302408 |
08-Jul-2016 |
gjb |
Copy head@r302406 to stable/11 as part of the 11.0-RELEASE cycle. Prune svn:mergeinfo from the new branch, as nothing has been merged here.
Additional commits post-branch will follow.
Approved by: re (implicit) Sponsored by: The FreeBSD Foundation |
299094 |
04-May-2016 |
ngie |
Merge ^/user/ngie/release-pkg-fix-tests to unbreak how test files are installed after r298107
Summary of changes:
- Replace all instances of FILES/TESTS with ${PACKAGE}FILES. This ensures that namespacing is kept with FILES appropriately, and that this shouldn't need to be repeated if the namespace changes -- only the definition of PACKAGE needs to be changed - Allow PACKAGE to be overridden by callers instead of forcing it to always be `tests`. In the event we get to the point where things can be split up enough in the base system, it would make more sense to group the tests with the blocks they're a part of, e.g. byacc with byacc-tests, etc - Remove PACKAGE definitions where possible, i.e. where FILES wasn't used previously. - Remove unnecessary TESTSPACKAGE definitions; this has been elided into bsd.tests.mk - Remove unnecessary BINDIRs used previously with ${PACKAGE}FILES; ${PACKAGE}FILESDIR is now automatically defined in bsd.test.mk. - Fix installation of files under data/ subdirectories in lib/libc/tests/hash and lib/libc/tests/net/getaddrinfo - Remove unnecessary .include <bsd.own.mk>s (some opportunistic cleanup)
Document the proposed changes in share/examples/tests/tests/... via examples so it's clear that ${PACKAGES}FILES is the suggested way forward in terms of replacing FILES. share/mk/bsd.README didn't seem like the appropriate method of communicating that info.
MFC after: never probably X-MFC with: r298107 PR: 209114 Relnotes: yes Tested with: buildworld, installworld, checkworld; buildworld, packageworld Sponsored by: EMC / Isilon Storage Division
|
298768 |
29-Apr-2016 |
gjb |
Fix including Kyuafile in packaged base system.
Fix a related typo while here.
Note, this change results in the Kyuafile inclusion in the runtime package, which needs to be fixed, however addresses the PR as far as I can tell in my tests.
PR: 209114 Submitted by: ngie Sponsored by: The FreeBSD Foundation
|
298107 |
16-Apr-2016 |
gjb |
Merge the projects/release-pkg branch to head.
This allows packaging the base system with pkg(8), including but not limited to providing the ability to provide upstream binary update possibilities for non-tier-1 architectures.
This merge is a requirement of the 11.0-RELEASE, and as such, thank you to everyone that has tested the project branch.
Documentation in build(7) etc. is still somewhat sparse, but updates to those parts will follow.
Sponsored by: The FreeBSD Foundation
|
296633 |
11-Mar-2016 |
des |
Upgrade to OpenSSH 7.2p2.
|
296587 |
09-Mar-2016 |
bdrewery |
DIRDEPS_BUILD: Connect MK_TESTS.
Sponsored by: EMC / Isilon Storage Division
|
291941 |
07-Dec-2015 |
bdrewery |
Replace unneeded manual dependency on header by adding it to SRCS.
bsd.lib.mk and bsd.prog.mk already depend all objs on headers in SRCS if there is not yet a depend file. The headers in SRCS are never built or installed. After 'make depend' the header was already added as a proper dependency on the objects where needed.
MFC after: 2 weeks Sponsored by: EMC / Isilon Storage Division
|
289393 |
15-Oct-2015 |
bdrewery |
Add more SUBDIR_PARALLEL.
MFC after: 3 weeks Sponsored by: EMC / Isilon Storage Division
|
289172 |
12-Oct-2015 |
ngie |
Refactor the test/ Makefiles after recent changes to bsd.test.mk (r289158) and netbsd-tests.test.mk (r289151)
- Eliminate explicit OBJTOP/SRCTOP setting - Convert all ad hoc NetBSD test integration over to netbsd-tests.test.mk - Remove unnecessary TESTSDIR setting - Use SRCTOP where possible for clarity
MFC after: 2 weeks Sponsored by: EMC / Isilon Storage Divison
|
287466 |
04-Sep-2015 |
bapt |
Remove remnant from USEPRIVATELIB removal
Sponsored by: gandi.net
|
284345 |
13-Jun-2015 |
sjg |
Add META_MODE support.
Off by default, build behaves normally. WITH_META_MODE we get auto objdir creation, the ability to start build from anywhere in the tree.
Still need to add real targets under targets/ to build packages.
Differential Revision: D2796 Reviewed by: brooks imp
|
275083 |
25-Nov-2014 |
bapt |
Reduce overlinking The framework now ensure by itself that pthread is added to the link chain as the last component if linked to kerberos hence avoid with out any explicit addition prevent issue like CVE-2014-8475
|
275077 |
25-Nov-2014 |
bapt |
Convert to LIBADD Reduce overlinking
|
269648 |
06-Aug-2014 |
bapt |
Rework privatelib/internallib
Make sure everything linking to a privatelib and/or an internallib does it directly from the OBJDIR rather than DESTDIR. Add src.libnames.mk so bsd.libnames.mk is not polluted by libraries not existsing in final installation Introduce the LD* variable which is what ld(1) is expecting (via LDADD) to link to internal/privatelib Directly link to the .so in case of private library to avoid having to complexify LDFLAGS.
Phabric: https://phabric.freebsd.org/D553 Reviewed by: imp, emaste
|
265420 |
06-May-2014 |
imp |
Use src.opts.mk in preference to bsd.own.mk except where we need stuff from the latter.
|
264741 |
21-Apr-2014 |
jmmv |
Add placeholder Kyuafiles for various top-level hierarchies.
This change adds tests/ directories in the source tree to create various subdirectories in /usr/tests/ and to install placeholder Kyuafiles for them.
the relevant hierarchies are: cddl, etc, games, gnu and secure.
The reason for this is to simplify the addition of new test programs for utilities or libraries under any of these directories. Doing so on a case by case basis is unnecessary and is quite an obscure process.
|
255460 |
10-Sep-2013 |
des |
Clean up the OpenSSH build. It is now possible to build most components as static binaries, if desired. The one exception is sshd, which runs into trouble due to libpam.a's includion of pam_ssh.
Make OpenSSH use LDNS if available. This allows it to verify signed SSHFP records.
Approved by: re (blanket)
|
255386 |
08-Sep-2013 |
des |
Make libldns and libssh private.
Approved by: re (blanket)
|
248617 |
22-Mar-2013 |
des |
Retire the mislabeled ENABLE_SUID_SSH knob.
|
204949 |
10-Mar-2010 |
des |
Revert r204939
|
204948 |
10-Mar-2010 |
des |
Forgot to svn add the Makefile.
|
204939 |
10-Mar-2010 |
dougb |
Fix the build. The ssh-pkcs11-helper directory is empty, which is causing confusion.
|
204917 |
09-Mar-2010 |
des |
Upgrade to OpenSSH 5.4p1.
MFC after: 1 month
|
204340 |
25-Feb-2010 |
des |
Fix 'make checkdpadd'
Submitted by: ru@
|
204334 |
25-Feb-2010 |
des |
Remove -static; it was a failed experiment that got committed by accident.
|
197679 |
01-Oct-2009 |
des |
Upgrade to OpenSSH 5.3p1.
|
181111 |
01-Aug-2008 |
des |
Upgrade to OpenSSH 5.1p1.
I have worked hard to reduce diffs against the vendor branch. One notable change in that respect is that we no longer prefer DSA over RSA - the reasons for doing so went away years ago. This may cause some surprises, as ssh will warn about unknown host keys even for hosts whose keys haven't changed.
MFC after: 6 weeks
|
158529 |
13-May-2006 |
des |
Add a manual dependency on ssh_namespace.h.
Discussed with: ru
|
158519 |
13-May-2006 |
des |
Introduce a namespace munging hack inspired by NetBSD to avoid polluting the namespace of applications which inadvertantly link in libssh (usually through pam_ssh)
Suggested by: lukem@netbsd.org MFC after: 6 weeks
|
156813 |
17-Mar-2006 |
ru |
Reimplementation of world/kernel build options. For details, see:
http://lists.freebsd.org/pipermail/freebsd-current/2006-March/061725.html
The src.conf(5) manpage is to follow in a few days.
Brought to you by: imp, jhb, kris, phk, ru (all bugs are mine)
|
147098 |
07-Jun-2005 |
des |
Revert the commits that made libssh an INTERNALLIB; they caused too much trouble, especially on amd64.
Requested by: ru
|
147056 |
06-Jun-2005 |
des |
Make libssh an INTERNALLIB like it is in {Net,Open}BSD.
|
147007 |
05-Jun-2005 |
des |
Update for OpenSSH 4.1p1.
|
125503 |
05-Feb-2004 |
ru |
Fixed style of DPADD and LDADD assignments as per style.Makefile(5).
|
124212 |
07-Jan-2004 |
des |
Update Makefiles for OpenSSH 3.7.1p2.
|
119116 |
19-Aug-2003 |
gordon |
Explicitly add libz and libcrypto to LDADD for any ssh utilities missing it. While not strictly required, it unbreaks the cross-build world that is resulting from moving the libraries around.
I have a more permanent solution to this problem in the works, but I asked des for permission to commit this to get the ball rolling. This also makes the ssh build more along the lines of what the openssh-portable and OpenBSD openssh Makefile glue does.
Reviewed by: des
|
117675 |
16-Jul-2003 |
markm |
Very big makeover in the way telnet, telnetd and libtelnet are built.
Previously, there were two copies of telnet; a non-crypto version that lived in the usual places, and a crypto version that lived in crypto/telnet/. The latter was built in a broken manner somewhat akin to other "contribified" sources. This meant that there were 4 telnets competing with each other at build time - KerberosIV, Kerberos5, plain-old-secure and base. KerberosIV is no longer in the running, but the other three took it in turns to jump all over each other during a "make buildworld".
As the crypto issue has been clarified, and crypto _calls_ are not a problem, crypto/telnet has been repo-copied to contrib/telnet, and with this commit, all telnets are now "contribified". The contrib path was chosen to not destroy history in the repository, and differs from other contrib/ entries in that it may be worked on as "normal" BSD code. There is no dangerous crypto in these sources, only a very weak system less strong than enigma(1).
Kerberos5 telnet and Secure telnet are now selected by using the usual macros in /etc/make.conf, and the build process is unsurprising and less treacherous.
|
114709 |
05-May-2003 |
markm |
Turn MAKE_KERBEROS5 into NO_KERBEROS by negating the logic. Some extra cleanups were necessary in release/Makefile, and the tinderbox code was syntax checked, not run checked.
|
114283 |
30-Apr-2003 |
ru |
The including makefile's directory is tried first for .include "...".
|
114282 |
30-Apr-2003 |
ru |
Most things depend on !defined(NO_OPENSSL); make it look so.
|
114281 |
30-Apr-2003 |
ru |
NOSECURE is implied by NOCRYPT, meaning if the latter is defined we won't be here.
|
113916 |
23-Apr-2003 |
des |
Remove Kerberos IV shims.
|
113915 |
23-Apr-2003 |
des |
Update for 3.6.1p1; also remove Kerberos IV shims.
|
106132 |
29-Oct-2002 |
des |
Update for OpenSSH 3.5p1.
|
99430 |
05-Jul-2002 |
des |
ssh-keysign(8) belongs in /usr/libexec, not in /usr/bin, and needs to be setuid so ssh(1) doesn't have to be.
Pointy hat to: des Submitted by: Katsuyuki TATEISHI <katsu@iec.hiroshima-u.ac.jp>
|
98820 |
25-Jun-2002 |
des |
No guts, no glory. Switch to OpenSSH-portable.
Sponsored by: DARPA, NAI Labs
|
90405 |
08-Feb-2002 |
ru |
Now that cross-tools ld(1) has been fixed to look for dynamic dependencies in the correct place, record the fact that -lssh depends on -lcrypto and -lz.
Removed false dependencies on -lz (except ssh(1) and sshd(8)). Removed false dependencies on -lcrypto and -lutil for scp(1).
Reviewed by: markm
|
90296 |
06-Feb-2002 |
kris |
Set WFORMAT=0, overlooked in previous commits to libexec/.
Reported by: jhay
|
89705 |
23-Jan-2002 |
ru |
Add pam_ssh support to the static PAM library, libpam.a:
- Spam /usr/lib some more by making libssh a standard library. - Tweak ${LIBPAM} and ${MINUSLPAM}. - Garbage collect unused libssh_pic.a. - Add fake -lz dependency to secure/ makefiles needed for dynamic linkage with -lssh.
Reviewed by: des, markm Approved by: markm
|
87141 |
30-Nov-2001 |
markm |
Clean up makefiles, and turn on WARNS=2. Take into account the telnet #if cleanup.
|
81104 |
03-Aug-2001 |
markm |
Revamp and diff-reduce the various secure telnets. Make sure that Kerberos5 has _a_ telnet (which is not currently K5 enabled). Incorporate BDE's static linking fixes.
|
80637 |
30-Jul-2001 |
bde |
Fixed world breakage when NOSHARED=yes. libmp now depends on libcrypto, so it must be linked before libcrypto to work right.
|
76407 |
09-May-2001 |
bde |
Fixed world breakage in previous commit. -lpam must never be used directly (except in the definition of MINUSLPAM in bsd.libnames.mk) since it doesn't give all the lbraries necessary for static linkage.
Fixed new and old bugs in DPADD. ${LIBPAM} was missing, and the library order was different from that in LDADD so `make checkdpadd' reported a non-bug.
|
76337 |
07-May-2001 |
nsayer |
Add PAM support to SRA authentication. Cribbed mostly from ftpd. This doesn't solve the problem of root being allowed to log in, but that sort of thing is something PAM should be doing anyway.
|
76264 |
04-May-2001 |
green |
Follow the OpenSSH 2.9 upgrade with the infrastructure. Two new programs are now included: sftp(1) and ssh-keyscan(1).
|
74928 |
28-Mar-2001 |
ru |
Bye-bye /usr/lib/libtelnet.a. This should fix ``make release'' brokeness.
Approved by: markm
|
74818 |
26-Mar-2001 |
ru |
secure/ build fixes:
- TELNETOBJDIR is gone. `buildworld' already installs libtelnet.a in ${WORLDTMP}/usr/lib, and we have LIBRARY_PATH pointing there.
- SSHDIR (formerly SSHSRC) is now shared between all SSH modules. New LIBSSH is introduced for libssh.a (an internal static lib). Previously, build without prior `obj' was broken; SSH modules always looked for libssh.a in ${.OBJDIR}. Also, the dependancies on the libssh.a were missing.
- libtelnet/ did not install the crypto version of telnet.h into /usr/include/arpa.
- Removed BINOWN, BINMODE, BINDIR and SRCS with default values.
Reviewed by: markm
- MAN[1-9] -> MAN.
|
65961 |
16-Sep-2000 |
kris |
Only build sftp-server conditionally
|
65872 |
15-Sep-2000 |
ache |
Add sftp-server
|
65675 |
10-Sep-2000 |
kris |
Update for OpenSSH 2.2.0
|
63824 |
25-Jul-2000 |
kris |
Don't build crypto-enabled telnetd if NO_OPENSSL is defined, since it attempts to link against libcrypto.
|
57437 |
24-Feb-2000 |
markm |
Build everything properly. This means:
o Don't b uild libdes.
o Crypto is now housed in libcrypto (with a compatability symlink to libdes)
o RSA may depend on RSAREF at your locale.
o OpenSSH is now a part of the base system.
|
56668 |
27-Jan-2000 |
shin |
another tcp apps IPv6 updates.(should be make world safe) ftp, telnet, ftpd, faithd also telnet related sync with crypto, secure, kerberosIV
Obtained from: KAME project
|
54783 |
18-Dec-1999 |
peter |
Revert -lmd changes now that libcrypt doesn't expose this binutils/ld bug any more.
|
54737 |
17-Dec-1999 |
marcel |
Add libmd to DPADD and LDADD.
|
52167 |
12-Oct-1999 |
markm |
Dont build telenet if we are going for kerberised telnet; this just jumps all over kerberised telnet otherwise.
|
51993 |
07-Oct-1999 |
markm |
Make telnet with SRA work.
Submitted by: Nick Sayer
|