kadm5: Use KADM5_PASS_Q_GENERIC

kdc/httpkadmind.c

@@ -224,6 +224,7 @@ audit_trail(kadmin_request_desc r, krb5_error_code ret)
     CASE(KADM5_PASS_Q_TOOSHORT);
     CASE(KADM5_PASS_Q_CLASS);
     CASE(KADM5_PASS_Q_DICT);
+    CASE(KADM5_PASS_Q_GENERIC);
     CASE(KADM5_PASS_REUSE);
     CASE(KADM5_PASS_TOOSOON);
     CASE(KADM5_POLICY_REF);

kpasswd/kpasswdd.c

@@ -398,11 +398,15 @@ change (krb5_auth_context auth_context,
     if (ret) {
 	const char *str = krb5_get_error_message(context, ret);
 
-	if (ret == KADM5_PASS_Q_DICT) {
+        switch (ret) {
+        case KADM5_PASS_Q_TOOSHORT:
+        case KADM5_PASS_Q_CLASS:
+        case KADM5_PASS_Q_DICT:
+        case KADM5_PASS_Q_GENERIC:
 	    krb5_warnx(context,
 		       "%s didn't pass password quality check with error: %s",
 		       client, str);
-	} else {
+        default:
 	    krb5_warnx(context, "kadm5_s_chpass_principal_cond: %s", str);
 	}
 	reply_priv (auth_context, s, sa, sa_size, KRB5_KPASSWD_SOFTERROR,

lib/kadm5/chpass_s.c

@@ -131,8 +131,8 @@ change(void *server_handle,
 	pwd_reason = kadm5_check_password_quality(context->context,
 						  princ, &pwd_data);
 	if (pwd_reason != NULL) {
-	    krb5_set_error_message(context->context, KADM5_PASS_Q_DICT, "%s", pwd_reason);
-	    return KADM5_PASS_Q_DICT;
+	    krb5_set_error_message(context->context, KADM5_PASS_Q_GENERIC, "%s", pwd_reason);
+	    return KADM5_PASS_Q_GENERIC;
 	}
     }