summaryrefslogtreecommitdiff
path: root/src/usr.bin (follow)
Commit message (Collapse)AuthorAgeFilesLines
...
* Switch "openssl req" to using SHA256 for hashes and AES256 to encrypt on-disksthen2014-10-012-12/+12
| | | | | | | | | | keys by default (instead of SHA1/3DES) and update documentation to match. Another way to do this is s/NID_sha1/NID_sha256/ in src/crypto/rsa/rsa_ameth.c ("case ASN1_PKEY_CTRL_DEFAULT_MD_NID") but going with the more targetted method above that only affects "openssl req" for now. Help/OK jsing@. OKs on earlier diffs changing openssl.cnf from phessler@ aja@
* Remove unused #define.lteo2014-09-171-3/+1
| | | | ok jsing@
* a little less sendmail specific;jmc2014-09-161-4/+3
|
* Disable -Wshadow again, since it breaks builds on vax with gcc3.jsing2014-09-101-2/+2
|
* Enable -Wshadow in openssl(1) and fix a few shadow warnings.doug2014-09-015-25/+21
| | | | ok jsing@
* Convert ecparam to new option/usage handling.jsing2014-09-011-197/+215
|
* Improve option usage output.jsing2014-09-011-7/+20
| | | | | | | If the option/argument string exceeds the given width, add a hanging indent prior to displaying the description. Also, if the description includes newlines, wrap and indent for each newline so that the indentation is correctly maintained.
* Convert openssl(1) version to new option/usage handling.jsing2014-08-301-34/+90
|
* Move the callback function pointer outside the opt union so that the optionjsing2014-08-302-4/+10
| | | | | values are useable by the function. Also provide an option type that calls a function without consuming/passing an argument.
* OpenSSL_add_all_algorithms() is called from openssl_startup() - it does notjsing2014-08-286-13/+6
| | | | need to also be called from some of the applications.
* openssl_setup() calls SSL_load_error_strings(), which happens to calljsing2014-08-2827-60/+30
| | | | | ERR_load_crypto_strings() - as such, we do not need to call the same function from most of the applications.
* Add option handling with a callback function for argument processing.jsing2014-08-282-2/+10
|
* Convert openssl(1) crl to new option/usage handling.jsing2014-08-281-186/+246
|
* Given the usage option name/argument name width a few more characters.jsing2014-08-281-2/+2
|
* Ensure that a format option argument is a known specifier.jsing2014-08-281-2/+10
|
* Add option handling for ordered flags.jsing2014-08-282-2/+8
|
* Add option handling for input/output formats.jsing2014-08-282-2/+8
|
* Convert openssl(1) prime to the new options/usage handling.jsing2014-08-271-60/+81
|
* Reset the config struct before calling options_parse(), otherwise configjsing2014-08-271-1/+3
| | | | options from the previous run stick in interactive mode.
* Add an option type that handles argument to integer conversion.jsing2014-08-272-4/+22
|
* Implement table-driven option parsing that allows an application tojsing2014-08-273-76/+192
| | | | | | | | | | | | | | | | | specify what its valid options are and where it wants them to be stored. This also allows for usage to be generated, almost for free, ensuring that the options and usage are automatically kept in sync. This will allow for a single option parsing implementation, rather than the current one-hand-rolled-option-parsing-and-random-usage-implementation per application. As a starting point, port the openssl(1) rand application to the new option parsing and usage (along with associated code clean up). With input from doug@. ok bcook@ doug@
* remove nginx referencesrobert2014-08-261-2/+1
|
* Move openssl(1) from /usr/sbin/openssl to /usr/bin/openssl, since it is notjsing2014-08-2657-0/+44053
| | | | | | | | a system/superuser binary. At the same time, move the source code from its current lib/libssl/src/apps location to a more appropriate home under usr.bin/openssl. ok deraadt@ miod@
* Make sure the correct errno is reported by warn* or err* and notguenther2014-07-201-2/+3
| | | | | | the errno of an intervening cleanup operation like close/unlink/etc. Diff from Doug Hogan (doug (at) acyclic.org)
* stick with 16k buffers for a little while to avoid bufferbloat.tedu2014-06-101-2/+2
| | | | | atomicio writing out 64k in one direction will cause traffic in the other direction to stall until it's complete. discussion with deraadt
* increase buffer size to 64k, and actually use it. ok deraadttedu2014-06-101-3/+3
| | | | from John-Mark Gurney
* Use errc/warnc to simplify code.guenther2014-05-201-2/+2
| | | | | | Also, in 'ftp', always put the error message last, after the hostname/ipaddr. ok jsing@ krw@ millert@
* Unbreak nc -6 -l. Don't retrieve and thus later set the routing tablejca2014-03-121-3/+2
| | | | | unless -V is passed (intent of the previous commit), and use SOL_SOCKET instead of IPPROTO_IP to set the rtable in local_listen(). ok sthen@
* Once more, the default routing table id is inherited from the processclaudio2014-02-261-3/+2
| | | | like for any other process as well. OK by many
* one of the examples needs -N to work again;jmc2014-02-101-3/+3
| | | | | | | the paper trail appears to be: reported in feebsd pr docs/185353 by rol robert-eckardt de fix suggested by peter wemm diff submitted to tech by allan jude
* Only use setsockopt(..SO_RTABLE..) if the -V flag is given to nc/telnet,sthen2013-10-261-7/+7
| | | | | same style as traceroute6 (change to int and use -1 as a flag, so rtable 0 can still be used as an explicit parameter).
* Oups, a little bit overzealous. If we "route -T4 exec telnet foo", thenphessler2013-10-211-1/+2
| | | | make sure telnet runs in rdomain 4 as expected. Same for nc.
* Set the requested rdomain on the socket instead of only on the IPv4 part.phessler2013-10-211-11/+7
| | | | Also, switching to rdomain zero is a legit option so we should allow that.
* escape not-full-stop-dot at eol;jmc2013-08-201-2/+2
|
* add -F to usage() and help();jmc2013-08-201-2/+3
| | | | ok djm
* add -F flag to enabled fd-pass mode: establish connection and passdjm2013-08-202-6/+89
| | | | | | connected socket to stdout. This is useful in proxy mode to establish a connection for use by ssh in conjunction with its new ProxyUseFDPass option; ok markus@
* use .Mt for email addresses; from Jan Stary <hans at stare dot cz>; ok jmc@schwarze2013-07-161-4/+4
|
* use FD_CLOEXEC instead of 1; from David Hillokan2013-04-291-2/+2
| | | | ok otto
* Don't shutdown nc(1)'s network socket when stdin closes. Matches *Hobbit*'ssthen2013-03-202-7/+17
| | | | | | original netcat and GNU netcat; revert to old behaviour with the new -N flag if needed. After much discussion with otto deraadt tedu and Martin Pelikan. ok deraadt@
* All accept() errors are considered fatal, until someone gives a differentderaadt2013-03-121-4/+5
| | | | reason. No code changed, just documenting it...
* remove some unnecessary sys/param.h inclusionsderaadt2012-12-041-3/+1
|
* Allow UDP server to receive datagrams from multiple socket pairs with -khaesbaert2012-07-072-7/+17
| | | | | | | flag. Prompted by a question from dsp at 2f30 dot org, diff from Lazarom Koromil with a few tweaks by me, many thanks. ok mikeb@ nicm@ haesbaert@
* Report incoming connections when -l is specified with -v.haesbaert2012-07-071-1/+35
| | | | | | From Ricky Zhou with a few tweaks by me. ok henning@ haesbaert@
* error out if accept() failsderaadt2012-04-011-1/+3
|
* remove IP_JUMBO, SO_JUMBO, and RTF_JUMBO.dlg2012-03-171-13/+4
| | | | no objection from mcbride@ krw@ markus@ deraadt@
* fix format strings for size_tespie2012-03-081-3/+3
| | | | ok okan@
* Update comments. ok deraadt@lum2012-02-091-4/+3
|
* Remove unused protocol value check. ok brynet@lum2012-02-091-4/+1
|
* Expand the CAVEAT section to more fully describe the behaviour oflum2012-02-071-6/+13
| | | | | | | | the -uz combination. This diff stems from a diff by brynet@ sent to tech@ help from jmc@ regarding wording.
* change -w to apply to the connection as well. manpage bit from jmc@fgsch2011-10-042-6/+44
| | | | nicm@ ok.
generated by cgit v1.2.3-55-g6feb (git 2.39.1) at 2025-04-20 14:26:02 +0000