12001-01-30 Assar Westerlund <assar@sics.se> 2 3 * Makefile.am: bump versions 4 52000-12-31 Assar Westerlund <assar@sics.se> 6 7 * init_s.c (*): handle krb5_init_context failure consistently 8 * init_c.c (init_context): handle krb5_init_context failure 9 consistently 10 112000-12-11 Assar Westerlund <assar@sics.se> 12 13 * Makefile.am (libkadm5srv_la_LDFLAGS): bump version to 7:2:0 14 152000-11-16 Assar Westerlund <assar@sics.se> 16 17 * set_keys.c (make_keys): clean-up salting loop and try not to 18 leak memory 19 20 * ipropd_master.c (main): check for fd's being too large to select 21 on 22 232000-08-16 Assar Westerlund <assar@sics.se> 24 25 * Makefile.am (libkadm5srv_la_LDFLAGS): bump version to 7:1:0 26 272000-08-10 Assar Westerlund <assar@sics.se> 28 29 * acl.c (fetch_acl): fix wrong cases, use krb5_principal_match 30 312000-08-07 Assar Westerlund <assar@sics.se> 32 33 * ipropd_master.c (main): ignore SIGPIPE 34 352000-08-06 Assar Westerlund <assar@sics.se> 36 37 * ipropd_slave.c (receive_everything): make `fd' an int instead of 38 a pointer. From Derrick J Brashear <shadow@dementia.org> 39 402000-08-04 Johan Danielsson <joda@pdc.kth.se> 41 42 * admin.h: change void** to void* 43 442000-07-25 Johan Danielsson <joda@pdc.kth.se> 45 46 * Makefile.am: bump versions to 7:0:0 and 6:0:2 47 482000-07-24 Assar Westerlund <assar@sics.se> 49 50 * log.c (kadm5_log_get_version): rename kadm5_log_get_version_fd 51 and make a new that takes a context 52 (kadm5_log_nop): add logging of missing lengths 53 (kadm5_log_truncate): new function 54 55 * dump_log.c (print_entry): update and correct 56 * randkey_s.c: call _kadm5_bump_pw_expire 57 * truncate_log.c: new program for truncating the log 58 * Makefile.am (sbin_PROGRAMS): add truncate_log 59 (C_SOURCES): add bump_pw_expire.c 60 * bump_pw_expire.c: new function for extending password expiration 61 622000-07-22 Assar Westerlund <assar@sics.se> 63 64 * keys.c: new file with _kadm5_free_keys, _kadm5_init_keys 65 66 * set_keys.c (free_keys, init_keys): elevate to internal kadm5 67 functions 68 69 * chpass_s.c (kadm5_s_chpass_principal_cond): new function 70 * Makefile.am (C_SOURCES): add keys.c 71 * init_c.c: remove unused variable and handle some parameters 72 being NULL 73 742000-07-22 Johan Danielsson <joda@pdc.kth.se> 75 76 * ipropd_slave.c: use krb5_read_priv_message 77 78 * ipropd_master.c: use krb5_{read,write}_priv_message 79 80 * init_c.c: use krb5_write_priv_message 81 822000-07-11 Johan Danielsson <joda@pdc.kth.se> 83 84 * ipropd_slave.c: no need to call gethostname, since 85 sname_to_principal will 86 87 * send_recv.c: assert that we have a connected socket 88 89 * get_princs_c.c: call _kadm5_connect 90 91 * rename_c.c: call _kadm5_connect 92 93 * randkey_c.c: call _kadm5_connect 94 95 * privs_c.c: call _kadm5_connect 96 97 * modify_c.c: call _kadm5_connect 98 99 * get_c.c: call _kadm5_connect 100 101 * delete_c.c: call _kadm5_connect 102 103 * create_c.c: call _kadm5_connect 104 105 * chpass_c.c: call _kadm5_connect 106 107 * private.h: add more fields to client context; remove prototypes 108 109 * admin.h: remove prototypes 110 111 * kadm5-protos.h: move public prototypes here 112 113 * kadm5-private.h: move private prototypes here 114 115 * init_c.c: break out connection code to separate function, and 116 defer calling it until we actually do something 117 1182000-07-07 Assar Westerlund <assar@sics.se> 119 120 * set_keys.c (make_keys): also support `[kadmin]use_v4_salt' for 121 backwards compatability 122 1232000-06-26 Johan Danielsson <joda@pdc.kth.se> 124 125 * set_keys.c (_kadm5_set_keys): rewrite this to be more easily 126 adaptable to different salts 127 1282000-06-19 Johan Danielsson <joda@pdc.kth.se> 129 130 * get_s.c: pa_* -> KRB5_PADATA_* 131 1322000-06-16 Assar Westerlund <assar@sics.se> 133 134 * ipropd_slave.c: change default keytab to default keytab (as in 135 typically FILE:/etc/krb5.keytab) 136 1372000-06-08 Assar Westerlund <assar@sics.se> 138 139 * ipropd_slave.c: bug fixes, for actually writing the full dump to 140 the database. based on a patch from Love <lha@stacken.kth.se> 141 1422000-06-07 Assar Westerlund <assar@sics.se> 143 144 * acl.c: add support for patterns of principals 145 * log.c (kadm5_log_replay_create): handle more NULL pointers 146 (should they really happen?) 147 * log.c (kadm5_log_replay_modify): handle max_life == NULL and 148 max_renew == NULL 149 150 * ipropd_master.c: use syslog. be less verbose 151 * ipropd_slave.c: use syslog 152 1532000-06-05 Assar Westerlund <assar@sics.se> 154 155 * private.h (kadm_ops): add kadm_nop more prototypes 156 * log.c (kadm5_log_set_version, kadm5_log_reinit, kadm5_log_nop, 157 kadm5_log_replay_nop): add 158 * ipropd_slave.c: and some more improvements 159 * ipropd_master.c: lots of improvements 160 * iprop.h (IPROP_PORT, IPROP_SERVICE): add 161 (iprop_cmd): add new commands 162 163 * dump_log.c: add nop 164 1652000-05-15 Assar Westerlund <assar@sics.se> 166 167 * Makefile.am (libkadm5clnt_la_LDFLAGS): set version to 5:1:1 168 1692000-05-12 Assar Westerlund <assar@sics.se> 170 171 * get_s.c (kadm5_s_get_principal): set life, rlife to INT_MAX as a 172 fallback. handle not having any creator. 173 * destroy_s.c (kadm5_s_destroy): free all allocated memory 174 * context_s.c (set_field): free variable if it's already set 175 (find_db_spec): malloc space for all strings 176 1772000-04-05 Assar Westerlund <assar@sics.se> 178 179 * Makefile.am (LDADD): add LIB_openldap 180 1812000-04-03 Assar Westerlund <assar@sics.se> 182 183 * Makefile.am (libkadm5srv_la_LDFLAGS): set version to 6:0:1 184 (libkadm5clnt_la_LDFLAGS): set version to 5:0:1 185 1862000-03-24 Assar Westerlund <assar@sics.se> 187 188 * set_keys.c (_kadm5_set_keys2): rewrite 189 (_kadm5_set_keys3): add 190 191 * private.h (struct kadm_func): add chpass_principal_with_key 192 * init_c.c (set_funcs): add chpass_principal_with_key 193 1942000-03-23 Assar Westerlund <assar@sics.se> 195 196 * context_s.c (set_funcs): add chpass_principal_with_key 197 * common_glue.c (kadm5_chpass_principal_with_key): add 198 * chpass_s.c: comment-ize and change calling convention for 199 _kadm5_set_keys* 200 * chpass_c.c (kadm5_c_chpass_principal_with_key): add 201 2022000-02-07 Assar Westerlund <assar@sics.se> 203 204 * Makefile.am (libkadm5clnt_la_LDFLAGS): set version to 4:2:0 205 2062000-01-28 Assar Westerlund <assar@sics.se> 207 208 * init_c.c (get_new_cache): make sure to request non-forwardable, 209 non-proxiable 210 2112000-01-06 Assar Westerlund <assar@sics.se> 212 213 * Makefile.am (libkadm5srv.la): bump version to 5:1:0 214 215 * context_s.c (_kadm5_s_init_context): handle params == NULL 216 2171999-12-26 Assar Westerlund <assar@sics.se> 218 219 * get_s.c (kadm5_s_get_principal): handle modified_by->principal 220 == NULL 221 2221999-12-20 Assar Westerlund <assar@sics.se> 223 224 * Makefile.am (libkadm5clnt_la_LDFLAGS): bump version to 4:1:0 225 226 * init_c.c (_kadm5_c_init_context): handle getting back port 227 number from admin host 228 (kadm5_c_init_with_context): remove `proto/' part before doing 229 getaddrinfo() 230 2311999-12-06 Assar Westerlund <assar@sics.se> 232 233 * Makefile.am: bump version to 5:0:0 and 4:0:0 234 235 * init_c.c (kadm5_c_init_with_context): don't use unitialized 236 stuff 237 2381999-12-04 Assar Westerlund <assar@sics.se> 239 240 * replay_log.c: adapt to changed kadm5_log_foreach 241 242 * log.c (kadm5_log_foreach): change to take a 243 `kadm5_server_context' 244 245 * init_c.c: use krb5_warn{,x} 246 247 * dump_log.c: adapt to changed kadm5_log_foreach 248 249 * init_c.c: re-write to use getaddrinfo 250 * Makefile.am (install-build-headers): add dependency 251 2521999-12-03 Johan Danielsson <joda@pdc.kth.se> 253 254 * log.c (kadm5_log_foreach): pass context 255 256 * dump_log.c: print more interesting things 257 2581999-12-02 Johan Danielsson <joda@pdc.kth.se> 259 260 * ipropd_master.c (process_msg): check for short reads 261 2621999-11-25 Assar Westerlund <assar@sics.se> 263 264 * modify_s.c (kadm5_s_modify_principal): support key_data 265 (kadm5_s_modify_principal_with_key): remove 266 267 * admin.h (kadm5_s_modify_principal_with_key): remove 268 2691999-11-20 Assar Westerlund <assar@sics.se> 270 271 * context_s.c (find_db_spec): ugly cast work-around. 272 2731999-11-14 Assar Westerlund <assar@sics.se> 274 275 * context_s.c (_kadm5_s_init_context): call krb5_add_et_list so 276 that we aren't dependent on the layout of krb5_context_data 277 * init_c.c (_kadm5_c_init_context): call krb5_add_et_list so that 278 we aren't dependent on the layout of krb5_context_data 279 2801999-11-13 Assar Westerlund <assar@sics.se> 281 282 * password_quality.c (kadm5_setup_passwd_quality_check): use 283 correct types for function pointers 284 2851999-11-09 Johan Danielsson <joda@pdc.kth.se> 286 287 * randkey_s.c: always bail out if the fetch fails 288 289 * admin.h (kadm5_config_params): remove fields we're not using 290 291 * ipropd_slave.c: allow passing a realm 292 293 * ipropd_master.c: allow passing a realm 294 295 * dump_log.c: allow passing a realm 296 297 * acl.c: correctly get acl file 298 299 * private.h (kadm5_server_context): add config_params struct and 300 remove acl_file; bump protocol version number 301 302 * marshall.c: marshalling of config parameters 303 304 * init_c.c (kadm5_c_init_with_context): try to cope with old 305 servers 306 307 * init_s.c (kadm5_s_init_with_context): actually use some passed 308 values 309 310 * context_s.c (_kadm5_s_init_context): get dbname, acl_file, and 311 stash_file from the config parameters, try to figure out these if 312 they're not provided 313 3141999-11-05 Assar Westerlund <assar@sics.se> 315 316 * Makefile.am (install-build-headers): use `cp' instead of 317 INSTALL_DATA 318 3191999-11-04 Assar Westerlund <assar@sics.se> 320 321 * Makefile.am: bump version to 4:0:0 and 3:0:0 (they access fields 322 directly in libkrb5's context - bad functions) 323 324 * set_keys.c (_kadm5_set_keys_randomly): set enctypes correctly in 325 the copied keys 326 3271999-10-20 Assar Westerlund <assar@sics.se> 328 329 * Makefile.am: set version of kadm5srv to 3:0:2 (new password 330 quality functions). 331 set version of kdam5clnt to 2:1:1 (no interface changes) 332 333 * Makefile.am (LDADD): add $(LIB_dlopen) 334 3351999-10-17 Assar Westerlund <assar@sics.se> 336 337 * randkey_s.c (kadm5_s_randkey_principal): use 338 _kadm5_set_keys_randomly 339 340 * set_keys.c (free_keys): free more memory 341 (_kadm5_set_keys): a little bit more generic 342 (_kadm5_set_keys_randomly): new function for setting random keys. 343 3441999-10-14 Assar Westerlund <assar@sics.se> 345 346 * set_keys.c (_kadm5_set_keys): ignore old keys when setting new 347 ones and always add 3 DES keys and one 3DES key 348 3491999-10-03 Assar Westerlund <assar@sics.se> 350 351 * init_c.c (_kadm5_c_init_context): use `krb5_get_krb_admin_hst'. 352 check return value from strdup 353 3541999-09-26 Assar Westerlund <assar@sics.se> 355 356 * acl.c (_kadm5_privs_to_string): forgot one strcpy_truncate -> 357 strlcpy 358 3591999-09-24 Johan Danielsson <joda@pdc.kth.se> 360 361 * dump_log.c: remove unused `optind' 362 363 * replay_log.c: remove unused `optind' 364 3651999-09-13 Assar Westerlund <assar@sics.se> 366 367 * chpass_c.c (kadm5_c_chpass_principal): new _kadm5_client_recv 368 369 * send_recv.c (_kadm5_client_recv): return result in a `krb5_data' 370 so that we avoid copying it and don't need to dimension in 371 advance. change all callers. 372 3731999-09-10 Assar Westerlund <assar@sics.se> 374 375 * password_quality.c: new file 376 377 * admin.h 378 (kadm5_setup_passwd_quality_check,kadm5_check_password_quality): 379 add prototypes 380 381 * Makefile.am (S_SOURCES): add password_quality.c 382 3831999-07-26 Assar Westerlund <assar@sics.se> 384 385 * Makefile.am: update versions to 2:0:1 386 3871999-07-24 Assar Westerlund <assar@sics.se> 388 389 * ent_setup.c (_kadm5_setup_entry): make princ_expire_time == 0 390 and pw_expiration == 0 mean never 391 3921999-07-22 Assar Westerlund <assar@sics.se> 393 394 * log.c (kadm5_log_flush): extra cast 395 3961999-07-07 Assar Westerlund <assar@sics.se> 397 398 * marshall.c (store_principal_ent): encoding princ_expire_time and 399 pw_expiration in correct order 400 4011999-06-28 Assar Westerlund <assar@sics.se> 402 403 * randkey_s.c (kadm5_s_randkey_principal): nuke old mkvno, 404 otherwise hdb will think that the new random keys are already 405 encrypted which will cause lots of confusion later. 406 4071999-06-23 Assar Westerlund <assar@sics.se> 408 409 * ent_setup.c (_kadm5_setup_entry): handle 0 == unlimited 410 correctly. From Michal Vocu <michal@karlin.mff.cuni.cz> 411 4121999-06-15 Assar Westerlund <assar@sics.se> 413 414 * init_c.c (get_cred_cache): use get_default_username 415 4161999-05-23 Assar Westerlund <assar@sics.se> 417 418 * create_s.c (create_principal): if there's no default entry the 419 mask should be zero. 420 4211999-05-21 Assar Westerlund <assar@sics.se> 422 423 * init_c.c (get_cred_cache): use $USERNAME 424 4251999-05-17 Johan Danielsson <joda@pdc.kth.se> 426 427 * init_c.c (get_cred_cache): figure out principal 428 4291999-05-05 Johan Danielsson <joda@pdc.kth.se> 430 431 * send_recv.c: cleanup _kadm5_client_{send,recv} 432 4331999-05-04 Assar Westerlund <assar@sics.se> 434 435 * set_keys.c (_kadm5_set_keys2): don't check the recently created 436 memory for NULL pointers 437 438 * private.h (_kadm5_setup_entry): change prototype 439 440 * modify_s.c: call new _kadm5_setup_entry 441 442 * ent_setup.c (_kadm5_setup_entry): change so that it takes three 443 masks, one for what bits to set and one for each of principal and 444 def containing the bits that are set there. 445 446 * create_s.c: call new _kadm5_setup_entry 447 448 * create_s.c (get_default): check return value 449 (create_principal): send wider mask to _kadm5_setup_entry 450 4511999-05-04 Johan Danielsson <joda@pdc.kth.se> 452 453 * send_recv.c (_kadm5_client_recv): handle arbitrarily sized 454 packets, check for errors 455 456 * get_c.c: check for failure from _kadm5_client_{send,recv} 457 4581999-05-04 Assar Westerlund <assar@sics.se> 459 460 * init_c.c (get_new_cache): don't abort when interrupted from 461 password prompt 462 463 * destroy_c.c (kadm5_c_destroy): check if we should destroy the 464 auth context 465 4661999-05-03 Johan Danielsson <joda@pdc.kth.se> 467 468 * chpass_s.c: fix arguments to _kadm5_set_keys2 469 470 * private.h: proto 471 472 * set_keys.c: clear mkvno 473 474 * rename_s.c: add flags to fetch and store; seal keys before 475 logging 476 477 * randkey_s.c: add flags to fetch and store; seal keys before 478 logging 479 480 * modify_s.c: add flags to fetch and store; seal keys before 481 logging 482 483 * log.c: add flags to fetch and store; seal keys before logging 484 485 * get_s.c: add flags to fetch and store; seal keys before logging 486 487 * get_princs_s.c: add flags to fetch and store; seal keys before 488 logging 489 490 * delete_s.c: add flags to fetch and store; seal keys before 491 logging 492 493 * create_s.c: add flags to fetch and store; seal keys before 494 logging 495 496 * chpass_s.c: add flags to fetch and store; seal keys before 497 logging 498 499 * Makefile.am: remove server.c 500 501 * admin.h: add prototypes 502 503 * ent_setup.c (_kadm5_setup_entry): set key_data 504 505 * set_keys.c: add _kadm5_set_keys2 to sey keys from key_data 506 507 * modify_s.c: add kadm5_s_modify_principal_with_key 508 509 * create_s.c: add kadm5_s_create_principal_with_key 510 511 * chpass_s.c: add kadm5_s_chpass_principal_with_key 512 513 * kadm5_locl.h: move stuff to private.h 514 515 * private.h: move stuff from kadm5_locl.h 516