1 2003-12-30 Love Hörnquist Åstrand <lha@it.su.se>
3 * chpass_s.c: from 1.14->1.15:
4 (change): fix same-password-again by decrypting keys and setting
5 an error code. From: Buck Huppmann <buckh@pobox.com>
7 2003-12-21 Love Hörnquist Åstrand <lha@it.su.se>
9 * init_c.c: 1.47->1.48: (_kadm5_c_init_context): catch errors from
10 strdup and other krb5_ functions
12 2003-08-15 Love Hörnquist Åstrand <lha@it.su.se>
14 * ipropd_slave.c: 1.27->1.28: (receive_everything): switch close
15 and rename From: Alf Wachsmann <alfw@SLAC.Stanford.EDU>
17 2003-04-16 Love Hörnquist Åstrand <lha@it.su.se>
19 * send_recv.c: check return values from krb5_data_alloc
20 * log.c: check return values from krb5_data_alloc
22 2003-04-16 Love Hörnquist Åstrand <lha@it.su.se>
24 * dump_log.c (print_entry): check return values from
27 2003-04-01 Love Hörnquist Åstrand <lha@it.su.se>
29 * init_c.c (kadm_connect): if a context realm was passed in, use
30 that to form the kadmin/admin principal
32 2003-03-19 Love Hörnquist Åstrand <lha@it.su.se>
34 * ipropd_master.c (main): make sure we don't consider dead slave
36 (write_stats): use slave_stats_file variable,
37 check return value of strftime
38 (args): allow specifying slave stats file
39 (slave_dead): close the fd when the slave dies
41 2002-10-21 Johan Danielsson <joda@pdc.kth.se>
43 * ipropd_slave.c (from Derrick Brashear): Propagating a large
44 database without this means the slave kdcs can get erroneous
45 HDB_NOENTRY and return the resulting errors. This creates a new db
46 handle, populates it, and moves it into place.
48 2002-08-26 Assar Westerlund <assar@kth.se>
50 * ipropd_slave.c (receive_everything): type-correctness calling
53 * context_s.c (find_db_spec): const-correctness in parameters to
56 2002-08-16 Johan Danielsson <joda@pdc.kth.se>
58 * private.h: rename header file flag macro
60 * Makefile.am: generate kadm5-{protos,private}.h
62 2002-08-15 Johan Danielsson <joda@pdc.kth.se>
64 * ipropd_master.c: check return value of krb5_sockaddr2address
66 2002-07-04 Johan Danielsson <joda@pdc.kth.se>
68 * ipropd_master.c: handle slaves that come and go; add status
69 reporting (both from Love)
71 * iprop.h: KADM5_SLAVE_STATS
73 2002-03-25 Jacques Vidrine <n@nectar.com>
75 * init_c.c (get_cred_cache): bug fix: the default credentials
76 cache was not being used if a client name was specified.
78 2002-03-25 Johan Danielsson <joda@pdc.kth.se>
80 * init_c.c (get_cred_cache): when getting the default_client from
81 the cred cache, make sure the instance part is "admin"; this
82 should require fewer uses of -p
84 2002-03-11 Assar Westerlund <assar@sics.se>
86 * Makefile.am (libkadm5srv_la_LDFLAGS): set version to 7:5:0
87 (libkadm5clnt_la_LDFLAGS): set version to 6:3:2
89 2002-02-08 Johan Danielsson <joda@pdc.kth.se>
91 * init_c.c: we have to create our own param struct before
94 2001-09-05 Johan Danielsson <joda@pdc.kth.se>
96 * Makefile.am: link with LIB_pidfile
98 * iprop.h: include util.h for pidfile
100 2001-08-31 Assar Westerlund <assar@sics.se>
102 * ipropd_slave.c (main): syslog with the correct name
104 2001-08-30 Jacques Vidrine <n@nectar.com>
106 * ipropd_slave.c, ipropd_master.c (main): call pidfile
108 2001-08-28 Assar Westerlund <assar@sics.se>
110 * Makefile.am (libkadm5srv_la_LDFLAGS): set version to 7:4:0
112 2001-08-24 Assar Westerlund <assar@sics.se>
114 * acl.c (fetch_acl): do not return bogus flags and re-organize
117 * Makefile.am: rename variable name to avoid error from current
120 2001-08-13 Johan Danielsson <joda@pdc.kth.se>
122 * set_keys.c: add easier afs configuration, defaulting to the
123 local realm in lower case; also try to remove duplicate salts
125 2001-07-12 Assar Westerlund <assar@sics.se>
127 * Makefile.am: add required library dependencies
129 2001-07-03 Assar Westerlund <assar@sics.se>
131 * Makefile.am (libkadm5clnt_la_LDFLAGS): set version to 6:2:2
133 2001-06-29 Johan Danielsson <joda@pdc.kth.se>
135 * init_c.c: call krb5_get_init_creds_opt_set_default_flags
137 2001-02-19 Johan Danielsson <joda@pdc.kth.se>
139 * replay_log.c: add --{start-end}-version flags to replay just
142 2001-02-15 Assar Westerlund <assar@sics.se>
144 * ipropd_master.c (main): fix select-loop to decrement ret
145 correctly. from "Brandon S. Allbery KF8NH" <allbery@ece.cmu.edu>
147 2001-01-30 Assar Westerlund <assar@sics.se>
149 * Makefile.am: bump versions
151 2000-12-31 Assar Westerlund <assar@sics.se>
153 * init_s.c (*): handle krb5_init_context failure consistently
154 * init_c.c (init_context): handle krb5_init_context failure
157 2000-12-11 Assar Westerlund <assar@sics.se>
159 * Makefile.am (libkadm5srv_la_LDFLAGS): bump version to 7:2:0
161 2000-11-16 Assar Westerlund <assar@sics.se>
163 * set_keys.c (make_keys): clean-up salting loop and try not to
166 * ipropd_master.c (main): check for fd's being too large to select
169 2000-08-16 Assar Westerlund <assar@sics.se>
171 * Makefile.am (libkadm5srv_la_LDFLAGS): bump version to 7:1:0
173 2000-08-10 Assar Westerlund <assar@sics.se>
175 * acl.c (fetch_acl): fix wrong cases, use krb5_principal_match
177 2000-08-07 Assar Westerlund <assar@sics.se>
179 * ipropd_master.c (main): ignore SIGPIPE
181 2000-08-06 Assar Westerlund <assar@sics.se>
183 * ipropd_slave.c (receive_everything): make `fd' an int instead of
184 a pointer. From Derrick J Brashear <shadow@dementia.org>
186 2000-08-04 Johan Danielsson <joda@pdc.kth.se>
188 * admin.h: change void** to void*
190 2000-07-25 Johan Danielsson <joda@pdc.kth.se>
192 * Makefile.am: bump versions to 7:0:0 and 6:0:2
194 2000-07-24 Assar Westerlund <assar@sics.se>
196 * log.c (kadm5_log_get_version): rename kadm5_log_get_version_fd
197 and make a new that takes a context
198 (kadm5_log_nop): add logging of missing lengths
199 (kadm5_log_truncate): new function
201 * dump_log.c (print_entry): update and correct
202 * randkey_s.c: call _kadm5_bump_pw_expire
203 * truncate_log.c: new program for truncating the log
204 * Makefile.am (sbin_PROGRAMS): add truncate_log
205 (C_SOURCES): add bump_pw_expire.c
206 * bump_pw_expire.c: new function for extending password expiration
208 2000-07-22 Assar Westerlund <assar@sics.se>
210 * keys.c: new file with _kadm5_free_keys, _kadm5_init_keys
212 * set_keys.c (free_keys, init_keys): elevate to internal kadm5
215 * chpass_s.c (kadm5_s_chpass_principal_cond): new function
216 * Makefile.am (C_SOURCES): add keys.c
217 * init_c.c: remove unused variable and handle some parameters
220 2000-07-22 Johan Danielsson <joda@pdc.kth.se>
222 * ipropd_slave.c: use krb5_read_priv_message
224 * ipropd_master.c: use krb5_{read,write}_priv_message
226 * init_c.c: use krb5_write_priv_message
228 2000-07-11 Johan Danielsson <joda@pdc.kth.se>
230 * ipropd_slave.c: no need to call gethostname, since
231 sname_to_principal will
233 * send_recv.c: assert that we have a connected socket
235 * get_princs_c.c: call _kadm5_connect
237 * rename_c.c: call _kadm5_connect
239 * randkey_c.c: call _kadm5_connect
241 * privs_c.c: call _kadm5_connect
243 * modify_c.c: call _kadm5_connect
245 * get_c.c: call _kadm5_connect
247 * delete_c.c: call _kadm5_connect
249 * create_c.c: call _kadm5_connect
251 * chpass_c.c: call _kadm5_connect
253 * private.h: add more fields to client context; remove prototypes
255 * admin.h: remove prototypes
257 * kadm5-protos.h: move public prototypes here
259 * kadm5-private.h: move private prototypes here
261 * init_c.c: break out connection code to separate function, and
262 defer calling it until we actually do something
264 2000-07-07 Assar Westerlund <assar@sics.se>
266 * set_keys.c (make_keys): also support `[kadmin]use_v4_salt' for
267 backwards compatability
269 2000-06-26 Johan Danielsson <joda@pdc.kth.se>
271 * set_keys.c (_kadm5_set_keys): rewrite this to be more easily
272 adaptable to different salts
274 2000-06-19 Johan Danielsson <joda@pdc.kth.se>
276 * get_s.c: pa_* -> KRB5_PADATA_*
278 2000-06-16 Assar Westerlund <assar@sics.se>
280 * ipropd_slave.c: change default keytab to default keytab (as in
281 typically FILE:/etc/krb5.keytab)
283 2000-06-08 Assar Westerlund <assar@sics.se>
285 * ipropd_slave.c: bug fixes, for actually writing the full dump to
286 the database. based on a patch from Love <lha@stacken.kth.se>
288 2000-06-07 Assar Westerlund <assar@sics.se>
290 * acl.c: add support for patterns of principals
291 * log.c (kadm5_log_replay_create): handle more NULL pointers
292 (should they really happen?)
293 * log.c (kadm5_log_replay_modify): handle max_life == NULL and
296 * ipropd_master.c: use syslog. be less verbose
297 * ipropd_slave.c: use syslog
299 2000-06-05 Assar Westerlund <assar@sics.se>
301 * private.h (kadm_ops): add kadm_nop more prototypes
302 * log.c (kadm5_log_set_version, kadm5_log_reinit, kadm5_log_nop,
303 kadm5_log_replay_nop): add
304 * ipropd_slave.c: and some more improvements
305 * ipropd_master.c: lots of improvements
306 * iprop.h (IPROP_PORT, IPROP_SERVICE): add
307 (iprop_cmd): add new commands
309 * dump_log.c: add nop
311 2000-05-15 Assar Westerlund <assar@sics.se>
313 * Makefile.am (libkadm5clnt_la_LDFLAGS): set version to 5:1:1
315 2000-05-12 Assar Westerlund <assar@sics.se>
317 * get_s.c (kadm5_s_get_principal): set life, rlife to INT_MAX as a
318 fallback. handle not having any creator.
319 * destroy_s.c (kadm5_s_destroy): free all allocated memory
320 * context_s.c (set_field): free variable if it's already set
321 (find_db_spec): malloc space for all strings
323 2000-04-05 Assar Westerlund <assar@sics.se>
325 * Makefile.am (LDADD): add LIB_openldap
327 2000-04-03 Assar Westerlund <assar@sics.se>
329 * Makefile.am (libkadm5srv_la_LDFLAGS): set version to 6:0:1
330 (libkadm5clnt_la_LDFLAGS): set version to 5:0:1
332 2000-03-24 Assar Westerlund <assar@sics.se>
334 * set_keys.c (_kadm5_set_keys2): rewrite
335 (_kadm5_set_keys3): add
337 * private.h (struct kadm_func): add chpass_principal_with_key
338 * init_c.c (set_funcs): add chpass_principal_with_key
340 2000-03-23 Assar Westerlund <assar@sics.se>
342 * context_s.c (set_funcs): add chpass_principal_with_key
343 * common_glue.c (kadm5_chpass_principal_with_key): add
344 * chpass_s.c: comment-ize and change calling convention for
346 * chpass_c.c (kadm5_c_chpass_principal_with_key): add
348 2000-02-07 Assar Westerlund <assar@sics.se>
350 * Makefile.am (libkadm5clnt_la_LDFLAGS): set version to 4:2:0
352 2000-01-28 Assar Westerlund <assar@sics.se>
354 * init_c.c (get_new_cache): make sure to request non-forwardable,
357 2000-01-06 Assar Westerlund <assar@sics.se>
359 * Makefile.am (libkadm5srv.la): bump version to 5:1:0
361 * context_s.c (_kadm5_s_init_context): handle params == NULL
363 1999-12-26 Assar Westerlund <assar@sics.se>
365 * get_s.c (kadm5_s_get_principal): handle modified_by->principal
368 1999-12-20 Assar Westerlund <assar@sics.se>
370 * Makefile.am (libkadm5clnt_la_LDFLAGS): bump version to 4:1:0
372 * init_c.c (_kadm5_c_init_context): handle getting back port
373 number from admin host
374 (kadm5_c_init_with_context): remove `proto/' part before doing
377 1999-12-06 Assar Westerlund <assar@sics.se>
379 * Makefile.am: bump version to 5:0:0 and 4:0:0
381 * init_c.c (kadm5_c_init_with_context): don't use unitialized
384 1999-12-04 Assar Westerlund <assar@sics.se>
386 * replay_log.c: adapt to changed kadm5_log_foreach
388 * log.c (kadm5_log_foreach): change to take a
389 `kadm5_server_context'
391 * init_c.c: use krb5_warn{,x}
393 * dump_log.c: adapt to changed kadm5_log_foreach
395 * init_c.c: re-write to use getaddrinfo
396 * Makefile.am (install-build-headers): add dependency
398 1999-12-03 Johan Danielsson <joda@pdc.kth.se>
400 * log.c (kadm5_log_foreach): pass context
402 * dump_log.c: print more interesting things
404 1999-12-02 Johan Danielsson <joda@pdc.kth.se>
406 * ipropd_master.c (process_msg): check for short reads
408 1999-11-25 Assar Westerlund <assar@sics.se>
410 * modify_s.c (kadm5_s_modify_principal): support key_data
411 (kadm5_s_modify_principal_with_key): remove
413 * admin.h (kadm5_s_modify_principal_with_key): remove
415 1999-11-20 Assar Westerlund <assar@sics.se>
417 * context_s.c (find_db_spec): ugly cast work-around.
419 1999-11-14 Assar Westerlund <assar@sics.se>
421 * context_s.c (_kadm5_s_init_context): call krb5_add_et_list so
422 that we aren't dependent on the layout of krb5_context_data
423 * init_c.c (_kadm5_c_init_context): call krb5_add_et_list so that
424 we aren't dependent on the layout of krb5_context_data
426 1999-11-13 Assar Westerlund <assar@sics.se>
428 * password_quality.c (kadm5_setup_passwd_quality_check): use
429 correct types for function pointers
431 1999-11-09 Johan Danielsson <joda@pdc.kth.se>
433 * randkey_s.c: always bail out if the fetch fails
435 * admin.h (kadm5_config_params): remove fields we're not using
437 * ipropd_slave.c: allow passing a realm
439 * ipropd_master.c: allow passing a realm
441 * dump_log.c: allow passing a realm
443 * acl.c: correctly get acl file
445 * private.h (kadm5_server_context): add config_params struct and
446 remove acl_file; bump protocol version number
448 * marshall.c: marshalling of config parameters
450 * init_c.c (kadm5_c_init_with_context): try to cope with old
453 * init_s.c (kadm5_s_init_with_context): actually use some passed
456 * context_s.c (_kadm5_s_init_context): get dbname, acl_file, and
457 stash_file from the config parameters, try to figure out these if
460 1999-11-05 Assar Westerlund <assar@sics.se>
462 * Makefile.am (install-build-headers): use `cp' instead of
465 1999-11-04 Assar Westerlund <assar@sics.se>
467 * Makefile.am: bump version to 4:0:0 and 3:0:0 (they access fields
468 directly in libkrb5's context - bad functions)
470 * set_keys.c (_kadm5_set_keys_randomly): set enctypes correctly in
473 1999-10-20 Assar Westerlund <assar@sics.se>
475 * Makefile.am: set version of kadm5srv to 3:0:2 (new password
477 set version of kdam5clnt to 2:1:1 (no interface changes)
479 * Makefile.am (LDADD): add $(LIB_dlopen)
481 1999-10-17 Assar Westerlund <assar@sics.se>
483 * randkey_s.c (kadm5_s_randkey_principal): use
484 _kadm5_set_keys_randomly
486 * set_keys.c (free_keys): free more memory
487 (_kadm5_set_keys): a little bit more generic
488 (_kadm5_set_keys_randomly): new function for setting random keys.
490 1999-10-14 Assar Westerlund <assar@sics.se>
492 * set_keys.c (_kadm5_set_keys): ignore old keys when setting new
493 ones and always add 3 DES keys and one 3DES key
495 1999-10-03 Assar Westerlund <assar@sics.se>
497 * init_c.c (_kadm5_c_init_context): use `krb5_get_krb_admin_hst'.
498 check return value from strdup
500 1999-09-26 Assar Westerlund <assar@sics.se>
502 * acl.c (_kadm5_privs_to_string): forgot one strcpy_truncate ->
505 1999-09-24 Johan Danielsson <joda@pdc.kth.se>
507 * dump_log.c: remove unused `optind'
509 * replay_log.c: remove unused `optind'
511 1999-09-13 Assar Westerlund <assar@sics.se>
513 * chpass_c.c (kadm5_c_chpass_principal): new _kadm5_client_recv
515 * send_recv.c (_kadm5_client_recv): return result in a `krb5_data'
516 so that we avoid copying it and don't need to dimension in
517 advance. change all callers.
519 1999-09-10 Assar Westerlund <assar@sics.se>
521 * password_quality.c: new file
524 (kadm5_setup_passwd_quality_check,kadm5_check_password_quality):
527 * Makefile.am (S_SOURCES): add password_quality.c
529 1999-07-26 Assar Westerlund <assar@sics.se>
531 * Makefile.am: update versions to 2:0:1
533 1999-07-24 Assar Westerlund <assar@sics.se>
535 * ent_setup.c (_kadm5_setup_entry): make princ_expire_time == 0
536 and pw_expiration == 0 mean never
538 1999-07-22 Assar Westerlund <assar@sics.se>
540 * log.c (kadm5_log_flush): extra cast
542 1999-07-07 Assar Westerlund <assar@sics.se>
544 * marshall.c (store_principal_ent): encoding princ_expire_time and
545 pw_expiration in correct order
547 1999-06-28 Assar Westerlund <assar@sics.se>
549 * randkey_s.c (kadm5_s_randkey_principal): nuke old mkvno,
550 otherwise hdb will think that the new random keys are already
551 encrypted which will cause lots of confusion later.
553 1999-06-23 Assar Westerlund <assar@sics.se>
555 * ent_setup.c (_kadm5_setup_entry): handle 0 == unlimited
556 correctly. From Michal Vocu <michal@karlin.mff.cuni.cz>
558 1999-06-15 Assar Westerlund <assar@sics.se>
560 * init_c.c (get_cred_cache): use get_default_username
562 1999-05-23 Assar Westerlund <assar@sics.se>
564 * create_s.c (create_principal): if there's no default entry the
567 1999-05-21 Assar Westerlund <assar@sics.se>
569 * init_c.c (get_cred_cache): use $USERNAME
571 1999-05-17 Johan Danielsson <joda@pdc.kth.se>
573 * init_c.c (get_cred_cache): figure out principal
575 1999-05-05 Johan Danielsson <joda@pdc.kth.se>
577 * send_recv.c: cleanup _kadm5_client_{send,recv}
579 1999-05-04 Assar Westerlund <assar@sics.se>
581 * set_keys.c (_kadm5_set_keys2): don't check the recently created
582 memory for NULL pointers
584 * private.h (_kadm5_setup_entry): change prototype
586 * modify_s.c: call new _kadm5_setup_entry
588 * ent_setup.c (_kadm5_setup_entry): change so that it takes three
589 masks, one for what bits to set and one for each of principal and
590 def containing the bits that are set there.
592 * create_s.c: call new _kadm5_setup_entry
594 * create_s.c (get_default): check return value
595 (create_principal): send wider mask to _kadm5_setup_entry
597 1999-05-04 Johan Danielsson <joda@pdc.kth.se>
599 * send_recv.c (_kadm5_client_recv): handle arbitrarily sized
600 packets, check for errors
602 * get_c.c: check for failure from _kadm5_client_{send,recv}
604 1999-05-04 Assar Westerlund <assar@sics.se>
606 * init_c.c (get_new_cache): don't abort when interrupted from
609 * destroy_c.c (kadm5_c_destroy): check if we should destroy the
612 1999-05-03 Johan Danielsson <joda@pdc.kth.se>
614 * chpass_s.c: fix arguments to _kadm5_set_keys2
618 * set_keys.c: clear mkvno
620 * rename_s.c: add flags to fetch and store; seal keys before
623 * randkey_s.c: add flags to fetch and store; seal keys before
626 * modify_s.c: add flags to fetch and store; seal keys before
629 * log.c: add flags to fetch and store; seal keys before logging
631 * get_s.c: add flags to fetch and store; seal keys before logging
633 * get_princs_s.c: add flags to fetch and store; seal keys before
636 * delete_s.c: add flags to fetch and store; seal keys before
639 * create_s.c: add flags to fetch and store; seal keys before
642 * chpass_s.c: add flags to fetch and store; seal keys before
645 * Makefile.am: remove server.c
647 * admin.h: add prototypes
649 * ent_setup.c (_kadm5_setup_entry): set key_data
651 * set_keys.c: add _kadm5_set_keys2 to sey keys from key_data
653 * modify_s.c: add kadm5_s_modify_principal_with_key
655 * create_s.c: add kadm5_s_create_principal_with_key
657 * chpass_s.c: add kadm5_s_chpass_principal_with_key
659 * kadm5_locl.h: move stuff to private.h
661 * private.h: move stuff from kadm5_locl.h