freebsd-dev/secure/Makefile

# $FreeBSD$

.include <src.opts.mk>

SUBDIR= lib .WAIT \
	libexec usr.bin usr.sbin
SUBDIR_PARALLEL=

SUBDIR.${MK_TESTS}+= tests

SUBDIR.${MK_CAROOT}+= caroot

# These are the programs which depend on crypto, but not Kerberos.
SPROGS=	lib/libfetch lib/libpam lib/libradius lib/libtelnet	\
	bin/ed libexec/telnetd usr.bin/fetch usr.bin/telnet	\
	usr.sbin/ppp usr.sbin/tcpdump/tcpdump
.if ${MK_SENDMAIL} != "no"
SPROGS+=usr.sbin/sendmail
.endif

# This target is used to rebuild these programs with crypto.
secure: .MAKE .PHONY
.for entry in ${SPROGS}
	cd ${.CURDIR:H}/${entry}; \
	${MAKE} cleandir; \
	${MAKE} obj; \
	${MAKE} all; \
	${MAKE} install
.endfor

# This target is used to rebuild these programs without crypto.
insecure: .MAKE .PHONY
.for entry in ${SPROGS}
	cd ${.CURDIR:H}/${entry}; \
	${MAKE} MK_CRYPT=no cleandir; \
	${MAKE} MK_CRYPT=no obj; \
	${MAKE} MK_CRYPT=no all; \
	${MAKE} MK_CRYPT=no install
.endfor

.include <bsd.subdir.mk>
$Id$ -> $FreeBSD$ 1999-08-28 01:35:59 +00:00			`# $FreeBSD$`
Allow the `bdes' program to compile. 1994-08-07 19:04:10 +00:00
Use src.opts.mk in preference to bsd.own.mk except where we need stuff from the latter. 2014-05-06 04:22:01 +00:00			`.include <src.opts.mk>`
Reimplementation of world/kernel build options. For details, see: http://lists.freebsd.org/pipermail/freebsd-current/2006-March/061725.html The src.conf(5) manpage is to follow in a few days. Brought to you by: imp, jhb, kris, phk, ru (all bugs are mine) 2006-03-17 18:54:44 +00:00
Add more SUBDIR_PARALLEL. MFC after: 3 weeks Sponsored by: EMC / Isilon Storage Division 2015-10-15 22:55:08 +00:00			`SUBDIR= lib .WAIT \`
Convert traditional ${MK_TESTS} conditional idiom for including test directories to SUBDIR.${MK_TESTS} idiom This is being done to pave the way for future work (and homogenity) in ^/projects/make-check-sandbox . No functional change intended. MFC after: 1 weeks 2017-08-02 08:35:51 +00:00			`libexec usr.bin usr.sbin`
Add more SUBDIR_PARALLEL. MFC after: 3 weeks Sponsored by: EMC / Isilon Storage Division 2015-10-15 22:55:08 +00:00			`SUBDIR_PARALLEL=`
Add placeholder Kyuafiles for various top-level hierarchies. This change adds tests/ directories in the source tree to create various subdirectories in /usr/tests/ and to install placeholder Kyuafiles for them. the relevant hierarchies are: cddl, etc, games, gnu and secure. The reason for this is to simplify the addition of new test programs for utilities or libraries under any of these directories. Doing so on a case by case basis is unnecessary and is quite an obscure process. 2014-04-21 21:39:25 +00:00
Convert traditional ${MK_TESTS} conditional idiom for including test directories to SUBDIR.${MK_TESTS} idiom This is being done to pave the way for future work (and homogenity) in ^/projects/make-check-sandbox . No functional change intended. MFC after: 1 weeks 2017-08-02 08:35:51 +00:00			`SUBDIR.${MK_TESTS}+= tests`
Allow the `bdes' program to compile. 1994-08-07 19:04:10 +00:00
[1/3] Initial infrastructure for SSL root bundle in base This setup will add the trusted certificates from the Mozilla NSS bundle to base. This commit includes: - CAROOT option to opt out of installation of certs - mtree amendments for final destinations - infrastructure to fetch/update certs, along with instructions A follow-up commit will add a certctl(8) utility to give the user control over trust specifics. Another follow-up commit will actually commit the initial result of updatecerts. This work was done primarily by allanjude@, with minor contributions by myself. No objection from: secteam Relnotes: yes Differential Revision: https://reviews.freebsd.org/D16856 2019-10-02 01:05:29 +00:00			`SUBDIR.${MK_CAROOT}+= caroot`

Added two utility targets "secure" and "insecure", analogous to "kerberize" and "dekerberize" in kerberos5/Makefile. These can be used to recompile bits with optional crypto support with and without crypto, respectively. Reviewed by: markm 2004-01-18 07:44:53 +00:00			`# These are the programs which depend on crypto, but not Kerberos.`
Fix release builds (release.3 target). We also need to rebuild libradius, because otherwise it will remain having a dependency upon libssl. This breaks the non-crypto build that happens for release.3 While here, order the list of programs and libraries. Speculating review feedback from: ru 2004-05-02 17:38:27 +00:00			`SPROGS= lib/libfetch lib/libpam lib/libradius lib/libtelnet \`
			`bin/ed libexec/telnetd usr.bin/fetch usr.bin/telnet \`
secure: chase removal of pkg_install 2017-11-11 07:21:49 +00:00			`usr.sbin/ppp usr.sbin/tcpdump/tcpdump`
Reimplementation of world/kernel build options. For details, see: http://lists.freebsd.org/pipermail/freebsd-current/2006-March/061725.html The src.conf(5) manpage is to follow in a few days. Brought to you by: imp, jhb, kris, phk, ru (all bugs are mine) 2006-03-17 18:54:44 +00:00			`.if ${MK_SENDMAIL} != "no"`
Very big makeover in the way telnet, telnetd and libtelnet are built. Previously, there were two copies of telnet; a non-crypto version that lived in the usual places, and a crypto version that lived in crypto/telnet/. The latter was built in a broken manner somewhat akin to other "contribified" sources. This meant that there were 4 telnets competing with each other at build time - KerberosIV, Kerberos5, plain-old-secure and base. KerberosIV is no longer in the running, but the other three took it in turns to jump all over each other during a "make buildworld". As the crypto issue has been clarified, and crypto _calls_ are not a problem, crypto/telnet has been repo-copied to contrib/telnet, and with this commit, all telnets are now "contribified". The contrib path was chosen to not destroy history in the repository, and differs from other contrib/ entries in that it may be worked on as "normal" BSD code. There is no dangerous crypto in these sources, only a very weak system less strong than enigma(1). Kerberos5 telnet and Secure telnet are now selected by using the usual macros in /etc/make.conf, and the build process is unsurprising and less treacherous. 2003-07-16 20:59:15 +00:00			`SPROGS+=usr.sbin/sendmail`
			`.endif`
Add extra targets a' la' eBones/Makefile for release/Makefile. (bootstrap etc) 1996-05-04 08:32:07 +00:00
Added two utility targets "secure" and "insecure", analogous to "kerberize" and "dekerberize" in kerberos5/Makefile. These can be used to recompile bits with optional crypto support with and without crypto, respectively. Reviewed by: markm 2004-01-18 07:44:53 +00:00			`# This target is used to rebuild these programs with crypto.`
Mark sub-make targets as .MAKE and .PHONY to handle -n and always-build properly. MFC after: 1 week Sponsored by: EMC / Isilon Storage Division 2015-10-15 19:13:53 +00:00			`secure: .MAKE .PHONY`
Added two utility targets "secure" and "insecure", analogous to "kerberize" and "dekerberize" in kerberos5/Makefile. These can be used to recompile bits with optional crypto support with and without crypto, respectively. Reviewed by: markm 2004-01-18 07:44:53 +00:00			`.for entry in ${SPROGS}`
crypto: normalize paths using SRCTOP-relative paths or :H when possible This simplifies make logic/output MFC after: 1 month Sponsored by: Dell EMC Isilon 2017-03-04 11:35:30 +00:00			`cd ${.CURDIR:H}/${entry}; \`
Added two utility targets "secure" and "insecure", analogous to "kerberize" and "dekerberize" in kerberos5/Makefile. These can be used to recompile bits with optional crypto support with and without crypto, respectively. Reviewed by: markm 2004-01-18 07:44:53 +00:00			`${MAKE} cleandir; \`
			`${MAKE} obj; \`
			`${MAKE} all; \`
			`${MAKE} install`
			`.endfor`

			`# This target is used to rebuild these programs without crypto.`
Mark sub-make targets as .MAKE and .PHONY to handle -n and always-build properly. MFC after: 1 week Sponsored by: EMC / Isilon Storage Division 2015-10-15 19:13:53 +00:00			`insecure: .MAKE .PHONY`
Added two utility targets "secure" and "insecure", analogous to "kerberize" and "dekerberize" in kerberos5/Makefile. These can be used to recompile bits with optional crypto support with and without crypto, respectively. Reviewed by: markm 2004-01-18 07:44:53 +00:00			`.for entry in ${SPROGS}`
crypto: normalize paths using SRCTOP-relative paths or :H when possible This simplifies make logic/output MFC after: 1 month Sponsored by: Dell EMC Isilon 2017-03-04 11:35:30 +00:00			`cd ${.CURDIR:H}/${entry}; \`
Use MK_CRYPT=no in preference to WITHOUT_CRYPT here. 2014-04-05 17:54:55 +00:00			`${MAKE} MK_CRYPT=no cleandir; \`
			`${MAKE} MK_CRYPT=no obj; \`
			`${MAKE} MK_CRYPT=no all; \`
			`${MAKE} MK_CRYPT=no install`
Added two utility targets "secure" and "insecure", analogous to "kerberize" and "dekerberize" in kerberos5/Makefile. These can be used to recompile bits with optional crypto support with and without crypto, respectively. Reviewed by: markm 2004-01-18 07:44:53 +00:00			`.endfor`

Add extra targets a' la' eBones/Makefile for release/Makefile. (bootstrap etc) 1996-05-04 08:32:07 +00:00			`.include <bsd.subdir.mk>`