summaryrefslogtreecommitdiffstats
path: root/usr.sbin/ntp
Commit message (Collapse)AuthorAgeFilesLines
* MFV r301238:delphij2016-06-039-20/+42
| | | | | | | | | ntp 4.2.8p8. Security: CVE-2016-4957, CVE-2016-4953, CVE-2016-4954 Security: CVE-2016-4955, CVE-2016-4956 Security: FreeBSD-SA-16:24.ntp With hat: so
* MFV r298691:delphij2016-04-2710-48/+130
| | | | | | | | | | ntp 4.2.8p7. Security: CVE-2016-1547, CVE-2016-1548, CVE-2016-1549, CVE-2016-1550 Security: CVE-2016-1551, CVE-2016-2516, CVE-2016-2517, CVE-2016-2518 Security: CVE-2016-2519 Security: FreeBSD-SA-16:16.ntp With hat: so
* DIRDEPS_BUILD: Regenerate without local dependencies.bdrewery2016-02-245-10/+0
| | | | | | | | These are no longer needed after the recent 'beforebuild: depend' changes and hooking DIRDEPS_BUILD into a subset of FAST_DEPEND which supports skipping 'make depend'. Sponsored by: EMC / Isilon Storage Division
* MFV r294491: ntp 4.2.8p6.delphij2016-01-2210-34/+106
| | | | | | | | Security: CVE-2015-7973, CVE-2015-7974, CVE-2015-7975 Security: CVE-2015-7976, CVE-2015-7977, CVE-2015-7978 Security: CVE-2015-7979, CVE-2015-8138, CVE-2015-8139 Security: CVE-2015-8140, CVE-2015-8158 With hat: so
* Fix version number.delphij2016-01-091-1/+1
|
* MFV r293415:delphij2016-01-088-21/+40
| | | | | | | | ntp 4.2.8p5 Reviewed by: cy, roberto Relnotes: yes Differential Revision: https://reviews.freebsd.org/D4828
* META MODE: Update dependencies with 'the-lot' and add missing directories.bdrewery2015-12-017-0/+77
| | | | | | | | | | | | | | This is not properly respecting WITHOUT or ARCH dependencies in target/. Doing so requires a massive effort to rework targets/ to do so. A better approach will be to either include the SUBDIR Makefiles directly and map to DIRDEPS or just dynamically lookup the SUBDIR. These lose the benefit of having a userland/lib, userland/libexec, etc, though and results in a massive package. The current implementation of targets/ is very unmaintainable. Currently rescue/rescue and sys/modules are still not connected. Sponsored by: EMC / Isilon Storage Division
* A miss from r289764.glebius2015-10-231-3/+3
|
* MFV ntp-4.2.8p4 (r289715)glebius2015-10-229-32/+92
| | | | | | | | | | | | | | | | | | | Security: VuXML: c4a18a12-77fc-11e5-a687-206a8a720317 Security: CVE-2015-7871 Security: CVE-2015-7855 Security: CVE-2015-7854 Security: CVE-2015-7853 Security: CVE-2015-7852 Security: CVE-2015-7851 Security: CVE-2015-7850 Security: CVE-2015-7849 Security: CVE-2015-7848 Security: CVE-2015-7701 Security: CVE-2015-7703 Security: CVE-2015-7704, CVE-2015-7705 Security: CVE-2015-7691, CVE-2015-7692, CVE-2015-7702 Security: http://support.ntp.org/bin/view/Main/SecurityNotice#October_2015_NTP_Security_Vulner Sponsored by: Nginx, Inc.
* Replace afterinstall: hack from r54681 with 'make delete-old' functionality.bdrewery2015-09-191-3/+0
| | | | Sponsored by: EMC / Isilon Storage Division
* Parallelize the usr.sbin/ntp subdirectory buildngie2015-09-061-0/+10
| | | | | | Articulate all needed dependencies for the subdirectories MFC after: 1 week
* Turn on RAWDCF by default.cy2015-09-041-1/+1
| | | | | | Suggested by: ian Approved by: roberto MFC after: 1 week
* Use fixed date/time (the time choosen was the time the import was done ondelphij2015-07-191-0/+5
| | | | | | | | | -HEAD) in libntp so we can make reproducible build. PR: bin/201661 Reviewed by: gjb, cy, roberto MFC after: 3 days Differential Revision: https://reviews.freebsd.org/D3122
* Bump version after 4.2.8p3 import.delphij2015-07-121-1/+1
| | | | | | Note: currently 'mkver' script is using hardcoded knowledge and always emits -a in the version string, a more through solution would be to generate the script with something that we own.
* Update ntp version number. (This is a manual update that was missed.)cy2015-07-051-3/+3
|
* MFV ntp-4.2.8p3 (r284990).cy2015-07-052-1/+3
| | | | | | | | Approved by: roberto, delphij Security: VuXML: 0d0f3050-1f69-11e5-9ba9-d050996490d0 Security: http://bugs.ntp.org/show_bug.cgi?id=2853 Security: https://www.kb.cert.org/vuls/id/668167 Security: http://support.ntp.org/bin/view/Main/SecurityNotice#June_2015_NTP_Security_Vulnerabi
* Add support for additional architectures in ntp.cy2015-06-261-14/+27
| | | | | Differential Revision: D2720 Reviewed by: jmg, reoberto, andrew, ian, imp
* new dependssjg2015-06-167-19/+0
|
* Add META_MODE support.sjg2015-06-1312-0/+274
|\ | | | | | | | | | | | | | | | | | | | | Off by default, build behaves normally. WITH_META_MODE we get auto objdir creation, the ability to start build from anywhere in the tree. Still need to add real targets under targets/ to build packages. Differential Revision: D2796 Reviewed by: brooks imp
| * dirdeps.mk now sets DEP_RELDIRsjg2015-06-0812-24/+0
| |
| * Merge sync of headsjg2015-05-2743-1591/+5266
| |\
| * \ Merge from head@274682sjg2014-11-196-12/+0
| |\ \
| * \ \ Merge head from 7/28sjg2014-08-1911-13/+27
| |\ \ \
| * | | | Updated dependenciessjg2014-05-167-1/+6
| | | | |
| * | | | Updated dependenciessjg2014-05-101-0/+2
| | | | |
| * | | | Merge from headsjg2014-05-084-4/+4
| |\ \ \ \
| * \ \ \ \ Merge headsjg2014-04-287-7/+7
| |\ \ \ \ \
| * \ \ \ \ \ Merge head@256284sjg2013-10-132-2/+2
| |\ \ \ \ \ \
| * | | | | | | Updated dependenciessjg2013-10-132-0/+2
| | | | | | | |
| * | | | | | | Updated dependenciessjg2013-03-117-0/+7
| | | | | | | |
| * | | | | | | Updated dependenciessjg2013-02-1611-22/+0
| | | | | | | |
| * | | | | | | Updated/new Makefile.dependsjg2012-11-081-0/+14
| | | | | | | |
| * | | | | | | Sync FreeBSD's bmake branch with Juniper's internal bmake branch.marcel2012-08-2210-0/+235
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Requested by: Simon Gerraty <sjg@juniper.net>
* | | | | | | | Fix overlinking again after recent ntp updatesbapt2015-05-258-12/+22
| |_|_|_|_|_|/ |/| | | | | | | | | | | | | | | | | | | | Fix building WITHOUT_OPENSSL
* | | | | | | Restore CPU dependent compile time conditionals.cy2015-05-041-1/+21
| | | | | | | | | | | | | | | | | | | | | | | | | | | | MFC after: 1 month (with r281143 and r282408)
* | | | | | | MFV ntp 4.2.8p2 (r281348)cy2015-05-042-4/+4
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Reviewed by: delphij (suggested MFC) Approved by: roberto Security: CVE-2015-1798, CVE-2015-1799 Security: VuXML ebd84c96-dd7e-11e4-854e-3c970e169bc2 MFC after: 1 month
* | | | | | | - remove -l option from ntpdate manpage, as it is no longer an optionjgh2015-04-271-3/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Differential Revision: https://reviews.freebsd.org/D2358 Submitted by: gnn@ Approved by: wblock (mentor) MFC after: after 1 week
* | | | | | | Stop including if_var.h from userland.glebius2015-04-061-3/+0
| | | | | | | | | | | | | | | | | | | | | | | | | | | | Sponsored by: Nginx, Inc.
* | | | | | | MFV ntp 4.2.8p1 (r258945, r275970, r276091, r276092, r276093, r278284)cy2015-03-3032-1587/+5227
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Thanks to roberto for providing pointers to wedge this into HEAD. Approved by: roberto
* | | | | | | Convert usr.sbin to LIBADDbapt2014-11-258-28/+9
| |_|_|_|_|/ |/| | | | | | | | | | | | | | | | | Reduce overlinking
* | | | | | Backout 274170 it breaks for mipsbapt2014-11-061-2/+2
| | | | | |
* | | | | | sntp does not depend on libmbapt2014-11-061-2/+2
| | | | | |
* | | | | | Revert r267233 for now. PIE support needs to be reworked.bdrewery2014-08-196-12/+0
| |_|_|_|/ |/| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | 1. 50+% of NO_PIE use is fixed by adding -fPIC to INTERNALLIB and other build-only utility libraries. 2. Another 40% is fixed by generating _pic.a variants of various libraries. 3. Some of the NO_PIE use is a bit absurd as it is disabling PIE (and ASLR) where it never would work anyhow, such as csu or loader. This suggests there may be better ways of adding support to the tree. Many of these cases can be fixed such that -fPIE will work but there is really no reason to have it in those cases. 4. Some of the uses are working around hacks done to some Makefiles that are really building libraries but have been using bsd.prog.mk because the code is cleaner. Had they been using bsd.lib.mk then NO_PIE would not have been needed. We likely do want to enable PIE by default (opt-out) for non-tree consumers (such as ports). For in-tree though we probably want to only enable PIE (opt-in) for common attack targets such as remote service daemons and setuid utilities. This is also a great performance compromise since ASLR is expected to reduce performance. As such it does not make sense to enable it in all utilities such as ls(1) that have little benefit to having it enabled. Reported by: kib
* | | | | Replace all uses of libncurses and libtermcap with their wide characterbrooks2014-07-172-4/+4
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | variants. This allows usable file system images (i.e. those with both a shell and an editor) to be created with only one copy of the curses library. Exp-run: antoine PR: 189842 Discussed with: bapt Sponsored by: DARPA, AFRL
* | | | | Remove ia64.marcel2014-07-071-5/+3
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This includes: o All directories named *ia64* o All files named *ia64* o All ia64-specific code guarded by __ia64__ o All ia64-specific makefile logic o Mention of ia64 in comments and documentation This excludes: o Everything under contrib/ o Everything under crypto/ o sys/xen/interface o sys/sys/elf_common.h Discussed at: BSDcan
* | | | | In preparation for ASLR [1] support add WITH_PIE to support building with -fPIE.bdrewery2014-06-086-0/+12
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This is currently an opt-in build flag. Once ASLR support is ready and stable it should changed to opt-out and be enabled by default along with ASLR. Each application Makefile uses opt-out to ensure that ASLR will be enabled by default in new directories when the system is compiled with PIE/ASLR. [2] Mark known build failures as NO_PIE for now. The only known runtime failure was rtld. [1] http://www.bsdcan.org/2014/schedule/events/452.en.html Submitted by: Shawn Webb <lattera@gmail.com> Discussed between: des@ and Shawn Webb [2]
* | | | | When building picobsd, define WITHOUT_OPENSSL and WITHOUT_KERBEROS andimp2014-06-062-2/+2
| |_|_|/ |/| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | remove the now-redundant checks for RELEASE_CRUNCH. This originally was defined for building smaller sysinstall images, but was later also used by picobsd builds for a similar purpose. Now that we've moved away from sysinstall, picobsd is the only remaining consumer of this interface. Adding these two options reduces the RELEASE_CRUNCH special cases in the tree by half.
* | | | Use src.opts.mk in preference to bsd.own.mk except where we need stuffimp2014-05-064-4/+4
| |_|/ |/| | | | | | | | from the latter.
* | | NO_MAN= has been deprecated in favor of MAN= for some time, go aheadimp2014-04-136-6/+6
| | | | | | | | | | | | | | | | | | and finish the job. ncurses is now the only Makefile in the tree that uses it since it wasn't a simple mechanical change, and will be addressed in a future commit.
* | | We install the tool, so why not the man page?des2014-02-271-1/+1
| |/ |/| | | | | MFC after: 3 days
OpenPOWER on IntegriCloud