8 SRCS= authfd.c authfile.c bufaux.c bufbn.c buffer.c \
9 canohost.c channels.c cipher.c cipher-aes.c \
10 cipher-bf1.c cipher-ctr.c cipher-3des1.c cleanup.c \
11 compat.c compress.c crc32.c deattack.c fatal.c hostfile.c \
12 log.c match.c md-sha256.c moduli.c nchan.c packet.c \
13 readpass.c rsa.c ttymodes.c xmalloc.c addrmatch.c \
14 atomicio.c key.c dispatch.c kex.c mac.c uidswap.c uuencode.c misc.c \
15 monitor_fdpass.c rijndael.c ssh-dss.c ssh-ecdsa.c ssh-rsa.c dh.c \
16 kexdh.c kexgex.c kexdhc.c kexgexc.c bufec.c kexecdh.c kexecdhc.c \
17 msg.c progressmeter.c dns.c entropy.c umac.c umac128.c \
18 ssh-pkcs11.c krl.c smult_curve25519_ref.c \
19 kexc25519.c kexc25519c.c poly1305.c chacha.c cipher-chachapoly.c \
20 ssh-ed25519.c digest-openssl.c hmac.c \
21 sc25519.c ge25519.c fe25519.c ed25519.c verify.c hash.c blocks.c
23 # gss-genr.c should be in $SRCS but causes linking problems, so it is
24 # compiled directly into sshd instead.
27 SRCS+= bcrypt_pbkdf.c blowfish.c bsd-misc.c explicit_bzero.c fmt_scaled.c \
28 glob.c openssl-compat.c port-tun.c strtonum.c timingsafe_bcmp.c \
29 vis.c xcrypt.c xmmap.c
31 .if ${MK_LDNS} == "no"
32 SRCS+= getrrsetbyname.c
34 LDNSDIR= ${.CURDIR}/../../../contrib/ldns
35 CFLAGS+= -DHAVE_LDNS=1 -I${LDNSDIR}
36 SRCS+= getrrsetbyname-ldns.c
42 CFLAGS+= -I${SSHDIR} -include ssh_namespace.h
44 .if ${MK_KERBEROS_SUPPORT} != "no"
45 CFLAGS+= -include krb5_config.h
46 DPADD+= ${LIBGSSAPI} ${LIBKRB5} ${LIBHX509} ${LIBASN1} ${LIBCOM_ERR} ${LIBMD} ${LIBROKEN}
47 LDADD+= -lgssapi -lkrb5 -lhx509 -lasn1 -lcom_err -lmd -lroken
50 .if ${MK_OPENSSH_NONE_CIPHER} != "no"
51 CFLAGS+= -DNONE_CIPHER_ENABLED
56 DPADD+= ${LIBCRYPTO} ${LIBCRYPT} ${LIBZ}
57 LDADD+= -lcrypto -lcrypt -lz
61 .PATH: ${SSHDIR} ${SSHDIR}/openbsd-compat
63 ${OBJS} ${POBJS} ${SOBJS}: ssh_namespace.h
64 .if ${MK_KERBEROS_SUPPORT} != "no"
65 ${OBJS} ${POBJS} ${SOBJS}: krb5_config.h