mirror of
https://github.com/opnsense/src.git
synced 2026-02-13 07:44:48 -05:00
ff75e00737
The framework now ensure by itself that pthread is added to the link chain as the last component if linked to kerberos hence avoid with out any explicit addition prevent issue like CVE-2014-8475
46 lines
904 B
Makefile
46 lines
904 B
Makefile
# $FreeBSD$
|
|
|
|
.include <src.opts.mk>
|
|
|
|
PROG= ssh
|
|
CFLAGS+=-I${SSHDIR} -include ssh_namespace.h
|
|
LINKS= ${BINDIR}/ssh ${BINDIR}/slogin
|
|
MAN= ssh.1 ssh_config.5
|
|
MLINKS= ssh.1 slogin.1
|
|
|
|
SRCS= ssh.c readconf.c clientloop.c sshtty.c \
|
|
sshconnect.c sshconnect1.c sshconnect2.c mux.c \
|
|
roaming_common.c roaming_client.c
|
|
|
|
# gss-genr.c really belongs in libssh; see src/secure/lib/libssh/Makefile
|
|
SRCS+= gss-genr.c
|
|
|
|
LIBADD= ssh
|
|
|
|
.if ${MK_LDNS} != "no"
|
|
CFLAGS+= -DHAVE_LDNS=1
|
|
.endif
|
|
|
|
.if ${MK_KERBEROS_SUPPORT} != "no"
|
|
CFLAGS+= -include krb5_config.h
|
|
LIBADD+= gssapi
|
|
.endif
|
|
|
|
.if ${MK_OPENSSH_NONE_CIPHER} != "no"
|
|
CFLAGS+= -DNONE_CIPHER_ENABLED
|
|
.endif
|
|
|
|
LIBADD+= crypto
|
|
|
|
.if defined(LOCALBASE)
|
|
CFLAGS+= -DXAUTH_PATH=\"${LOCALBASE}/bin/xauth\"
|
|
.endif
|
|
|
|
.include <bsd.prog.mk>
|
|
|
|
.PATH: ${SSHDIR}
|
|
|
|
${OBJS} ${POBJS} ${SOBJS}: ssh_namespace.h
|
|
.if ${MK_KERBEROS_SUPPORT} != "no"
|
|
${OBJS} ${POBJS} ${SOBJS}: krb5_config.h
|
|
.endif
|