4 .include "${SRCTOP}/secure/ssh.mk"
6 CONFS= moduli sshd_config
9 SRCS= sshd.c auth-rhosts.c auth-passwd.c \
10 audit.c audit-bsm.c audit-linux.c platform.c \
11 sshpty.c sshlogin.c servconf.c serverloop.c \
12 auth.c auth2.c auth-options.c session.c \
13 auth2-chall.c groupaccess.c \
14 auth-bsdauth.c auth2-hostbased.c auth2-kbdint.c \
15 auth2-none.c auth2-passwd.c auth2-pubkey.c \
16 monitor.c monitor_wrap.c auth-krb5.c \
17 auth2-gss.c gss-serv.c gss-serv-krb5.c \
18 loginrec.c auth-pam.c auth-shadow.c auth-sia.c md5crypt.c \
19 srclimit.c sftp-server.c sftp-common.c \
20 sandbox-null.c sandbox-rlimit.c sandbox-systrace.c sandbox-darwin.c \
21 sandbox-seccomp-filter.c sandbox-capsicum.c sandbox-pledge.c \
22 sandbox-solaris.c uidswap.c
25 # gss-genr.c really belongs in libssh; see src/secure/lib/libssh/Makefile
28 MAN= sshd.8 sshd_config.5
30 # Don't rebuild based on moduli.c
33 # pam should always happen before ssh here for static linking
36 .if ${MK_LDNS} != "no"
37 CFLAGS+= -DHAVE_LDNS=1
42 .if ${MK_AUDIT} != "no"
43 CFLAGS+= -DUSE_BSM_AUDIT=1 -DHAVE_GETAUDIT_ADDR=1
47 .if ${MK_BLACKLIST_SUPPORT} != "no"
48 CFLAGS+= -DUSE_BLACKLIST=1 -I${SRCTOP}/contrib/blacklist/include
51 LDFLAGS+=-L${LIBBLACKLISTDIR}
54 .if ${MK_GSSAPI} != "no" && ${MK_KERBEROS_SUPPORT} != "no"
55 CFLAGS+= -include krb5_config.h
57 LIBADD+= gssapi_krb5 gssapi krb5
60 .if ${MK_TCP_WRAPPERS} != "no"
67 .if defined(LOCALBASE)
68 CFLAGS+= -DXAUTH_PATH=\"${LOCALBASE}/bin/xauth\"
71 .include <bsd.prog.mk>