629 lines
17 KiB
Plaintext
629 lines
17 KiB
Plaintext
2003-04-14 Love Hörquist Åstrand <lha@it.su.se>
|
|
|
|
* util.c: cast argument to tolower to unsigned char, from
|
|
Christian Biere <christianbiere@gmx.de> via NetBSD
|
|
|
|
2003-04-06 Love Hörquist Åstrand <lha@it.su.se>
|
|
|
|
* kadmind.8: s/kerberos/Kerberos/
|
|
|
|
2003-03-31 Love Hörquist Åstrand <lha@it.su.se>
|
|
|
|
* kadmin.8: initialises -> initializes, from Perry E. Metzger"
|
|
<perry@piermont.com>
|
|
|
|
* kadmin.c: principal, not pricipal. From Thomas Klausner
|
|
<wiz@netbsd.org>
|
|
|
|
2003-02-04 Love Hörquist Åstrand <lha@it.su.se>
|
|
|
|
* kadmind.8: spelling, from jmc <jmc@prioris.mini.pw.edu.pl>
|
|
|
|
* kadmin.8: spelling, from jmc <jmc@prioris.mini.pw.edu.pl>
|
|
|
|
2003-01-29 Love Hörquist Åstrand <lha@it.su.se>
|
|
|
|
* server.c (kadmind_dispatch): kadm_chpass: require the password
|
|
to pass the password quality check in case the user changes the
|
|
user's own password kadm_chpass_with_key: disallow the user to
|
|
change it own password to a key, since that password might violate
|
|
the password quality check.
|
|
|
|
2002-10-23 Assar Westerlund <assar@kth.se>
|
|
|
|
* version4.c (decode_packet): check the length of the version
|
|
string and that rlen has a reasonable value
|
|
|
|
2002-10-21 Johan Danielsson <joda@pdc.kth.se>
|
|
|
|
* version4.c: check size of rlen
|
|
|
|
2002-09-10 Johan Danielsson <joda@pdc.kth.se>
|
|
|
|
* server.c: constify match_appl_version()
|
|
|
|
* version4.c: change some lingering krb_err_base
|
|
|
|
2002-09-09 Jacques Vidrine <nectar@kth.se>
|
|
|
|
* server.c (kadmind_dispatch): while decoding arguments for
|
|
kadm_chpass_with_key, sanity check the number of keys given.
|
|
Potential problem pointed out by
|
|
Sebastian Krahmer <krahmer@suse.de>.
|
|
|
|
2002-09-04 Johan Danielsson <joda@pdc.kth.se>
|
|
|
|
* load.c (parse_generation): return if there is no generation
|
|
(spotted by Daniel Kouril)
|
|
|
|
2002-06-07 Jacques Vidrine <n@nectar.com>
|
|
|
|
* ank.c: do not attempt to free uninitialized pointer when
|
|
kadm5_randkey_principal fails.
|
|
|
|
2002-06-07 Johan Danielsson <joda@pdc.kth.se>
|
|
|
|
* util.c: remove unused variable; reported by Hans Insulander
|
|
|
|
2002-03-05 Johan Danielsson <joda@pdc.kth.se>
|
|
|
|
* kadmind.8: clarify some acl wording, and add an example file
|
|
|
|
2002-02-11 Johan Danielsson <joda@pdc.kth.se>
|
|
|
|
* ext.c: no need to use the "modify" keytab anymore
|
|
|
|
2001-09-20 Assar Westerlund <assar@sics.se>
|
|
|
|
* add-random-users.c: allocate several buffers for the list of
|
|
words, instead of one strdup per word (running under efence does
|
|
not work very well otherwise)
|
|
|
|
2001-09-13 Assar Westerlund <assar@sics.se>
|
|
|
|
* add-random-users.c: allow specifying the number of users to
|
|
create
|
|
|
|
2001-08-24 Assar Westerlund <assar@sics.se>
|
|
|
|
* Makefile.am: rename variable name to avoid error from current
|
|
automake
|
|
|
|
2001-08-22 Assar Westerlund <assar@sics.se>
|
|
|
|
* kadmin_locl.h: include libutil.h if it exists
|
|
|
|
2001-08-10 Johan Danielsson <joda@pdc.kth.se>
|
|
|
|
* util.c: do something to handle C-c in prompts
|
|
|
|
* load.c: remove unused etypes code, and add parsing of the
|
|
generation field
|
|
|
|
* ank.c: add a --use-defaults option to just use default values
|
|
without questions
|
|
|
|
* kadmin.c: add "del" alias for delete
|
|
|
|
* cpw.c: call this operation "passwd" in usage
|
|
|
|
* kadmin_locl.h: prototype for set_defaults
|
|
|
|
* util.c (edit_entry): move setting of default values to a
|
|
separate function, set_defaults
|
|
|
|
2001-08-01 Johan Danielsson <joda@pdc.kth.se>
|
|
|
|
* kadmin.c: print help message on bad options
|
|
|
|
2001-07-31 Assar Westerlund <assar@sics.se>
|
|
|
|
* add-random-users.c (main): handle --version
|
|
|
|
2001-07-30 Johan Danielsson <joda@pdc.kth.se>
|
|
|
|
* load.c: increase line buffer to 8k
|
|
|
|
2001-06-12 Assar Westerlund <assar@sics.se>
|
|
|
|
* ext.c (ext_keytab): use the default modify keytab per default
|
|
|
|
2001-05-17 Assar Westerlund <assar@sics.se>
|
|
|
|
* kadm_conn.c (start_server): fix krb5_eai_to_heim_errno call
|
|
|
|
2001-05-15 Assar Westerlund <assar@sics.se>
|
|
|
|
* kadmin.c (main): some error cleaning required
|
|
|
|
2001-05-14 Assar Westerlund <assar@sics.se>
|
|
|
|
* kadmind.c: new krb5_config_parse_file
|
|
* kadmin.c: new krb5_config_parse_file
|
|
* kadm_conn.c: update to new krb5_sockaddr2address
|
|
|
|
2001-05-07 Assar Westerlund <assar@sics.se>
|
|
|
|
* kadmin_locl.h (foreach_principal): update prototype
|
|
* get.c (getit): new foreach_principal
|
|
* ext.c (ext_keytab): new foreach_principal
|
|
* del.c (del_entry): new foreach_principal
|
|
* cpw.c (cpw_entry): new foreach_principal
|
|
* util.c (foreach_principal): add `funcname' and try printing the
|
|
error string
|
|
|
|
2001-05-04 Johan Danielsson <joda@pdc.kth.se>
|
|
|
|
* rename.c: fix argument number test
|
|
|
|
2001-04-19 Johan Danielsson <joda@pdc.kth.se>
|
|
|
|
* del_enctype.c: fix argument count check after getarg change;
|
|
spotted by mark@MCS.VUW.AC.NZ
|
|
|
|
2001-02-15 Assar Westerlund <assar@sics.se>
|
|
|
|
* kadmind.c (main): use a `struct sockaddr_storage' to be able to
|
|
store all types of addresses
|
|
|
|
2001-02-07 Assar Westerlund <assar@sics.se>
|
|
|
|
* kadmin.c: add --keytab / _K, from Leif Johansson
|
|
<leifj@it.su.se>
|
|
|
|
2001-01-29 Assar Westerlund <assar@sics.se>
|
|
|
|
* kadm_conn.c (spawn_child): close the newly created socket in the
|
|
packet, it's not used. from <shadow@dementia.org>
|
|
* version4.c (decode_packet): check success of
|
|
krb5_425_conv_principal. from <shadow@dementia.org>
|
|
|
|
2001-01-12 Assar Westerlund <assar@sics.se>
|
|
|
|
* util.c (parse_attributes): make empty string mean no attributes,
|
|
specifying the empty string at the command line should give you no
|
|
attributes, but just pressing return at the prompt gives you
|
|
default attributes
|
|
(edit_entry): only pick up values from the default principal if they
|
|
aren't set in the principal being edited
|
|
|
|
2001-01-04 Assar Westerlund <assar@sics.se>
|
|
|
|
* load.c (doit): print an error and bail out if storing an entry
|
|
in the database fails. The most likely reason for it failing is
|
|
out-of-space.
|
|
|
|
2000-12-31 Assar Westerlund <assar@sics.se>
|
|
|
|
* kadmind.c (main): handle krb5_init_context failure consistently
|
|
* kadmin.c (main): handle krb5_init_context failure consistently
|
|
* add-random-users.c (add_user): handle krb5_init_context failure
|
|
consistently
|
|
|
|
* kadm_conn.c (spawn_child): use a struct sockaddr_storage
|
|
|
|
2000-12-15 Johan Danielsson <joda@pdc.kth.se>
|
|
|
|
* get.c: avoid asprintf'ing NULL strings
|
|
|
|
2000-12-14 Johan Danielsson <joda@pdc.kth.se>
|
|
|
|
* load.c: fix option parsing
|
|
|
|
2000-11-16 Assar Westerlund <assar@sics.se>
|
|
|
|
* kadm_conn.c (wait_for_connection): check for fd's being too
|
|
large to select on
|
|
|
|
2000-11-09 Johan Danielsson <joda@pdc.kth.se>
|
|
|
|
* get.c: don't try to print modifier name if it isn't set (from
|
|
Jacques A. Vidrine" <n@nectar.com>)
|
|
|
|
2000-09-19 Assar Westerlund <assar@sics.se>
|
|
|
|
* server.c (kadmind_loop): send in keytab to v4 handling function
|
|
* version4.c: allow the specification of what keytab to use
|
|
|
|
* get.c (print_entry_long): actually print the actual saltvalue
|
|
used if it's not the default
|
|
|
|
2000-09-10 Johan Danielsson <joda@pdc.kth.se>
|
|
|
|
* kadmin.c: add option parsing, and add `privs' as an alias for
|
|
`privileges'
|
|
|
|
* init.c: complain if there's no realm name specified
|
|
|
|
* rename.c: add option parsing
|
|
|
|
* load.c: add option parsing
|
|
|
|
* get.c: make `get' and `list' aliases to each other, but with
|
|
different defaults
|
|
|
|
* del_enctype.c: add option parsing
|
|
|
|
* del.c: add option parsing
|
|
|
|
* ank.c: calling the command `add' make more sense from an english
|
|
pov
|
|
|
|
* Makefile.am: add kadmin manpage
|
|
|
|
* kadmin.8: short manpage
|
|
|
|
* kadmin.c: `quit' should be a alias for `exit', not `help'
|
|
|
|
2000-08-27 Assar Westerlund <assar@sics.se>
|
|
|
|
* server.c (handle_v5): do not try to perform stupid stunts when
|
|
printing errors
|
|
|
|
2000-08-19 Assar Westerlund <assar@sics.se>
|
|
|
|
* util.c (str2time_t): add alias for `now'.
|
|
|
|
2000-08-18 Assar Westerlund <assar@sics.se>
|
|
|
|
* server.c (handle_v5): accept any kadmin/admin@* principal as the
|
|
server
|
|
* kadmind.c: remove extra prototype of kadmind_loop
|
|
* kadmin_locl.h (kadmind_loop): add prototype
|
|
|
|
* init.c (usage): print init-usage and not add-dito
|
|
|
|
2000-08-07 Johan Danielsson <joda@pdc.kth.se>
|
|
|
|
* kadmind.c: use roken_getsockname
|
|
|
|
2000-08-07 Assar Westerlund <assar@sics.se>
|
|
|
|
* kadmind.c, kadm_conn.c: use socklen_t instead of int where
|
|
appropriate. From <thorpej@netbsd.org>
|
|
|
|
2000-08-04 Johan Danielsson <joda@pdc.kth.se>
|
|
|
|
* Makefile.am: link with pidfile library
|
|
|
|
* kadmind.c: write a pid file, and setup password quality
|
|
functions
|
|
|
|
* kadmin_locl.h: util.h
|
|
|
|
2000-07-27 Assar Westerlund <assar@sics.se>
|
|
|
|
* version4.c (decode_packet): be totally consistent with the
|
|
prototype of des_cbc_cksum
|
|
* kadmind.c: use sa_size instead of sa_len, some systems define
|
|
this to emulate anonymous unions
|
|
* kadm_conn.c: use sa_size instead of sa_len, some systems define
|
|
this to emulate anonymous unions
|
|
|
|
2000-07-24 Assar Westerlund <assar@sics.se>
|
|
|
|
* kadmin.c (commands): add quit
|
|
* load.c (doit): truncate the log since there's no way of knowing
|
|
what changes are going to be added
|
|
|
|
2000-07-23 Assar Westerlund <assar@sics.se>
|
|
|
|
* util.c (str2time_t): be more careful with strptime that might
|
|
zero out the `struct tm'
|
|
|
|
2000-07-22 Johan Danielsson <joda@pdc.kth.se>
|
|
|
|
* kadm_conn.c: make the parent process wait for children and
|
|
terminate after receiving a signal, also terminate on SIGINT
|
|
|
|
2000-07-22 Assar Westerlund <assar@sics.se>
|
|
|
|
* version4.c: map both princ_expire_time and pw_expiration to v4
|
|
principal expiration
|
|
|
|
2000-07-22 Johan Danielsson <joda@pdc.kth.se>
|
|
|
|
* version4.c (handle_v4): check for termination
|
|
|
|
* server.c (v5_loop): check for termination
|
|
|
|
* kadm_conn.c (wait_term): if we're doing something, set just set
|
|
a flag otherwise exit rightaway
|
|
|
|
* server.c: use krb5_read_priv_message; (v5_loop): check for EOF
|
|
|
|
2000-07-21 Assar Westerlund <assar@sics.se>
|
|
|
|
* kadm_conn.c: remove sys/select.h. make signal handlers
|
|
type-correct and static
|
|
|
|
* kadmin_locl.h: add limits.h and sys/select.h
|
|
|
|
2000-07-20 Assar Westerlund <assar@sics.se>
|
|
|
|
* init.c (init): also create `kadmin/hprop'
|
|
* kadmind.c: ports is a string argument
|
|
* kadm_conn.c (start_server): fix printf format
|
|
|
|
* kadmin_locl.h: add <sys/select.h>
|
|
* kadm_conn.c: remove sys/select.h. make signal handlers
|
|
type-correct and static
|
|
|
|
* kadmin_locl.h: add limits.h and sys/select.h
|
|
|
|
2000-07-17 Johan Danielsson <joda@pdc.kth.se>
|
|
|
|
* kadm_conn.c: put all processes in a new process group
|
|
|
|
* server.c (v5_loop): use krb5_{read,write}_priv_message
|
|
|
|
2000-07-11 Johan Danielsson <joda@pdc.kth.se>
|
|
|
|
* version4.c: change log strings to match the v5 counterparts
|
|
|
|
* mod.c: allow setting kvno
|
|
|
|
* kadmind.c: if stdin is not a socket create and listen to sockets
|
|
|
|
* kadm_conn.c: socket creation functions
|
|
|
|
* util.c (deltat2str): treat 0 and INT_MAX as never
|
|
|
|
2000-07-08 Assar Westerlund <assar@sics.se>
|
|
|
|
* Makefile.am (INCLUDES): add ../lib/krb5
|
|
* kadmin_locl.h: add krb5_locl.h (since we just use some stuff
|
|
from there)
|
|
|
|
2000-06-07 Assar Westerlund <assar@sics.se>
|
|
|
|
* add-random-users.c: new testing program that adds a number of
|
|
randomly generated users
|
|
|
|
2000-04-12 Assar Westerlund <assar@sics.se>
|
|
|
|
* cpw.c (do_cpw_entry): call set_password if no argument is given,
|
|
it will prompt for the password.
|
|
* kadmin.c: make help only print the commands that are actually
|
|
available.
|
|
|
|
2000-04-03 Assar Westerlund <assar@sics.se>
|
|
|
|
* del_enctype.c (del_enctype): set ignore correctly
|
|
|
|
2000-04-02 Assar Westerlund <assar@sics.se>
|
|
|
|
* kadmin.c (main): make parse errors a fatal error
|
|
* init.c (init): create changepw/kerberos with disallow-tgt and
|
|
pwchange attributes
|
|
|
|
2000-03-23 Assar Westerlund <assar@sics.se>
|
|
|
|
* util.c (hex2n, parse_des_key): add
|
|
* server.c (kadmind_dispatch): add kadm_chpass_with_key
|
|
* cpw.c: add --key
|
|
* ank.c: add --key
|
|
|
|
2000-02-16 Assar Westerlund <assar@sics.se>
|
|
|
|
* load.c (doit): check return value from parse_hdbflags2int
|
|
correctly
|
|
|
|
2000-01-25 Assar Westerlund <assar@sics.se>
|
|
|
|
* load.c: checking all parsing for errors and all memory
|
|
allocations also
|
|
|
|
2000-01-02 Assar Westerlund <assar@sics.se>
|
|
|
|
* server.c: check initial flag in ticket and allow users to change
|
|
their own password if it's set
|
|
* ext.c (do_ext_keytab): set timestamp
|
|
|
|
1999-12-14 Assar Westerlund <assar@sics.se>
|
|
|
|
* del_enctype.c (usage): don't use arg_printusage
|
|
|
|
1999-11-25 Assar Westerlund <assar@sics.se>
|
|
|
|
* del_enctype.c (del_enctype): try not to leak memory
|
|
|
|
* version4.c (kadm_ser_mod): use kadm5_s_modify_principal (no
|
|
_with_key)
|
|
|
|
* kadmin.c: add `del_enctype'
|
|
|
|
* del_enctype.c (del_enctype): new function for deleting enctypes
|
|
from a principal
|
|
|
|
* Makefile.am (kadmin_SOURCES): add del_enctype.c
|
|
|
|
1999-11-09 Johan Danielsson <joda@pdc.kth.se>
|
|
|
|
* server.c: cope with old clients
|
|
|
|
* kadmin_locl.h: remove version string
|
|
|
|
1999-10-17 Assar Westerlund <assar@sics.se>
|
|
|
|
* Makefile.am (kadmin_LDADD): add LIB_dlopen
|
|
|
|
1999-10-01 Assar Westerlund <assar@sics.se>
|
|
|
|
* ank.c (add_one_principal): `password' can cactually be NULL in
|
|
the overwrite code, check for it.
|
|
|
|
1999-09-20 Assar Westerlund <assar@sics.se>
|
|
|
|
* mod.c (mod_entry): print the correct principal name in error
|
|
messages. From Love <lha@e.kth.se>
|
|
|
|
1999-09-10 Assar Westerlund <assar@sics.se>
|
|
|
|
* init.c (init): also create `changepw/kerberos'
|
|
|
|
* version4.c: only create you loose packets when we fail decoding
|
|
and not when an operation is not performed for some reason
|
|
(decode_packet): read the service key from the hdb
|
|
(dispatch, decode_packet): return proper error messages
|
|
|
|
* version4.c (kadm_ser_cpw): add password quality functions
|
|
|
|
1999-08-27 Johan Danielsson <joda@pdc.kth.se>
|
|
|
|
* server.c (handle_v5): give more informative message if
|
|
KRB5_KT_NOTFOUND
|
|
|
|
1999-08-26 Johan Danielsson <joda@pdc.kth.se>
|
|
|
|
* kadmind.c: use HDB keytabs
|
|
|
|
1999-08-25 Assar Westerlund <assar@sics.se>
|
|
|
|
* cpw.c (set_password): use correct variable. From Love
|
|
<lha@e.kth.se>
|
|
|
|
* server.c (v5_loop): use correct error code
|
|
|
|
* ank.c (add_one_principal): initialize `default_ent'
|
|
|
|
1999-08-21 Assar Westerlund <assar@sics.se>
|
|
|
|
* random_password.c: new file, stolen from krb4
|
|
|
|
* kadmin_locl.h: add prototype for random_password
|
|
|
|
* cpw.c: add support for --random-password
|
|
|
|
* ank.c: add support for --random-password
|
|
|
|
* Makefile.am (kadmin_SOURCES): add random_password.c
|
|
|
|
1999-08-19 Assar Westerlund <assar@sics.se>
|
|
|
|
* util.c (edit_timet): break when we manage to parse the time not
|
|
the inverse.
|
|
|
|
* mod.c: add parsing of lots of options. From Love
|
|
<lha@stacken.kth.se>
|
|
|
|
* ank.c: add setting of expiration and password expiration
|
|
|
|
* kadmin_locl.h: update util.c prototypes
|
|
|
|
* util.c: move-around. clean-up, rename, make consistent (and
|
|
some other weird stuff). based on patches from Love
|
|
<lha@stacken.kth.se>
|
|
|
|
* version4.c (kadm_ser_cpw): initialize password
|
|
(handle_v4): remove unused variable `ret'
|
|
|
|
1999-08-16 Assar Westerlund <assar@sics.se>
|
|
|
|
* version4.c (handle_v4): more error checking and more correct
|
|
error messages
|
|
|
|
* server.c (v5_loop, kadmind_loop): more error checking and more
|
|
correct error messages
|
|
|
|
1999-07-24 Assar Westerlund <assar@sics.se>
|
|
|
|
* util.c (str2timeval, edit_time): functions for parsing and
|
|
editing times. Based on patches from Love <lha@stacken.kth.se>.
|
|
(edit_entry): call new functions
|
|
|
|
* mod.c (mod_entry): allow modifying expiration times
|
|
|
|
* kadmin_locl.h (str2timeval): add prototype
|
|
|
|
* ank.c (add_one_principal): allow setting expiration times
|
|
|
|
1999-07-03 Assar Westerlund <assar@sics.se>
|
|
|
|
* server.c (v5_loop): handle data allocation with krb5_data_alloc
|
|
and check return value
|
|
|
|
1999-06-23 Assar Westerlund <assar@sics.se>
|
|
|
|
* version4.c (kadm_ser_cpw): read the key in the strange order
|
|
it's sent
|
|
|
|
* util.c (edit_entry): look at default
|
|
(edit_time): always set mask even if value == 0
|
|
|
|
* kadmin_locl.h (edit_entry): update
|
|
|
|
* ank.c: make ank use the values of the default principal for
|
|
prompting
|
|
|
|
* version4.c (values_to_ent): convert key data correctly
|
|
|
|
1999-05-23 Assar Westerlund <assar@sics.se>
|
|
|
|
* init.c (create_random_entry): more correct setting of mask
|
|
|
|
1999-05-21 Assar Westerlund <assar@sics.se>
|
|
|
|
* server.c (handle_v5): read sendauth version correctly.
|
|
|
|
1999-05-14 Assar Westerlund <assar@sics.se>
|
|
|
|
* version4.c (error_code): try to handle really old krb4
|
|
distributions
|
|
|
|
1999-05-11 Assar Westerlund <assar@sics.se>
|
|
|
|
* init.c (init): initialize realm_max_life and realm_max_rlife
|
|
|
|
1999-05-07 Assar Westerlund <assar@sics.se>
|
|
|
|
* ank.c (add_new_key): initialize more variables
|
|
|
|
1999-05-04 Assar Westerlund <assar@sics.se>
|
|
|
|
* version4.c (kadm_ser_cpw): always allow a user to change her
|
|
password
|
|
(kadm_ser_*): make logging work
|
|
clean-up and restructure
|
|
|
|
* kadmin_locl.h (set_entry): add prototype
|
|
|
|
* kadmin.c (usage): update usage string
|
|
|
|
* init.c (init): new arguments realm-max-ticket-life and
|
|
realm-max-renewable-life
|
|
|
|
* util.c (edit_time, edit_attributes): don't do anything if it's
|
|
already set
|
|
(set_entry): new function
|
|
|
|
* ank.c (add_new_key): new options for setting max-ticket-life,
|
|
max-renewable-life, and attributes
|
|
|
|
* server.c (v5_loop): remove unused variable
|
|
|
|
* kadmin_locl.h: add prototypes
|
|
|
|
* version4.c: re-insert krb_err.h and other miss
|
|
|
|
* server.c (kadmind_loop): break-up and restructure
|
|
|
|
* version4.c: add ACL checks more error code checks restructure
|
|
|
|
1999-05-03 Johan Danielsson <joda@pdc.kth.se>
|
|
|
|
* load.c: check for (un-)encrypted keys
|
|
|
|
* dump.c: use hdb_print_entry
|
|
|
|
* version4.c: version 4 support
|
|
|
|
* Makefile.am: link with krb4
|
|
|
|
* kadmin_locl.h: include <sys/un.h>
|
|
|
|
* server.c: move from lib/kadm5, and add basic support for krb4
|
|
kadmin protocol
|
|
|
|
* kadmind.c: move recvauth to kadmind_loop()
|