xref: /freebsd/crypto/heimdal/lib/kadm5/ChangeLog (revision 50d8893512e3c7160398bff7e3f9f056e1220fc1) 
12002-02-08  Johan Danielsson  <joda@pdc.kth.se>
2
3	* init_c.c: we have to create our own param struct before
4	marshaling
5
62001-09-05  Johan Danielsson  <joda@pdc.kth.se>
7
8	* Makefile.am: link with LIB_pidfile
9
10	* iprop.h: include util.h for pidfile
11
122001-08-31  Assar Westerlund  <assar@sics.se>
13
14	* ipropd_slave.c (main): syslog with the correct name
15
162001-08-30  Jacques Vidrine <n@nectar.com>
17
18	* ipropd_slave.c, ipropd_master.c (main): call pidfile
19
202001-08-28  Assar Westerlund  <assar@sics.se>
21
22	* Makefile.am (libkadm5srv_la_LDFLAGS): set version to 7:4:0
23
242001-08-24  Assar Westerlund  <assar@sics.se>
25
26	* acl.c (fetch_acl): do not return bogus flags and re-organize
27	function
28
29	* Makefile.am: rename variable name to avoid error from current
30	automake
31
322001-08-13  Johan Danielsson  <joda@pdc.kth.se>
33
34	* set_keys.c: add easier afs configuration, defaulting to the
35	local realm in lower case; also try to remove duplicate salts
36
372001-07-12  Assar Westerlund  <assar@sics.se>
38
39	* Makefile.am: add required library dependencies
40
412001-07-03  Assar Westerlund  <assar@sics.se>
42
43	* Makefile.am (libkadm5clnt_la_LDFLAGS): set version to 6:2:2
44
452001-06-29  Johan Danielsson  <joda@pdc.kth.se>
46
47	* init_c.c: call krb5_get_init_creds_opt_set_default_flags
48
492001-02-19  Johan Danielsson  <joda@pdc.kth.se>
50
51	* replay_log.c: add --{start-end}-version flags to replay just
52	part of the log
53
542001-02-15  Assar Westerlund  <assar@sics.se>
55
56	* ipropd_master.c (main): fix select-loop to decrement ret
57	correctly.  from "Brandon S. Allbery KF8NH" <allbery@ece.cmu.edu>
58
592001-01-30  Assar Westerlund  <assar@sics.se>
60
61	* Makefile.am: bump versions
62
632000-12-31  Assar Westerlund  <assar@sics.se>
64
65	* init_s.c (*): handle krb5_init_context failure consistently
66	* init_c.c (init_context): handle krb5_init_context failure
67	consistently
68
692000-12-11  Assar Westerlund  <assar@sics.se>
70
71	* Makefile.am (libkadm5srv_la_LDFLAGS): bump version to 7:2:0
72
732000-11-16  Assar Westerlund  <assar@sics.se>
74
75	* set_keys.c (make_keys): clean-up salting loop and try not to
76	leak memory
77
78	* ipropd_master.c (main): check for fd's being too large to select
79	on
80
812000-08-16  Assar Westerlund  <assar@sics.se>
82
83	* Makefile.am (libkadm5srv_la_LDFLAGS): bump version to 7:1:0
84
852000-08-10  Assar Westerlund  <assar@sics.se>
86
87	* acl.c (fetch_acl): fix wrong cases, use krb5_principal_match
88
892000-08-07  Assar Westerlund  <assar@sics.se>
90
91	* ipropd_master.c (main): ignore SIGPIPE
92
932000-08-06  Assar Westerlund  <assar@sics.se>
94
95	* ipropd_slave.c (receive_everything): make `fd' an int instead of
96	a pointer.  From Derrick J Brashear <shadow@dementia.org>
97
982000-08-04  Johan Danielsson  <joda@pdc.kth.se>
99
100	* admin.h: change void** to void*
101
1022000-07-25  Johan Danielsson  <joda@pdc.kth.se>
103
104	* Makefile.am: bump versions to 7:0:0 and 6:0:2
105
1062000-07-24  Assar Westerlund  <assar@sics.se>
107
108	* log.c (kadm5_log_get_version): rename kadm5_log_get_version_fd
109	and make a new that takes a context
110	(kadm5_log_nop): add logging of missing lengths
111	(kadm5_log_truncate): new function
112
113	* dump_log.c (print_entry): update and correct
114	* randkey_s.c: call _kadm5_bump_pw_expire
115	* truncate_log.c: new program for truncating the log
116	* Makefile.am (sbin_PROGRAMS): add truncate_log
117	(C_SOURCES): add bump_pw_expire.c
118	* bump_pw_expire.c: new function for extending password expiration
119
1202000-07-22  Assar Westerlund  <assar@sics.se>
121
122	* keys.c: new file with _kadm5_free_keys, _kadm5_init_keys
123
124	* set_keys.c (free_keys, init_keys): elevate to internal kadm5
125	functions
126
127	* chpass_s.c (kadm5_s_chpass_principal_cond): new function
128	* Makefile.am (C_SOURCES): add keys.c
129	* init_c.c: remove unused variable and handle some parameters
130	being NULL
131
1322000-07-22  Johan Danielsson  <joda@pdc.kth.se>
133
134	* ipropd_slave.c: use krb5_read_priv_message
135
136	* ipropd_master.c: use krb5_{read,write}_priv_message
137
138	* init_c.c: use krb5_write_priv_message
139
1402000-07-11  Johan Danielsson  <joda@pdc.kth.se>
141
142	* ipropd_slave.c: no need to call gethostname, since
143	sname_to_principal will
144
145	* send_recv.c: assert that we have a connected socket
146
147	* get_princs_c.c: call _kadm5_connect
148
149	* rename_c.c: call _kadm5_connect
150
151	* randkey_c.c: call _kadm5_connect
152
153	* privs_c.c: call _kadm5_connect
154
155	* modify_c.c: call _kadm5_connect
156
157	* get_c.c: call _kadm5_connect
158
159	* delete_c.c: call _kadm5_connect
160
161	* create_c.c: call _kadm5_connect
162
163	* chpass_c.c: call _kadm5_connect
164
165	* private.h: add more fields to client context; remove prototypes
166
167	* admin.h: remove prototypes
168
169	* kadm5-protos.h: move public prototypes here
170
171	* kadm5-private.h: move private prototypes here
172
173	* init_c.c: break out connection code to separate function, and
174	defer calling it until we actually do something
175
1762000-07-07  Assar Westerlund  <assar@sics.se>
177
178	* set_keys.c (make_keys): also support `[kadmin]use_v4_salt' for
179	backwards compatability
180
1812000-06-26  Johan Danielsson  <joda@pdc.kth.se>
182
183	* set_keys.c (_kadm5_set_keys): rewrite this to be more easily
184	adaptable to different salts
185
1862000-06-19  Johan Danielsson  <joda@pdc.kth.se>
187
188	* get_s.c: pa_* -> KRB5_PADATA_*
189
1902000-06-16  Assar Westerlund  <assar@sics.se>
191
192	* ipropd_slave.c: change default keytab to default keytab (as in
193	typically FILE:/etc/krb5.keytab)
194
1952000-06-08  Assar Westerlund  <assar@sics.se>
196
197	* ipropd_slave.c: bug fixes, for actually writing the full dump to
198	the database.  based on a patch from Love <lha@stacken.kth.se>
199
2002000-06-07  Assar Westerlund  <assar@sics.se>
201
202	* acl.c: add support for patterns of principals
203	* log.c (kadm5_log_replay_create): handle more NULL pointers
204	(should they really happen?)
205	* log.c (kadm5_log_replay_modify): handle max_life == NULL and
206	max_renew == NULL
207
208	* ipropd_master.c: use syslog.  be less verbose
209	* ipropd_slave.c: use syslog
210
2112000-06-05  Assar Westerlund  <assar@sics.se>
212
213	* private.h (kadm_ops): add kadm_nop more prototypes
214	* log.c (kadm5_log_set_version, kadm5_log_reinit, kadm5_log_nop,
215	kadm5_log_replay_nop): add
216	* ipropd_slave.c: and some more improvements
217	* ipropd_master.c: lots of improvements
218	* iprop.h (IPROP_PORT, IPROP_SERVICE): add
219	(iprop_cmd): add new commands
220
221	* dump_log.c: add nop
222
2232000-05-15  Assar Westerlund  <assar@sics.se>
224
225	* Makefile.am (libkadm5clnt_la_LDFLAGS): set version to 5:1:1
226
2272000-05-12  Assar Westerlund  <assar@sics.se>
228
229	* get_s.c (kadm5_s_get_principal): set life, rlife to INT_MAX as a
230	fallback.  handle not having any creator.
231	* destroy_s.c (kadm5_s_destroy): free all allocated memory
232	* context_s.c (set_field): free variable if it's already set
233	(find_db_spec): malloc space for all strings
234
2352000-04-05  Assar Westerlund  <assar@sics.se>
236
237	* Makefile.am (LDADD): add LIB_openldap
238
2392000-04-03  Assar Westerlund  <assar@sics.se>
240
241	* Makefile.am (libkadm5srv_la_LDFLAGS): set version to 6:0:1
242	(libkadm5clnt_la_LDFLAGS): set version to 5:0:1
243
2442000-03-24  Assar Westerlund  <assar@sics.se>
245
246	* set_keys.c (_kadm5_set_keys2): rewrite
247	(_kadm5_set_keys3): add
248
249	* private.h (struct kadm_func): add chpass_principal_with_key
250	* init_c.c (set_funcs): add chpass_principal_with_key
251
2522000-03-23  Assar Westerlund  <assar@sics.se>
253
254	* context_s.c (set_funcs): add chpass_principal_with_key
255	* common_glue.c (kadm5_chpass_principal_with_key): add
256	* chpass_s.c: comment-ize and change calling convention for
257	_kadm5_set_keys*
258	* chpass_c.c (kadm5_c_chpass_principal_with_key): add
259
2602000-02-07  Assar Westerlund  <assar@sics.se>
261
262	* Makefile.am (libkadm5clnt_la_LDFLAGS): set version to 4:2:0
263
2642000-01-28  Assar Westerlund  <assar@sics.se>
265
266	* init_c.c (get_new_cache): make sure to request non-forwardable,
267	non-proxiable
268
2692000-01-06  Assar Westerlund  <assar@sics.se>
270
271	* Makefile.am (libkadm5srv.la): bump version to 5:1:0
272
273	* context_s.c (_kadm5_s_init_context): handle params == NULL
274
2751999-12-26  Assar Westerlund  <assar@sics.se>
276
277	* get_s.c (kadm5_s_get_principal): handle modified_by->principal
278 	== NULL
279
2801999-12-20  Assar Westerlund  <assar@sics.se>
281
282	* Makefile.am (libkadm5clnt_la_LDFLAGS): bump version to 4:1:0
283
284	* init_c.c (_kadm5_c_init_context): handle getting back port
285 	number from admin host
286	(kadm5_c_init_with_context): remove `proto/' part before doing
287	getaddrinfo()
288
2891999-12-06  Assar Westerlund  <assar@sics.se>
290
291	* Makefile.am: bump version to 5:0:0 and 4:0:0
292
293	* init_c.c (kadm5_c_init_with_context): don't use unitialized
294 	stuff
295
2961999-12-04  Assar Westerlund  <assar@sics.se>
297
298	* replay_log.c: adapt to changed kadm5_log_foreach
299
300	* log.c (kadm5_log_foreach): change to take a
301 	`kadm5_server_context'
302
303	* init_c.c: use krb5_warn{,x}
304
305	* dump_log.c: adapt to changed kadm5_log_foreach
306
307	* init_c.c: re-write to use getaddrinfo
308	* Makefile.am (install-build-headers): add dependency
309
3101999-12-03  Johan Danielsson  <joda@pdc.kth.se>
311
312	* log.c (kadm5_log_foreach): pass context
313
314	* dump_log.c: print more interesting things
315
3161999-12-02  Johan Danielsson  <joda@pdc.kth.se>
317
318	* ipropd_master.c (process_msg): check for short reads
319
3201999-11-25  Assar Westerlund  <assar@sics.se>
321
322	* modify_s.c (kadm5_s_modify_principal): support key_data
323	(kadm5_s_modify_principal_with_key): remove
324
325	* admin.h (kadm5_s_modify_principal_with_key): remove
326
3271999-11-20  Assar Westerlund  <assar@sics.se>
328
329	* context_s.c (find_db_spec): ugly cast work-around.
330
3311999-11-14  Assar Westerlund  <assar@sics.se>
332
333	* context_s.c (_kadm5_s_init_context): call krb5_add_et_list so
334 	that we aren't dependent on the layout of krb5_context_data
335	* init_c.c (_kadm5_c_init_context): call krb5_add_et_list so that
336 	we aren't dependent on the layout of krb5_context_data
337
3381999-11-13  Assar Westerlund  <assar@sics.se>
339
340	* password_quality.c (kadm5_setup_passwd_quality_check): use
341	correct types for function pointers
342
3431999-11-09  Johan Danielsson  <joda@pdc.kth.se>
344
345	* randkey_s.c: always bail out if the fetch fails
346
347	* admin.h (kadm5_config_params): remove fields we're not using
348
349	* ipropd_slave.c: allow passing a realm
350
351	* ipropd_master.c: allow passing a realm
352
353	* dump_log.c: allow passing a realm
354
355	* acl.c: correctly get acl file
356
357	* private.h (kadm5_server_context): add config_params struct and
358	remove acl_file; bump protocol version number
359
360	* marshall.c: marshalling of config parameters
361
362	* init_c.c (kadm5_c_init_with_context): try to cope with old
363	servers
364
365	* init_s.c (kadm5_s_init_with_context): actually use some passed
366	values
367
368	* context_s.c (_kadm5_s_init_context): get dbname, acl_file, and
369	stash_file from the config parameters, try to figure out these if
370	they're not provided
371
3721999-11-05  Assar Westerlund  <assar@sics.se>
373
374	* Makefile.am (install-build-headers): use `cp' instead of
375 	INSTALL_DATA
376
3771999-11-04  Assar Westerlund  <assar@sics.se>
378
379	* Makefile.am: bump version to 4:0:0 and 3:0:0 (they access fields
380 	directly in libkrb5's context - bad functions)
381
382	* set_keys.c (_kadm5_set_keys_randomly): set enctypes correctly in
383 	the copied keys
384
3851999-10-20  Assar Westerlund  <assar@sics.se>
386
387	* Makefile.am: set version of kadm5srv to 3:0:2 (new password
388 	quality functions).
389 	set version of kdam5clnt to 2:1:1 (no interface changes)
390
391	* Makefile.am (LDADD): add $(LIB_dlopen)
392
3931999-10-17  Assar Westerlund  <assar@sics.se>
394
395	* randkey_s.c (kadm5_s_randkey_principal): use
396 	_kadm5_set_keys_randomly
397
398	* set_keys.c (free_keys): free more memory
399	(_kadm5_set_keys): a little bit more generic
400	(_kadm5_set_keys_randomly): new function for setting random keys.
401
4021999-10-14  Assar Westerlund  <assar@sics.se>
403
404	* set_keys.c (_kadm5_set_keys): ignore old keys when setting new
405 	ones and always add 3 DES keys and one 3DES key
406
4071999-10-03  Assar Westerlund  <assar@sics.se>
408
409	* init_c.c (_kadm5_c_init_context): use `krb5_get_krb_admin_hst'.
410  	check return value from strdup
411
4121999-09-26  Assar Westerlund  <assar@sics.se>
413
414	* acl.c (_kadm5_privs_to_string): forgot one strcpy_truncate ->
415 	strlcpy
416
4171999-09-24  Johan Danielsson  <joda@pdc.kth.se>
418
419	* dump_log.c: remove unused `optind'
420
421	* replay_log.c: remove unused `optind'
422
4231999-09-13  Assar Westerlund  <assar@sics.se>
424
425	* chpass_c.c (kadm5_c_chpass_principal): new _kadm5_client_recv
426
427	* send_recv.c (_kadm5_client_recv): return result in a `krb5_data'
428 	so that we avoid copying it and don't need to dimension in
429 	advance.  change all callers.
430
4311999-09-10  Assar Westerlund  <assar@sics.se>
432
433	* password_quality.c: new file
434
435	* admin.h
436 	(kadm5_setup_passwd_quality_check,kadm5_check_password_quality):
437 	add prototypes
438
439	* Makefile.am (S_SOURCES): add password_quality.c
440
4411999-07-26  Assar Westerlund  <assar@sics.se>
442
443	* Makefile.am: update versions to 2:0:1
444
4451999-07-24  Assar Westerlund  <assar@sics.se>
446
447	* ent_setup.c (_kadm5_setup_entry): make princ_expire_time == 0
448 	and pw_expiration == 0 mean never
449
4501999-07-22  Assar Westerlund  <assar@sics.se>
451
452	* log.c (kadm5_log_flush): extra cast
453
4541999-07-07  Assar Westerlund  <assar@sics.se>
455
456	* marshall.c (store_principal_ent): encoding princ_expire_time and
457 	pw_expiration in correct order
458
4591999-06-28  Assar Westerlund  <assar@sics.se>
460
461	* randkey_s.c (kadm5_s_randkey_principal): nuke old mkvno,
462 	otherwise hdb will think that the new random keys are already
463 	encrypted which will cause lots of confusion later.
464
4651999-06-23  Assar Westerlund  <assar@sics.se>
466
467	* ent_setup.c (_kadm5_setup_entry): handle 0 == unlimited
468 	correctly.  From Michal Vocu <michal@karlin.mff.cuni.cz>
469
4701999-06-15  Assar Westerlund  <assar@sics.se>
471
472	* init_c.c (get_cred_cache): use get_default_username
473
4741999-05-23  Assar Westerlund  <assar@sics.se>
475
476	* create_s.c (create_principal): if there's no default entry the
477	mask should be zero.
478
4791999-05-21  Assar Westerlund  <assar@sics.se>
480
481	* init_c.c (get_cred_cache): use $USERNAME
482
4831999-05-17  Johan Danielsson  <joda@pdc.kth.se>
484
485	* init_c.c (get_cred_cache): figure out principal
486
4871999-05-05  Johan Danielsson  <joda@pdc.kth.se>
488
489	* send_recv.c: cleanup _kadm5_client_{send,recv}
490
4911999-05-04  Assar Westerlund  <assar@sics.se>
492
493	* set_keys.c (_kadm5_set_keys2): don't check the recently created
494 	memory for NULL pointers
495
496	* private.h (_kadm5_setup_entry): change prototype
497
498	* modify_s.c: call new _kadm5_setup_entry
499
500	* ent_setup.c (_kadm5_setup_entry): change so that it takes three
501 	masks, one for what bits to set and one for each of principal and
502 	def containing the bits that are set there.
503
504	* create_s.c: call new _kadm5_setup_entry
505
506	* create_s.c (get_default): check return value
507	(create_principal): send wider mask to _kadm5_setup_entry
508
5091999-05-04  Johan Danielsson  <joda@pdc.kth.se>
510
511	* send_recv.c (_kadm5_client_recv): handle arbitrarily sized
512	packets, check for errors
513
514	* get_c.c: check for failure from _kadm5_client_{send,recv}
515
5161999-05-04  Assar Westerlund  <assar@sics.se>
517
518	* init_c.c (get_new_cache): don't abort when interrupted from
519 	password prompt
520
521	* destroy_c.c (kadm5_c_destroy): check if we should destroy the
522 	auth context
523
5241999-05-03  Johan Danielsson  <joda@pdc.kth.se>
525
526	* chpass_s.c: fix arguments to _kadm5_set_keys2
527
528	* private.h: proto
529
530	* set_keys.c: clear mkvno
531
532	* rename_s.c: add flags to fetch and store; seal keys before
533	logging
534
535	* randkey_s.c: add flags to fetch and store; seal keys before
536	logging
537
538	* modify_s.c: add flags to fetch and store; seal keys before
539	logging
540
541	* log.c: add flags to fetch and store; seal keys before logging
542
543	* get_s.c: add flags to fetch and store; seal keys before logging
544
545	* get_princs_s.c: add flags to fetch and store; seal keys before
546	logging
547
548	* delete_s.c: add flags to fetch and store; seal keys before
549	logging
550
551	* create_s.c: add flags to fetch and store; seal keys before
552	logging
553
554	* chpass_s.c: add flags to fetch and store; seal keys before
555	logging
556
557	* Makefile.am: remove server.c
558
559	* admin.h: add prototypes
560
561	* ent_setup.c (_kadm5_setup_entry): set key_data
562
563	* set_keys.c: add _kadm5_set_keys2 to sey keys from key_data
564
565	* modify_s.c: add kadm5_s_modify_principal_with_key
566
567	* create_s.c: add kadm5_s_create_principal_with_key
568
569	* chpass_s.c: add kadm5_s_chpass_principal_with_key
570
571	* kadm5_locl.h: move stuff to private.h
572
573	* private.h: move stuff from kadm5_locl.h
574
575