Remove redundant include directories which expand to a noop,"-I/lib/krb5 -I -I".Reviewed by: ngie@, markm@MFC after: 1 monthDifferential Revision: D11769
Use SRCTOP-relative paths to other directories instead of .CURDIR-relative onesThis implifies pathing in make/displayed outputMFC after: 3 weeksSponsored by: Dell EMC Isilon
First pass through library packaging.Sponsored by: The FreeBSD Foundation
dirdeps.mk now sets DEP_RELDIR
When building picobsd, define WITHOUT_OPENSSL and WITHOUT_KERBEROS andremove the now-redundant checks for RELEASE_CRUNCH. This originallywas defined for building smaller sysinstall images, but was
When building picobsd, define WITHOUT_OPENSSL and WITHOUT_KERBEROS andremove the now-redundant checks for RELEASE_CRUNCH. This originallywas defined for building smaller sysinstall images, but was later alsoused by picobsd builds for a similar purpose. Now that we've movedaway from sysinstall, picobsd is the only remaining consumer of thisinterface. Adding these two options reduces the RELEASE_CRUNCHspecial cases in the tree by half.
show more ...
Use src.opts.mk in preference to bsd.own.mk except where we need stufffrom the latter.
Updated dependencies
include/arpa installs telnet.h
Updated/new Makefile.depend
Sync FreeBSD's bmake branch with Juniper's internal bmake branch.Requested by: Simon Gerraty <[email protected]>
- Do not use deprecated krb5 error message reporting functions in libtelnet.
- Update FreeBSD Heimdal distribution to version 1.5.1. This also brings several new kerberos related libraries and applications to FreeBSD: o kgetcred(1) allows one to manually get a ticket for
- Update FreeBSD Heimdal distribution to version 1.5.1. This also brings several new kerberos related libraries and applications to FreeBSD: o kgetcred(1) allows one to manually get a ticket for a particular service. o kf(1) securily forwards ticket to another host through an authenticated and encrypted stream. o kcc(1) is an umbrella program around klist(1), kswitch(1), kgetcred(1) and other user kerberos operations. klist and kswitch are just symlinks to kcc(1) now. o kswitch(1) allows you to easily switch between kerberos credentials if you're running KCM. o hxtool(1) is a certificate management tool to use with PKINIT. o string2key(1) maps a password into key. o kdigest(8) is a userland tool to access the KDC's digest interface. o kimpersonate(8) creates a "fake" ticket for a service. We also now install manpages for some lirbaries that were not installed before, libheimntlm and libhx509.- The new HEIMDAL version no longer supports Kerberos 4. All users are recommended to switch to Kerberos 5.- Weak ciphers are now disabled by default. To enable DES support (used by telnet(8)), use "allow_weak_crypto" option in krb5.conf.- libtelnet, pam_ksu and pam_krb5 are now compiled with error on warnings disabled due to the function they use (krb5_get_err_text(3)) being deprecated. I plan to work on this next.- Heimdal's KDC now require sqlite to operate. We use the bundled version and install it as libheimsqlite. If some other FreeBSD components will require it in the future we can rename it to libbsdsqlite and use for these components as well.- This is not a latest Heimdal version, the new one was released while I was working on the update. I will update it to 1.5.2 soon, as it fixes some important bugs and security issues.
Rename all symbols in libmp(3) to mp_*, just like Solaris.The function pow() in libmp(3) clashes with pow(3) in libm. We couldrename this single function, but we can just take the same approach as
Rename all symbols in libmp(3) to mp_*, just like Solaris.The function pow() in libmp(3) clashes with pow(3) in libm. We couldrename this single function, but we can just take the same approach asthe Solaris folks did, which is to prefix all function names with mp_.libmp(3) isn't really popular nowadays. I suspect not a singleapplication in ports depends on it. There's still a chance, so I'veincreased the SHLIB_MAJOR and __FreeBSD_version.Reviewed by: deischen, rdivacky
Stop enforcing dependencies between MK_* options at Makefile level.All the dependencies are satisfied now in <bsd.own.mk>.
Reimplementation of world/kernel build options. For details, see:http://lists.freebsd.org/pipermail/freebsd-current/2006-March/061725.htmlThe src.conf(5) manpage is to follow in a few days.Bro
Reimplementation of world/kernel build options. For details, see:http://lists.freebsd.org/pipermail/freebsd-current/2006-March/061725.htmlThe src.conf(5) manpage is to follow in a few days.Brought to you by: imp, jhb, kris, phk, ru (all bugs are mine)
NOCRYPT -> NO_CRYPT
For variables that are only checked with defined(), don't provideany fake value.
Join the 21st century: Cryptography is no longer an optional componentof releases. The -DNOCRYPT build option still exists for anyone whoreally wants to build non-cryptographic binaries, but the "
Join the 21st century: Cryptography is no longer an optional componentof releases. The -DNOCRYPT build option still exists for anyone whoreally wants to build non-cryptographic binaries, but the "crypto"release distribution is now part of "base", and anyone installing from arelease will get cryptographic binaries.Approved by: re (scottl), markmDiscussed on: freebsd-current, in late April 2004
Downgrade WARNS level for GCC 3.4.2.
Make sure that a "make release" (more accurately the bit that makesthe crunched binary) get a non-cryptographic telnet. This is overkillin that it covers stuff that is not normally used in a crunch
Make sure that a "make release" (more accurately the bit that makesthe crunched binary) get a non-cryptographic telnet. This is overkillin that it covers stuff that is not normally used in a crunched binary.
Ensure that for the cryptographic instances of *telnet*, the "crypto"distribution is used. This only affects release-building.
Test correct macro for "without crypto" option(s).
Very big makeover in the way telnet, telnetd and libtelnet are built.Previously, there were two copies of telnet; a non-crypto versionthat lived in the usual places, and a crypto version that live
Very big makeover in the way telnet, telnetd and libtelnet are built.Previously, there were two copies of telnet; a non-crypto versionthat lived in the usual places, and a crypto version that lived incrypto/telnet/. The latter was built in a broken manner somewhat akinto other "contribified" sources. This meant that there were 4 telnetscompeting with each other at build time - KerberosIV, Kerberos5,plain-old-secure and base. KerberosIV is no longer in the running, butthe other three took it in turns to jump all over each other during a"make buildworld".As the crypto issue has been clarified, and crypto _calls_ are nota problem, crypto/telnet has been repo-copied to contrib/telnet,and with this commit, all telnets are now "contribified". The contribpath was chosen to not destroy history in the repository, and differsfrom other contrib/ entries in that it may be worked on as "normal"BSD code. There is no dangerous crypto in these sources, only avery weak system less strong than enigma(1).Kerberos5 telnet and Secure telnet are now selected by using the usualmacros in /etc/make.conf, and the build process is unsurprising andless treacherous.
Removed now unused INTERNALSTATICLIB.INTERNALLIB now implies NOPIC and NOPROFILE.Removed gratuitous NOMAN.
Merge the (in)complete ANSIfication work from src/crypto/telnet.
12