aboutsummaryrefslogtreecommitdiffstats
path: root/security/openssh/Makefile
blob: 5a91e4bc6f33aa5fbef0f3fbc0bf77a91f02f92e (plain) (blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
# New ports collection makefile for:    OpenSSH
# Date created:     7 October 1999
# Whom:         green
#
# $FreeBSD$
#

PORTNAME=   openssh
PORTVERSION=    3.1
PORTREVISION=   7
CATEGORIES= security
MASTER_SITES=   ftp://ftp.openbsd.org/pub/OpenBSD/OpenSSH/ \
        ftp://ftp.usa.openbsd.org/pub/OpenBSD/OpenSSH/ \
        ftp://ftp1.se.openbsd.org/pub/OpenBSD/OpenSSH/
DISTNAME=   openssh-${PORTVERSION}
EXTRACT_SUFX=   .tgz

PATCH_SITES=    ${MASTER_SITES}
PATCHFILES= openbsd28_3.1.patch openssh-3.1-adv.token.patch

MAINTAINER= dinoex@FreeBSD.org

USE_OPENSSL=    yes

MAN1=       scp.1 slogin.1 ssh-add.1 ssh-agent.1 ssh-keygen.1 ssh.1 \
        ssh-keyscan.1 sftp.1
MAN8=       sshd.8 sftp-server.8
MANCOMPRESSED=  yes
FIXME=      lib/Makefile scp/Makefile sftp/Makefile sftp-server/Makefile \
        ssh/Makefile ssh-add/Makefile ssh-agent/Makefile \
        ssh-keygen/Makefile ssh-keyscan/Makefile sshd/Makefile

.include <bsd.port.pre.mk>

.if ${OSVERSION} < 430000
OPENSSLBASE=    /usr/local
OPENSSLDIR= ${OPENSSLBASE}/openssl
LIB_DEPENDS+=   crypto.2:${PORTSDIR}/security/openssl
OPENSSLLIB= ${OPENSSLBASE}/lib
OPENSSLINC= ${OPENSSLBASE}/include
MAKE_ENV+=  OPENSSLLIB=${OPENSSLLIB} OPENSSLINC=${OPENSSLINC} \
        OPENSSLBASE=${OPENSSLBASE} OPENSSLDIR=${OPENSSLDIR}
.endif
CRYPTOLIBS= -L${OPENSSLLIB} -lcrypto
# Here, MANDIR is concetenated to DESTDIR which all forms the man install dir...
MAKE_ENV+=  DESTDIR=${PREFIX} MANDIR=/man/man CRYPTOLIBS="${CRYPTOLIBS}"
.if ${OSVERSION} < 400014
MAKE_ENV+=  COMPAT_GETADDRINFO=yes
.else
MAKE_ENV+=  INET6FLAGS=-DINET6
.endif
.if !exists(/usr/include/tcpd.h)
MAKE_ENV+=  TCP_WRAPPERS=no
.endif
.if defined(AFS) && ${AFS} == YES
MAKE_ENV+=  AFS=yes
.endif
.if defined(KERBEROS) && ${KERBEROS} == YES
MAKE_ENV+=  KERBEROS=yes
.endif
.if exists(/usr/include/security/pam_modules.h)
PAM?=       yes
.else
PAM=        no
.endif
MAKE_ENV+=  PAM=${PAM}
.if defined(SKEY) && ${SKEY} == YES
MAKE_ENV+=  SKEY=yes
.endif
WRKSRC=     ${WRKDIR}/ssh

post-extract:
    @${CP} ${FILESDIR}/strlcat.c ${FILESDIR}/strlcpy.c ${WRKSRC}/lib/
    @${CP} ${FILESDIR}/sshd.sh ${WRKSRC}/
.if ${OSVERSION} < 400014
    @${CP} ${FILESDIR}/getaddrinfo.c  ${FILESDIR}/name6.c ${WRKSRC}/lib/
    @${CP} ${FILESDIR}/bindresvport.c ${FILESDIR}/rcmd.c ${WRKSRC}/lib/
    @${CP} ${FILESDIR}/getnameinfo.c ${WRKSRC}/lib/
    @${CP} ${FILESDIR}/netdb.h ${WRKSRC}/
.endif

post-patch:
    @${PERL5} -pi -e "s=/etc/ssh=${PREFIX}/etc/ssh=" ${WRKSRC}/sshd_config
    @${PERL5} -pi -e "s=/usr/libex=${PREFIX}/libex=" ${WRKSRC}/sshd_config
    @${PERL5} -pi -e 's:__PREFIX__:${PREFIX}:g' ${WRKSRC}/ssh.h \
        ${WRKSRC}/sshd_config ${WRKSRC}/sshd.sh \
        ${WRKSRC}/pathnames.h

.if ${OSVERSION} < 430000
post-configure:
.for i in ${FIXME}
    @${PERL5} -pi -e "s=KERBEROS[:]L=KERBEROS=" ${WRKSRC}/${i}
    @${PERL5} -pi -e "s=KERBEROS5[:]L=KERBEROS5=" ${WRKSRC}/${i}
    @${PERL5} -pi -e "s=AFS[:]L=AFS=" ${WRKSRC}/${i}
    @${PERL5} -pi -e "s=TCP_WRAPPERS[:]L=TCP_WRAPPERS=" ${WRKSRC}/${i}
    @${PERL5} -pi -e "s=SKEY[:]L=SKEY=" ${WRKSRC}/${i}
.endfor
.endif

pre-install:
    ${MKDIR} ${PREFIX}/libdata/ssh

post-install:
.if !defined(BATCH)
.if !exists(${PREFIX}/etc/ssh_host_key)
    @${ECHO_MSG} ">> Generating an RSA1 secret host key."
    ${PREFIX}/bin/ssh-keygen -t rsa1 -N "" -f ${PREFIX}/etc/ssh_host_key
.endif
.if !exists(${PREFIX}/etc/ssh_host_rsa_key)
    @${ECHO_MSG} ">> Generating a RSA secret host key."
    ${PREFIX}/bin/ssh-keygen -t rsa -N "" -f ${PREFIX}/etc/ssh_host_rsa_key
.endif
.if !exists(${PREFIX}/etc/ssh_host_dsa_key)
    @${ECHO_MSG} ">> Generating a DSA secret host key."
    ${PREFIX}/bin/ssh-keygen -t dsa -N "" -f ${PREFIX}/etc/ssh_host_dsa_key
.endif
.endif
.if !exists(${PREFIX}/etc/moduli)
    @${ECHO_MSG} ">> Installing moduli."
    ${INSTALL_DATA} -c ${FILESDIR}/moduli ${PREFIX}/etc/moduli
.endif
    ${INSTALL_SCRIPT} ${WRKSRC}/sshd.sh ${PREFIX}/etc/rc.d/sshd.sh.sample
    ${INSTALL_DATA} -c ${WRKSRC}/ssh_config ${PREFIX}/etc/ssh_config-dist
    ${INSTALL_DATA} -c ${WRKSRC}/sshd_config ${PREFIX}/etc/sshd_config-dist
.if !exists(${PREFIX}/etc/ssh_config) && !exists(${PREFIX}/etc/sshd_config)
    ${INSTALL_DATA} -c ${WRKSRC}/ssh_config ${PREFIX}/etc/ssh_config
    ${INSTALL_DATA} -c ${WRKSRC}/sshd_config ${PREFIX}/etc/sshd_config
.else
    @${ECHO_MSG} ">> ${PREFIX}/etc/ssh{,d}_config exists, not being replaced!"
    @${ECHO_MSG} ">> If this is left over from another version of SSH, you will"
    @${ECHO_MSG} ">> need to update it to work with OpenSSH."
.endif

.include <bsd.port.post.mk>