From 51b6601db456e699ea5d4843cbc7239ee92d9c13 Mon Sep 17 00:00:00 2001 From: dfr Date: Wed, 7 May 2008 13:39:42 +0000 Subject: Vendor import of Heimdal 1.1 --- crypto/heimdal/kadmin/ChangeLog | 415 +++++++++++++++++++++++++++++++++++++++- 1 file changed, 412 insertions(+), 3 deletions(-) (limited to 'crypto/heimdal/kadmin/ChangeLog') diff --git a/crypto/heimdal/kadmin/ChangeLog b/crypto/heimdal/kadmin/ChangeLog index 8bfbeed..ef1d458 100644 --- a/crypto/heimdal/kadmin/ChangeLog +++ b/crypto/heimdal/kadmin/ChangeLog @@ -1,9 +1,399 @@ +2007-12-09 Love Hörnquist Åstrand + + * kadmin.c: Use hdb_db_dir(). + + * kadmind.c: Use hdb_db_dir(). + +2007-07-26 Love Hörnquist Åstrand + + * util.c: Clear error string, just to be sure. + +2007-05-10 Love Hörnquist Åstrand + + * kadmin-commands.in: modify --pkinit-acl + + * mod.c: add pk-init command + +2007-02-22 Love Hörnquist Åstrand + + * kadmin.8: document kadmin add_enctype functionallity. + + * Makefile.am: Add new command, add_enctype. + + * kadmin-commands.in: Add new command, add_enctype. + + * add_enctype.c: Add support for adding a random key enctype to a + principal. + +2007-02-17 Love Hörnquist Åstrand + + * mod.c: add setting and displaying aliases + + * get.c: add setting and displaying aliases + + * kadmin-commands.in: add setting and displaying aliases + +2006-12-22 Love Hörnquist Åstrand + + * util.c: Make str2time_t parser more robust. + + * Makefile.am: Add test_util test program. + + * test_util.c: Test str2time_t parser. + +2006-12-05 Love Hörnquist Åstrand + + * add-random-users.c: Use strcspn to remove \n from fgets + result. Prompted by change by Ray Lai of OpenBSD via Björn + Sandell. + +2006-10-22 Love Hörnquist Åstrand + + * mod.c: Try to not leak memory. + + * check.c: Try to not leak memory. + +2006-10-07 Love Hörnquist Åstrand + + * Makefile.am: split build files into dist_ and noinst_ SOURCES + +2006-08-28 Love Hörnquist Åstrand + + * kadmin.c (help): use sl_slc_help(). + +2006-08-24 Love Hörnquist Åstrand + + * util.c: Add KRB5_KDB_ALLOW_DIGEST + +2006-07-14 Love Hörnquist Åstrand + + * get.c (format_field): optionally print issuer and anchor. + +2006-06-21 Love Hörnquist Åstrand + + * check.c: Check if afs@REALM and afs/cellname@REALM both exists. + +2006-06-14 Love Hörnquist Åstrand + + * util.c (kdb_attrs): Add KRB5_KDB_ALLOW_KERBEROS4 + +2006-06-07 Love Hörnquist Åstrand + + * mod.c (do_mod_entry): Add setting 1 delegation entry + +2006-06-01 Love Hörnquist Åstrand + + * server.c: Less shadowing. + +2006-05-13 Love Hörnquist Åstrand + + * Makefile.am: kadmin_SOURCES += add check.c + + * kadmin_locl.h: Avoid shadowing. + + * kadmin.8: Document the new check command. + + * kadmin-commands.in: Add check command + + * check.c: Check database for strange configurations on default + principals. + +2006-05-08 Love Hörnquist Åstrand + + * server.c (kadm_get_privs): one less "pointer targets in passing + argument differ in signedness" warning. + +2006-05-05 Love Hörnquist Åstrand + + * dump-format.txt: Moved to info documentation. + + * Rename u_intXX_t to uintXX_t + +2006-05-01 Love Hörnquist Åstrand + + * kadmin.8: spelling, update .Dd + +2006-04-12 Love Hörnquist Åstrand + + * add-random-users.c: Catch empty file case. From Tobias + Stoeckmann. + +2006-04-07 Love Hörnquist Åstrand + + * random_password.c (generate_password): memory leak in error + condition case From Coverity NetBSD CID#1887 + +2006-02-19 Love Hörnquist Åstrand + + * cpw.c (cpw_entry): make sure ret have a defined value + + * del.c (del_entry): make sure ret have a defined value + + * mod.c: Return error code so that toplevel function can catch + them. + +2006-01-25 Love Hörnquist Åstrand + + * cpw.c (cpw_entry): return 1 on failure. + + * rename.c (rename_entry): return 1 on failure. + + * del.c (del_entry): return 1 on failure. + + * ank.c (add_new_key): return 1 on failure. + + * get.c: Add printing of pkinit-acls. Don't print password by + default. Return 1 on failure processing any of the principals. + + * util.c (foreach_principal): If any of calls to `func' failes, + the first error is returned when all principals are processed. + +2005-12-01 Love Hörnquist Åstrand + + * kadmin-commands.in: Add ank as an alias to add, it lost in + transition to slc, from Måns Nilsson. + +2005-09-14 Love Hörquist Åstrand + + * dump-format.txt: Add extensions, fill in missing fields. + +2005-09-08 Love Hörquist Åstrand + + * init.c (create_random_entry): create principal with random + password even though its disabled. From Andrew Bartlet + + +2005-09-01 Love Hörquist Åstrand + + * kadm_conn.c: Use socket_set_reuseaddr and socket_set_ipv6only. + +2005-08-11 Love Hörquist Åstrand + + * get.c: Remove structure that is never used (sneaked in the large + TL_DATA patch). + + * kadmin-commands.in: Rename password-quality to + verify-password-quality. + + * get.c: Indent. + + * server.c: Avoid shadowing exp(). + + * load.c: Parse extensions. + + * kadmin_locl.h: Include . + + * get.c: Extend struct field_name to have a subvalue and a + extra_mask. Use that to implement printing of KADM5_TL_DATA + options and fix a dependency bug (keys needed principal to print + the salting). + +2005-07-08 Love Hörquist Åstrand + + * lower amount of shadow and const warnings + +2005-06-07 David Love + + * dump-format.txt: Clarify, spelling and add examples. + +2005-05-30 Love Hörquist Åstrand + + * util.c (kdb_attrs): add ok-as-delegate + + * get.c (getit): init data.mask to 0. Problem found by Andrew + Bartlett + +2005-05-09 Love Hörquist Åstrand + + * kadmin.c (main): catch -2 as EOF + +2005-05-03 Dave Love + + * init.c (init): Don't disable forwardable for kadmin/changepw. + +2005-05-02 Dave Love + + * kadmin.c (help): Don't use non-constant initializer for `fake'. + +2005-04-20 Love Hörquist Åstrand + + * util.c (foreach_principal): initialize ret to make sure it have + a value + +2005-04-04 Love Hörquist Åstrand + + * kadmind.c: add verifier libraries with + kadm5_add_passwd_quality_verifier + + * kadmin.c: add verifier libraries with + kadm5_add_passwd_quality_verifier + + * load.c: max-life and max-renew is of unsigned int in asn1 + compiler, use that for the parser too + +2005-03-26 Love Hörquist Åstrand + + * kadmin.8: List of attributes, from James F. Hranicky + + +2005-01-19 Love Hörquist Åstrand + + * dump.c (dump): handle errors + +2005-01-08 Love Hörquist Åstrand + + * dump-format.txt: text dump format + +2004-12-08 Love Hörquist Åstrand + + * kadmind.8: use keeps around options, from OpenBSD + + * kadmin.8: use keeps around options, "improve" spelling, from + openbsd + +2004-11-01 Love Hörquist Åstrand + + * get.c (getit): always free columns + + * ank.c (add_one_principal): catch error from + UI_UTIL_read_pw_string + +2004-10-31 Love Hörquist Åstrand + + * del_enctype.c (del_enctype): fix off-by-one error in del_enctype + From: + +2004-08-13 Love Hörquist Åstrand + + * get.c: print keytypes on long format + +2004-07-06 Love Hörquist Åstrand + + * get.c (format_field): allow mod_name to be optional + + * ext.c (do_ext_keytab): if there isn't any keydata, try using + kadm5_randkey_principal + +2004-07-02 Love Hörquist Åstrand + + * load.c: make merge/load work again + + * del.c: fix usage string + + * ank.c: fix slc lossage + +2004-06-28 Love Hörquist Åstrand + + * kadmin.c: use kadm5_ad_init_with_password_ctx + +2004-06-27 Johan Danielsson + + * kadmin.8: document get -o and stash + + * get.c: implement output column selection, similar to ps -o + + * kadmin-commands.in: make get -l the default again, and add + column selection flag; sync list with get + +2004-06-24 Johan Danielsson + + * kadmin-commands.in: mod needs default kvno of -1 + +2004-06-21 Johan Danielsson + + * kadmin: convert to use slc; also add stash subcommand + +2004-06-15 Love Hörquist Åstrand + + * kadmin.c (main): keytab mode requires principal name + +2004-06-12 Love Hörquist Åstrand + + * kadmind.c: drop keyfile, not used, found by + Elrond + + * kadmin.c: if keyfile is set, pass in to libkadm5 bug pointed out + by Elrond + +2004-05-31 Love Hörquist Åstrand + + * kadmin.c: add --ad flag, XXX rewrite the init kadm5 interface + +2004-05-13 Johan Danielsson + + * nuke kerberos 4 kadmin goo + +2004-05-07 Johan Danielsson + + * util.c (str2time_t): fix end-of-day logic, from Duncan + McEwan/Mark Davies. + 2004-04-29 Love Hörquist Åstrand - * version4.c: 1.30: (handle_v4): make sure length is longer then - 2, Pointed out by Evgeny Demidov + * version4.c (handle_v4): make sure length is longer then 2, + Pointed out by Evgeny Demidov + + * kadmind.c: make kerberos4 support default turned off + +2004-03-24 Johan Danielsson + + * kadmin.8: update manpage + + * mod.c: allow wildcarding principals, and make parameters a work + same as if prompted + +2004-03-08 Love Hörquist Åstrand + + * kadmin.8: document password-quality + + * kadmin_locl.h: add prototype for password_quality + + * kadmin.c: add password-quality/pwq command + + * Makefile.am: kadmin_SOURCES += pw_quality.c + + * pw_quality.c: test run the password quality function + +2004-03-07 Love Hörquist Åstrand + + * ank.c (add_one_principal): even though the principal is disabled + (creation of random key/keydata), create it with a random password - * kadmind.c: 1.31: make kerberos4 support default turned off +2003-12-07 Love Hörquist Åstrand + + * init.c (create_random_entry): print error message on failure + + * ank.c (add_one_principal): pass right argument to + kadm5_free_principal_ent From Panasas, Inc + +2003-11-18 Love Hörquist Åstrand + + * kadmind.c (main): move opening the logfile to after reading + kdc.conf move the loading of hdb keytab ops closer to where its + used From: Jeffrey Hutzelman + +2003-10-04 Love Hörquist Åstrand + + * util.c (str2time_t): allow whitespace between date and time + From: Bob Beck and adharw@yahoo.com + +2003-09-03 Love Hörquist Åstrand + + * ank.c: s/des_read_pw_string/UI_UTIL_read_pw_string/ + + * cpw.c: s/des_read_pw_string/UI_UTIL_read_pw_string/ + +2003-08-21 Love Hörquist Åstrand + + * get.c (print_entry_terse): handle error when unparsing name + +2003-08-18 Love Hörquist Åstrand + + * kadmind.c (main): use krb5_prepend_config_files_default, now all + options in kdc.conf is parsed, not just [kdc]key-file= + + * kadmin.c (main): use krb5_prepend_config_files_default, now all + options in kdc.conf is parsed, not just [kdc]key-file= 2003-04-14 Love Hörquist Åstrand @@ -36,6 +426,25 @@ change it own password to a key, since that password might violate the password quality check. +2002-12-03 Johan Danielsson + + * util.c (get_response): print a newline if interrupted + + * mod.c (mod_entry): check return value from edit_entry + + * ank.c (add_one_principal): check return value from edit_entry + + * ank.c (add_one_principal): don't continue if create_principal + fails + + * init.c: check return value from edit_deltat + + * init.c: add --help + +2002-10-29 Johan Danielsson + + * version4.c: speling (from Tomas Olsson) + 2002-10-23 Assar Westerlund * version4.c (decode_packet): check the length of the version -- cgit v1.1