_enctype.c: add option parsing
116
117	* del.c: add option parsing
118
119	* ank.c: calling the command `add' make more sense from an english
120	pov
121
122	* Makefile.am: add kadmin manpage
123
124	* kadmin.8: short manpage
125
126	* kadmin.c: `quit' should be a alias for `exit', not `help'
127
1282000-08-27  Assar Westerlund  <assar@sics.se>
129
130	* server.c (handle_v5): do not try to perform stupid stunts when
131	printing errors
132
1332000-08-19  Assar Westerlund  <assar@sics.se>
134
135	* util.c (str2time_t): add alias for `now'.
136
1372000-08-18  Assar Westerlund  <assar@sics.se>
138
139	* server.c (handle_v5): accept any kadmin/admin@* principal as the
140	server
141	* kadmind.c: remove extra prototype of kadmind_loop
142	* kadmin_locl.h (kadmind_loop): add prototype
143	
144	* init.c (usage): print init-usage and not add-dito
145	
1462000-08-07  Johan Danielsson  <joda@pdc.kth.se>
147
148	* kadmind.c: use roken_getsockname
149
1502000-08-07  Assar Westerlund  <assar@sics.se>
151
152	* kadmind.c, kadm_conn.c: use socklen_t instead of int where
153	appropriate.  From <thorpej@netbsd.org>
154
1552000-08-04  Johan Danielsson  <joda@pdc.kth.se>
156
157	* Makefile.am: link with pidfile library
158
159	* kadmind.c: write a pid file, and setup password quality
160	functions
161
162	* kadmin_locl.h: util.h
163
1642000-07-27  Assar Westerlund  <assar@sics.se>
165
166	* version4.c (decode_packet): be totally consistent with the
167	prototype of des_cbc_cksum
168	* kadmind.c: use sa_size instead of sa_len, some systems define
169	this to emulate anonymous unions
170	* kadm_conn.c: use sa_size instead of sa_len, some systems define
171	this to emulate anonymous unions
172
1732000-07-24  Assar Westerlund  <assar@sics.se>
174
175	* kadmin.c (commands): add quit
176	* load.c (doit): truncate the log since there's no way of knowing
177	what changes are going to be added
178
1792000-07-23  Assar Westerlund  <assar@sics.se>
180
181	* util.c (str2time_t): be more careful with strptime that might
182	zero out the `struct tm'
183
1842000-07-22  Johan Danielsson  <joda@pdc.kth.se>
185
186	* kadm_conn.c: make the parent process wait for children and
187	terminate after receiving a signal, also terminate on SIGINT
188
1892000-07-22  Assar Westerlund  <assar@sics.se>
190
191	* version4.c: map both princ_expire_time and pw_expiration to v4
192	principal expiration
193
1942000-07-22  Johan Danielsson  <joda@pdc.kth.se>
195
196	* version4.c (handle_v4): check for termination
197
198	* server.c (v5_loop): check for termination
199
200	* kadm_conn.c (wait_term): if we're doing something, set just set
201	a flag otherwise exit rightaway
202
203	* server.c: use krb5_read_priv_message; (v5_loop): check for EOF
204
2052000-07-21  Assar Westerlund  <assar@sics.se>
206
207	* kadm_conn.c: remove sys/select.h.  make signal handlers
208	type-correct and static
209
210	* kadmin_locl.h: add limits.h and sys/select.h
211
2122000-07-20  Assar Westerlund  <assar@sics.se>
213
214	* init.c (init): also create `kadmin/hprop'
215	* kadmind.c: ports is a string argument
216	* kadm_conn.c (start_server): fix printf format
217
218	* kadmin_locl.h: add <sys/select.h>
219	* kadm_conn.c: remove sys/select.h.  make signal handlers
220	type-correct and static
221
222	* kadmin_locl.h: add limits.h and sys/select.h
223
2242000-07-17  Johan Danielsson  <joda@pdc.kth.se>
225
226	* kadm_conn.c: put all processes in a new process group
227
228	* server.c (v5_loop): use krb5_{read,write}_priv_message
229
2302000-07-11  Johan Danielsson  <joda@pdc.kth.se>
231
232	* version4.c: change log strings to match the v5 counterparts
233
234	* mod.c: allow setting kvno
235
236	* kadmind.c: if stdin is not a socket create and listen to sockets
237
238	* kadm_conn.c: socket creation functions
239
240	* util.c (deltat2str): treat 0 and INT_MAX as never
241
2422000-07-08  Assar Westerlund  <assar@sics.se>
243
244	* Makefile.am (INCLUDES): add ../lib/krb5
245	* kadmin_locl.h: add krb5_locl.h (since we just use some stuff
246	from there)
247
2482000-06-07  Assar Westerlund  <assar@sics.se>
249
250	* add-random-users.c: new testing program that adds a number of
251	randomly generated users
252
2532000-04-12  Assar Westerlund  <assar@sics.se>
254
255	* cpw.c (do_cpw_entry): call set_password if no argument is given,
256	it will prompt for the password.
257	* kadmin.c: make help only print the commands that are actually
258	available.
259
2602000-04-03  Assar Westerlund  <assar@sics.se>
261
262	* del_enctype.c (del_enctype): set ignore correctly
263
2642000-04-02  Assar Westerlund  <assar@sics.se>
265
266	* kadmin.c (main): make parse errors a fatal error
267	* init.c (init): create changepw/kerberos with disallow-tgt and
268	pwchange attributes
269
2702000-03-23  Assar Westerlund  <assar@sics.se>
271
272	* util.c (hex2n, parse_des_key): add
273	* server.c (kadmind_dispatch): add kadm_chpass_with_key
274	* cpw.c: add --key
275	* ank.c: add --key
276
2772000-02-16  Assar Westerlund  <assar@sics.se>
278
279	* load.c (doit): check return value from parse_hdbflags2int
280	correctly
281
2822000-01-25  Assar Westerlund  <assar@sics.se>
283
284	* load.c: checking all parsing for errors and all memory
285	allocations also
286
2872000-01-02  Assar Westerlund  <assar@sics.se>
288
289	* server.c: check initial flag in ticket and allow users to change
290	their own password if it's set
291	* ext.c (do_ext_keytab): set timestamp
292
2931999-12-14  Assar Westerlund  <assar@sics.se>
294
295	* del_enctype.c (usage): don't use arg_printusage
296
2971999-11-25  Assar Westerlund  <assar@sics.se>
298
299	* del_enctype.c (del_enctype): try not to leak memory
300
301	* version4.c (kadm_ser_mod): use kadm5_s_modify_principal (no
302 	_with_key)
303
304	* kadmin.c: add `del_enctype'
305
306	* del_enctype.c (del_enctype): new function for deleting enctypes
307	from a principal
308
309	* Makefile.am (kadmin_SOURCES): add del_enctype.c
310
3111999-11-09  Johan Danielsson  <joda@pdc.kth.se>
312
313	* server.c: cope with old clients
314
315	* kadmin_locl.h: remove version string
316
3171999-10-17  Assar Westerlund  <assar@sics.se>
318
319	* Makefile.am (kadmin_LDADD): add LIB_dlopen
320
3211999-10-01  Assar Westerlund  <assar@sics.se>
322
323	* ank.c (add_one_principal): `password' can cactually be NULL in
324 	the overwrite code, check for it.
325
3261999-09-20  Assar Westerlund  <assar@sics.se>
327
328	* mod.c (mod_entry): print the correct principal name in error
329 	messages.  From Love <lha@e.kth.se>
330
3311999-09-10  Assar Westerlund  <assar@sics.se>
332
333	* init.c (init): also create `changepw/kerberos'
334
335	* version4.c: only create you loose packets when we fail decoding
336 	and not when an operation is not performed for some reason
337	(decode_packet): read the service key from the hdb
338	(dispatch, decode_packet): return proper error messages
339
340	* version4.c (kadm_ser_cpw): add password quality functions
341
3421999-08-27  Johan Danielsson  <joda@pdc.kth.se>
343
344	* server.c (handle_v5): give more informative message if
345	KRB5_KT_NOTFOUND
346
3471999-08-26  Johan Danielsson  <joda@pdc.kth.se>
348
349	* kadmind.c: use HDB keytabs
350
3511999-08-25  Assar Westerlund  <assar@sics.se>
352
353	* cpw.c (set_password): use correct variable.  From Love
354 	<lha@e.kth.se>
355
356	* server.c (v5_loop): use correct error code
357
358	* ank.c (add_one_principal): initialize `default_ent'
359
3601999-08-21  Assar Westerlund  <assar@sics.se>
361
362	* random_password.c: new file, stolen from krb4
363
364	* kadmin_locl.h: add prototype for random_password
365
366	* cpw.c: add support for --random-password
367
368	* ank.c: add support for --random-password
369
370	* Makefile.am (kadmin_SOURCES): add random_password.c
371
3721999-08-19  Assar Westerlund  <assar@sics.se>
373
374	* util.c (edit_timet): break when we manage to parse the time not
375 	the inverse.
376
377	* mod.c: add parsing of lots of options.  From Love
378 	<lha@stacken.kth.se>
379
380	* ank.c: add setting of expiration and password expiration
381
382	* kadmin_locl.h: update util.c prototypes
383
384	* util.c: move-around.  clean-up, rename, make consistent (and
385 	some other weird stuff).  based on patches from Love
386 	<lha@stacken.kth.se>
387
388	* version4.c (kadm_ser_cpw): initialize password
389	(handle_v4): remove unused variable `ret'
390
3911999-08-16  Assar Westerlund  <assar@sics.se>
392
393	* version4.c (handle_v4): more error checking and more correct
394 	error messages
395
396	* server.c (v5_loop, kadmind_loop): more error checking and more
397 	correct error messages
398
3991999-07-24  Assar Westerlund  <assar@sics.se>
400
401	* util.c (str2timeval, edit_time): functions for parsing and
402 	editing times.  Based on patches from Love <lha@stacken.kth.se>.
403	(edit_entry): call new functions
404
405	* mod.c (mod_entry): allow modifying expiration times
406
407	* kadmin_locl.h (str2timeval): add prototype
408
409	* ank.c (add_one_principal): allow setting expiration times
410
4111999-07-03  Assar Westerlund  <assar@sics.se>
412
413	* server.c (v5_loop): handle data allocation with krb5_data_alloc
414 	and check return value
415
4161999-06-23  Assar Westerlund  <assar@sics.se>
417
418	* version4.c (kadm_ser_cpw): read the key in the strange order
419 	it's sent
420
421	* util.c (edit_entry): look at default
422	(edit_time): always set mask even if value == 0
423
424	* kadmin_locl.h (edit_entry): update
425
426	* ank.c: make ank use the values of the default principal for
427 	prompting
428
429	* version4.c (values_to_ent): convert key data correctly
430
4311999-05-23  Assar Westerlund  <assar@sics.se>
432
433	* init.c (create_random_entry): more correct setting of mask
434
4351999-05-21  Assar Westerlund  <assar@sics.se>
436
437	* server.c (handle_v5): read sendauth version correctly.
438
4391999-05-14  Assar Westerlund  <assar@sics.se>
440
441	* version4.c (error_code): try to handle really old krb4
442 	distributions
443
4441999-05-11  Assar Westerlund  <assar@sics.se>
445
446	* init.c (init): initialize realm_max_life and realm_max_rlife
447
4481999-05-07  Assar Westerlund  <assar@sics.se>
449
450	* ank.c (add_new_key): initialize more variables
451
4521999-05-04  Assar Westerlund  <assar@sics.se>
453
454	* version4.c (kadm_ser_cpw): always allow a user to change her
455 	password
456	(kadm_ser_*): make logging work
457	clean-up and restructure
458	
459	* kadmin_locl.h (set_entry): add prototype
460
461	* kadmin.c (usage): update usage string
462
463	* init.c (init): new arguments realm-max-ticket-life and
464 	realm-max-renewable-life
465
466	* util.c (edit_time, edit_attributes): don't do anything if it's
467 	already set
468	(set_entry): new function
469
470	* ank.c (add_new_key): new options for setting max-ticket-life,
471 	max-renewable-life, and attributes
472
473	* server.c (v5_loop): remove unused variable
474
475	* kadmin_locl.h: add prototypes
476
477	* version4.c: re-insert krb_err.h and other miss
478
479	* server.c (kadmind_loop): break-up and restructure
480
481	* version4.c: add ACL checks more error code checks restructure
482	
4831999-05-03  Johan Danielsson  <joda@pdc.kth.se>
484
485	* load.c: check for (un-)encrypted keys
486
487	* dump.c: use hdb_print_entry
488	
489	* version4.c: version 4 support
490
491	* Makefile.am: link with krb4
492
493	* kadmin_locl.h: include <sys/un.h>
494
495	* server.c: move from lib/kadm5, and add basic support for krb4
496	kadmin protocol
497
498	* kadmind.c: move recvauth to kadmind_loop()
499