summaryrefslogtreecommitdiffstats
path: root/secure
Commit message (Collapse)AuthorAgeFilesLines
* Don't install includes if NO_TOOLCHAINphk2005-08-031-0/+2
|
* Bump the shared library version number of all libraries that have notkensmith2005-07-223-3/+3
| | | | | | | been bumped since RELENG_5. Reviewed by: ru Approved by: re (not needed for commit check but in principle...)
* Revert the commits that made libssh an INTERNALLIB; they caused too muchdes2005-06-0711-34/+24
| | | | | | trouble, especially on amd64. Requested by: ru
* Make libssh an INTERNALLIB like it is in {Net,Open}BSD.des2005-06-0611-24/+34
|
* Update for OpenSSH 4.1p1.des2005-06-056-18/+16
|
* Update OpenSSL 0.9.7d -> 0.9.7e.nectar2005-02-25192-5848/+5257
|
* Define PLATFORM correctly when cross-building.ru2005-02-161-2/+2
|
* Sync program's usage() with manpage's SYNOPSIS.ru2005-02-101-1/+1
|
* Correctly hide the command arguments.dds2005-01-171-15/+2
| | | | | PR: bin/76374 MFC after: 2 weeks
* NOCRYPT -> NO_CRYPTru2004-12-211-5/+5
|
* NODOCCOMPRESS -> NO_DOCCOMPRESSru2004-12-213-3/+3
| | | | | | | | NOINFO -> NO_INFO NOINFOCOMPRESS -> NO_INFOCOMPRESS NOLINT -> NO_LINT NOPIC -> NO_PIC NOPROFILE -> NO_PROFILE
* NOLIBC_R -> NO_LIBC_Rru2004-12-211-2/+2
| | | | | NOLIBPTHREAD -> NO_LIBPTHREAD NOLIBTHR -> NO_LIBTHR
* Update for OpenSSH 3.9p1.des2004-10-282-7/+6
|
* For variables that are only checked with defined(), don't provideru2004-10-243-3/+3
| | | | any fake value.
* Add support for C3 Nehemiah ACE ("Padlock") AES crypto. This comesmarkm2004-08-141-1/+1
| | | | from OpenSSL 0.9.5 (yet to be released), and is pretty complete.
* Join the 21st century: Cryptography is no longer an optional componentcperciva2004-08-061-2/+0
| | | | | | | | | | of releases. The -DNOCRYPT build option still exists for anyone who really wants to build non-cryptographic binaries, but the "crypto" release distribution is now part of "base", and anyone installing from a release will get cryptographic binaries. Approved by: re (scottl), markm Discussed on: freebsd-current, in late April 2004
* Import the openssl conf for arm.cognet2004-05-141-0/+177
|
* Record the libssl.so dependency on libcrypto.so. This shouldru2004-05-131-0/+3
| | | | | | | | | help some ports that depend on libradius that recently gained the dependency on libssl. This is also how the stock OpenSSL build would link libssl.so on FreeBSD. Prompted by: kris OK'ed by: markm, nectar
* Fix release builds (release.3 target). We also need to rebuild libradius,marcel2004-05-021-4/+4
| | | | | | | | | because otherwise it will remain having a dependency upon libssl. This breaks the non-crypto build that happens for release.3 While here, order the list of programs and libraries. Speculating review feedback from: ru
* Turn MAKE_IDEA into a true "bool" type variable, as documented inru2004-04-193-5/+5
| | | | | | | the make.conf(5) manpage. PR: conf/65738 OK'ed by: markm
* Turn on the amd64-specific bignum code in openssl. This is actuallypeter2004-04-141-0/+7
| | | | | | | a variant of the C code but with some scattered asm and things laid out more optimally for the platform. This means that we need to the asm directory to the search path for the amd64 case so that make can find the source.
* Remove the -pthread from the last commit, as OpenSSL doesn't actuallydwmalone2004-03-301-1/+1
| | | | | | | call any pthread functions as we use compile it. We keep the -DOPENSSL_THREADS, which stops OpenSSL doing thread-unsafe stuff. Requested by: ru
* Build OpenSSL so that it extects that is may be used in a threadeddwmalone2004-03-301-0/+1
| | | | | | | | | | environment. This stops some ports keeling over on an OpenSSL assert. (The patch is not exactly the one from the PR, but has been refined based on advice from freebsd-threads.) PR: 51205 Submitted by: Jim Westfall <jwestfall@surrealistic.net> MFC after: 1 month
* Re-add the hand-optimised assembler versions of some of the ciphersmarkm2004-03-2314-3759/+2861
| | | | | | | to the build. Should have done this ages ago: markm Reminded above to do this: peter
* Update manual pages for OpenSSL 0.9.7d.nectar2004-03-17155-324/+1110
|
* Update for 3.8p1, including workaround for a bug in gss-genr.c.des2004-02-264-11/+14
|
* style.Makefile(5):johan2004-02-231-1/+1
| | | | Use WARNS?= instead of WARNS=.
* Use the default threading library if requested.ru2004-02-071-3/+8
| | | | Reviewed by: des, deischen
* Fixed style of DPADD and LDADD assignments as per style.Makefile(5).ru2004-02-051-2/+2
|
* - Removed libmd from the Kerberos library set.ru2004-02-021-7/+4
| | | | | | | | - Removed libopie and libmd; libopie used to serve auth-skey.c which is compiled now only to ease maintenance, as well as a few other auth-*.c sources. Reviewed by: des
* Added two utility targets "secure" and "insecure", analogous toru2004-01-181-1/+23
| | | | | | | | "kerberize" and "dekerberize" in kerberos5/Makefile. These can be used to recompile bits with optional crypto support with and without crypto, respectively. Reviewed by: markm
* Once upon a time we had both "crypto" and "krb5" distributions,ru2004-01-171-0/+1
| | | | | | | | | | | | | | | | | | | | and rebuilt some bits with crypto but without Kerberos support (most notably SSH) during "make release", to put them into the "crypto" distribution. Now that we don't ship the separate "krb5" distribution anymore (it's now part of the "crypto" distribuion), don't waste time recompiling SSH bits without crypto and without Kerberos support in an attempt to put them in the "base" distribution -- it just doesn't work as SSH always uses crypto code. We avoid this by not rebuilding KPROGS from kerberos5/Makefile in release/Makefile and adding "libpam" to SPROGS in secure/Makefile to ensure it's still rebuilt without crypto support for the "base" distribution. (Disabling crypto (NOCRYPT) also disables building of Kerberos-related PAM modules, and it's OK to depend on this.) This should be a no-op change saving some "make release" time.
* - Properly build both crypto and non-crypto versions of theru2004-01-171-1/+1
| | | | | | | package management tools. - Drop redundant dependency of pkg_create(1) and pkg_delete(1) on crypto libraries now that they do not link with libfetch.
* Removed well outdated comment.ru2004-01-171-4/+0
|
* Cosmetics: rearrange the dependency list to match that of ssh and sshd.ru2004-01-081-2/+5
| | | | Reviewed by: des
* Fixed static linkage.ru2004-01-082-4/+10
| | | | Reviewed by: des
* Use += instead of = with DPADD / LDADD.des2004-01-081-2/+2
|
* Enable GSSAPI support. [1]des2004-01-083-8/+10
| | | | | | Also remove some duplicates from ssh's SRCS. Submitted by: [1] Björn Grönvall <bg@sics.se>
* Previous commit erroneously listed some sources with .o suffixes.des2004-01-071-1/+1
|
* Update Makefiles for OpenSSH 3.7.1p2.des2004-01-0711-37/+37
|
* Explicitly add libz and libcrypto to LDADD for any ssh utilities missinggordon2003-08-196-12/+12
| | | | | | | | | | | | it. While not strictly required, it unbreaks the cross-build world that is resulting from moving the libraries around. I have a more permanent solution to this problem in the works, but I asked des for permission to commit this to get the ball rolling. This also makes the ssh build more along the lines of what the openssh-portable and OpenBSD openssh Makefile glue does. Reviewed by: des
* Stage 3 of dynamic root support. Make all the libraries needed to rungordon2003-08-171-0/+1
| | | | | | binaries in /bin and /sbin installed in /lib. Only the versioned files reside in /lib, the .so symlink continues to live /usr/lib so the toolchain doesn't need to be modified.
* Very big makeover in the way telnet, telnetd and libtelnet are built.markm2003-07-168-113/+7
| | | | | | | | | | | | | | | | | | | | | | | Previously, there were two copies of telnet; a non-crypto version that lived in the usual places, and a crypto version that lived in crypto/telnet/. The latter was built in a broken manner somewhat akin to other "contribified" sources. This meant that there were 4 telnets competing with each other at build time - KerberosIV, Kerberos5, plain-old-secure and base. KerberosIV is no longer in the running, but the other three took it in turns to jump all over each other during a "make buildworld". As the crypto issue has been clarified, and crypto _calls_ are not a problem, crypto/telnet has been repo-copied to contrib/telnet, and with this commit, all telnets are now "contribified". The contrib path was chosen to not destroy history in the repository, and differs from other contrib/ entries in that it may be worked on as "normal" BSD code. There is no dangerous crypto in these sources, only a very weak system less strong than enigma(1). Kerberos5 telnet and Secure telnet are now selected by using the usual macros in /etc/make.conf, and the build process is unsurprising and less treacherous.
* Fixed "make checkdpadd".ru2003-07-022-4/+4
| | | | OK'ed by: markm
* Fix for the NO_OPENSSL case.markm2003-06-081-2/+2
| | | | Reported by: Marius Strobl <marius@alchemy.franken.de>
* Drop this MAINTAINER bit. I'll reclaim an "Advisory Maintainership"markm2003-06-041-2/+0
| | | | for this area later.
* I'm now happy that this is no longer needed. Libcrypto hasmarkm2003-06-0411-1621/+0
| | | | all its functionality, and all its consumers have been converted.
* Disconnect libcipher from the build. It only does DES, and we alreadymarkm2003-06-021-1/+1
| | | | | have libcrypto to do that. Both consumers of this lib have been converted to use libcrypto. (bin/ed and secure/usr.bin/bdes).
* Strip the private blowfish code down to only that which ismarkm2003-06-023-263/+4
| | | | | required to make crypt(3) blowfish "$2a$..." hashes. Lint and warnsify.
* Modernise. Use libcrypto instead of libcipher for DES.markm2003-06-023-382/+427
|
OpenPOWER on IntegriCloud