ChangeLog revision 90926 
12002-02-11  Johan Danielsson  <joda@pdc.kth.se>
2
3	* ext.c: no need to use the "modify" keytab anymore
4
52001-09-20  Assar Westerlund  <assar@sics.se>
6
7	* add-random-users.c: allocate several buffers for the list of
8	words, instead of one strdup per word (running under efence does
9	not work very well otherwise)
10
112001-09-13  Assar Westerlund  <assar@sics.se>
12
13	* add-random-users.c: allow specifying the number of users to
14	create
15
162001-08-24  Assar Westerlund  <assar@sics.se>
17
18	* Makefile.am: rename variable name to avoid error from current
19	automake
20
212001-08-22  Assar Westerlund  <assar@sics.se>
22
23	* kadmin_locl.h: include libutil.h if it exists
24
252001-08-10  Johan Danielsson  <joda@pdc.kth.se>
26
27	* util.c: do something to handle C-c in prompts
28
29	* load.c: remove unused etypes code, and add parsing of the
30	generation field
31
32	* ank.c: add a --use-defaults option to just use default values
33	without questions
34
35	* kadmin.c: add "del" alias for delete
36
37	* cpw.c: call this operation "passwd" in usage
38
39	* kadmin_locl.h: prototype for set_defaults
40
41	* util.c (edit_entry): move setting of default values to a
42	separate function, set_defaults
43
442001-08-01  Johan Danielsson  <joda@pdc.kth.se>
45
46	* kadmin.c: print help message on bad options
47
482001-07-31  Assar Westerlund  <assar@sics.se>
49
50	* add-random-users.c (main): handle --version
51
522001-07-30  Johan Danielsson  <joda@pdc.kth.se>
53
54	* load.c: increase line buffer to 8k
55
562001-06-12  Assar Westerlund  <assar@sics.se>
57
58	* ext.c (ext_keytab): use the default modify keytab per default
59
602001-05-17  Assar Westerlund  <assar@sics.se>
61
62	* kadm_conn.c (start_server): fix krb5_eai_to_heim_errno call
63
642001-05-15  Assar Westerlund  <assar@sics.se>
65
66	* kadmin.c (main): some error cleaning required
67
682001-05-14  Assar Westerlund  <assar@sics.se>
69
70	* kadmind.c: new krb5_config_parse_file
71	* kadmin.c: new krb5_config_parse_file
72	* kadm_conn.c: update to new krb5_sockaddr2address
73
742001-05-07  Assar Westerlund  <assar@sics.se>
75
76	* kadmin_locl.h (foreach_principal): update prototype
77	* get.c (getit): new foreach_principal
78	* ext.c (ext_keytab): new foreach_principal
79	* del.c (del_entry): new foreach_principal
80	* cpw.c (cpw_entry): new foreach_principal
81	* util.c (foreach_principal): add `funcname' and try printing the
82	error string
83
842001-05-04  Johan Danielsson  <joda@pdc.kth.se>
85
86	* rename.c: fix argument number test
87	
882001-04-19  Johan Danielsson  <joda@pdc.kth.se>
89
90	* del_enctype.c: fix argument count check after getarg change;
91	spotted by mark@MCS.VUW.AC.NZ
92
932001-02-15  Assar Westerlund  <assar@sics.se>
94
95	* kadmind.c (main): use a `struct sockaddr_storage' to be able to
96	store all types of addresses
97
982001-02-07  Assar Westerlund  <assar@sics.se>
99
100	* kadmin.c: add --keytab / _K, from Leif Johansson
101	<leifj@it.su.se>
102
1032001-01-29  Assar Westerlund  <assar@sics.se>
104
105	* kadm_conn.c (spawn_child): close the newly created socket in the
106	packet, it's not used.  from <shadow@dementia.org>
107	* version4.c (decode_packet): check success of
108	krb5_425_conv_principal.  from <shadow@dementia.org>
109
1102001-01-12  Assar Westerlund  <assar@sics.se>
111
112	* util.c (parse_attributes): make empty string mean no attributes,
113	specifying the empty string at the command line should give you no
114	attributes, but just pressing return at the prompt gives you
115	default attributes
116	(edit_entry): only pick up values from the default principal if they
117	aren't set in the principal being edited
118
1192001-01-04  Assar Westerlund  <assar@sics.se>
120
121	* load.c (doit): print an error and bail out if storing an entry
122	in the database fails.  The most likely reason for it failing is
123	out-of-space.
124
1252000-12-31  Assar Westerlund  <assar@sics.se>
126
127	* kadmind.c (main): handle krb5_init_context failure consistently
128	* kadmin.c (main): handle krb5_init_context failure consistently
129	* add-random-users.c (add_user): handle krb5_init_context failure
130	consistently
131
132	* kadm_conn.c (spawn_child): use a struct sockaddr_storage
133
1342000-12-15  Johan Danielsson  <joda@pdc.kth.se>
135
136	* get.c: avoid asprintf'ing NULL strings
137
1382000-12-14  Johan Danielsson  <joda@pdc.kth.se>
139
140	* load.c: fix option parsing
141
1422000-11-16  Assar Westerlund  <assar@sics.se>
143
144	* kadm_conn.c (wait_for_connection): check for fd's being too
145	large to select on
146
1472000-11-09  Johan Danielsson  <joda@pdc.kth.se>
148
149	* get.c: don't try to print modifier name if it isn't set (from
150	Jacques A. Vidrine" <n@nectar.com>)
151
1522000-09-19  Assar Westerlund  <assar@sics.se>
153
154	* server.c (kadmind_loop): send in keytab to v4 handling function
155	* version4.c: allow the specification of what keytab to use
156
157	* get.c (print_entry_long): actually print the actual saltvalue
158	used if it's not the default
159
1602000-09-10  Johan Danielsson  <joda@pdc.kth.se>
161
162	* kadmin.c: add option parsing, and add `privs' as an alias for
163	`privileges'
164
165	* init.c: complain if there's no realm name specified
166
167	* rename.c: add option parsing
168
169	* load.c: add option parsing
170
171	* get.c: make `get' and `list' aliases to each other, but with
172	different defaults
173
174	* del_enctype.c: add option parsing
175
176	* del.c: add option parsing
177
178	* ank.c: calling the command `add' make more sense from an english
179	pov
180
181	* Makefile.am: add kadmin manpage
182
183	* kadmin.8: short manpage
184
185	* kadmin.c: `quit' should be a alias for `exit', not `help'
186
1872000-08-27  Assar Westerlund  <assar@sics.se>
188
189	* server.c (handle_v5): do not try to perform stupid stunts when
190	printing errors
191
1922000-08-19  Assar Westerlund  <assar@sics.se>
193
194	* util.c (str2time_t): add alias for `now'.
195
1962000-08-18  Assar Westerlund  <assar@sics.se>
197
198	* server.c (handle_v5): accept any kadmin/admin@* principal as the
199	server
200	* kadmind.c: remove extra prototype of kadmind_loop
201	* kadmin_locl.h (kadmind_loop): add prototype
202	
203	* init.c (usage): print init-usage and not add-dito
204	
2052000-08-07  Johan Danielsson  <joda@pdc.kth.se>
206
207	* kadmind.c: use roken_getsockname
208
2092000-08-07  Assar Westerlund  <assar@sics.se>
210
211	* kadmind.c, kadm_conn.c: use socklen_t instead of int where
212	appropriate.  From <thorpej@netbsd.org>
213
2142000-08-04  Johan Danielsson  <joda@pdc.kth.se>
215
216	* Makefile.am: link with pidfile library
217
218	* kadmind.c: write a pid file, and setup password quality
219	functions
220
221	* kadmin_locl.h: util.h
222
2232000-07-27  Assar Westerlund  <assar@sics.se>
224
225	* version4.c (decode_packet): be totally consistent with the
226	prototype of des_cbc_cksum
227	* kadmind.c: use sa_size instead of sa_len, some systems define
228	this to emulate anonymous unions
229	* kadm_conn.c: use sa_size instead of sa_len, some systems define
230	this to emulate anonymous unions
231
2322000-07-24  Assar Westerlund  <assar@sics.se>
233
234	* kadmin.c (commands): add quit
235	* load.c (doit): truncate the log since there's no way of knowing
236	what changes are going to be added
237
2382000-07-23  Assar Westerlund  <assar@sics.se>
239
240	* util.c (str2time_t): be more careful with strptime that might
241	zero out the `struct tm'
242
2432000-07-22  Johan Danielsson  <joda@pdc.kth.se>
244
245	* kadm_conn.c: make the parent process wait for children and
246	terminate after receiving a signal, also terminate on SIGINT
247
2482000-07-22  Assar Westerlund  <assar@sics.se>
249
250	* version4.c: map both princ_expire_time and pw_expiration to v4
251	principal expiration
252
2532000-07-22  Johan Danielsson  <joda@pdc.kth.se>
254
255	* version4.c (handle_v4): check for termination
256
257	* server.c (v5_loop): check for termination
258
259	* kadm_conn.c (wait_term): if we're doing something, set just set
260	a flag otherwise exit rightaway
261
262	* server.c: use krb5_read_priv_message; (v5_loop): check for EOF
263
2642000-07-21  Assar Westerlund  <assar@sics.se>
265
266	* kadm_conn.c: remove sys/select.h.  make signal handlers
267	type-correct and static
268
269	* kadmin_locl.h: add limits.h and sys/select.h
270
2712000-07-20  Assar Westerlund  <assar@sics.se>
272
273	* init.c (init): also create `kadmin/hprop'
274	* kadmind.c: ports is a string argument
275	* kadm_conn.c (start_server): fix printf format
276
277	* kadmin_locl.h: add <sys/select.h>
278	* kadm_conn.c: remove sys/select.h.  make signal handlers
279	type-correct and static
280
281	* kadmin_locl.h: add limits.h and sys/select.h
282
2832000-07-17  Johan Danielsson  <joda@pdc.kth.se>
284
285	* kadm_conn.c: put all processes in a new process group
286
287	* server.c (v5_loop): use krb5_{read,write}_priv_message
288
2892000-07-11  Johan Danielsson  <joda@pdc.kth.se>
290
291	* version4.c: change log strings to match the v5 counterparts
292
293	* mod.c: allow setting kvno
294
295	* kadmind.c: if stdin is not a socket create and listen to sockets
296
297	* kadm_conn.c: socket creation functions
298
299	* util.c (deltat2str): treat 0 and INT_MAX as never
300
3012000-07-08  Assar Westerlund  <assar@sics.se>
302
303	* Makefile.am (INCLUDES): add ../lib/krb5
304	* kadmin_locl.h: add krb5_locl.h (since we just use some stuff
305	from there)
306
3072000-06-07  Assar Westerlund  <assar@sics.se>
308
309	* add-random-users.c: new testing program that adds a number of
310	randomly generated users
311
3122000-04-12  Assar Westerlund  <assar@sics.se>
313
314	* cpw.c (do_cpw_entry): call set_password if no argument is given,
315	it will prompt for the password.
316	* kadmin.c: make help only print the commands that are actually
317	available.
318
3192000-04-03  Assar Westerlund  <assar@sics.se>
320
321	* del_enctype.c (del_enctype): set ignore correctly
322
3232000-04-02  Assar Westerlund  <assar@sics.se>
324
325	* kadmin.c (main): make parse errors a fatal error
326	* init.c (init): create changepw/kerberos with disallow-tgt and
327	pwchange attributes
328
3292000-03-23  Assar Westerlund  <assar@sics.se>
330
331	* util.c (hex2n, parse_des_key): add
332	* server.c (kadmind_dispatch): add kadm_chpass_with_key
333	* cpw.c: add --key
334	* ank.c: add --key
335
3362000-02-16  Assar Westerlund  <assar@sics.se>
337
338	* load.c (doit): check return value from parse_hdbflags2int
339	correctly
340
3412000-01-25  Assar Westerlund  <assar@sics.se>
342
343	* load.c: checking all parsing for errors and all memory
344	allocations also
345
3462000-01-02  Assar Westerlund  <assar@sics.se>
347
348	* server.c: check initial flag in ticket and allow users to change
349	their own password if it's set
350	* ext.c (do_ext_keytab): set timestamp
351
3521999-12-14  Assar Westerlund  <assar@sics.se>
353
354	* del_enctype.c (usage): don't use arg_printusage
355
3561999-11-25  Assar Westerlund  <assar@sics.se>
357
358	* del_enctype.c (del_enctype): try not to leak memory
359
360	* version4.c (kadm_ser_mod): use kadm5_s_modify_principal (no
361 	_with_key)
362
363	* kadmin.c: add `del_enctype'
364
365	* del_enctype.c (del_enctype): new function for deleting enctypes
366	from a principal
367
368	* Makefile.am (kadmin_SOURCES): add del_enctype.c
369
3701999-11-09  Johan Danielsson  <joda@pdc.kth.se>
371
372	* server.c: cope with old clients
373
374	* kadmin_locl.h: remove version string
375
3761999-10-17  Assar Westerlund  <assar@sics.se>
377
378	* Makefile.am (kadmin_LDADD): add LIB_dlopen
379
3801999-10-01  Assar Westerlund  <assar@sics.se>
381
382	* ank.c (add_one_principal): `password' can cactually be NULL in
383 	the overwrite code, check for it.
384
3851999-09-20  Assar Westerlund  <assar@sics.se>
386
387	* mod.c (mod_entry): print the correct principal name in error
388 	messages.  From Love <lha@e.kth.se>
389
3901999-09-10  Assar Westerlund  <assar@sics.se>
391
392	* init.c (init): also create `changepw/kerberos'
393
394	* version4.c: only create you loose packets when we fail decoding
395 	and not when an operation is not performed for some reason
396	(decode_packet): read the service key from the hdb
397	(dispatch, decode_packet): return proper error messages
398
399	* version4.c (kadm_ser_cpw): add password quality functions
400
4011999-08-27  Johan Danielsson  <joda@pdc.kth.se>
402
403	* server.c (handle_v5): give more informative message if
404	KRB5_KT_NOTFOUND
405
4061999-08-26  Johan Danielsson  <joda@pdc.kth.se>
407
408	* kadmind.c: use HDB keytabs
409
4101999-08-25  Assar Westerlund  <assar@sics.se>
411
412	* cpw.c (set_password): use correct variable.  From Love
413 	<lha@e.kth.se>
414
415	* server.c (v5_loop): use correct error code
416
417	* ank.c (add_one_principal): initialize `default_ent'
418
4191999-08-21  Assar Westerlund  <assar@sics.se>
420
421	* random_password.c: new file, stolen from krb4
422
423	* kadmin_locl.h: add prototype for random_password
424
425	* cpw.c: add support for --random-password
426
427	* ank.c: add support for --random-password
428
429	* Makefile.am (kadmin_SOURCES): add random_password.c
430
4311999-08-19  Assar Westerlund  <assar@sics.se>
432
433	* util.c (edit_timet): break when we manage to parse the time not
434 	the inverse.
435
436	* mod.c: add parsing of lots of options.  From Love
437 	<lha@stacken.kth.se>
438
439	* ank.c: add setting of expiration and password expiration
440
441	* kadmin_locl.h: update util.c prototypes
442
443	* util.c: move-around.  clean-up, rename, make consistent (and
444 	some other weird stuff).  based on patches from Love
445 	<lha@stacken.kth.se>
446
447	* version4.c (kadm_ser_cpw): initialize password
448	(handle_v4): remove unused variable `ret'
449
4501999-08-16  Assar Westerlund  <assar@sics.se>
451
452	* version4.c (handle_v4): more error checking and more correct
453 	error messages
454
455	* server.c (v5_loop, kadmind_loop): more error checking and more
456 	correct error messages
457
4581999-07-24  Assar Westerlund  <assar@sics.se>
459
460	* util.c (str2timeval, edit_time): functions for parsing and
461 	editing times.  Based on patches from Love <lha@stacken.kth.se>.
462	(edit_entry): call new functions
463
464	* mod.c (mod_entry): allow modifying expiration times
465
466	* kadmin_locl.h (str2timeval): add prototype
467
468	* ank.c (add_one_principal): allow setting expiration times
469
4701999-07-03  Assar Westerlund  <assar@sics.se>
471
472	* server.c (v5_loop): handle data allocation with krb5_data_alloc
473 	and check return value
474
4751999-06-23  Assar Westerlund  <assar@sics.se>
476
477	* version4.c (kadm_ser_cpw): read the key in the strange order
478 	it's sent
479
480	* util.c (edit_entry): look at default
481	(edit_time): always set mask even if value == 0
482
483	* kadmin_locl.h (edit_entry): update
484
485	* ank.c: make ank use the values of the default principal for
486 	prompting
487
488	* version4.c (values_to_ent): convert key data correctly
489
4901999-05-23  Assar Westerlund  <assar@sics.se>
491
492	* init.c (create_random_entry): more correct setting of mask
493
4941999-05-21  Assar Westerlund  <assar@sics.se>
495
496	* server.c (handle_v5): read sendauth version correctly.
497
4981999-05-14  Assar Westerlund  <assar@sics.se>
499
500	* version4.c (error_code): try to handle really old krb4
501 	distributions
502
5031999-05-11  Assar Westerlund  <assar@sics.se>
504
505	* init.c (init): initialize realm_max_life and realm_max_rlife
506
5071999-05-07  Assar Westerlund  <assar@sics.se>
508
509	* ank.c (add_new_key): initialize more variables
510
5111999-05-04  Assar Westerlund  <assar@sics.se>
512
513	* version4.c (kadm_ser_cpw): always allow a user to change her
514 	password
515	(kadm_ser_*): make logging work
516	clean-up and restructure
517	
518	* kadmin_locl.h (set_entry): add prototype
519
520	* kadmin.c (usage): update usage string
521
522	* init.c (init): new arguments realm-max-ticket-life and
523 	realm-max-renewable-life
524
525	* util.c (edit_time, edit_attributes): don't do anything if it's
526 	already set
527	(set_entry): new function
528
529	* ank.c (add_new_key): new options for setting max-ticket-life,
530 	max-renewable-life, and attributes
531
532	* server.c (v5_loop): remove unused variable
533
534	* kadmin_locl.h: add prototypes
535
536	* version4.c: re-insert krb_err.h and other miss
537
538	* server.c (kadmind_loop): break-up and restructure
539
540	* version4.c: add ACL checks more error code checks restructure
541	
5421999-05-03  Johan Danielsson  <joda@pdc.kth.se>
543
544	* load.c: check for (un-)encrypted keys
545
546	* dump.c: use hdb_print_entry
547	
548	* version4.c: version 4 support
549
550	* Makefile.am: link with krb4
551
552	* kadmin_locl.h: include <sys/un.h>
553
554	* server.c: move from lib/kadm5, and add basic support for krb4
555	kadmin protocol
556
557	* kadmind.c: move recvauth to kadmind_loop()
558