diff options
| author | djm@openbsd.org <djm@openbsd.org> | 2015-03-24 01:29:19 +0000 |
|---|---|---|
| committer | Damien Miller <djm@mindrot.org> | 2015-03-27 12:00:37 +1100 |
| commit | 2aa9da1a3b360cf7b13e96fe1521534b91501fb5 (patch) | |
| tree | a5cb2b89e431f66892740e9e458935e888fa74ec | |
| parent | 53097b2022154edf96b4e8526af5666f979503f7 (diff) | |
upstream commit
Compile-time disable SSH protocol 1. You can turn it
back on using the Makefile.inc knob if you need it to talk to ancient
devices.
| -rw-r--r-- | configure.ac | 13 |
1 files changed, 7 insertions, 6 deletions
diff --git a/configure.ac b/configure.ac index b4d6598d5..5c9e0f87a 100644 --- a/configure.ac +++ b/configure.ac | |||
| @@ -122,7 +122,7 @@ AC_CHECK_DECL([PR_SET_NO_NEW_PRIVS], [have_linux_no_new_privs=1], , [ | |||
| 122 | ]) | 122 | ]) |
| 123 | 123 | ||
| 124 | openssl=yes | 124 | openssl=yes |
| 125 | ssh1=yes | 125 | ssh1=no |
| 126 | AC_ARG_WITH([openssl], | 126 | AC_ARG_WITH([openssl], |
| 127 | [ --without-openssl Disable use of OpenSSL; use only limited internal crypto **EXPERIMENTAL** ], | 127 | [ --without-openssl Disable use of OpenSSL; use only limited internal crypto **EXPERIMENTAL** ], |
| 128 | [ if test "x$withval" = "xno" ; then | 128 | [ if test "x$withval" = "xno" ; then |
| @@ -140,12 +140,13 @@ else | |||
| 140 | fi | 140 | fi |
| 141 | 141 | ||
| 142 | AC_ARG_WITH([ssh1], | 142 | AC_ARG_WITH([ssh1], |
| 143 | [ --without-ssh1 Disable support for SSH protocol 1], | 143 | [ --with-ssh1 Enable support for SSH protocol 1], |
| 144 | [ | 144 | [ |
| 145 | if test "x$withval" = "xno" ; then | 145 | if test "x$withval" = "xyes" ; then |
| 146 | ssh1=no | 146 | if test "x$openssl" = "xno" ; then |
| 147 | elif test "x$openssl" = "xno" ; then | 147 | AC_MSG_ERROR([Cannot enable SSH protocol 1 with OpenSSL disabled]) |
| 148 | AC_MSG_ERROR([Cannot enable SSH protocol 1 with OpenSSL disabled]) | 148 | fi |
| 149 | ssh1=yes | ||
| 149 | fi | 150 | fi |
| 150 | ] | 151 | ] |
| 151 | ) | 152 | ) |