| Commit message (Collapse) | Author | Age | Files | Lines |
|
|
|
|
|
|
|
|
|
|
|
| |
repeat performance by introducing a script that runs configure with and
without Kerberos, diffs the result and generates krb5_config.h, which
contains the preprocessor macros that need to be defined in the Kerberos
case and undefined otherwise.
Approved by: re (marius)
Notes:
svn path=/head/; revision=255829
|
|
|
|
|
|
|
|
|
| |
that it should no longer be considered secure.
Approved by: re (gjb)
Notes:
svn path=/head/; revision=255760
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
as static binaries, if desired. The one exception is sshd, which runs
into trouble due to libpam.a's includion of pam_ssh.
Make OpenSSH use LDNS if available. This allows it to verify signed
SSHFP records.
Approved by: re (blanket)
Notes:
svn path=/head/; revision=255460
|
|
|
|
|
|
|
| |
Approved by: re (blanket)
Notes:
svn path=/head/; revision=255386
|
|
|
|
|
|
|
|
|
| |
As of r249959, we want to build with IDEA support enabled
unconditionally. As this change removed the MK_IDEA flag, update these
Makefiles accordingly.
Notes:
svn path=/head/; revision=249971
|
|
|
|
|
|
|
| |
for a key revocation list and more fine-grained authentication control.
Notes:
svn path=/head/; revision=248619
|
|
|
|
| |
Notes:
svn path=/head/; revision=248617
|
|
|
|
|
|
|
| |
Approved by: secteam (simon), benl (silence)
Notes:
svn path=/head/; revision=246772
|
|
|
|
|
|
|
|
|
|
|
|
| |
which, only after authentication, disables crypto, and only for sessions
without a terminal.
Submitted by: Jeremy Chadwick (freebsd jdc.parodius.com)
PR: bin/163095
MFC after: 10 days
Notes:
svn path=/head/; revision=245527
|
|
|
|
| |
Notes:
svn path=/head/; revision=242692
|
|
|
|
| |
Notes:
svn path=/head/; revision=240075
|
|
|
|
|
|
|
| |
Specifically, GHASH_ASM belongs to crypto/modes.
Notes:
svn path=/head/; revision=238407
|
|
|
|
|
|
|
| |
Approved by: benl (maintainer)
Notes:
svn path=/head/; revision=238405
|
|
|
|
| |
Notes:
svn path=/head/; revision=237666
|
|
|
|
|
|
|
|
|
| |
Reviewed by: stas
Approved by: benl (maintainer)
MFC after: 3 days
Notes:
svn path=/head/; revision=237657
|
|
|
|
|
|
|
|
|
|
|
| |
Fix a bug in crypt(3) ignoring characters of a passphrase. [12:02]
Security: FreeBSD-SA-12:01.openssl (revised)
Security: FreeBSD-SA-12:02.crypt
Approved by: so (bz, simon)
Notes:
svn path=/head/; revision=236304
|
|
|
|
|
|
|
|
|
|
|
|
| |
Add the ability to use a non-standard LOCALBASE to ssh
Submitted by: jhb
Reviewed by: des
Approved by: cperciva
MFC after: 0 days (with r233136)
Notes:
svn path=/head/; revision=233432
|
|
|
|
|
|
|
|
|
| |
Reviewed by: ???
Approved by: ???
MFC after: 3 days
Notes:
svn path=/head/; revision=233136
|
|
|
|
|
|
|
| |
Discussed in: http://www.openwall.com/lists/oss-security/2011/11/15/3
Notes:
svn path=/head/; revision=231986
|
|
|
|
|
|
|
|
|
|
|
|
| |
against text. Provide the override switch to turn off the strict
behaviour. Apparently, openssl libcrypto needs it due to assembler
code not being PIC.
Discussed with: bf
MFC after: 2 weeks
Notes:
svn path=/head/; revision=228307
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
- fix other errors introduced when committing r226436
- add 'function' to a sentence where it makes sense
Submitted by: delphij
Submitted by: dougb
Submitted by: jhb
Approved by: dougb
Approved by: jhb
Notes:
svn path=/head/; revision=227458
|
|
|
|
|
|
|
|
|
|
|
| |
- change "the the" to "the"
Approved by: lstewart
Approved by: sahil (mentor)
MFC after: 3 days
Notes:
svn path=/head/; revision=226436
|
|
|
|
|
|
|
| |
MFC after: 3 months
Notes:
svn path=/head/; revision=226046
|
|
|
|
| |
Notes:
svn path=/head/; revision=221420
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
have an executable stack, due to linking in hand-assembled .S or .s
files, that have no .GNU-stack sections:
RWX --- --- /lib/libcrypto.so.6
RWX --- --- /lib/libmd.so.5
RWX --- --- /lib/libz.so.6
RWX --- --- /lib/libzpool.so.2
RWX --- --- /usr/lib/liblzma.so.5
These were found using scanelf, from the sysutils/pax-utils port.
Reviewed by: kib
Notes:
svn path=/head/; revision=218723
|
|
|
|
| |
Notes:
svn path=/head/; revision=216167
|
|
|
|
| |
Notes:
svn path=/head/; revision=215698
|
|
|
|
|
|
|
| |
Approved by: rrs (mentor)
Notes:
svn path=/head/; revision=212463
|
|
|
|
|
|
|
| |
Approved by: rrs (mentor)
Notes:
svn path=/head/; revision=211936
|
|
|
|
|
|
|
| |
code made obsolete in the same commit.
Notes:
svn path=/head/; revision=211934
|
|
|
|
|
|
|
|
| |
Prefer MACHNE_CPUARCH to MACHINE_ARCH in most contexts where you want
to test of all the CPUs of a given family conform.
Notes:
svn path=/head/; revision=211725
|
|
|
|
|
|
|
|
|
|
| |
read-only by default, meaning files copied can't be overwritten next time.
Reviewed by: imp
Approved by: ken (mentor)
Notes:
svn path=/head/; revision=211243
|
|
|
|
| |
Notes:
svn path=/head/; revision=210843
|
|
|
|
|
|
|
|
|
|
| |
When compiled for MIPS n64 ABI
- DES_LONG should be 'unsigned int'
- BN_LLONG should be undefined
- SIXTY_FOUR_BIT_LONG should be defined.
Notes:
svn path=/head/; revision=210842
|
|
|
|
|
|
|
| |
Obtained from: projects/ppc64
Notes:
svn path=/head/; revision=209890
|
|
|
|
| |
Notes:
svn path=/head/; revision=206048
|
|
|
|
|
|
|
|
|
|
|
| |
for regenerating OpenSSL manual pages.
- Explicitly set the OpenSSL release date so manual pages contain
the date OpenSSL was released and not just the date OpenSSL was
imported into the FreeBSD base system.
- Update for Makefile for OpenSSL 0.9.8n.
Notes:
svn path=/head/; revision=206047
|
|
|
|
|
|
|
| |
MFC after: 3 weeks
Notes:
svn path=/head/; revision=205129
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
This also "reverts" some FreeBSD local changes so we should now
be back to using entirely stock OpenSSL. The local changes were
simple $FreeBSD$ lines additions, which were required in the CVS
days, and the patch for FreeBSD-SA-09:15.ssl which has been
superseded with OpenSSL 0.9.8m's RFC5746 'TLS renegotiation
extension' support.
MFC after: 3 weeks
Notes:
svn path=/head/; revision=205128
|
|
|
|
| |
Notes:
svn path=/head/; revision=204949
|
|
|
|
| |
Notes:
svn path=/head/; revision=204948
|
|
|
|
|
|
|
| |
causing confusion.
Notes:
svn path=/head/; revision=204939
|
|
|
|
|
|
|
| |
MFC after: 1 month
Notes:
svn path=/head/; revision=204917
|
|
|
|
|
|
|
|
| |
libgssapi.a and libgssapi_krb5.a libraries that define the
same symbols.
Notes:
svn path=/head/; revision=204355
|
|
|
|
|
|
|
| |
Submitted by: ru@
Notes:
svn path=/head/; revision=204340
|
|
|
|
| |
Notes:
svn path=/head/; revision=204334
|
|
|
|
|
|
|
|
|
|
|
|
| |
Similar to libexec/, do the same with lib/. Make WARNS=6 the norm and
lower it when needed.
I'm setting WARNS?=0 for secure/. It seems secure/ includes the
Makefile.inc provided by lib/. I'm not going to touch that directory.
Most of the code there is contributed anyway.
Notes:
svn path=/head/; revision=201381
|
|
|
|
| |
Notes:
svn path=/head/; revision=201210
|
|
|
|
|
|
|
|
| |
Noticed by: delphij, David Cornejo <dave@dogwood.com>
Forgotten by: des
Notes:
svn path=/head/; revision=199131
|
|
|
|
|
|
|
| |
MFC after: 1 week
Notes:
svn path=/head/; revision=198856
|