12002-08-26 Assar Westerlund <assar@kth.se> 2 3 * ipropd_slave.c (receive_everything): type-correctness calling 4 _krb5_get_int 5 6 * context_s.c (find_db_spec): const-correctness in parameters to 7 krb5_config_get_next 8 92002-08-16 Johan Danielsson <joda@pdc.kth.se> 10 11 * private.h: rename header file flag macro 12 13 * Makefile.am: generate kadm5-{protos,private}.h 14 152002-08-15 Johan Danielsson <joda@pdc.kth.se> 16 17 * ipropd_master.c: check return value of krb5_sockaddr2address 18 192002-07-04 Johan Danielsson <joda@pdc.kth.se> 20 21 * ipropd_master.c: handle slaves that come and go; add status 22 reporting (both from Love) 23 24 * iprop.h: KADM5_SLAVE_STATS 25 262002-03-25 Jacques Vidrine <n@nectar.com> 27 28 * init_c.c (get_cred_cache): bug fix: the default credentials 29 cache was not being used if a client name was specified. 30 312002-03-25 Johan Danielsson <joda@pdc.kth.se> 32 33 * init_c.c (get_cred_cache): when getting the default_client from 34 the cred cache, make sure the instance part is "admin"; this 35 should require fewer uses of -p 36 372002-03-11 Assar Westerlund <assar@sics.se> 38 39 * Makefile.am (libkadm5srv_la_LDFLAGS): set version to 7:5:0 40 (libkadm5clnt_la_LDFLAGS): set version to 6:3:2 41 422002-02-08 Johan Danielsson <joda@pdc.kth.se> 43 44 * init_c.c: we have to create our own param struct before 45 marshaling 46 472001-09-05 Johan Danielsson <joda@pdc.kth.se> 48 49 * Makefile.am: link with LIB_pidfile 50 51 * iprop.h: include util.h for pidfile 52 532001-08-31 Assar Westerlund <assar@sics.se> 54 55 * ipropd_slave.c (main): syslog with the correct name 56 572001-08-30 Jacques Vidrine <n@nectar.com> 58 59 * ipropd_slave.c, ipropd_master.c (main): call pidfile 60 612001-08-28 Assar Westerlund <assar@sics.se> 62 63 * Makefile.am (libkadm5srv_la_LDFLAGS): set version to 7:4:0 64 652001-08-24 Assar Westerlund <assar@sics.se> 66 67 * acl.c (fetch_acl): do not return bogus flags and re-organize 68 function 69 70 * Makefile.am: rename variable name to avoid error from current 71 automake 72 732001-08-13 Johan Danielsson <joda@pdc.kth.se> 74 75 * set_keys.c: add easier afs configuration, defaulting to the 76 local realm in lower case; also try to remove duplicate salts 77 782001-07-12 Assar Westerlund <assar@sics.se> 79 80 * Makefile.am: add required library dependencies 81 822001-07-03 Assar Westerlund <assar@sics.se> 83 84 * Makefile.am (libkadm5clnt_la_LDFLAGS): set version to 6:2:2 85 862001-06-29 Johan Danielsson <joda@pdc.kth.se> 87 88 * init_c.c: call krb5_get_init_creds_opt_set_default_flags 89 902001-02-19 Johan Danielsson <joda@pdc.kth.se> 91 92 * replay_log.c: add --{start-end}-version flags to replay just 93 part of the log 94 952001-02-15 Assar Westerlund <assar@sics.se> 96 97 * ipropd_master.c (main): fix select-loop to decrement ret 98 correctly. from "Brandon S. Allbery KF8NH" <allbery@ece.cmu.edu> 99 1002001-01-30 Assar Westerlund <assar@sics.se> 101 102 * Makefile.am: bump versions 103 1042000-12-31 Assar Westerlund <assar@sics.se> 105 106 * init_s.c (*): handle krb5_init_context failure consistently 107 * init_c.c (init_context): handle krb5_init_context failure 108 consistently 109 1102000-12-11 Assar Westerlund <assar@sics.se> 111 112 * Makefile.am (libkadm5srv_la_LDFLAGS): bump version to 7:2:0 113 1142000-11-16 Assar Westerlund <assar@sics.se> 115 116 * set_keys.c (make_keys): clean-up salting loop and try not to 117 leak memory 118 119 * ipropd_master.c (main): check for fd's being too large to select 120 on 121 1222000-08-16 Assar Westerlund <assar@sics.se> 123 124 * Makefile.am (libkadm5srv_la_LDFLAGS): bump version to 7:1:0 125 1262000-08-10 Assar Westerlund <assar@sics.se> 127 128 * acl.c (fetch_acl): fix wrong cases, use krb5_principal_match 129 1302000-08-07 Assar Westerlund <assar@sics.se> 131 132 * ipropd_master.c (main): ignore SIGPIPE 133 1342000-08-06 Assar Westerlund <assar@sics.se> 135 136 * ipropd_slave.c (receive_everything): make `fd' an int instead of 137 a pointer. From Derrick J Brashear <shadow@dementia.org> 138 1392000-08-04 Johan Danielsson <joda@pdc.kth.se> 140 141 * admin.h: change void** to void* 142 1432000-07-25 Johan Danielsson <joda@pdc.kth.se> 144 145 * Makefile.am: bump versions to 7:0:0 and 6:0:2 146 1472000-07-24 Assar Westerlund <assar@sics.se> 148 149 * log.c (kadm5_log_get_version): rename kadm5_log_get_version_fd 150 and make a new that takes a context 151 (kadm5_log_nop): add logging of missing lengths 152 (kadm5_log_truncate): new function 153 154 * dump_log.c (print_entry): update and correct 155 * randkey_s.c: call _kadm5_bump_pw_expire 156 * truncate_log.c: new program for truncating the log 157 * Makefile.am (sbin_PROGRAMS): add truncate_log 158 (C_SOURCES): add bump_pw_expire.c 159 * bump_pw_expire.c: new function for extending password expiration 160 1612000-07-22 Assar Westerlund <assar@sics.se> 162 163 * keys.c: new file with _kadm5_free_keys, _kadm5_init_keys 164 165 * set_keys.c (free_keys, init_keys): elevate to internal kadm5 166 functions 167 168 * chpass_s.c (kadm5_s_chpass_principal_cond): new function 169 * Makefile.am (C_SOURCES): add keys.c 170 * init_c.c: remove unused variable and handle some parameters 171 being NULL 172 1732000-07-22 Johan Danielsson <joda@pdc.kth.se> 174 175 * ipropd_slave.c: use krb5_read_priv_message 176 177 * ipropd_master.c: use krb5_{read,write}_priv_message 178 179 * init_c.c: use krb5_write_priv_message 180 1812000-07-11 Johan Danielsson <joda@pdc.kth.se> 182 183 * ipropd_slave.c: no need to call gethostname, since 184 sname_to_principal will 185 186 * send_recv.c: assert that we have a connected socket 187 188 * get_princs_c.c: call _kadm5_connect 189 190 * rename_c.c: call _kadm5_connect 191 192 * randkey_c.c: call _kadm5_connect 193 194 * privs_c.c: call _kadm5_connect 195 196 * modify_c.c: call _kadm5_connect 197 198 * get_c.c: call _kadm5_connect 199 200 * delete_c.c: call _kadm5_connect 201 202 * create_c.c: call _kadm5_connect 203 204 * chpass_c.c: call _kadm5_connect 205 206 * private.h: add more fields to client context; remove prototypes 207 208 * admin.h: remove prototypes 209 210 * kadm5-protos.h: move public prototypes here 211 212 * kadm5-private.h: move private prototypes here 213 214 * init_c.c: break out connection code to separate function, and 215 defer calling it until we actually do something 216 2172000-07-07 Assar Westerlund <assar@sics.se> 218 219 * set_keys.c (make_keys): also support `[kadmin]use_v4_salt' for 220 backwards compatability 221 2222000-06-26 Johan Danielsson <joda@pdc.kth.se> 223 224 * set_keys.c (_kadm5_set_keys): rewrite this to be more easily 225 adaptable to different salts 226 2272000-06-19 Johan Danielsson <joda@pdc.kth.se> 228 229 * get_s.c: pa_* -> KRB5_PADATA_* 230 2312000-06-16 Assar Westerlund <assar@sics.se> 232 233 * ipropd_slave.c: change default keytab to default keytab (as in 234 typically FILE:/etc/krb5.keytab) 235 2362000-06-08 Assar Westerlund <assar@sics.se> 237 238 * ipropd_slave.c: bug fixes, for actually writing the full dump to 239 the database. based on a patch from Love <lha@stacken.kth.se> 240 2412000-06-07 Assar Westerlund <assar@sics.se> 242 243 * acl.c: add support for patterns of principals 244 * log.c (kadm5_log_replay_create): handle more NULL pointers 245 (should they really happen?) 246 * log.c (kadm5_log_replay_modify): handle max_life == NULL and 247 max_renew == NULL 248 249 * ipropd_master.c: use syslog. be less verbose 250 * ipropd_slave.c: use syslog 251 2522000-06-05 Assar Westerlund <assar@sics.se> 253 254 * private.h (kadm_ops): add kadm_nop more prototypes 255 * log.c (kadm5_log_set_version, kadm5_log_reinit, kadm5_log_nop, 256 kadm5_log_replay_nop): add 257 * ipropd_slave.c: and some more improvements 258 * ipropd_master.c: lots of improvements 259 * iprop.h (IPROP_PORT, IPROP_SERVICE): add 260 (iprop_cmd): add new commands 261 262 * dump_log.c: add nop 263 2642000-05-15 Assar Westerlund <assar@sics.se> 265 266 * Makefile.am (libkadm5clnt_la_LDFLAGS): set version to 5:1:1 267 2682000-05-12 Assar Westerlund <assar@sics.se> 269 270 * get_s.c (kadm5_s_get_principal): set life, rlife to INT_MAX as a 271 fallback. handle not having any creator. 272 * destroy_s.c (kadm5_s_destroy): free all allocated memory 273 * context_s.c (set_field): free variable if it's already set 274 (find_db_spec): malloc space for all strings 275 2762000-04-05 Assar Westerlund <assar@sics.se> 277 278 * Makefile.am (LDADD): add LIB_openldap 279 2802000-04-03 Assar Westerlund <assar@sics.se> 281 282 * Makefile.am (libkadm5srv_la_LDFLAGS): set version to 6:0:1 283 (libkadm5clnt_la_LDFLAGS): set version to 5:0:1 284 2852000-03-24 Assar Westerlund <assar@sics.se> 286 287 * set_keys.c (_kadm5_set_keys2): rewrite 288 (_kadm5_set_keys3): add 289 290 * private.h (struct kadm_func): add chpass_principal_with_key 291 * init_c.c (set_funcs): add chpass_principal_with_key 292 2932000-03-23 Assar Westerlund <assar@sics.se> 294 295 * context_s.c (set_funcs): add chpass_principal_with_key 296 * common_glue.c (kadm5_chpass_principal_with_key): add 297 * chpass_s.c: comment-ize and change calling convention for 298 _kadm5_set_keys* 299 * chpass_c.c (kadm5_c_chpass_principal_with_key): add 300 3012000-02-07 Assar Westerlund <assar@sics.se> 302 303 * Makefile.am (libkadm5clnt_la_LDFLAGS): set version to 4:2:0 304 3052000-01-28 Assar Westerlund <assar@sics.se> 306 307 * init_c.c (get_new_cache): make sure to request non-forwardable, 308 non-proxiable 309 3102000-01-06 Assar Westerlund <assar@sics.se> 311 312 * Makefile.am (libkadm5srv.la): bump version to 5:1:0 313 314 * context_s.c (_kadm5_s_init_context): handle params == NULL 315 3161999-12-26 Assar Westerlund <assar@sics.se> 317 318 * get_s.c (kadm5_s_get_principal): handle modified_by->principal 319 == NULL 320 3211999-12-20 Assar Westerlund <assar@sics.se> 322 323 * Makefile.am (libkadm5clnt_la_LDFLAGS): bump version to 4:1:0 324 325 * init_c.c (_kadm5_c_init_context): handle getting back port 326 number from admin host 327 (kadm5_c_init_with_context): remove `proto/' part before doing 328 getaddrinfo() 329 3301999-12-06 Assar Westerlund <assar@sics.se> 331 332 * Makefile.am: bump version to 5:0:0 and 4:0:0 333 334 * init_c.c (kadm5_c_init_with_context): don't use unitialized 335 stuff 336 3371999-12-04 Assar Westerlund <assar@sics.se> 338 339 * replay_log.c: adapt to changed kadm5_log_foreach 340 341 * log.c (kadm5_log_foreach): change to take a 342 `kadm5_server_context' 343 344 * init_c.c: use krb5_warn{,x} 345 346 * dump_log.c: adapt to changed kadm5_log_foreach 347 348 * init_c.c: re-write to use getaddrinfo 349 * Makefile.am (install-build-headers): add dependency 350 3511999-12-03 Johan Danielsson <joda@pdc.kth.se> 352 353 * log.c (kadm5_log_foreach): pass context 354 355 * dump_log.c: print more interesting things 356 3571999-12-02 Johan Danielsson <joda@pdc.kth.se> 358 359 * ipropd_master.c (process_msg): check for short reads 360 3611999-11-25 Assar Westerlund <assar@sics.se> 362 363 * modify_s.c (kadm5_s_modify_principal): support key_data 364 (kadm5_s_modify_principal_with_key): remove 365 366 * admin.h (kadm5_s_modify_principal_with_key): remove 367 3681999-11-20 Assar Westerlund <assar@sics.se> 369 370 * context_s.c (find_db_spec): ugly cast work-around. 371 3721999-11-14 Assar Westerlund <assar@sics.se> 373 374 * context_s.c (_kadm5_s_init_context): call krb5_add_et_list so 375 that we aren't dependent on the layout of krb5_context_data 376 * init_c.c (_kadm5_c_init_context): call krb5_add_et_list so that 377 we aren't dependent on the layout of krb5_context_data 378 3791999-11-13 Assar Westerlund <assar@sics.se> 380 381 * password_quality.c (kadm5_setup_passwd_quality_check): use 382 correct types for function pointers 383 3841999-11-09 Johan Danielsson <joda@pdc.kth.se> 385 386 * randkey_s.c: always bail out if the fetch fails 387 388 * admin.h (kadm5_config_params): remove fields we're not using 389 390 * ipropd_slave.c: allow passing a realm 391 392 * ipropd_master.c: allow passing a realm 393 394 * dump_log.c: allow passing a realm 395 396 * acl.c: correctly get acl file 397 398 * private.h (kadm5_server_context): add config_params struct and 399 remove acl_file; bump protocol version number 400 401 * marshall.c: marshalling of config parameters 402 403 * init_c.c (kadm5_c_init_with_context): try to cope with old 404 servers 405 406 * init_s.c (kadm5_s_init_with_context): actually use some passed 407 values 408 409 * context_s.c (_kadm5_s_init_context): get dbname, acl_file, and 410 stash_file from the config parameters, try to figure out these if 411 they're not provided 412 4131999-11-05 Assar Westerlund <assar@sics.se> 414 415 * Makefile.am (install-build-headers): use `cp' instead of 416 INSTALL_DATA 417 4181999-11-04 Assar Westerlund <assar@sics.se> 419 420 * Makefile.am: bump version to 4:0:0 and 3:0:0 (they access fields 421 directly in libkrb5's context - bad functions) 422 423 * set_keys.c (_kadm5_set_keys_randomly): set enctypes correctly in 424 the copied keys 425 4261999-10-20 Assar Westerlund <assar@sics.se> 427 428 * Makefile.am: set version of kadm5srv to 3:0:2 (new password 429 quality functions). 430 set version of kdam5clnt to 2:1:1 (no interface changes) 431 432 * Makefile.am (LDADD): add $(LIB_dlopen) 433 4341999-10-17 Assar Westerlund <assar@sics.se> 435 436 * randkey_s.c (kadm5_s_randkey_principal): use 437 _kadm5_set_keys_randomly 438 439 * set_keys.c (free_keys): free more memory 440 (_kadm5_set_keys): a little bit more generic 441 (_kadm5_set_keys_randomly): new function for setting random keys. 442 4431999-10-14 Assar Westerlund <assar@sics.se> 444 445 * set_keys.c (_kadm5_set_keys): ignore old keys when setting new 446 ones and always add 3 DES keys and one 3DES key 447 4481999-10-03 Assar Westerlund <assar@sics.se> 449 450 * init_c.c (_kadm5_c_init_context): use `krb5_get_krb_admin_hst'. 451 check return value from strdup 452 4531999-09-26 Assar Westerlund <assar@sics.se> 454 455 * acl.c (_kadm5_privs_to_string): forgot one strcpy_truncate -> 456 strlcpy 457 4581999-09-24 Johan Danielsson <joda@pdc.kth.se> 459 460 * dump_log.c: remove unused `optind' 461 462 * replay_log.c: remove unused `optind' 463 4641999-09-13 Assar Westerlund <assar@sics.se> 465 466 * chpass_c.c (kadm5_c_chpass_principal): new _kadm5_client_recv 467 468 * send_recv.c (_kadm5_client_recv): return result in a `krb5_data' 469 so that we avoid copying it and don't need to dimension in 470 advance. change all callers. 471 4721999-09-10 Assar Westerlund <assar@sics.se> 473 474 * password_quality.c: new file 475 476 * admin.h 477 (kadm5_setup_passwd_quality_check,kadm5_check_password_quality): 478 add prototypes 479 480 * Makefile.am (S_SOURCES): add password_quality.c 481 4821999-07-26 Assar Westerlund <assar@sics.se> 483 484 * Makefile.am: update versions to 2:0:1 485 4861999-07-24 Assar Westerlund <assar@sics.se> 487 488 * ent_setup.c (_kadm5_setup_entry): make princ_expire_time == 0 489 and pw_expiration == 0 mean never 490 4911999-07-22 Assar Westerlund <assar@sics.se> 492 493 * log.c (kadm5_log_flush): extra cast 494 4951999-07-07 Assar Westerlund <assar@sics.se> 496 497 * marshall.c (store_principal_ent): encoding princ_expire_time and 498 pw_expiration in correct order 499 5001999-06-28 Assar Westerlund <assar@sics.se> 501 502 * randkey_s.c (kadm5_s_randkey_principal): nuke old mkvno, 503 otherwise hdb will think that the new random keys are already 504 encrypted which will cause lots of confusion later. 505 5061999-06-23 Assar Westerlund <assar@sics.se> 507 508 * ent_setup.c (_kadm5_setup_entry): handle 0 == unlimited 509 correctly. From Michal Vocu <michal@karlin.mff.cuni.cz> 510 5111999-06-15 Assar Westerlund <assar@sics.se> 512 513 * init_c.c (get_cred_cache): use get_default_username 514 5151999-05-23 Assar Westerlund <assar@sics.se> 516 517 * create_s.c (create_principal): if there's no default entry the 518 mask should be zero. 519 5201999-05-21 Assar Westerlund <assar@sics.se> 521 522 * init_c.c (get_cred_cache): use $USERNAME 523 5241999-05-17 Johan Danielsson <joda@pdc.kth.se> 525 526 * init_c.c (get_cred_cache): figure out principal 527 5281999-05-05 Johan Danielsson <joda@pdc.kth.se> 529 530 * send_recv.c: cleanup _kadm5_client_{send,recv} 531 5321999-05-04 Assar Westerlund <assar@sics.se> 533 534 * set_keys.c (_kadm5_set_keys2): don't check the recently created 535 memory for NULL pointers 536 537 * private.h (_kadm5_setup_entry): change prototype 538 539 * modify_s.c: call new _kadm5_setup_entry 540 541 * ent_setup.c (_kadm5_setup_entry): change so that it takes three 542 masks, one for what bits to set and one for each of principal and 543 def containing the bits that are set there. 544 545 * create_s.c: call new _kadm5_setup_entry 546 547 * create_s.c (get_default): check return value 548 (create_principal): send wider mask to _kadm5_setup_entry 549 5501999-05-04 Johan Danielsson <joda@pdc.kth.se> 551 552 * send_recv.c (_kadm5_client_recv): handle arbitrarily sized 553 packets, check for errors 554 555 * get_c.c: check for failure from _kadm5_client_{send,recv} 556 5571999-05-04 Assar Westerlund <assar@sics.se> 558 559 * init_c.c (get_new_cache): don't abort when interrupted from 560 password prompt 561 562 * destroy_c.c (kadm5_c_destroy): check if we should destroy the 563 auth context 564 5651999-05-03 Johan Danielsson <joda@pdc.kth.se> 566 567 * chpass_s.c: fix arguments to _kadm5_set_keys2 568 569 * private.h: proto 570 571 * set_keys.c: clear mkvno 572 573 * rename_s.c: add flags to fetch and store; seal keys before 574 logging 575 576 * randkey_s.c: add flags to fetch and store; seal keys before 577 logging 578 579 * modify_s.c: add flags to fetch and store; seal keys before 580 logging 581 582 * log.c: add flags to fetch and store; seal keys before logging 583 584 * get_s.c: add flags to fetch and store; seal keys before logging 585 586 * get_princs_s.c: add flags to fetch and store; seal keys before 587 logging 588 589 * delete_s.c: add flags to fetch and store; seal keys before 590 logging 591 592 * create_s.c: add flags to fetch and store; seal keys before 593 logging 594 595 * chpass_s.c: add flags to fetch and store; seal keys before 596 logging 597 598 * Makefile.am: remove server.c 599 600 * admin.h: add prototypes 601 602 * ent_setup.c (_kadm5_setup_entry): set key_data 603 604 * set_keys.c: add _kadm5_set_keys2 to sey keys from key_data 605 606 * modify_s.c: add kadm5_s_modify_principal_with_key 607 608 * create_s.c: add kadm5_s_create_principal_with_key 609 610 * chpass_s.c: add kadm5_s_chpass_principal_with_key 611 612 * kadm5_locl.h: move stuff to private.h 613 614 * private.h: move stuff from kadm5_locl.h 615 616