summaryrefslogtreecommitdiffstats
path: root/secure/usr.bin
Commit message (Collapse)AuthorAgeFilesLines
* Merge OpenSSL 1.0.1n.jkim2015-06-1146-103/+141
|
* Merge OpenSSL 1.0.1m.jkim2015-03-2046-96/+101
|
* Merge OpenSSL 1.0.1l.jkim2015-01-1646-46/+46
| | | | | MFC after: 1 week Relnotes: yes
* Merge OpenSSL 1.0.1k.jkim2015-01-0846-765/+1191
|
* Reduce overlinkingbapt2014-11-257-14/+4
| | | | | | The framework now ensure by itself that pthread is added to the link chain as the last component if linked to kerberos hence avoid with out any explicit addition prevent issue like CVE-2014-8475
* Convert to LIBADDbapt2014-11-259-47/+19
| | | | Reduce overlinking
* Merge OpenSSL 1.0.1j.jkim2014-10-151-0/+199
| | | | Relnotes: yes
* Merge OpenSSL 1.0.1j.jkim2014-10-1546-62/+101
|
* Fix typo (LIBLDNSADD -> LIBLDNS) to fix "make checkdpadd"ngie2014-08-191-1/+1
| | | | | | X-MFC with: r269648 Phabric: D634 Approved by: jmmv (mentor)
* Merge OpenSSL 1.0.1i.jkim2014-08-0745-99/+388
|
* Rework privatelib/internallibbapt2014-08-067-9/+9
| | | | | | | | | | | | | | Make sure everything linking to a privatelib and/or an internallib does it directly from the OBJDIR rather than DESTDIR. Add src.libnames.mk so bsd.libnames.mk is not polluted by libraries not existsing in final installation Introduce the LD* variable which is what ld(1) is expecting (via LDADD) to link to internal/privatelib Directly link to the .so in case of private library to avoid having to complexify LDFLAGS. Phabric: https://phabric.freebsd.org/D553 Reviewed by: imp, emaste
* Replace all uses of libncurses and libtermcap with their wide characterbrooks2014-07-171-2/+2
| | | | | | | | | | variants. This allows usable file system images (i.e. those with both a shell and an editor) to be created with only one copy of the curses library. Exp-run: antoine PR: 189842 Discussed with: bapt Sponsored by: DARPA, AFRL
* Merge OpenSSL 1.0.1h.jkim2014-06-0945-50/+79
| | | | Approved by: so (delphij)
* Use src.opts.mk in preference to bsd.own.mk except where we need stuffimp2014-05-068-8/+8
| | | | from the latter.
* Add placeholder Kyuafiles for various top-level hierarchies.jmmv2014-04-212-0/+14
| | | | | | | | | | | | This change adds tests/ directories in the source tree to create various subdirectories in /usr/tests/ and to install placeholder Kyuafiles for them. the relevant hierarchies are: cddl, etc, games, gnu and secure. The reason for this is to simplify the addition of new test programs for utilities or libraries under any of these directories. Doing so on a case by case basis is unnecessary and is quite an obscure process.
* Merge OpenSSL 1.0.1g.jkim2014-04-0845-57/+74
| | | | Approved by: benl (maintainer)
* multiple: Remove 3rd clause from BSD license where approved by theeadler2014-03-141-5/+1
| | | | | | | | | regents and renumber. This patch skips files in contrib/ and crypto/ Acked by: imp Discussed with: emaste
* Merge OpenSSL 1.0.1f.jkim2014-01-2245-90/+108
| | | | Approved by: so (delphij), benl (silence)
* Unbreak the WITHOUT_KERBEROS build and try to reduce the odds of ades2013-09-231-1/+4
| | | | | | | | | repeat performance by introducing a script that runs configure with and without Kerberos, diffs the result and generates krb5_config.h, which contains the preprocessor macros that need to be defined in the Kerberos case and undefined otherwise. Approved by: re (marius)
* Replace claims that DES is a strong cryptosystem with a warning statingdes2013-09-211-28/+7
| | | | | | that it should no longer be considered secure. Approved by: re (gjb)
* Clean up the OpenSSH build. It is now possible to build most componentsdes2013-09-107-22/+110
| | | | | | | | | | as static binaries, if desired. The one exception is sshd, which runs into trouble due to libpam.a's includion of pam_ssh. Make OpenSSH use LDNS if available. This allows it to verify signed SSHFP records. Approved by: re (blanket)
* Make libldns and libssh private.des2013-09-087-0/+7
| | | | Approved by: re (blanket)
* Merge OpenSSL 1.0.1e.jkim2013-02-1345-124/+129
| | | | Approved by: secteam (simon), benl (silence)
* Add a src.conf(5) option to allow users to compile in the "NONE cipher",bz2013-01-171-0/+4
| | | | | | | | | which, only after authentication, disables crypto, and only for sessions without a terminal. Submitted by: Jeremy Chadwick (freebsd jdc.parodius.com) PR: bin/163095 MFC after: 10 days
* Fix typo; s/ouput/outputkevlo2012-11-071-1/+1
|
* Merge OpenSSL 1.0.1c.jkim2012-07-1248-477/+3387
| | | | Approved by: benl (maintainer)
* Regen ca(1) for r237658. This re-applies r227458, i.e., add a missing "be".jkim2012-06-271-1/+1
|
* Merge OpenSSL 0.9.8x.jkim2012-06-2738-77/+77
| | | | | | Reviewed by: stas Approved by: benl (maintainer) MFC after: 3 days
* Restore the ability to use a non-standard LOCALBASE to sshdeadler2012-03-241-0/+4
| | | | | | | | | Add the ability to use a non-standard LOCALBASE to ssh Submitted by: jhb Reviewed by: des Approved by: cperciva MFC after: 0 days (with r233136)
* X11BASE is not used any more and has been killed by the x11 team.eadler2012-03-191-13/+0
| | | | | | Reviewed by: ??? Approved by: ??? MFC after: 3 days
* - add a missing "be" and "in"eadler2011-11-111-1/+1
| | | | | | | | | | | - fix other errors introduced when committing r226436 - add 'function' to a sentence where it makes sense Submitted by: delphij Submitted by: dougb Submitted by: jhb Approved by: dougb Approved by: jhb
* - change "is is" to "is" or "it is"eadler2011-10-162-2/+2
| | | | | | | | - change "the the" to "the" Approved by: lstewart Approved by: sahil (mentor) MFC after: 3 days
* Regenerate manual pages for OpenSSL 0.9.8q.simon2010-12-0338-38/+38
|
* Regenerate manual pages for OpenSSL 0.9.8p.simon2010-11-2238-1474/+1298
|
* Regenerate manual pages for OpenSSL 0.9.8n.simon2010-04-0138-38/+38
|
* Regenerate manual pages for OpenSSL 0.9.8m.simon2010-03-1338-48/+54
| | | | MFC after: 3 weeks
* Upgrade to OpenSSH 5.4p1.des2010-03-091-1/+1
| | | | MFC after: 1 month
* Fix a couple of comment typos.jhb2009-11-031-2/+2
| | | | MFC after: 1 week
* Upgrade to OpenSSH 5.3p1.des2009-10-017-1/+24
|
* Regenerate manual pages for OpenSSL 0.9.8k.simon2009-06-1438-92/+189
|
* Update build infrastructure for OpenSSL 0.9.8k.simon2009-06-141-1/+1
|
* Upgrade to OpenSSH 5.1p1.des2008-08-011-1/+1
| | | | | | | | | | I have worked hard to reduce diffs against the vendor branch. One notable change in that respect is that we no longer prefer DSA over RSA - the reasons for doing so went away years ago. This may cause some surprises, as ssh will warn about unknown host keys even for hosts whose keys haven't changed. MFC after: 6 weeks
* Add $FreeBSD$peter2008-07-031-0/+1
|
* For users of FreeBSD <= 6.2 we recommend during the x.org 7.x upgradekris2008-03-051-1/+10
| | | | | | | | | | | | | | | | | | | | | that they add X11BASE=${LOCALBASE} to /etc/make.conf since X11BASE was hard-wired to the now-wrong location in old releases. However, both X11BASE and LOCALBASE have moved out of scope of src/ into ports/ now, which causes problems for upgraded users who have old make.conf files still containing the above setting. X11BASE becomes null and we instruct ssh and sshd to look for xauth in /bin/xauth where it is unlikely to be found. Instead, provide a copy of the default LOCALBASE?=/usr/local setting here. We also have to deal with the case where the user only overrides LOCALBASE and doesn't set an explicit X11BASE (in ports it will be set implicitly but not here), which will also move the location of xauth. MFC after: 3 days Reported by: rwatson
* getopt(3) returns -1, not EOF.ru2008-02-191-1/+1
|
* Upgrade to OpenSSL 0.9.8e.simon2007-03-1538-83/+85
|
* Fix static compilation.ru2006-10-071-2/+2
|
* Upgrade to OpenSSL 0.9.8d.simon2006-10-0138-43/+80
|
* Upgrade to OpenSSL 0.9.8b.simon2006-07-2940-102/+1666
|
* Add a manual dependency on ssh_namespace.h.des2006-05-137-0/+14
| | | | Discussed with: ru
OpenPOWER on IntegriCloud