5 CONFS= moduli sshd_config
8 SRCS= sshd.c auth-rhosts.c auth-passwd.c \
9 audit.c audit-bsm.c audit-linux.c platform.c \
10 sshpty.c sshlogin.c servconf.c serverloop.c \
11 auth.c auth2.c auth-options.c session.c \
12 auth2-chall.c groupaccess.c \
13 auth-skey.c auth-bsdauth.c auth2-hostbased.c auth2-kbdint.c \
14 auth2-none.c auth2-passwd.c auth2-pubkey.c \
15 monitor.c monitor_wrap.c auth-krb5.c \
16 auth2-gss.c gss-serv.c gss-serv-krb5.c \
17 loginrec.c auth-pam.c auth-shadow.c auth-sia.c md5crypt.c \
18 sftp-server.c sftp-common.c \
19 sandbox-null.c sandbox-rlimit.c sandbox-systrace.c sandbox-darwin.c \
20 sandbox-seccomp-filter.c sandbox-capsicum.c sandbox-pledge.c \
24 # gss-genr.c really belongs in libssh; see src/secure/lib/libssh/Makefile
27 MAN= sshd.8 sshd_config.5
28 CFLAGS+=-I${SSHDIR} -include ssh_namespace.h
29 SRCS+= ssh_namespace.h
31 # Don't rebuild based on moduli.c
34 # pam should always happen before ssh here for static linking
37 .if ${MK_LDNS} != "no"
38 CFLAGS+= -DHAVE_LDNS=1
43 .if ${MK_AUDIT} != "no"
44 CFLAGS+= -DUSE_BSM_AUDIT=1 -DHAVE_GETAUDIT_ADDR=1
48 .if ${MK_BLACKLIST_SUPPORT} != "no"
49 CFLAGS+= -DUSE_BLACKLIST=1 -I${SRCTOP}/contrib/blacklist/include
52 LDFLAGS+=-L${LIBBLACKLISTDIR}
55 .if ${MK_GSSAPI} != "no" && ${MK_KERBEROS_SUPPORT} != "no"
56 CFLAGS+= -include krb5_config.h
58 LIBADD+= gssapi_krb5 gssapi krb5
61 .if ${MK_TCP_WRAPPERS} != "no"
68 .if defined(LOCALBASE)
69 CFLAGS+= -DXAUTH_PATH=\"${LOCALBASE}/bin/xauth\"
72 .include <bsd.prog.mk>