]> andersk Git - openssh.git/blame - configure.ac
andersk / openssh.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
- (dtucker) [openbsd-compat/bsd-cygwin_util.c] Make loop counter unsigned
[openssh.git] / configure.ac
CommitLineData
eb5d7ff6 1# $Id$
2b983b95 2#
3# Copyright (c) 1999-2004 Damien Miller
4#
5# Permission to use, copy, modify, and distribute this software for any
6# purpose with or without fee is hereby granted, provided that the above
7# copyright notice and this permission notice appear in all copies.
8#
9# THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
10# WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
11# MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR
12# ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
13# WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
14# ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
15# OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
0b202697 16
76e6410a 17AC_INIT(OpenSSH, Portable, openssh-unix-dev@mindrot.org)
823221b2 18AC_REVISION($Revision$)
98a7c37b 19AC_CONFIG_SRCDIR([ssh.c])
5881cd60 20
21AC_CONFIG_HEADER(config.h)
b14b2ae7 22AC_PROG_CC
a7effaac 23AC_CANONICAL_HOST
cf0c5df5 24AC_C_BIGENDIAN
5881cd60 25
a0391976 26# Checks for programs.
4bbf95fa 27AC_PROG_AWK
4cca272e 28AC_PROG_CPP
5881cd60 29AC_PROG_RANLIB
cf8dd513 30AC_PROG_INSTALL
c9ecc3c7 31AC_PROG_EGREP
bee0a37e 32AC_PATH_PROG(AR, ar)
ddd8c95b 33AC_PATH_PROG(CAT, cat)
34AC_PATH_PROG(KILL, kill)
13dd877b 35AC_PATH_PROGS(PERL, perl5 perl)
c3690df3 36AC_PATH_PROG(SED, sed)
a0f84251 37AC_SUBST(PERL)
ad85db64 38AC_PATH_PROG(ENT, ent)
39AC_SUBST(ENT)
6958bd37 40AC_PATH_PROG(TEST_MINUS_S_SH, bash)
41AC_PATH_PROG(TEST_MINUS_S_SH, ksh)
42AC_PATH_PROG(TEST_MINUS_S_SH, sh)
6193497b 43AC_PATH_PROG(SH, sh)
a3245b92 44AC_SUBST(TEST_SHELL,sh)
f498ed15 45
9cefe228 46dnl for buildpkg.sh
47AC_PATH_PROG(PATH_GROUPADD_PROG, groupadd, groupadd,
48 [/usr/sbin${PATH_SEPARATOR}/etc])
49AC_PATH_PROG(PATH_USERADD_PROG, useradd, useradd,
50 [/usr/sbin${PATH_SEPARATOR}/etc])
51AC_CHECK_PROG(MAKE_PACKAGE_SUPPORTED, pkgmk, yes, no)
eeb27c78 52if test -x /sbin/sh; then
53 AC_SUBST(STARTUP_SCRIPT_SHELL,/sbin/sh)
54else
55 AC_SUBST(STARTUP_SCRIPT_SHELL,/bin/sh)
56fi
9cefe228 57
948fd8b9 58# System features
59AC_SYS_LARGEFILE
60
c193d002 61if test -z "$AR" ; then
62 AC_MSG_ERROR([*** 'ar' missing, please install or fix your \$PATH ***])
63fi
64
2e73a022 65# Use LOGIN_PROGRAM from environment if possible
66if test ! -z "$LOGIN_PROGRAM" ; then
3466e002 67 AC_DEFINE_UNQUOTED(LOGIN_PROGRAM_FALLBACK, "$LOGIN_PROGRAM",
68 [If your header files don't define LOGIN_PROGRAM,
69 then use this (detected) from environment and PATH])
2e73a022 70else
71 # Search for login
72 AC_PATH_PROG(LOGIN_PROGRAM_FALLBACK, login)
73 if test ! -z "$LOGIN_PROGRAM_FALLBACK" ; then
74 AC_DEFINE_UNQUOTED(LOGIN_PROGRAM_FALLBACK, "$LOGIN_PROGRAM_FALLBACK")
75 fi
76fi
77
37656beb 78AC_PATH_PROG(PATH_PASSWD_PROG, passwd)
79if test ! -z "$PATH_PASSWD_PROG" ; then
3466e002 80 AC_DEFINE_UNQUOTED(_PATH_PASSWD_PROG, "$PATH_PASSWD_PROG",
81 [Full path of your "passwd" program])
37656beb 82fi
83
d423d822 84if test -z "$LD" ; then
85 LD=$CC
86fi
87AC_SUBST(LD)
82f4e93d 88
d423d822 89AC_C_INLINE
dfafb2e1 90
91AC_CHECK_DECL(LLONG_MAX, have_llong_max=1, , [#include <limits.h>])
92
aff51935 93if test "$GCC" = "yes" || test "$GCC" = "egcs"; then
af40ca44 94 CFLAGS="$CFLAGS -Wall -Wpointer-arith -Wuninitialized"
eeee8237 95 GCC_VER=`$CC -v 2>&1 | $AWK '/gcc version /{print $3}'`
5fdabf45 96 case $GCC_VER in
97 1.*) ;;
98 2.8* | 2.9*) CFLAGS="$CFLAGS -Wsign-compare" ;;
99 2.*) ;;
dbf07ba2 100 3.*) CFLAGS="$CFLAGS -Wsign-compare" ;;
cd595991 101 4.*) CFLAGS="$CFLAGS -Wsign-compare -Wno-pointer-sign" ;;
102 *) ;;
5fdabf45 103 esac
8a3ff1aa 104
dfafb2e1 105 if test -z "$have_llong_max"; then
106 # retry LLONG_MAX with -std=gnu99, needed on some Linuxes
107 unset ac_cv_have_decl_LLONG_MAX
108 saved_CFLAGS="$CFLAGS"
109 CFLAGS="$CFLAGS -std=gnu99"
110 AC_CHECK_DECL(LLONG_MAX,
111 [have_llong_max=1],
112 [CFLAGS="$saved_CFLAGS"],
113 [#include <limits.h>]
114 )
115 fi
d423d822 116fi
117
e6354014 118AC_ARG_WITH(rpath,
119 [ --without-rpath Disable auto-added -R linker paths],
120 [
82f4e93d 121 if test "x$withval" = "xno" ; then
e6354014 122 need_dash_r=""
123 fi
124 if test "x$withval" = "xyes" ; then
125 need_dash_r=1
126 fi
127 ]
128)
129
a0391976 130# Check for some target-specific stuff
a7effaac 131case "$host" in
9d6b1b96 132*-*-aix*)
aff51935 133 AC_MSG_CHECKING([how to specify blibpath for linker ($LD)])
68ece370 134 if (test -z "$blibpath"); then
0a15d73b 135 blibpath="/usr/lib:/lib"
68ece370 136 fi
137 saved_LDFLAGS="$LDFLAGS"
138 for tryflags in -blibpath: -Wl,-blibpath: -Wl,-rpath, ;do
139 if (test -z "$blibflags"); then
140 LDFLAGS="$saved_LDFLAGS $tryflags$blibpath"
141 AC_TRY_LINK([], [], [blibflags=$tryflags])
142 fi
143 done
144 if (test -z "$blibflags"); then
145 AC_MSG_RESULT(not found)
146 AC_MSG_ERROR([*** must be able to specify blibpath on AIX - check config.log])
147 else
148 AC_MSG_RESULT($blibflags)
bd499f9e 149 fi
68ece370 150 LDFLAGS="$saved_LDFLAGS"
e351e493 151 dnl Check for authenticate. Might be in libs.a on older AIXes
3466e002 152 AC_CHECK_FUNC(authenticate, [AC_DEFINE(WITH_AIXAUTHENTICATE, 1,
153 [Define if you want to enable AIX4's authenticate function])],
0764e748 154 [AC_CHECK_LIB(s,authenticate,
e351e493 155 [ AC_DEFINE(WITH_AIXAUTHENTICATE)
0764e748 156 LIBS="$LIBS -ls"
157 ])
158 ])
ba603e06 159 dnl Check for various auth function declarations in headers.
c85ed8e2 160 AC_CHECK_DECLS([authenticate, loginrestrictions, loginsuccess,
72ad335d 161 passwdexpired, setauthdb], , , [#include <usersec.h>])
e351e493 162 dnl Check if loginfailed is declared and takes 4 arguments (AIX >= 5.2)
ba603e06 163 AC_CHECK_DECLS(loginfailed,
e351e493 164 [AC_MSG_CHECKING(if loginfailed takes 4 arguments)
165 AC_TRY_COMPILE(
f58c0e01 166 [#include <usersec.h>],
e351e493 167 [(void)loginfailed("user","host","tty",0);],
168 [AC_MSG_RESULT(yes)
3466e002 169 AC_DEFINE(AIX_LOGINFAILED_4ARG, 1,
170 [Define if your AIX loginfailed() function
171 takes 4 arguments (AIX >= 5.2)])],
f58c0e01 172 [AC_MSG_RESULT(no)]
e351e493 173 )],
174 [],
175 [#include <usersec.h>]
176 )
2aa3a16c 177 AC_CHECK_FUNCS(setauthdb)
5ccf88cb 178 check_for_aix_broken_getaddrinfo=1
3466e002 179 AC_DEFINE(BROKEN_REALPATH, 1, [Define if you have a broken realpath.])
180 AC_DEFINE(SETEUID_BREAKS_SETUID, 1,
181 [Define if your platform breaks doing a seteuid before a setuid])
182 AC_DEFINE(BROKEN_SETREUID, 1, [Define if your setreuid() is broken])
183 AC_DEFINE(BROKEN_SETREGID, 1, [Define if your setregid() is broken])
a3cef3ca 184 dnl AIX handles lastlog as part of its login message
3466e002 185 AC_DEFINE(DISABLE_LASTLOG, 1, [Define if you don't want to use lastlog])
186 AC_DEFINE(LOGIN_NEEDS_UTMPX, 1,
187 [Some systems need a utmpx entry for /bin/login to work])
188 AC_DEFINE(SPT_TYPE,SPT_REUSEARGV,
189 [Define to a Set Process Title type if your system is
190 supported by bsd-setproctitle.c])
961c2997 191 AC_DEFINE(SSHPAM_CHAUTHTOK_NEEDS_RUID, 1,
192 [AIX 5.2 and 5.3 (and presumably newer) require this])
9d6b1b96 193 ;;
3c62e7eb 194*-*-cygwin*)
a52997bd 195 check_for_libcrypt_later=1
ffb8d130 196 LIBS="$LIBS /usr/lib/textmode.o"
3466e002 197 AC_DEFINE(HAVE_CYGWIN, 1, [Define if you are on Cygwin])
198 AC_DEFINE(USE_PIPES, 1, [Use PIPES instead of a socketpair()])
199 AC_DEFINE(DISABLE_SHADOW, 1,
200 [Define if you want to disable shadow passwords])
201 AC_DEFINE(IP_TOS_IS_BROKEN, 1,
202 [Define if your system choked on IP TOS setting])
203 AC_DEFINE(NO_X11_UNIX_SOCKETS, 1,
204 [Define if X11 doesn't support AF_UNIX sockets on that system])
205 AC_DEFINE(NO_IPPORT_RESERVED_CONCEPT, 1,
206 [Define if the concept of ports only accessible to
207 superusers isn't known])
208 AC_DEFINE(DISABLE_FD_PASSING, 1,
209 [Define if your platform needs to skip post auth
210 file descriptor passing])
3c62e7eb 211 ;;
d6fdb079 212*-*-dgux*)
213 AC_DEFINE(IP_TOS_IS_BROKEN)
0c6a72a5 214 AC_DEFINE(SETEUID_BREAKS_SETUID)
215 AC_DEFINE(BROKEN_SETREUID)
216 AC_DEFINE(BROKEN_SETREGID)
d6fdb079 217 ;;
39c98ef7 218*-*-darwin*)
33e2e066 219 AC_MSG_CHECKING(if we have working getaddrinfo)
220 AC_TRY_RUN([#include <mach-o/dyld.h>
221main() { if (NSVersionOfRunTimeLibrary("System") >= (60 << 16))
222 exit(0);
223 else
224 exit(1);
225}], [AC_MSG_RESULT(working)],
226 [AC_MSG_RESULT(buggy)
3466e002 227 AC_DEFINE(BROKEN_GETADDRINFO, 1, [getaddrinfo is broken (if present)])],
b27e573d 228 [AC_MSG_RESULT(assume it is working)])
635e0c42 229 AC_DEFINE(SETEUID_BREAKS_SETUID)
230 AC_DEFINE(BROKEN_SETREUID)
231 AC_DEFINE(BROKEN_SETREGID)
3466e002 232 AC_DEFINE_UNQUOTED(BIND_8_COMPAT, 1,
233 [Define if your resolver libs need this for getrrsetbyname])
39c98ef7 234 ;;
7d458c86 235*-*-hpux*)
236 # first we define all of the options common to all HP-UX releases
b8fea62d 237 CPPFLAGS="$CPPFLAGS -D_HPUX_SOURCE -D_XOPEN_SOURCE -D_XOPEN_SOURCE_EXTENDED=1"
44839801 238 IPADDR_IN_DISPLAY=yes
2b10f47a 239 AC_DEFINE(USE_PIPES)
3466e002 240 AC_DEFINE(LOGIN_NO_ENDOPT, 1,
241 [Define if your login program cannot handle end of options ("--")])
a2572aa7 242 AC_DEFINE(LOGIN_NEEDS_UTMPX)
3466e002 243 AC_DEFINE(LOCKED_PASSWD_STRING, "*",
244 [String used in /etc/passwd to denote locked account])
3a2b2b44 245 AC_DEFINE(SPT_TYPE,SPT_PSTAT)
83f987c3 246 MAIL="/var/mail/username"
f75ca46d 247 LIBS="$LIBS -lsec"
7d458c86 248 AC_CHECK_LIB(xnet, t_error, ,
249 AC_MSG_ERROR([*** -lxnet needed on HP-UX - check config.log ***]))
250
251 # next, we define all of the options specific to major releases
252 case "$host" in
253 *-*-hpux10*)
254 if test -z "$GCC"; then
255 CFLAGS="$CFLAGS -Ae"
256 fi
257 ;;
258 *-*-hpux11*)
3466e002 259 AC_DEFINE(PAM_SUN_CODEBASE, 1,
260 [Define if you are using Solaris-derived PAM which
261 passes pam_messages to the conversation function
262 with an extra level of indirection])
263 AC_DEFINE(DISABLE_UTMP, 1,
264 [Define if you don't want to use utmp])
7d458c86 265 AC_DEFINE(USE_BTMP, 1, [Use btmp to log bad logins])
266 check_for_hpux_broken_getaddrinfo=1
267 check_for_conflicting_getspnam=1
268 ;;
269 esac
270
271 # lastly, we define options specific to minor releases
272 case "$host" in
273 *-*-hpux10.26)
3466e002 274 AC_DEFINE(HAVE_SECUREWARE, 1,
275 [Define if you have SecureWare-based
276 protected password database])
7d458c86 277 disable_ptmx_check=yes
278 LIBS="$LIBS -lsecpw"
279 ;;
280 esac
2b763e31 281 ;;
d94aa2ae 282*-*-irix5*)
6ac7829a 283 PATH="$PATH:/usr/etc"
3466e002 284 AC_DEFINE(BROKEN_INET_NTOA, 1,
285 [Define if you system's inet_ntoa is busted
286 (e.g. Irix gcc issue)])
cb433561 287 AC_DEFINE(SETEUID_BREAKS_SETUID)
288 AC_DEFINE(BROKEN_SETREUID)
289 AC_DEFINE(BROKEN_SETREGID)
3466e002 290 AC_DEFINE(WITH_ABBREV_NO_TTY, 1,
291 [Define if you shouldn't strip 'tty' from your
292 ttyname in [uw]tmp])
3e6e3da0 293 AC_DEFINE(LOCKED_PASSWD_STRING, "*LK*")
b9795b89 294 ;;
295*-*-irix6*)
6ac7829a 296 PATH="$PATH:/usr/etc"
3466e002 297 AC_DEFINE(WITH_IRIX_ARRAY, 1,
298 [Define if you have/want arrays
299 (cluster-wide session managment, not C arrays)])
300 AC_DEFINE(WITH_IRIX_PROJECT, 1,
301 [Define if you want IRIX project management])
302 AC_DEFINE(WITH_IRIX_AUDIT, 1,
303 [Define if you want IRIX audit trails])
304 AC_CHECK_FUNC(jlimit_startjob, [AC_DEFINE(WITH_IRIX_JOBS, 1,
305 [Define if you want IRIX kernel jobs])])
416ed5a7 306 AC_DEFINE(BROKEN_INET_NTOA)
412c0eaa 307 AC_DEFINE(SETEUID_BREAKS_SETUID)
308 AC_DEFINE(BROKEN_SETREUID)
309 AC_DEFINE(BROKEN_SETREGID)
3466e002 310 AC_DEFINE(BROKEN_UPDWTMPX, 1, [updwtmpx is broken (if present)])
0e8f4eba 311 AC_DEFINE(WITH_ABBREV_NO_TTY)
3e6e3da0 312 AC_DEFINE(LOCKED_PASSWD_STRING, "*LK*")
d94aa2ae 313 ;;
5cdfe03f 314*-*-linux*)
315 no_dev_ptmx=1
717057b6 316 check_for_libcrypt_later=1
eacb954e 317 check_for_openpty_ctty_bug=1
3466e002 318 AC_DEFINE(DONT_TRY_OTHER_AF, 1, [Workaround more Linux IPv6 quirks])
319 AC_DEFINE(PAM_TTY_KLUDGE, 1,
320 [Work around problematic Linux PAM modules handling of PAM_TTY])
321 AC_DEFINE(LOCKED_PASSWD_PREFIX, "!",
322 [String used in /etc/passwd to denote locked account])
3a2b2b44 323 AC_DEFINE(SPT_TYPE,SPT_REUSEARGV)
3466e002 324 AC_DEFINE(LINK_OPNOTSUPP_ERRNO, EPERM,
325 [Define to whatever link() returns for "not supported"
326 if it doesn't return EOPNOTSUPP.])
b6610e8f 327 AC_DEFINE(_PATH_BTMP, "/var/log/btmp", [log for bad login attempts])
3466e002 328 AC_DEFINE(USE_BTMP)
80faa19f 329 inet6_default_4in6=yes
bf7c1e6c 330 case `uname -r` in
ad84c479 331 1.*|2.0.*)
3466e002 332 AC_DEFINE(BROKEN_CMSG_TYPE, 1,
333 [Define if cmsg_type is not passed correctly])
bf7c1e6c 334 ;;
bf7c1e6c 335 esac
c40f09ca 336 # tun(4) forwarding compat code
d91775e1 337 AC_CHECK_HEADERS(linux/if_tun.h)
b5081213 338 if test "x$ac_cv_header_linux_if_tun_h" = "xyes" ; then
c40f09ca 339 AC_DEFINE(SSH_TUN_LINUX, 1,
340 [Open tunnel devices the Linux tun/tap way])
341 AC_DEFINE(SSH_TUN_COMPAT_AF, 1,
342 [Use tunnel device compatibility to OpenBSD])
343 AC_DEFINE(SSH_TUN_PREPEND_AF, 1,
344 [Prepend the address family to IP tunnel traffic])
345 fi
5cdfe03f 346 ;;
66d6c27e 347mips-sony-bsd|mips-sony-newsos4)
4b2cf3f1 348 AC_DEFINE(NEED_SETPGRP, 1, [Need setpgrp to acquire controlling tty])
66d6c27e 349 SONY=1
66d6c27e 350 ;;
d468fc76 351*-*-netbsd*)
33e2e066 352 check_for_libcrypt_before=1
82f4e93d 353 if test "x$withval" != "xno" ; then
e6354014 354 need_dash_r=1
355 fi
0f6cb079 356 AC_DEFINE(SSH_TUN_FREEBSD, 1, [Open tunnel devices the FreeBSD way])
357 AC_CHECK_HEADER([net/if_tap.h], ,
358 AC_DEFINE(SSH_TUN_NO_L2, 1, [No layer 2 tunnel support]))
359 AC_DEFINE(SSH_TUN_PREPEND_AF, 1,
360 [Prepend the address family to IP tunnel traffic])
d468fc76 361 ;;
86b416a7 362*-*-freebsd*)
363 check_for_libcrypt_later=1
988c5031 364 AC_DEFINE(LOCKED_PASSWD_PREFIX, "*LOCKED*", [Account locked with pw(1)])
0f6cb079 365 AC_DEFINE(SSH_TUN_FREEBSD, 1, [Open tunnel devices the FreeBSD way])
366 AC_CHECK_HEADER([net/if_tap.h], ,
367 AC_DEFINE(SSH_TUN_NO_L2, 1, [No layer 2 tunnel support]))
86b416a7 368 ;;
8707b7eb 369*-*-bsdi*)
370 AC_DEFINE(SETEUID_BREAKS_SETUID)
371 AC_DEFINE(BROKEN_SETREUID)
372 AC_DEFINE(BROKEN_SETREGID)
373 ;;
729bfe59 374*-next-*)
729bfe59 375 conf_lastlog_location="/usr/adm/lastlog"
698d107e 376 conf_utmp_location=/etc/utmp
377 conf_wtmp_location=/usr/adm/wtmp
378 MAIL=/usr/spool/mail
3466e002 379 AC_DEFINE(HAVE_NEXT, 1, [Define if you are on NeXT])
443172c4 380 AC_DEFINE(BROKEN_REALPATH)
00937921 381 AC_DEFINE(USE_PIPES)
3466e002 382 AC_DEFINE(BROKEN_SAVED_UIDS, 1, [Needed for NeXT])
729bfe59 383 ;;
5b7b5e23 384*-*-openbsd*)
385 AC_DEFINE(HAVE_ATTRIBUTE__SENTINEL__, 1, [OpenBSD's gcc has sentinel])
8034a348 386 AC_DEFINE(HAVE_ATTRIBUTE__BOUNDED__, 1, [OpenBSD's gcc has bounded])
0f6cb079 387 AC_DEFINE(SSH_TUN_OPENBSD, 1, [Open tunnel devices the OpenBSD way])
5b7b5e23 388 ;;
9d6b1b96 389*-*-solaris*)
82f4e93d 390 if test "x$withval" != "xno" ; then
010e9d5b 391 need_dash_r=1
392 fi
adeebd37 393 AC_DEFINE(PAM_SUN_CODEBASE)
7e2d5fa4 394 AC_DEFINE(LOGIN_NEEDS_UTMPX)
3466e002 395 AC_DEFINE(LOGIN_NEEDS_TERM, 1,
396 [Some versions of /bin/login need the TERM supplied
397 on the commandline])
7f0a4ff1 398 AC_DEFINE(PAM_TTY_KLUDGE)
3466e002 399 AC_DEFINE(SSHPAM_CHAUTHTOK_NEEDS_RUID, 1,
400 [Define if pam_chauthtok wants real uid set
401 to the unpriv'ed user])
3e6e3da0 402 AC_DEFINE(LOCKED_PASSWD_STRING, "*LK*")
ad84c479 403 # Pushing STREAMS modules will cause sshd to acquire a controlling tty.
3466e002 404 AC_DEFINE(SSHD_ACQUIRES_CTTY, 1,
405 [Define if sshd somehow reacquires a controlling TTY
406 after setsid()])
95b99395 407 external_path_file=/etc/default/login
1d7b9b20 408 # hardwire lastlog location (can't detect it on some versions)
409 conf_lastlog_location="/var/adm/lastlog"
32c80420 410 AC_MSG_CHECKING(for obsolete utmp and wtmp in solaris2.x)
411 sol2ver=`echo "$host"| sed -e 's/.*[[0-9]]\.//'`
412 if test "$sol2ver" -ge 8; then
413 AC_MSG_RESULT(yes)
414 AC_DEFINE(DISABLE_UTMP)
3466e002 415 AC_DEFINE(DISABLE_WTMP, 1,
416 [Define if you don't want to use wtmp])
32c80420 417 else
418 AC_MSG_RESULT(no)
419 fi
9d6b1b96 420 ;;
a423beaf 421*-*-sunos4*)
0c2fb82f 422 CPPFLAGS="$CPPFLAGS -DSUNOS4"
a423beaf 423 AC_CHECK_FUNCS(getpwanam)
adeebd37 424 AC_DEFINE(PAM_SUN_CODEBASE)
32eec038 425 conf_utmp_location=/etc/utmp
426 conf_wtmp_location=/var/adm/wtmp
427 conf_lastlog_location=/var/adm/lastlog
137d7b6c 428 AC_DEFINE(USE_PIPES)
a423beaf 429 ;;
6f68f28a 430*-ncr-sysv*)
98a7c37b 431 LIBS="$LIBS -lc89"
29525240 432 AC_DEFINE(USE_PIPES)
eabb99c6 433 AC_DEFINE(SSHD_ACQUIRES_CTTY)
6fb3618d 434 AC_DEFINE(SETEUID_BREAKS_SETUID)
435 AC_DEFINE(BROKEN_SETREUID)
436 AC_DEFINE(BROKEN_SETREGID)
6f68f28a 437 ;;
132dd316 438*-sni-sysv*)
c8c15bcb 439 # /usr/ucblib MUST NOT be searched on ReliantUNIX
e2798e96 440 AC_CHECK_LIB(dl, dlsym, ,)
d08db6d1 441 # -lresolv needs to be at the end of LIBS or DNS lookups break
442 AC_CHECK_LIB(resolv, res_query, [ LIBS="$LIBS -lresolv" ])
9548d6c8 443 IPADDR_IN_DISPLAY=yes
444 AC_DEFINE(USE_PIPES)
132dd316 445 AC_DEFINE(IP_TOS_IS_BROKEN)
605369bb 446 AC_DEFINE(SETEUID_BREAKS_SETUID)
447 AC_DEFINE(BROKEN_SETREUID)
448 AC_DEFINE(BROKEN_SETREGID)
eabb99c6 449 AC_DEFINE(SSHD_ACQUIRES_CTTY)
95b99395 450 external_path_file=/etc/default/login
c8c15bcb 451 # /usr/ucblib/libucb.a no longer needed on ReliantUNIX
452 # Attention: always take care to bind libsocket and libnsl before libc,
453 # otherwise you will find lots of "SIOCGPGRP errno 22" on syslog
132dd316 454 ;;
79a7ba96 455# UnixWare 1.x, UnixWare 2.x, and others based on code from Univel.
77bb0bca 456*-*-sysv4.2*)
9a406e1e 457 CFLAGS="$CFLAGS -Dva_list=_VA_LIST"
ed6553e2 458 AC_DEFINE(USE_PIPES)
7ed101c0 459 AC_DEFINE(SETEUID_BREAKS_SETUID)
460 AC_DEFINE(BROKEN_SETREUID)
461 AC_DEFINE(BROKEN_SETREGID)
46f853b9 462 AC_DEFINE(PASSWD_NEEDS_USERNAME, 1, [must supply username to passwd])
e45da4d6 463 AC_DEFINE(LOCKED_PASSWD_STRING, "*LK*")
77bb0bca 464 ;;
79a7ba96 465# UnixWare 7.x, OpenUNIX 8
77bb0bca 466*-*-sysv5*)
d7d2cc6e 467 check_for_libcrypt_later=1
468 AC_DEFINE(UNIXWARE_LONG_PASSWORDS, 1, [Support passwords > 8 chars])
ed6553e2 469 AC_DEFINE(USE_PIPES)
7ed101c0 470 AC_DEFINE(SETEUID_BREAKS_SETUID)
471 AC_DEFINE(BROKEN_SETREUID)
472 AC_DEFINE(BROKEN_SETREGID)
3466e002 473 AC_DEFINE(PASSWD_NEEDS_USERNAME)
822015dd 474 case "$host" in
475 *-*-sysv5SCO_SV*) # SCO OpenServer 6.x
476 TEST_SHELL=/u95/bin/sh
3466e002 477 AC_DEFINE(BROKEN_LIBIAF, 1,
478 [ia_uinfo routines not supported by OS yet])
822015dd 479 ;;
e45da4d6 480 *) AC_DEFINE(LOCKED_PASSWD_STRING, "*LK*")
481 ;;
822015dd 482 esac
77bb0bca 483 ;;
9d6b1b96 484*-*-sysv*)
9d6b1b96 485 ;;
79a7ba96 486# SCO UNIX and OEM versions of SCO UNIX
77bb0bca 487*-*-sco3.2v4*)
11cf4f1f 488 AC_MSG_ERROR("This Platform is no longer supported.")
77bb0bca 489 ;;
79a7ba96 490# SCO OpenServer 5.x
77bb0bca 491*-*-sco3.2v5*)
21710e39 492 if test -z "$GCC"; then
493 CFLAGS="$CFLAGS -belf"
494 fi
ed6553e2 495 LIBS="$LIBS -lprot -lx -ltinfo -lm"
509b1f88 496 no_dev_ptmx=1
ed6553e2 497 AC_DEFINE(USE_PIPES)
6e879cb4 498 AC_DEFINE(HAVE_SECUREWARE)
d287c664 499 AC_DEFINE(DISABLE_SHADOW)
94d8258b 500 AC_DEFINE(DISABLE_FD_PASSING)
7ed101c0 501 AC_DEFINE(SETEUID_BREAKS_SETUID)
502 AC_DEFINE(BROKEN_SETREUID)
503 AC_DEFINE(BROKEN_SETREGID)
bcebad47 504 AC_DEFINE(WITH_ABBREV_NO_TTY)
34f2baf0 505 AC_DEFINE(BROKEN_UPDWTMPX)
3466e002 506 AC_DEFINE(PASSWD_NEEDS_USERNAME)
aca75d94 507 AC_CHECK_FUNCS(getluid setluid)
533875af 508 MANTYPE=man
a3245b92 509 TEST_SHELL=ksh
509b1f88 510 ;;
ccbb983c 511*-*-unicosmk*)
3466e002 512 AC_DEFINE(NO_SSH_LASTLOG, 1,
513 [Define if you don't want to use lastlog in session.c])
c1ad5966 514 AC_DEFINE(SETEUID_BREAKS_SETUID)
515 AC_DEFINE(BROKEN_SETREUID)
516 AC_DEFINE(BROKEN_SETREGID)
ccbb983c 517 AC_DEFINE(USE_PIPES)
518 AC_DEFINE(DISABLE_FD_PASSING)
519 LDFLAGS="$LDFLAGS"
520 LIBS="$LIBS -lgen -lrsc -lshare -luex -lacm"
521 MANTYPE=cat
d262b7f2 522 ;;
7b9a8c6e 523*-*-unicosmp*)
c1ad5966 524 AC_DEFINE(SETEUID_BREAKS_SETUID)
525 AC_DEFINE(BROKEN_SETREUID)
526 AC_DEFINE(BROKEN_SETREGID)
7b9a8c6e 527 AC_DEFINE(WITH_ABBREV_NO_TTY)
528 AC_DEFINE(USE_PIPES)
529 AC_DEFINE(DISABLE_FD_PASSING)
530 LDFLAGS="$LDFLAGS"
c1ad5966 531 LIBS="$LIBS -lgen -lacid -ldb"
7b9a8c6e 532 MANTYPE=cat
533 ;;
ca5c7d6a 534*-*-unicos*)
c1ad5966 535 AC_DEFINE(SETEUID_BREAKS_SETUID)
536 AC_DEFINE(BROKEN_SETREUID)
537 AC_DEFINE(BROKEN_SETREGID)
ca5c7d6a 538 AC_DEFINE(USE_PIPES)
94d8258b 539 AC_DEFINE(DISABLE_FD_PASSING)
ef51930f 540 AC_DEFINE(NO_SSH_LASTLOG)
ccbb983c 541 LDFLAGS="$LDFLAGS -Wl,-Dmsglevel=334:fatal"
542 LIBS="$LIBS -lgen -lrsc -lshare -luex -lacm"
543 MANTYPE=cat
a704dd54 544 ;;
4d33e531 545*-dec-osf*)
99c8ddac 546 AC_MSG_CHECKING(for Digital Unix SIA)
547 no_osfsia=""
548 AC_ARG_WITH(osfsia,
549 [ --with-osfsia Enable Digital Unix SIA],
550 [
551 if test "x$withval" = "xno" ; then
552 AC_MSG_RESULT(disabled)
553 no_osfsia=1
554 fi
555 ],
556 )
557 if test -z "$no_osfsia" ; then
4d33e531 558 if test -f /etc/sia/matrix.conf; then
559 AC_MSG_RESULT(yes)
3466e002 560 AC_DEFINE(HAVE_OSF_SIA, 1,
561 [Define if you have Digital Unix Security
562 Integration Architecture])
563 AC_DEFINE(DISABLE_LOGIN, 1,
564 [Define if you don't want to use your
565 system's login() call])
58d0df4e 566 AC_DEFINE(DISABLE_FD_PASSING)
4d33e531 567 LIBS="$LIBS -lsecurity -ldb -lm -laud"
568 else
569 AC_MSG_RESULT(no)
3466e002 570 AC_DEFINE(LOCKED_PASSWD_SUBSTR, "Nologin",
571 [String used in /etc/passwd to denote locked account])
4d33e531 572 fi
573 fi
a6e67b60 574 AC_DEFINE(BROKEN_GETADDRINFO)
f4f2ff4f 575 AC_DEFINE(SETEUID_BREAKS_SETUID)
08da2d08 576 AC_DEFINE(BROKEN_SETREUID)
577 AC_DEFINE(BROKEN_SETREGID)
4d33e531 578 ;;
41cb4569 579
9c54c067 580*-*-nto-qnx*)
41cb4569 581 AC_DEFINE(USE_PIPES)
582 AC_DEFINE(NO_X11_UNIX_SOCKETS)
3466e002 583 AC_DEFINE(MISSING_NFDBITS, 1, [Define on *nto-qnx systems])
584 AC_DEFINE(MISSING_HOWMANY, 1, [Define on *nto-qnx systems])
585 AC_DEFINE(MISSING_FD_MASK, 1, [Define on *nto-qnx systems])
9c54c067 586 AC_DEFINE(DISABLE_LASTLOG)
41cb4569 587 ;;
35fc74ed 588
589*-*-ultrix*)
3466e002 590 AC_DEFINE(BROKEN_GETGROUPS, 1, [getgroups(0,NULL) will return -1])
591 AC_DEFINE(BROKEN_MMAP, 1, [Ultrix mmap can't map files])
4b2cf3f1 592 AC_DEFINE(NEED_SETPGRP)
b5765e1d 593 AC_DEFINE(HAVE_SYS_SYSLOG_H, 1, [Force use of sys/syslog.h on Ultrix])
594 ;;
157b6700 595
596*-*-lynxos)
597 CFLAGS="$CFLAGS -D__NO_INCLUDE_WARN__"
3466e002 598 AC_DEFINE(MISSING_HOWMANY)
157b6700 599 AC_DEFINE(BROKEN_SETVBUF, 1, [LynxOS has broken setvbuf() implementation])
600 ;;
a7effaac 601esac
602
8e7b16f8 603# Allow user to specify flags
604AC_ARG_WITH(cflags,
605 [ --with-cflags Specify additional flags to pass to compiler],
606 [
6cf0200f 607 if test -n "$withval" && test "x$withval" != "xno" && \
608 test "x${withval}" != "xyes"; then
8e7b16f8 609 CFLAGS="$CFLAGS $withval"
610 fi
82f4e93d 611 ]
8e7b16f8 612)
0c2fb82f 613AC_ARG_WITH(cppflags,
614 [ --with-cppflags Specify additional flags to pass to preprocessor] ,
615 [
6cf0200f 616 if test -n "$withval" && test "x$withval" != "xno" && \
617 test "x${withval}" != "xyes"; then
0c2fb82f 618 CPPFLAGS="$CPPFLAGS $withval"
619 fi
620 ]
621)
8e7b16f8 622AC_ARG_WITH(ldflags,
97b378bf 623 [ --with-ldflags Specify additional flags to pass to linker],
8e7b16f8 624 [
6cf0200f 625 if test -n "$withval" && test "x$withval" != "xno" && \
626 test "x${withval}" != "xyes"; then
8e7b16f8 627 LDFLAGS="$LDFLAGS $withval"
628 fi
82f4e93d 629 ]
8e7b16f8 630)
631AC_ARG_WITH(libs,
632 [ --with-libs Specify additional libraries to link with],
633 [
6cf0200f 634 if test -n "$withval" && test "x$withval" != "xno" && \
635 test "x${withval}" != "xyes"; then
8e7b16f8 636 LIBS="$LIBS $withval"
637 fi
82f4e93d 638 ]
8e7b16f8 639)
ed89c848 640AC_ARG_WITH(Werror,
641 [ --with-Werror Build main code with -Werror],
642 [
643 if test -n "$withval" && test "x$withval" != "xno"; then
644 werror_flags="-Werror"
1012885d 645 if test "x${withval}" != "xyes"; then
ed89c848 646 werror_flags="$withval"
647 fi
648 fi
649 ]
650)
8e7b16f8 651
c5829391 652AC_MSG_CHECKING(compiler and flags for sanity)
479cece8 653AC_RUN_IFELSE(
654 [AC_LANG_SOURCE([
c5829391 655#include <stdio.h>
656int main(){exit(0);}
479cece8 657 ])],
c5829391 658 [ AC_MSG_RESULT(yes) ],
659 [
660 AC_MSG_RESULT(no)
661 AC_MSG_ERROR([*** compiler cannot create working executables, check config.log ***])
1a01a50c 662 ],
663 [ AC_MSG_WARN([cross compiling: not checking compiler sanity]) ]
c5829391 664)
665
b04a9f8c 666dnl Checks for header files.
667AC_CHECK_HEADERS( \
668 bstring.h \
669 crypt.h \
670 dirent.h \
671 endian.h \
672 features.h \
673 floatingpoint.h \
674 getopt.h \
675 glob.h \
676 ia.h \
4c653d8e 677 iaf.h \
b04a9f8c 678 limits.h \
679 login.h \
680 login_cap.h \
681 maillock.h \
682 ndir.h \
683 netdb.h \
684 netgroup.h \
b04a9f8c 685 pam/pam_appl.h \
686 paths.h \
687 pty.h \
688 readpassphrase.h \
689 rpc/types.h \
690 security/pam_appl.h \
691 shadow.h \
692 stddef.h \
693 stdint.h \
0957c2cf 694 string.h \
b04a9f8c 695 strings.h \
696 sys/audit.h \
697 sys/bitypes.h \
698 sys/bsdtty.h \
699 sys/cdefs.h \
700 sys/dir.h \
701 sys/mman.h \
702 sys/ndir.h \
703 sys/prctl.h \
704 sys/pstat.h \
705 sys/select.h \
706 sys/stat.h \
707 sys/stream.h \
708 sys/stropts.h \
709 sys/strtio.h \
710 sys/sysmacros.h \
711 sys/time.h \
712 sys/timers.h \
713 sys/un.h \
714 time.h \
715 tmpdir.h \
716 ttyent.h \
25dd2ce6 717 unistd.h \
b04a9f8c 718 usersec.h \
719 util.h \
720 utime.h \
721 utmp.h \
722 utmpx.h \
ea76f54c 723 vis.h \
b04a9f8c 724)
ddceb1c8 725
823221b2 726# lastlog.h requires sys/time.h to be included first on Solaris
727AC_CHECK_HEADERS(lastlog.h, [], [], [
728#ifdef HAVE_SYS_TIME_H
729# include <sys/time.h>
730#endif
731])
732
765a24cd 733# sys/ptms.h requires sys/stream.h to be included first on Solaris
734AC_CHECK_HEADERS(sys/ptms.h, [], [], [
735#ifdef HAVE_SYS_STREAM_H
736# include <sys/stream.h>
737#endif
738])
739
a0391976 740# Checks for libraries.
98a7c37b 741AC_CHECK_FUNC(yp_match, , AC_CHECK_LIB(nsl, yp_match))
742AC_CHECK_FUNC(setsockopt, , AC_CHECK_LIB(socket, setsockopt))
2c523de9 743
446227d6 744dnl IRIX and Solaris 2.5.1 have dirname() in libgen
745AC_CHECK_FUNCS(dirname, [AC_CHECK_HEADERS(libgen.h)] ,[
746 AC_CHECK_LIB(gen, dirname,[
747 AC_CACHE_CHECK([for broken dirname],
748 ac_cv_have_broken_dirname, [
749 save_LIBS="$LIBS"
750 LIBS="$LIBS -lgen"
b0e7249f 751 AC_RUN_IFELSE(
752 [AC_LANG_SOURCE([[
446227d6 753#include <libgen.h>
754#include <string.h>
755
756int main(int argc, char **argv) {
757 char *s, buf[32];
758
759 strncpy(buf,"/etc", 32);
760 s = dirname(buf);
761 if (!s || strncmp(s, "/", 32) != 0) {
762 exit(1);
763 } else {
764 exit(0);
765 }
766}
b0e7249f 767 ]])],
768 [ ac_cv_have_broken_dirname="no" ],
769 [ ac_cv_have_broken_dirname="yes" ],
446227d6 770 [ ac_cv_have_broken_dirname="no" ],
446227d6 771 )
772 LIBS="$save_LIBS"
773 ])
774 if test "x$ac_cv_have_broken_dirname" = "xno" ; then
775 LIBS="$LIBS -lgen"
776 AC_DEFINE(HAVE_DIRNAME)
777 AC_CHECK_HEADERS(libgen.h)
778 fi
779 ])
780])
781
782AC_CHECK_FUNC(getspnam, ,
783 AC_CHECK_LIB(gen, getspnam, LIBS="$LIBS -lgen"))
3466e002 784AC_SEARCH_LIBS(basename, gen, AC_DEFINE(HAVE_BASENAME, 1,
785 [Define if you have the basename function.]))
446227d6 786
98a7c37b 787dnl zlib is required
788AC_ARG_WITH(zlib,
789 [ --with-zlib=PATH Use zlib in PATH],
6dd05556 790 [ if test "x$withval" = "xno" ; then
791 AC_MSG_ERROR([*** zlib is required ***])
792 elif test "x$withval" != "xyes"; then
98a7c37b 793 if test -d "$withval/lib"; then
794 if test -n "${need_dash_r}"; then
5a162955 795 LDFLAGS="-L${withval}/lib -R${withval}/lib ${LDFLAGS}"
98a7c37b 796 else
5a162955 797 LDFLAGS="-L${withval}/lib ${LDFLAGS}"
98a7c37b 798 fi
799 else
800 if test -n "${need_dash_r}"; then
5a162955 801 LDFLAGS="-L${withval} -R${withval} ${LDFLAGS}"
98a7c37b 802 else
5a162955 803 LDFLAGS="-L${withval} ${LDFLAGS}"
98a7c37b 804 fi
805 fi
806 if test -d "$withval/include"; then
5a162955 807 CPPFLAGS="-I${withval}/include ${CPPFLAGS}"
98a7c37b 808 else
5a162955 809 CPPFLAGS="-I${withval} ${CPPFLAGS}"
98a7c37b 810 fi
6dd05556 811 fi ]
98a7c37b 812)
813
0a15d73b 814AC_CHECK_LIB(z, deflate, ,
815 [
816 saved_CPPFLAGS="$CPPFLAGS"
817 saved_LDFLAGS="$LDFLAGS"
818 save_LIBS="$LIBS"
819 dnl Check default zlib install dir
820 if test -n "${need_dash_r}"; then
821 LDFLAGS="-L/usr/local/lib -R/usr/local/lib ${saved_LDFLAGS}"
822 else
823 LDFLAGS="-L/usr/local/lib ${saved_LDFLAGS}"
824 fi
825 CPPFLAGS="-I/usr/local/include ${saved_CPPFLAGS}"
826 LIBS="$LIBS -lz"
827 AC_TRY_LINK_FUNC(deflate, AC_DEFINE(HAVE_LIBZ),
828 [
829 AC_MSG_ERROR([*** zlib missing - please install first or check config.log ***])
830 ]
831 )
832 ]
833)
4ad65809 834AC_CHECK_HEADER([zlib.h], ,AC_MSG_ERROR([*** zlib.h missing - please install first or check config.log ***]))
8068d564 835
836AC_ARG_WITH(zlib-version-check,
837 [ --without-zlib-version-check Disable zlib version check],
838 [ if test "x$withval" = "xno" ; then
839 zlib_check_nonfatal=1
840 fi
841 ]
842)
843
5c7fc85d 844AC_MSG_CHECKING(for possibly buggy zlib)
479cece8 845AC_RUN_IFELSE([AC_LANG_SOURCE([[
5c7fc85d 846#include <stdio.h>
4ad65809 847#include <zlib.h>
848int main()
849{
5c7fc85d 850 int a=0, b=0, c=0, d=0, n, v;
851 n = sscanf(ZLIB_VERSION, "%d.%d.%d.%d", &a, &b, &c, &d);
852 if (n != 3 && n != 4)
4ad65809 853 exit(1);
5c7fc85d 854 v = a*1000000 + b*10000 + c*100 + d;
855 fprintf(stderr, "found zlib version %s (%d)\n", ZLIB_VERSION, v);
856
857 /* 1.1.4 is OK */
858 if (a == 1 && b == 1 && c >= 4)
4ad65809 859 exit(0);
5c7fc85d 860
0072b59d 861 /* 1.2.3 and up are OK */
862 if (v >= 1020300)
5c7fc85d 863 exit(0);
864
4ad65809 865 exit(2);
866}
479cece8 867 ]])],
5c7fc85d 868 AC_MSG_RESULT(no),
869 [ AC_MSG_RESULT(yes)
8068d564 870 if test -z "$zlib_check_nonfatal" ; then
871 AC_MSG_ERROR([*** zlib too old - check config.log ***
872Your reported zlib version has known security problems. It's possible your
873vendor has fixed these problems without changing the version number. If you
874are sure this is the case, you can disable the check by running
875"./configure --without-zlib-version-check".
6090bcfe 876If you are in doubt, upgrade zlib to version 1.2.3 or greater.
5c7fc85d 877See http://www.gzip.org/zlib/ for details.])
8068d564 878 else
879 AC_MSG_WARN([zlib version may have security problems])
880 fi
1a01a50c 881 ],
882 [ AC_MSG_WARN([cross compiling: not checking zlib version]) ]
4ad65809 883)
48e7916f 884
2c523de9 885dnl UnixWare 2.x
aff51935 886AC_CHECK_FUNC(strcasecmp,
2c523de9 887 [], [ AC_CHECK_LIB(resolv, strcasecmp, LIBS="$LIBS -lresolv") ]
888)
23361281 889AC_CHECK_FUNCS(utimes,
cda1ebcb 890 [], [ AC_CHECK_LIB(c89, utimes, [AC_DEFINE(HAVE_UTIMES)
891 LIBS="$LIBS -lc89"]) ]
2c523de9 892)
4cca272e 893
7c6d759d 894dnl Checks for libutil functions
895AC_CHECK_HEADERS(libutil.h)
3466e002 896AC_SEARCH_LIBS(login, util bsd, [AC_DEFINE(HAVE_LOGIN, 1,
897 [Define if your libraries define login()])])
7c6d759d 898AC_CHECK_FUNCS(logout updwtmp logwtmp)
899
a738c3b0 900AC_FUNC_STRFTIME
901
84ceda19 902# Check for ALTDIRFUNC glob() extension
903AC_MSG_CHECKING(for GLOB_ALTDIRFUNC support)
904AC_EGREP_CPP(FOUNDIT,
905 [
906 #include <glob.h>
907 #ifdef GLOB_ALTDIRFUNC
908 FOUNDIT
909 #endif
aff51935 910 ],
84ceda19 911 [
3466e002 912 AC_DEFINE(GLOB_HAS_ALTDIRFUNC, 1,
913 [Define if your system glob() function has
914 the GLOB_ALTDIRFUNC extension])
84ceda19 915 AC_MSG_RESULT(yes)
916 ],
917 [
918 AC_MSG_RESULT(no)
919 ]
920)
4cca272e 921
40849fdb 922# Check for g.gl_matchc glob() extension
923AC_MSG_CHECKING(for gl_matchc field in glob_t)
924AC_EGREP_CPP(FOUNDIT,
aff51935 925 [
926 #include <glob.h>
40849fdb 927 int main(void){glob_t g; g.gl_matchc = 1;}
aff51935 928 ],
929 [
3466e002 930 AC_DEFINE(GLOB_HAS_GL_MATCHC, 1,
931 [Define if your system glob() function has
932 gl_matchc options in glob_t])
aff51935 933 AC_MSG_RESULT(yes)
934 ],
935 [
936 AC_MSG_RESULT(no)
937 ]
40849fdb 938)
939
edbe6722 940AC_MSG_CHECKING([whether struct dirent allocates space for d_name])
1a01a50c 941AC_RUN_IFELSE(
479cece8 942 [AC_LANG_SOURCE([[
edbe6722 943#include <sys/types.h>
944#include <dirent.h>
aec4cb4f 945int main(void){struct dirent d;exit(sizeof(d.d_name)<=sizeof(char));}
479cece8 946 ]])],
aff51935 947 [AC_MSG_RESULT(yes)],
edbe6722 948 [
949 AC_MSG_RESULT(no)
3466e002 950 AC_DEFINE(BROKEN_ONE_BYTE_DIRENT_D_NAME, 1,
d08db6d1 951 [Define if your struct dirent expects you to
3466e002 952 allocate extra space for d_name])
1a01a50c 953 ],
82f4e93d 954 [
1a01a50c 955 AC_MSG_WARN([cross compiling: assuming BROKEN_ONE_BYTE_DIRENT_D_NAME])
956 AC_DEFINE(BROKEN_ONE_BYTE_DIRENT_D_NAME)
edbe6722 957 ]
958)
959
419e26e7 960AC_MSG_CHECKING([for /proc/pid/fd directory])
961if test -d "/proc/$$/fd" ; then
3466e002 962 AC_DEFINE(HAVE_PROC_PID, 1, [Define if you have /proc/$pid/fd])
419e26e7 963 AC_MSG_RESULT(yes)
964else
965 AC_MSG_RESULT(no)
966fi
967
278588d8 968# Check whether user wants S/Key support
aff51935 969SKEY_MSG="no"
278588d8 970AC_ARG_WITH(skey,
6ff3d0dc 971 [ --with-skey[[=PATH]] Enable S/Key support (optionally in PATH)],
278588d8 972 [
973 if test "x$withval" != "xno" ; then
974
975 if test "x$withval" != "xyes" ; then
976 CPPFLAGS="$CPPFLAGS -I${withval}/include"
977 LDFLAGS="$LDFLAGS -L${withval}/lib"
978 fi
979
3466e002 980 AC_DEFINE(SKEY, 1, [Define if you want S/Key support])
278588d8 981 LIBS="-lskey $LIBS"
aff51935 982 SKEY_MSG="yes"
82f4e93d 983
ddceb1c8 984 AC_MSG_CHECKING([for s/key support])
b0e7249f 985 AC_LINK_IFELSE(
986 [AC_LANG_SOURCE([[
ddceb1c8 987#include <stdio.h>
988#include <skey.h>
aec4cb4f 989int main() { char *ff = skey_keyinfo(""); ff=""; exit(0); }
b0e7249f 990 ]])],
ddceb1c8 991 [AC_MSG_RESULT(yes)],
278588d8 992 [
ddceb1c8 993 AC_MSG_RESULT(no)
278588d8 994 AC_MSG_ERROR([** Incomplete or missing s/key libraries.])
995 ])
141fc639 996 AC_MSG_CHECKING(if skeychallenge takes 4 arguments)
997 AC_TRY_COMPILE(
998 [#include <stdio.h>
999 #include <skey.h>],
1000 [(void)skeychallenge(NULL,"name","",0);],
1001 [AC_MSG_RESULT(yes)
3466e002 1002 AC_DEFINE(SKEYCHALLENGE_4ARG, 1,
1003 [Define if your skeychallenge()
1004 function takes 4 arguments (NetBSD)])],
141fc639 1005 [AC_MSG_RESULT(no)]
1006 )
278588d8 1007 fi
1008 ]
1009)
1010
1011# Check whether user wants TCP wrappers support
98a7c37b 1012TCPW_MSG="no"
278588d8 1013AC_ARG_WITH(tcp-wrappers,
6ff3d0dc 1014 [ --with-tcp-wrappers[[=PATH]] Enable tcpwrappers support (optionally in PATH)],
278588d8 1015 [
1016 if test "x$withval" != "xno" ; then
1017 saved_LIBS="$LIBS"
98a7c37b 1018 saved_LDFLAGS="$LDFLAGS"
1019 saved_CPPFLAGS="$CPPFLAGS"
4b492aab 1020 if test -n "${withval}" && \
6cf0200f 1021 test "x${withval}" != "xyes"; then
98a7c37b 1022 if test -d "${withval}/lib"; then
1023 if test -n "${need_dash_r}"; then
5a162955 1024 LDFLAGS="-L${withval}/lib -R${withval}/lib ${LDFLAGS}"
98a7c37b 1025 else
5a162955 1026 LDFLAGS="-L${withval}/lib ${LDFLAGS}"
98a7c37b 1027 fi
1028 else
1029 if test -n "${need_dash_r}"; then
5a162955 1030 LDFLAGS="-L${withval} -R${withval} ${LDFLAGS}"
98a7c37b 1031 else
5a162955 1032 LDFLAGS="-L${withval} ${LDFLAGS}"
98a7c37b 1033 fi
1034 fi
1035 if test -d "${withval}/include"; then
5a162955 1036 CPPFLAGS="-I${withval}/include ${CPPFLAGS}"
98a7c37b 1037 else
5a162955 1038 CPPFLAGS="-I${withval} ${CPPFLAGS}"
98a7c37b 1039 fi
98a7c37b 1040 fi
ddceb1c8 1041 LIBWRAP="-lwrap"
1042 LIBS="$LIBWRAP $LIBS"
278588d8 1043 AC_MSG_CHECKING(for libwrap)
1044 AC_TRY_LINK(
1045 [
77f09220 1046#include <sys/types.h>
1047#include <sys/socket.h>
1048#include <netinet/in.h>
278588d8 1049#include <tcpd.h>
1050 int deny_severity = 0, allow_severity = 0;
1051 ],
1052 [hosts_access(0);],
1053 [
1054 AC_MSG_RESULT(yes)
3466e002 1055 AC_DEFINE(LIBWRAP, 1,
1056 [Define if you want
1057 TCP Wrappers support])
ddceb1c8 1058 AC_SUBST(LIBWRAP)
98a7c37b 1059 TCPW_MSG="yes"
278588d8 1060 ],
1061 [
1062 AC_MSG_ERROR([*** libwrap missing])
1063 ]
1064 )
ddceb1c8 1065 LIBS="$saved_LIBS"
278588d8 1066 fi
1067 ]
1068)
1069
59031773 1070# Check whether user wants libedit support
1071LIBEDIT_MSG="no"
1072AC_ARG_WITH(libedit,
6ff3d0dc 1073 [ --with-libedit[[=PATH]] Enable libedit support for sftp],
59031773 1074 [ if test "x$withval" != "xno" ; then
737edf04 1075 if test "x$withval" != "xyes"; then
bb116c8e 1076 CPPFLAGS="$CPPFLAGS -I${withval}/include"
1077 if test -n "${need_dash_r}"; then
1078 LDFLAGS="-L${withval}/lib -R${withval}/lib ${LDFLAGS}"
1079 else
1080 LDFLAGS="-L${withval}/lib ${LDFLAGS}"
1081 fi
737edf04 1082 fi
59031773 1083 AC_CHECK_LIB(edit, el_init,
3466e002 1084 [ AC_DEFINE(USE_LIBEDIT, 1, [Use libedit for sftp])
59031773 1085 LIBEDIT="-ledit -lcurses"
1086 LIBEDIT_MSG="yes"
1087 AC_SUBST(LIBEDIT)
1088 ],
737edf04 1089 [ AC_MSG_ERROR(libedit not found) ],
1090 [ -lcurses ]
59031773 1091 )
f47ddccb 1092 AC_MSG_CHECKING(if libedit version is compatible)
d92622f9 1093 AC_COMPILE_IFELSE(
1094 [AC_LANG_SOURCE([[
1095#include <histedit.h>
f47ddccb 1096int main(void)
1097{
1098 int i = H_SETSIZE;
1099 el_init("", NULL, NULL, NULL);
1100 exit(0);
1101}
d92622f9 1102 ]])],
f47ddccb 1103 [ AC_MSG_RESULT(yes) ],
1104 [ AC_MSG_RESULT(no)
1105 AC_MSG_ERROR(libedit version is not compatible) ]
1106 )
59031773 1107 fi ]
1108)
1109
7b578f7d 1110AUDIT_MODULE=none
1111AC_ARG_WITH(audit,
1112 [ --with-audit=module Enable EXPERIMENTAL audit support (modules=debug,bsm)],
1113 [
1114 AC_MSG_CHECKING(for supported audit module)
1115 case "$withval" in
1116 bsm)
1117 AC_MSG_RESULT(bsm)
1118 AUDIT_MODULE=bsm
1119 dnl Checks for headers, libs and functions
1120 AC_CHECK_HEADERS(bsm/audit.h, [],
1121 [AC_MSG_ERROR(BSM enabled and bsm/audit.h not found)])
1122 AC_CHECK_LIB(bsm, getaudit, [],
1123 [AC_MSG_ERROR(BSM enabled and required library not found)])
1124 AC_CHECK_FUNCS(getaudit, [],
1125 [AC_MSG_ERROR(BSM enabled and required function not found)])
1126 # These are optional
7939c496 1127 AC_CHECK_FUNCS(getaudit_addr)
3466e002 1128 AC_DEFINE(USE_BSM_AUDIT, 1, [Use BSM audit module])
7b578f7d 1129 ;;
1130 debug)
1131 AUDIT_MODULE=debug
1132 AC_MSG_RESULT(debug)
3466e002 1133 AC_DEFINE(SSH_AUDIT_EVENTS, 1, Use audit debugging module)
7b578f7d 1134 ;;
a2b3321d 1135 no)
d92622f9 1136 AC_MSG_RESULT(no)
a2b3321d 1137 ;;
7b578f7d 1138 *)
1139 AC_MSG_ERROR([Unknown audit module $withval])
1140 ;;
1141 esac ]
1142)
1143
19160674 1144dnl Checks for library functions. Please keep in alphabetical order
b04a9f8c 1145AC_CHECK_FUNCS( \
1146 arc4random \
9a406e1e 1147 asprintf \
b04a9f8c 1148 b64_ntop \
1149 __b64_ntop \
1150 b64_pton \
1151 __b64_pton \
1152 bcopy \
1153 bindresvport_sa \
1154 clock \
1155 closefrom \
1156 dirfd \
b04a9f8c 1157 fchmod \
1158 fchown \
1159 freeaddrinfo \
1160 futimes \
1161 getaddrinfo \
1162 getcwd \
1163 getgrouplist \
1164 getnameinfo \
1165 getopt \
1166 getpeereid \
1167 _getpty \
1168 getrlimit \
1169 getttyent \
1170 glob \
1171 inet_aton \
1172 inet_ntoa \
1173 inet_ntop \
1174 innetgr \
1175 login_getcapbool \
1176 md5_crypt \
1177 memmove \
1178 mkdtemp \
1179 mmap \
1180 ngetaddrinfo \
1181 nsleep \
1182 ogetaddrinfo \
1183 openlog_r \
1184 openpty \
1185 prctl \
1186 pstat \
1187 readpassphrase \
1188 realpath \
1189 recvmsg \
1190 rresvport_af \
1191 sendmsg \
1192 setdtablesize \
1193 setegid \
1194 setenv \
1195 seteuid \
1196 setgroups \
1197 setlogin \
1198 setpcred \
1199 setproctitle \
1200 setregid \
1201 setreuid \
1202 setrlimit \
1203 setsid \
1204 setvbuf \
1205 sigaction \
1206 sigvec \
1207 snprintf \
1208 socketpair \
1209 strdup \
1210 strerror \
1211 strlcat \
1212 strlcpy \
1213 strmode \
1214 strnvis \
1215 strtonum \
1e29a0c8 1216 strtoll \
b04a9f8c 1217 strtoul \
1218 sysconf \
1219 tcgetpgrp \
1220 truncate \
1221 unsetenv \
1222 updwtmpx \
9a406e1e 1223 vasprintf \
b04a9f8c 1224 vhangup \
1225 vsnprintf \
1226 waitpid \
19160674 1227)
98a7c37b 1228
1a086f97 1229# IRIX has a const char return value for gai_strerror()
1230AC_CHECK_FUNCS(gai_strerror,[
1231 AC_DEFINE(HAVE_GAI_STRERROR)
1232 AC_TRY_COMPILE([
1233#include <sys/types.h>
1234#include <sys/socket.h>
1235#include <netdb.h>
1236
1237const char *gai_strerror(int);],[
1238char *str;
1239
1240str = gai_strerror(0);],[
1241 AC_DEFINE(HAVE_CONST_GAI_STRERROR_PROTO, 1,
1242 [Define if gai_strerror() returns const char *])])])
1243
3466e002 1244AC_SEARCH_LIBS(nanosleep, rt posix4, AC_DEFINE(HAVE_NANOSLEEP, 1,
1245 [Some systems put nanosleep outside of libc]))
92b1decf 1246
309709db 1247dnl Make sure prototypes are defined for these before using them.
309709db 1248AC_CHECK_DECL(getrusage, [AC_CHECK_FUNCS(getrusage)])
0957c2cf 1249AC_CHECK_DECL(strsep,
1250 [AC_CHECK_FUNCS(strsep)],
1251 [],
1252 [
1253#ifdef HAVE_STRING_H
1254# include <string.h>
1255#endif
1256 ])
08412d26 1257
3490699c 1258dnl tcsendbreak might be a macro
1259AC_CHECK_DECL(tcsendbreak,
1260 [AC_DEFINE(HAVE_TCSENDBREAK)],
aff51935 1261 [AC_CHECK_FUNCS(tcsendbreak)],
3490699c 1262 [#include <termios.h>]
1263)
1264
41e0e158 1265AC_CHECK_DECLS(h_errno, , ,[#include <netdb.h>])
1266
3f176010 1267AC_CHECK_FUNCS(setresuid, [
1268 dnl Some platorms have setresuid that isn't implemented, test for this
1269 AC_MSG_CHECKING(if setresuid seems to work)
479cece8 1270 AC_RUN_IFELSE(
1271 [AC_LANG_SOURCE([[
9a3fe0e2 1272#include <stdlib.h>
1273#include <errno.h>
1274int main(){errno=0; setresuid(0,0,0); if (errno==ENOSYS) exit(1); else exit(0);}
479cece8 1275 ]])],
3f176010 1276 [AC_MSG_RESULT(yes)],
3466e002 1277 [AC_DEFINE(BROKEN_SETRESUID, 1,
1278 [Define if your setresuid() is broken])
1a01a50c 1279 AC_MSG_RESULT(not implemented)],
1280 [AC_MSG_WARN([cross compiling: not checking setresuid])]
3f176010 1281 )
1282])
9a3fe0e2 1283
3f176010 1284AC_CHECK_FUNCS(setresgid, [
1285 dnl Some platorms have setresgid that isn't implemented, test for this
1286 AC_MSG_CHECKING(if setresgid seems to work)
479cece8 1287 AC_RUN_IFELSE(
1288 [AC_LANG_SOURCE([[
9a3fe0e2 1289#include <stdlib.h>
1290#include <errno.h>
1291int main(){errno=0; setresgid(0,0,0); if (errno==ENOSYS) exit(1); else exit(0);}
479cece8 1292 ]])],
3f176010 1293 [AC_MSG_RESULT(yes)],
3466e002 1294 [AC_DEFINE(BROKEN_SETRESGID, 1,
1295 [Define if your setresgid() is broken])
1a01a50c 1296 AC_MSG_RESULT(not implemented)],
1297 [AC_MSG_WARN([cross compiling: not checking setresuid])]
3f176010 1298 )
1299])
9a3fe0e2 1300
2e73a022 1301dnl Checks for time functions
1d7b9b20 1302AC_CHECK_FUNCS(gettimeofday time)
2e73a022 1303dnl Checks for utmp functions
b03bd394 1304AC_CHECK_FUNCS(endutent getutent getutid getutline pututline setutent)
1d7b9b20 1305AC_CHECK_FUNCS(utmpname)
2e73a022 1306dnl Checks for utmpx functions
b03bd394 1307AC_CHECK_FUNCS(endutxent getutxent getutxid getutxline pututxline )
1d7b9b20 1308AC_CHECK_FUNCS(setutxent utmpxname)
76cd7316 1309
aff51935 1310AC_CHECK_FUNC(daemon,
3466e002 1311 [AC_DEFINE(HAVE_DAEMON, 1, [Define if your libraries define daemon()])],
1312 [AC_CHECK_LIB(bsd, daemon,
1313 [LIBS="$LIBS -lbsd"; AC_DEFINE(HAVE_DAEMON)])]
beb43d31 1314)
1315
aff51935 1316AC_CHECK_FUNC(getpagesize,
3466e002 1317 [AC_DEFINE(HAVE_GETPAGESIZE, 1,
1318 [Define if your libraries define getpagesize()])],
1319 [AC_CHECK_LIB(ucb, getpagesize,
1320 [LIBS="$LIBS -lucb"; AC_DEFINE(HAVE_GETPAGESIZE)])]
aa6bd60a 1321)
1322
2647ae26 1323# Check for broken snprintf
1324if test "x$ac_cv_func_snprintf" = "xyes" ; then
1325 AC_MSG_CHECKING([whether snprintf correctly terminates long strings])
1a01a50c 1326 AC_RUN_IFELSE(
479cece8 1327 [AC_LANG_SOURCE([[
2647ae26 1328#include <stdio.h>
aec4cb4f 1329int main(void){char b[5];snprintf(b,5,"123456789");exit(b[4]!='\0');}
479cece8 1330 ]])],
aff51935 1331 [AC_MSG_RESULT(yes)],
2647ae26 1332 [
1333 AC_MSG_RESULT(no)
3466e002 1334 AC_DEFINE(BROKEN_SNPRINTF, 1,
1335 [Define if your snprintf is busted])
2647ae26 1336 AC_MSG_WARN([****** Your snprintf() function is broken, complain to your vendor])
1a01a50c 1337 ],
1338 [ AC_MSG_WARN([cross compiling: Assuming working snprintf()]) ]
2647ae26 1339 )
1340fi
1341
9a406e1e 1342# If we don't have a working asprintf, then we strongly depend on vsnprintf
1343# returning the right thing on overflow: the number of characters it tried to
1344# create (as per SUSv3)
1345if test "x$ac_cv_func_asprintf" != "xyes" && \
1346 test "x$ac_cv_func_vsnprintf" = "xyes" ; then
1347 AC_MSG_CHECKING([whether vsnprintf returns correct values on overflow])
1348 AC_RUN_IFELSE(
1349 [AC_LANG_SOURCE([[
1350#include <sys/types.h>
1351#include <stdio.h>
1352#include <stdarg.h>
1353
1354int x_snprintf(char *str,size_t count,const char *fmt,...)
1355{
1356 size_t ret; va_list ap;
1357 va_start(ap, fmt); ret = vsnprintf(str, count, fmt, ap); va_end(ap);
1358 return ret;
1359}
1360int main(void)
1361{
1362 char x[1];
1363 exit(x_snprintf(x, 1, "%s %d", "hello", 12345) == 11 ? 0 : 1);
1364} ]])],
1365 [AC_MSG_RESULT(yes)],
1366 [
1367 AC_MSG_RESULT(no)
1368 AC_DEFINE(BROKEN_SNPRINTF, 1,
1369 [Define if your snprintf is busted])
1370 AC_MSG_WARN([****** Your vsnprintf() function is broken, complain to your vendor])
1371 ],
1372 [ AC_MSG_WARN([cross compiling: Assuming working vsnprintf()]) ]
1373 )
1374fi
1375
31b0732a 1376# On systems where [v]snprintf is broken, but is declared in stdio,
1377# check that the fmt argument is const char * or just char *.
1378# This is only useful for when BROKEN_SNPRINTF
1379AC_MSG_CHECKING([whether snprintf can declare const char *fmt])
1380AC_COMPILE_IFELSE([AC_LANG_SOURCE([[#include <stdio.h>
1381 int snprintf(char *a, size_t b, const char *c, ...) { return 0; }
1382 int main(void) { snprintf(0, 0, 0); }
1383 ]])],
1384 [AC_MSG_RESULT(yes)
1385 AC_DEFINE(SNPRINTF_CONST, [const],
1386 [Define as const if snprintf() can declare const char *fmt])],
1387 [AC_MSG_RESULT(no)
1388 AC_DEFINE(SNPRINTF_CONST, [/* not const */])])
1389
2f6f9cff 1390# Check for missing getpeereid (or equiv) support
1391NO_PEERCHECK=""
1392if test "x$ac_cv_func_getpeereid" != "xyes" ; then
1393 AC_MSG_CHECKING([whether system supports SO_PEERCRED getsockopt])
1394 AC_TRY_COMPILE(
1395 [#include <sys/types.h>
1396 #include <sys/socket.h>],
1397 [int i = SO_PEERCRED;],
62eb7db4 1398 [ AC_MSG_RESULT(yes)
3466e002 1399 AC_DEFINE(HAVE_SO_PEERCRED, 1, [Have PEERCRED socket option])
62eb7db4 1400 ],
2f6f9cff 1401 [AC_MSG_RESULT(no)
1402 NO_PEERCHECK=1]
1403 )
1404fi
1405
70e7d0b0 1406dnl see whether mkstemp() requires XXXXXX
1407if test "x$ac_cv_func_mkdtemp" = "xyes" ; then
1408AC_MSG_CHECKING([for (overly) strict mkstemp])
b0e7249f 1409AC_RUN_IFELSE(
1410 [AC_LANG_SOURCE([[
70e7d0b0 1411#include <stdlib.h>
1412main() { char template[]="conftest.mkstemp-test";
1413if (mkstemp(template) == -1)
1414 exit(1);
1415unlink(template); exit(0);
1416}
b0e7249f 1417 ]])],
70e7d0b0 1418 [
1419 AC_MSG_RESULT(no)
1420 ],
aff51935 1421 [
70e7d0b0 1422 AC_MSG_RESULT(yes)
3466e002 1423 AC_DEFINE(HAVE_STRICT_MKSTEMP, 1, [Silly mkstemp()])
70e7d0b0 1424 ],
1425 [
1426 AC_MSG_RESULT(yes)
1427 AC_DEFINE(HAVE_STRICT_MKSTEMP)
aff51935 1428 ]
70e7d0b0 1429)
1430fi
1431
eacb954e 1432dnl make sure that openpty does not reacquire controlling terminal
1433if test ! -z "$check_for_openpty_ctty_bug"; then
1434 AC_MSG_CHECKING(if openpty correctly handles controlling tty)
b0e7249f 1435 AC_RUN_IFELSE(
1436 [AC_LANG_SOURCE([[
eacb954e 1437#include <stdio.h>
1438#include <sys/fcntl.h>
1439#include <sys/types.h>
1440#include <sys/wait.h>
1441
1442int
1443main()
1444{
1445 pid_t pid;
1446 int fd, ptyfd, ttyfd, status;
1447
1448 pid = fork();
1449 if (pid < 0) { /* failed */
1450 exit(1);
1451 } else if (pid > 0) { /* parent */
1452 waitpid(pid, &status, 0);
aff51935 1453 if (WIFEXITED(status))
eacb954e 1454 exit(WEXITSTATUS(status));
1455 else
1456 exit(2);
1457 } else { /* child */
1458 close(0); close(1); close(2);
1459 setsid();
1460 openpty(&ptyfd, &ttyfd, NULL, NULL, NULL);
1461 fd = open("/dev/tty", O_RDWR | O_NOCTTY);
1462 if (fd >= 0)
1463 exit(3); /* Acquired ctty: broken */
1464 else
1465 exit(0); /* Did not acquire ctty: OK */
1466 }
1467}
b0e7249f 1468 ]])],
eacb954e 1469 [
1470 AC_MSG_RESULT(yes)
1471 ],
1472 [
1473 AC_MSG_RESULT(no)
1474 AC_DEFINE(SSHD_ACQUIRES_CTTY)
b0e7249f 1475 ],
1476 [
1477 AC_MSG_RESULT(cross-compiling, assuming yes)
eacb954e 1478 ]
1479 )
1480fi
1481
4b492aab 1482if test "x$ac_cv_func_getaddrinfo" = "xyes" && \
1483 test "x$check_for_hpux_broken_getaddrinfo" = "x1"; then
2fe51906 1484 AC_MSG_CHECKING(if getaddrinfo seems to work)
b0e7249f 1485 AC_RUN_IFELSE(
1486 [AC_LANG_SOURCE([[
2fe51906 1487#include <stdio.h>
1488#include <sys/socket.h>
1489#include <netdb.h>
1490#include <errno.h>
1491#include <netinet/in.h>
1492
1493#define TEST_PORT "2222"
1494
1495int
1496main(void)
1497{
1498 int err, sock;
1499 struct addrinfo *gai_ai, *ai, hints;
1500 char ntop[NI_MAXHOST], strport[NI_MAXSERV], *name = NULL;
1501
1502 memset(&hints, 0, sizeof(hints));
1503 hints.ai_family = PF_UNSPEC;
1504 hints.ai_socktype = SOCK_STREAM;
1505 hints.ai_flags = AI_PASSIVE;
1506
1507 err = getaddrinfo(name, TEST_PORT, &hints, &gai_ai);
1508 if (err != 0) {
1509 fprintf(stderr, "getaddrinfo failed (%s)", gai_strerror(err));
1510 exit(1);
1511 }
1512
1513 for (ai = gai_ai; ai != NULL; ai = ai->ai_next) {
1514 if (ai->ai_family != AF_INET6)
1515 continue;
1516
1517 err = getnameinfo(ai->ai_addr, ai->ai_addrlen, ntop,
1518 sizeof(ntop), strport, sizeof(strport),
1519 NI_NUMERICHOST|NI_NUMERICSERV);
1520
1521 if (err != 0) {
1522 if (err == EAI_SYSTEM)
1523 perror("getnameinfo EAI_SYSTEM");
1524 else
1525 fprintf(stderr, "getnameinfo failed: %s\n",
1526 gai_strerror(err));
1527 exit(2);
1528 }
1529
1530 sock = socket(ai->ai_family, ai->ai_socktype, ai->ai_protocol);
1531 if (sock < 0)
1532 perror("socket");
1533 if (bind(sock, ai->ai_addr, ai->ai_addrlen) < 0) {
1534 if (errno == EBADF)
1535 exit(3);
1536 }
1537 }
1538 exit(0);
1539}
b0e7249f 1540 ]])],
2fe51906 1541 [
1542 AC_MSG_RESULT(yes)
1543 ],
1544 [
1545 AC_MSG_RESULT(no)
1546 AC_DEFINE(BROKEN_GETADDRINFO)
b0e7249f 1547 ],
1548 [
1549 AC_MSG_RESULT(cross-compiling, assuming yes)
2fe51906 1550 ]
1551 )
1552fi
1553
4b492aab 1554if test "x$ac_cv_func_getaddrinfo" = "xyes" && \
1555 test "x$check_for_aix_broken_getaddrinfo" = "x1"; then
5ccf88cb 1556 AC_MSG_CHECKING(if getaddrinfo seems to work)
b0e7249f 1557 AC_RUN_IFELSE(
1558 [AC_LANG_SOURCE([[
5ccf88cb 1559#include <stdio.h>
1560#include <sys/socket.h>
1561#include <netdb.h>
1562#include <errno.h>
1563#include <netinet/in.h>
1564
1565#define TEST_PORT "2222"
1566
1567int
1568main(void)
1569{
1570 int err, sock;
1571 struct addrinfo *gai_ai, *ai, hints;
1572 char ntop[NI_MAXHOST], strport[NI_MAXSERV], *name = NULL;
1573
1574 memset(&hints, 0, sizeof(hints));
1575 hints.ai_family = PF_UNSPEC;
1576 hints.ai_socktype = SOCK_STREAM;
1577 hints.ai_flags = AI_PASSIVE;
1578
1579 err = getaddrinfo(name, TEST_PORT, &hints, &gai_ai);
1580 if (err != 0) {
1581 fprintf(stderr, "getaddrinfo failed (%s)", gai_strerror(err));
1582 exit(1);
1583 }
1584
1585 for (ai = gai_ai; ai != NULL; ai = ai->ai_next) {
1586 if (ai->ai_family != AF_INET && ai->ai_family != AF_INET6)
1587 continue;
1588
1589 err = getnameinfo(ai->ai_addr, ai->ai_addrlen, ntop,
1590 sizeof(ntop), strport, sizeof(strport),
1591 NI_NUMERICHOST|NI_NUMERICSERV);
1592
1593 if (ai->ai_family == AF_INET && err != 0) {
1594 perror("getnameinfo");
1595 exit(2);
1596 }
1597 }
1598 exit(0);
1599}
b0e7249f 1600 ]])],
5ccf88cb 1601 [
1602 AC_MSG_RESULT(yes)
3466e002 1603 AC_DEFINE(AIX_GETNAMEINFO_HACK, 1,
1604 [Define if you have a getaddrinfo that fails
1605 for the all-zeros IPv6 address])
5ccf88cb 1606 ],
1607 [
1608 AC_MSG_RESULT(no)
1609 AC_DEFINE(BROKEN_GETADDRINFO)
b0e7249f 1610 ],
1611 AC_MSG_RESULT(cross-compiling, assuming no)
5ccf88cb 1612 ]
1613 )
1614fi
1615
b29fd59f 1616if test "x$check_for_conflicting_getspnam" = "x1"; then
1617 AC_MSG_CHECKING(for conflicting getspnam in shadow.h)
1618 AC_COMPILE_IFELSE(
1619 [
1620#include <shadow.h>
1621int main(void) {exit(0);}
1622 ],
1623 [
1624 AC_MSG_RESULT(no)
1625 ],
1626 [
1627 AC_MSG_RESULT(yes)
1628 AC_DEFINE(GETSPNAM_CONFLICTING_DEFS, 1,
1629 [Conflicting defs for getspnam])
1630 ]
1631 )
1632fi
1633
7f8f5e00 1634AC_FUNC_GETPGRP
1635
717057b6 1636# Check for PAM libs
cbd7492e 1637PAM_MSG="no"
a0391976 1638AC_ARG_WITH(pam,
717057b6 1639 [ --with-pam Enable PAM support ],
a0391976 1640 [
717057b6 1641 if test "x$withval" != "xno" ; then
2511d104 1642 if test "x$ac_cv_header_security_pam_appl_h" != "xyes" && \
1643 test "x$ac_cv_header_pam_pam_appl_h" != "xyes" ; then
717057b6 1644 AC_MSG_ERROR([PAM headers not found])
1645 fi
a0391976 1646
717057b6 1647 AC_CHECK_LIB(dl, dlopen, , )
1648 AC_CHECK_LIB(pam, pam_set_item, , AC_MSG_ERROR([*** libpam missing]))
1649 AC_CHECK_FUNCS(pam_getenvlist)
749560dd 1650 AC_CHECK_FUNCS(pam_putenv)
2b763e31 1651
717057b6 1652 PAM_MSG="yes"
4cb5ffa0 1653
3466e002 1654 AC_DEFINE(USE_PAM, 1,
1655 [Define if you want to enable PAM support])
98f2d9d5 1656 if test $ac_cv_lib_dl_dlopen = yes; then
1657 LIBPAM="-lpam -ldl"
1658 else
1659 LIBPAM="-lpam"
1660 fi
1661 AC_SUBST(LIBPAM)
717057b6 1662 fi
1663 ]
1664)
cbd7492e 1665
717057b6 1666# Check for older PAM
1667if test "x$PAM_MSG" = "xyes" ; then
a0391976 1668 # Check PAM strerror arguments (old PAM)
1669 AC_MSG_CHECKING([whether pam_strerror takes only one argument])
1670 AC_TRY_COMPILE(
1671 [
18ba2aab 1672#include <stdlib.h>
2511d104 1673#if defined(HAVE_SECURITY_PAM_APPL_H)
18ba2aab 1674#include <security/pam_appl.h>
2511d104 1675#elif defined (HAVE_PAM_PAM_APPL_H)
1676#include <pam/pam_appl.h>
1677#endif
aff51935 1678 ],
1679 [(void)pam_strerror((pam_handle_t *)NULL, -1);],
a0391976 1680 [AC_MSG_RESULT(no)],
1681 [
3466e002 1682 AC_DEFINE(HAVE_OLD_PAM, 1,
1683 [Define if you have an old version of PAM
1684 which takes only one argument to pam_strerror])
a0391976 1685 AC_MSG_RESULT(yes)
cbd7492e 1686 PAM_MSG="yes (old library)"
a0391976 1687 ]
717057b6 1688 )
a0391976 1689fi
1690
5b991353 1691# Search for OpenSSL
1692saved_CPPFLAGS="$CPPFLAGS"
1693saved_LDFLAGS="$LDFLAGS"
a0391976 1694AC_ARG_WITH(ssl-dir,
1695 [ --with-ssl-dir=PATH Specify path to OpenSSL installation ],
1696 [
e9e4a1c7 1697 if test "x$withval" != "xno" ; then
99eb0f64 1698 case "$withval" in
1699 # Relative paths
1700 ./*|../*) withval="`pwd`/$withval"
1701 esac
5b991353 1702 if test -d "$withval/lib"; then
1703 if test -n "${need_dash_r}"; then
1704 LDFLAGS="-L${withval}/lib -R${withval}/lib ${LDFLAGS}"
1705 else
1706 LDFLAGS="-L${withval}/lib ${LDFLAGS}"
d6f13fbb 1707 fi
1708 else
5b991353 1709 if test -n "${need_dash_r}"; then
1710 LDFLAGS="-L${withval} -R${withval} ${LDFLAGS}"
1711 else
1712 LDFLAGS="-L${withval} ${LDFLAGS}"
d6f13fbb 1713 fi
1714 fi
5b991353 1715 if test -d "$withval/include"; then
1716 CPPFLAGS="-I${withval}/include ${CPPFLAGS}"
d6f13fbb 1717 else
5b991353 1718 CPPFLAGS="-I${withval} ${CPPFLAGS}"
58d100bf 1719 fi
a0391976 1720 fi
5b991353 1721 ]
1722)
5486a457 1723LIBS="-lcrypto $LIBS"
3466e002 1724AC_TRY_LINK_FUNC(RAND_add, AC_DEFINE(HAVE_OPENSSL, 1,
1725 [Define if your ssl headers are included
1726 with #include <openssl/header.h>]),
d45e3d76 1727 [
5b991353 1728 dnl Check default openssl install dir
1729 if test -n "${need_dash_r}"; then
1730 LDFLAGS="-L/usr/local/ssl/lib -R/usr/local/ssl/lib ${saved_LDFLAGS}"
d45e3d76 1731 else
5b991353 1732 LDFLAGS="-L/usr/local/ssl/lib ${saved_LDFLAGS}"
d45e3d76 1733 fi
5b991353 1734 CPPFLAGS="-I/usr/local/ssl/include ${saved_CPPFLAGS}"
1735 AC_TRY_LINK_FUNC(RAND_add, AC_DEFINE(HAVE_OPENSSL),
1736 [
1737 AC_MSG_ERROR([*** Can't find recent OpenSSL libcrypto (see config.log for details) ***])
1738 ]
1739 )
1740 ]
1741)
1742
cd018561 1743# Determine OpenSSL header version
1744AC_MSG_CHECKING([OpenSSL header version])
1a01a50c 1745AC_RUN_IFELSE(
479cece8 1746 [AC_LANG_SOURCE([[
cd018561 1747#include <stdio.h>
1748#include <string.h>
1749#include <openssl/opensslv.h>
1750#define DATA "conftest.sslincver"
1751int main(void) {
aff51935 1752 FILE *fd;
1753 int rc;
cd018561 1754
aff51935 1755 fd = fopen(DATA,"w");
1756 if(fd == NULL)
1757 exit(1);
cd018561 1758
1759 if ((rc = fprintf(fd ,"%x (%s)\n", OPENSSL_VERSION_NUMBER, OPENSSL_VERSION_TEXT)) <0)
1760 exit(1);
1761
1762 exit(0);
1763}
479cece8 1764 ]])],
cd018561 1765 [
1766 ssl_header_ver=`cat conftest.sslincver`
1767 AC_MSG_RESULT($ssl_header_ver)
1768 ],
1769 [
1770 AC_MSG_RESULT(not found)
1771 AC_MSG_ERROR(OpenSSL version header not found.)
1a01a50c 1772 ],
1773 [
1774 AC_MSG_WARN([cross compiling: not checking])
cd018561 1775 ]
1776)
1777
1778# Determine OpenSSL library version
1779AC_MSG_CHECKING([OpenSSL library version])
1a01a50c 1780AC_RUN_IFELSE(
479cece8 1781 [AC_LANG_SOURCE([[
cd018561 1782#include <stdio.h>
1783#include <string.h>
1784#include <openssl/opensslv.h>
1785#include <openssl/crypto.h>
1786#define DATA "conftest.ssllibver"
1787int main(void) {
aff51935 1788 FILE *fd;
1789 int rc;
cd018561 1790
aff51935 1791 fd = fopen(DATA,"w");
1792 if(fd == NULL)
1793 exit(1);
cd018561 1794
1795 if ((rc = fprintf(fd ,"%x (%s)\n", SSLeay(), SSLeay_version(SSLEAY_VERSION))) <0)
1796 exit(1);
1797
1798 exit(0);
1799}
479cece8 1800 ]])],
cd018561 1801 [
1802 ssl_library_ver=`cat conftest.ssllibver`
1803 AC_MSG_RESULT($ssl_library_ver)
1804 ],
1805 [
1806 AC_MSG_RESULT(not found)
1807 AC_MSG_ERROR(OpenSSL library not found.)
1a01a50c 1808 ],
1809 [
1810 AC_MSG_WARN([cross compiling: not checking])
cd018561 1811 ]
1812)
58d100bf 1813
9780116c 1814# Sanity check OpenSSL headers
1815AC_MSG_CHECKING([whether OpenSSL's headers match the library])
1a01a50c 1816AC_RUN_IFELSE(
479cece8 1817 [AC_LANG_SOURCE([[
9780116c 1818#include <string.h>
1819#include <openssl/opensslv.h>
aec4cb4f 1820int main(void) { exit(SSLeay() == OPENSSL_VERSION_NUMBER ? 0 : 1); }
479cece8 1821 ]])],
9780116c 1822 [
1823 AC_MSG_RESULT(yes)
1824 ],
1825 [
1826 AC_MSG_RESULT(no)
e15ba28b 1827 AC_MSG_ERROR([Your OpenSSL headers do not match your library.
1828Check config.log for details.
1829Also see contrib/findssl.sh for help identifying header/library mismatches.])
1a01a50c 1830 ],
1831 [
1832 AC_MSG_WARN([cross compiling: not checking])
9780116c 1833 ]
1834)
1835
e5146707 1836# Check for OpenSSL without EVP_aes_{192,256}_cbc
1837AC_MSG_CHECKING([whether OpenSSL has crippled AES support])
1838AC_COMPILE_IFELSE(
1839 [AC_LANG_SOURCE([[
1840#include <string.h>
1841#include <openssl/evp.h>
300ea548 1842int main(void) { exit(EVP_aes_192_cbc() == NULL || EVP_aes_256_cbc() == NULL);}
e5146707 1843 ]])],
1844 [
1845 AC_MSG_RESULT(no)
1846 ],
1847 [
1848 AC_MSG_RESULT(yes)
1849 AC_DEFINE(OPENSSL_LOBOTOMISED_AES, 1,
1850 [libcrypto is missing AES 192 and 256 bit functions])
1851 ]
1852)
1853
5486a457 1854# Some systems want crypt() from libcrypt, *not* the version in OpenSSL,
1855# because the system crypt() is more featureful.
1856if test "x$check_for_libcrypt_before" = "x1"; then
1857 AC_CHECK_LIB(crypt, crypt)
1858fi
1859
aff51935 1860# Some Linux systems (Slackware) need crypt() from libcrypt, *not* the
8087c5ee 1861# version in OpenSSL.
05114c74 1862if test "x$check_for_libcrypt_later" = "x1"; then
20cad736 1863 AC_CHECK_LIB(crypt, crypt, LIBS="$LIBS -lcrypt")
717057b6 1864fi
1865
4c653d8e 1866AC_CHECK_LIB(iaf, ia_openinfo)
f1b0ecc3 1867
1868### Configure cryptographic random number support
1869
1870# Check wheter OpenSSL seeds itself
1871AC_MSG_CHECKING([whether OpenSSL's PRNG is internally seeded])
1a01a50c 1872AC_RUN_IFELSE(
479cece8 1873 [AC_LANG_SOURCE([[
f1b0ecc3 1874#include <string.h>
1875#include <openssl/rand.h>
aec4cb4f 1876int main(void) { exit(RAND_status() == 1 ? 0 : 1); }
479cece8 1877 ]])],
f1b0ecc3 1878 [
1879 OPENSSL_SEEDS_ITSELF=yes
1880 AC_MSG_RESULT(yes)
1881 ],
1882 [
1883 AC_MSG_RESULT(no)
1884 # Default to use of the rand helper if OpenSSL doesn't
1885 # seed itself
1886 USE_RAND_HELPER=yes
1a01a50c 1887 ],
1888 [
1889 AC_MSG_WARN([cross compiling: assuming yes])
1890 # This is safe, since all recent OpenSSL versions will
82f4e93d 1891 # complain at runtime if not seeded correctly.
1a01a50c 1892 OPENSSL_SEEDS_ITSELF=yes
f1b0ecc3 1893 ]
1894)
1895
1896
1897# Do we want to force the use of the rand helper?
1898AC_ARG_WITH(rand-helper,
1899 [ --with-rand-helper Use subprocess to gather strong randomness ],
1900 [
1901 if test "x$withval" = "xno" ; then
aff51935 1902 # Force use of OpenSSL's internal RNG, even if
f1b0ecc3 1903 # the previous test showed it to be unseeded.
1904 if test -z "$OPENSSL_SEEDS_ITSELF" ; then
1905 AC_MSG_WARN([*** Forcing use of OpenSSL's non-self-seeding PRNG])
1906 OPENSSL_SEEDS_ITSELF=yes
1907 USE_RAND_HELPER=""
1908 fi
1909 else
1910 USE_RAND_HELPER=yes
1911 fi
1912 ],
82f4e93d 1913)
f1b0ecc3 1914
1915# Which randomness source do we use?
4b492aab 1916if test ! -z "$OPENSSL_SEEDS_ITSELF" && test -z "$USE_RAND_HELPER" ; then
f1b0ecc3 1917 # OpenSSL only
3466e002 1918 AC_DEFINE(OPENSSL_PRNG_ONLY, 1,
1919 [Define if you want OpenSSL's internally seeded PRNG only])
f1b0ecc3 1920 RAND_MSG="OpenSSL internal ONLY"
1921 INSTALL_SSH_RAND_HELPER=""
70e2f2f3 1922elif test ! -z "$USE_RAND_HELPER" ; then
1923 # install rand helper
f1b0ecc3 1924 RAND_MSG="ssh-rand-helper"
1925 INSTALL_SSH_RAND_HELPER="yes"
1926fi
1927AC_SUBST(INSTALL_SSH_RAND_HELPER)
1928
1929### Configuration of ssh-rand-helper
1930
1931# PRNGD TCP socket
1932AC_ARG_WITH(prngd-port,
1933 [ --with-prngd-port=PORT read entropy from PRNGD/EGD TCP localhost:PORT],
1934 [
eb5d7ff6 1935 case "$withval" in
1936 no)
1937 withval=""
1938 ;;
1939 [[0-9]]*)
1940 ;;
1941 *)
1942 AC_MSG_ERROR(You must specify a numeric port number for --with-prngd-port)
1943 ;;
1944 esac
1945 if test ! -z "$withval" ; then
f1b0ecc3 1946 PRNGD_PORT="$withval"
3466e002 1947 AC_DEFINE_UNQUOTED(PRNGD_PORT, $PRNGD_PORT,
1948 [Port number of PRNGD/EGD random number socket])
f1b0ecc3 1949 fi
1950 ]
1951)
1952
1953# PRNGD Unix domain socket
1954AC_ARG_WITH(prngd-socket,
1955 [ --with-prngd-socket=FILE read entropy from PRNGD/EGD socket FILE (default=/var/run/egd-pool)],
1956 [
eb5d7ff6 1957 case "$withval" in
1958 yes)
f1b0ecc3 1959 withval="/var/run/egd-pool"
eb5d7ff6 1960 ;;
1961 no)
1962 withval=""
1963 ;;
1964 /*)
1965 ;;
1966 *)
1967 AC_MSG_ERROR(You must specify an absolute path to the entropy socket)
1968 ;;
1969 esac
1970
1971 if test ! -z "$withval" ; then
f1b0ecc3 1972 if test ! -z "$PRNGD_PORT" ; then
1973 AC_MSG_ERROR(You may not specify both a PRNGD/EGD port and socket)
1974 fi
906e811b 1975 if test ! -r "$withval" ; then
f1b0ecc3 1976 AC_MSG_WARN(Entropy socket is not readable)
1977 fi
1978 PRNGD_SOCKET="$withval"
3466e002 1979 AC_DEFINE_UNQUOTED(PRNGD_SOCKET, "$PRNGD_SOCKET",
1980 [Location of PRNGD/EGD random number socket])
f1b0ecc3 1981 fi
ddceb1c8 1982 ],
1983 [
1984 # Check for existing socket only if we don't have a random device already
1985 if test "$USE_RAND_HELPER" = yes ; then
1986 AC_MSG_CHECKING(for PRNGD/EGD socket)
1987 # Insert other locations here
1988 for sock in /var/run/egd-pool /dev/egd-pool /etc/entropy; do
1989 if test -r $sock && $TEST_MINUS_S_SH -c "test -S $sock -o -p $sock" ; then
1990 PRNGD_SOCKET="$sock"
1991 AC_DEFINE_UNQUOTED(PRNGD_SOCKET, "$PRNGD_SOCKET")
1992 break;
1993 fi
1994 done
1995 if test ! -z "$PRNGD_SOCKET" ; then
1996 AC_MSG_RESULT($PRNGD_SOCKET)
1997 else
1998 AC_MSG_RESULT(not found)
1999 fi
2000 fi
f1b0ecc3 2001 ]
2002)
2003
2004# Change default command timeout for hashing entropy source
2005entropy_timeout=200
2006AC_ARG_WITH(entropy-timeout,
2007 [ --with-entropy-timeout Specify entropy gathering command timeout (msec)],
2008 [
6cf0200f 2009 if test -n "$withval" && test "x$withval" != "xno" && \
2010 test "x${withval}" != "xyes"; then
f1b0ecc3 2011 entropy_timeout=$withval
2012 fi
82f4e93d 2013 ]
f1b0ecc3 2014)
3466e002 2015AC_DEFINE_UNQUOTED(ENTROPY_TIMEOUT_MSEC, $entropy_timeout,
2016 [Builtin PRNG command timeout])
f1b0ecc3 2017
fd3cbf67 2018SSH_PRIVSEP_USER=sshd
9a0fbcb3 2019AC_ARG_WITH(privsep-user,
5222e7ef 2020 [ --with-privsep-user=user Specify non-privileged user for privilege separation],
9a0fbcb3 2021 [
6cf0200f 2022 if test -n "$withval" && test "x$withval" != "xno" && \
2023 test "x${withval}" != "xyes"; then
fd3cbf67 2024 SSH_PRIVSEP_USER=$withval
9a0fbcb3 2025 fi
82f4e93d 2026 ]
9a0fbcb3 2027)
3466e002 2028AC_DEFINE_UNQUOTED(SSH_PRIVSEP_USER, "$SSH_PRIVSEP_USER",
2029 [non-privileged user for privilege separation])
fd3cbf67 2030AC_SUBST(SSH_PRIVSEP_USER)
9a0fbcb3 2031
81dadca3 2032# We do this little dance with the search path to insure
2033# that programs that we select for use by installed programs
2034# (which may be run by the super-user) come from trusted
2035# locations before they come from the user's private area.
2036# This should help avoid accidentally configuring some
2037# random version of a program in someone's personal bin.
2038
2039OPATH=$PATH
2040PATH=/bin:/usr/bin
f95c8ce8 2041test -h /bin 2> /dev/null && PATH=/usr/bin
81dadca3 2042test -d /sbin && PATH=$PATH:/sbin
2043test -d /usr/sbin && PATH=$PATH:/usr/sbin
2044PATH=$PATH:/etc:$OPATH
2045
aff51935 2046# These programs are used by the command hashing source to gather entropy
f1b0ecc3 2047OSSH_PATH_ENTROPY_PROG(PROG_LS, ls)
2048OSSH_PATH_ENTROPY_PROG(PROG_NETSTAT, netstat)
2049OSSH_PATH_ENTROPY_PROG(PROG_ARP, arp)
2050OSSH_PATH_ENTROPY_PROG(PROG_IFCONFIG, ifconfig)
2051OSSH_PATH_ENTROPY_PROG(PROG_JSTAT, jstat)
2052OSSH_PATH_ENTROPY_PROG(PROG_PS, ps)
2053OSSH_PATH_ENTROPY_PROG(PROG_SAR, sar)
2054OSSH_PATH_ENTROPY_PROG(PROG_W, w)
2055OSSH_PATH_ENTROPY_PROG(PROG_WHO, who)
2056OSSH_PATH_ENTROPY_PROG(PROG_LAST, last)
2057OSSH_PATH_ENTROPY_PROG(PROG_LASTLOG, lastlog)
2058OSSH_PATH_ENTROPY_PROG(PROG_DF, df)
2059OSSH_PATH_ENTROPY_PROG(PROG_VMSTAT, vmstat)
2060OSSH_PATH_ENTROPY_PROG(PROG_UPTIME, uptime)
2061OSSH_PATH_ENTROPY_PROG(PROG_IPCS, ipcs)
2062OSSH_PATH_ENTROPY_PROG(PROG_TAIL, tail)
81dadca3 2063# restore PATH
2064PATH=$OPATH
f1b0ecc3 2065
2066# Where does ssh-rand-helper get its randomness from?
2067INSTALL_SSH_PRNG_CMDS=""
2068if test ! -z "$INSTALL_SSH_RAND_HELPER" ; then
2069 if test ! -z "$PRNGD_PORT" ; then
2070 RAND_HELPER_MSG="TCP localhost:$PRNGD_PORT"
2071 elif test ! -z "$PRNGD_SOCKET" ; then
2072 RAND_HELPER_MSG="Unix domain socket \"$PRNGD_SOCKET\""
2073 else
2074 RAND_HELPER_MSG="Command hashing (timeout $entropy_timeout)"
2075 RAND_HELPER_CMDHASH=yes
2076 INSTALL_SSH_PRNG_CMDS="yes"
2077 fi
2078fi
2079AC_SUBST(INSTALL_SSH_PRNG_CMDS)
2080
2081
66d6c27e 2082# Cheap hack to ensure NEWS-OS libraries are arranged right.
2083if test ! -z "$SONY" ; then
2084 LIBS="$LIBS -liberty";
2085fi
2086
9a406e1e 2087# Check for long long datatypes
2088AC_CHECK_TYPES([long long, unsigned long long, long double])
2089
2090# Check datatype sizes
976f7e19 2091AC_CHECK_SIZEOF(char, 1)
2b942fe0 2092AC_CHECK_SIZEOF(short int, 2)
2093AC_CHECK_SIZEOF(int, 4)
2094AC_CHECK_SIZEOF(long int, 4)
2095AC_CHECK_SIZEOF(long long int, 8)
2096
52f1ccb2 2097# Sanity check long long for some platforms (AIX)
2098if test "x$ac_cv_sizeof_long_long_int" = "x4" ; then
2099 ac_cv_sizeof_long_long_int=0
2100fi
2101
90f15776 2102# compute LLONG_MIN and LLONG_MAX if we don't know them.
2103if test -z "$have_llong_max"; then
2104 AC_MSG_CHECKING([for max value of long long])
2105 AC_RUN_IFELSE(
2106 [AC_LANG_SOURCE([[
2107#include <stdio.h>
2108/* Why is this so damn hard? */
2109#ifdef __GNUC__
2110# undef __GNUC__
2111#endif
2112#define __USE_ISOC99
2113#include <limits.h>
2114#define DATA "conftest.llminmax"
2115int main(void) {
2116 FILE *f;
2117 long long i, llmin, llmax = 0;
2118
2119 if((f = fopen(DATA,"w")) == NULL)
2120 exit(1);
2121
2122#if defined(LLONG_MIN) && defined(LLONG_MAX)
2123 fprintf(stderr, "Using system header for LLONG_MIN and LLONG_MAX\n");
2124 llmin = LLONG_MIN;
2125 llmax = LLONG_MAX;
2126#else
2127 fprintf(stderr, "Calculating LLONG_MIN and LLONG_MAX\n");
2128 /* This will work on one's complement and two's complement */
2129 for (i = 1; i > llmax; i <<= 1, i++)
2130 llmax = i;
2131 llmin = llmax + 1LL; /* wrap */
2132#endif
2133
2134 /* Sanity check */
2135 if (llmin + 1 < llmin || llmin - 1 < llmin || llmax + 1 > llmax
2136 || llmax - 1 > llmax) {
2137 fprintf(f, "unknown unknown\n");
2138 exit(2);
2139 }
2140
2141 if (fprintf(f ,"%lld %lld", llmin, llmax) < 0)
2142 exit(3);
2143
2144 exit(0);
2145}
2146 ]])],
2147 [
2148 llong_min=`$AWK '{print $1}' conftest.llminmax`
2149 llong_max=`$AWK '{print $2}' conftest.llminmax`
2150
2151 # snprintf on some Tru64s doesn't understand "%lld"
2152 case "$host" in
2153 alpha-dec-osf*)
2154 if test "x$ac_cv_sizeof_long_long_int" = "x8" &&
2155 test "x$llong_max" = "xld"; then
2156 llong_min="-9223372036854775808"
2157 llong_max="9223372036854775807"
2158 fi
2159 ;;
2160 esac
2161
2162 AC_MSG_RESULT($llong_max)
2163 AC_DEFINE_UNQUOTED(LLONG_MAX, [${llong_max}LL],
2164 [max value of long long calculated by configure])
2165 AC_MSG_CHECKING([for min value of long long])
2166 AC_MSG_RESULT($llong_min)
2167 AC_DEFINE_UNQUOTED(LLONG_MIN, [${llong_min}LL],
2168 [min value of long long calculated by configure])
2169 ],
2170 [
2171 AC_MSG_RESULT(not found)
2172 ],
2173 [
2174 AC_MSG_WARN([cross compiling: not checking])
2175 ]
2176 )
2177fi
2178
2179
a0391976 2180# More checks for data types
14a9a859 2181AC_CACHE_CHECK([for u_int type], ac_cv_have_u_int, [
2182 AC_TRY_COMPILE(
aff51935 2183 [ #include <sys/types.h> ],
2184 [ u_int a; a = 1;],
14a9a859 2185 [ ac_cv_have_u_int="yes" ],
2186 [ ac_cv_have_u_int="no" ]
2187 )
2188])
2189if test "x$ac_cv_have_u_int" = "xyes" ; then
3466e002 2190 AC_DEFINE(HAVE_U_INT, 1, [define if you have u_int data type])
14a9a859 2191 have_u_int=1
2192fi
2193
58d100bf 2194AC_CACHE_CHECK([for intXX_t types], ac_cv_have_intxx_t, [
2195 AC_TRY_COMPILE(
aff51935 2196 [ #include <sys/types.h> ],
2197 [ int8_t a; int16_t b; int32_t c; a = b = c = 1;],
58d100bf 2198 [ ac_cv_have_intxx_t="yes" ],
2199 [ ac_cv_have_intxx_t="no" ]
2200 )
2201])
2202if test "x$ac_cv_have_intxx_t" = "xyes" ; then
3466e002 2203 AC_DEFINE(HAVE_INTXX_T, 1, [define if you have intxx_t data type])
58d100bf 2204 have_intxx_t=1
2205fi
41cb4569 2206
2207if (test -z "$have_intxx_t" && \
aff51935 2208 test "x$ac_cv_header_stdint_h" = "xyes")
41cb4569 2209then
2210 AC_MSG_CHECKING([for intXX_t types in stdint.h])
2211 AC_TRY_COMPILE(
aff51935 2212 [ #include <stdint.h> ],
2213 [ int8_t a; int16_t b; int32_t c; a = b = c = 1;],
41cb4569 2214 [
2215 AC_DEFINE(HAVE_INTXX_T)
2216 AC_MSG_RESULT(yes)
2217 ],
2218 [ AC_MSG_RESULT(no) ]
2219 )
2220fi
2221
bd590612 2222AC_CACHE_CHECK([for int64_t type], ac_cv_have_int64_t, [
2223 AC_TRY_COMPILE(
1cbbe6c8 2224 [
2225#include <sys/types.h>
2226#ifdef HAVE_STDINT_H
2227# include <stdint.h>
2228#endif
2229#include <sys/socket.h>
2230#ifdef HAVE_SYS_BITYPES_H
2231# include <sys/bitypes.h>
2232#endif
aff51935 2233 ],
2234 [ int64_t a; a = 1;],
bd590612 2235 [ ac_cv_have_int64_t="yes" ],
2236 [ ac_cv_have_int64_t="no" ]
2237 )
2238])
2239if test "x$ac_cv_have_int64_t" = "xyes" ; then
3466e002 2240 AC_DEFINE(HAVE_INT64_T, 1, [define if you have int64_t data type])
ddceb1c8 2241fi
2242
58d100bf 2243AC_CACHE_CHECK([for u_intXX_t types], ac_cv_have_u_intxx_t, [
2244 AC_TRY_COMPILE(
aff51935 2245 [ #include <sys/types.h> ],
2246 [ u_int8_t a; u_int16_t b; u_int32_t c; a = b = c = 1;],
58d100bf 2247 [ ac_cv_have_u_intxx_t="yes" ],
2248 [ ac_cv_have_u_intxx_t="no" ]
2249 )
2250])
2251if test "x$ac_cv_have_u_intxx_t" = "xyes" ; then
3466e002 2252 AC_DEFINE(HAVE_U_INTXX_T, 1, [define if you have u_intxx_t data type])
58d100bf 2253 have_u_intxx_t=1
2254fi
2b942fe0 2255
41cb4569 2256if test -z "$have_u_intxx_t" ; then
2257 AC_MSG_CHECKING([for u_intXX_t types in sys/socket.h])
2258 AC_TRY_COMPILE(
aff51935 2259 [ #include <sys/socket.h> ],
2260 [ u_int8_t a; u_int16_t b; u_int32_t c; a = b = c = 1;],
41cb4569 2261 [
2262 AC_DEFINE(HAVE_U_INTXX_T)
2263 AC_MSG_RESULT(yes)
2264 ],
2265 [ AC_MSG_RESULT(no) ]
2266 )
2267fi
2268
bd590612 2269AC_CACHE_CHECK([for u_int64_t types], ac_cv_have_u_int64_t, [
2270 AC_TRY_COMPILE(
aff51935 2271 [ #include <sys/types.h> ],
2272 [ u_int64_t a; a = 1;],
bd590612 2273 [ ac_cv_have_u_int64_t="yes" ],
2274 [ ac_cv_have_u_int64_t="no" ]
2275 )
2276])
2277if test "x$ac_cv_have_u_int64_t" = "xyes" ; then
3466e002 2278 AC_DEFINE(HAVE_U_INT64_T, 1, [define if you have u_int64_t data type])
bd590612 2279 have_u_int64_t=1
2280fi
2281
ddceb1c8 2282if test -z "$have_u_int64_t" ; then
2283 AC_MSG_CHECKING([for u_int64_t type in sys/bitypes.h])
2284 AC_TRY_COMPILE(
aff51935 2285 [ #include <sys/bitypes.h> ],
ddceb1c8 2286 [ u_int64_t a; a = 1],
2287 [
2288 AC_DEFINE(HAVE_U_INT64_T)
2289 AC_MSG_RESULT(yes)
2290 ],
2291 [ AC_MSG_RESULT(no) ]
2292 )
2293fi
2294
41cb4569 2295if test -z "$have_u_intxx_t" ; then
2296 AC_CACHE_CHECK([for uintXX_t types], ac_cv_have_uintxx_t, [
2297 AC_TRY_COMPILE(
2298 [
2299#include <sys/types.h>
aff51935 2300 ],
2301 [ uint8_t a; uint16_t b; uint32_t c; a = b = c = 1; ],
41cb4569 2302 [ ac_cv_have_uintxx_t="yes" ],
2303 [ ac_cv_have_uintxx_t="no" ]
2304 )
2305 ])
2306 if test "x$ac_cv_have_uintxx_t" = "xyes" ; then
3466e002 2307 AC_DEFINE(HAVE_UINTXX_T, 1,
2308 [define if you have uintxx_t data type])
41cb4569 2309 fi
2310fi
2311
2312if test -z "$have_uintxx_t" ; then
2313 AC_MSG_CHECKING([for uintXX_t types in stdint.h])
2314 AC_TRY_COMPILE(
aff51935 2315 [ #include <stdint.h> ],
2316 [ uint8_t a; uint16_t b; uint32_t c; a = b = c = 1;],
41cb4569 2317 [
2318 AC_DEFINE(HAVE_UINTXX_T)
2319 AC_MSG_RESULT(yes)
2320 ],
2321 [ AC_MSG_RESULT(no) ]
2322 )
2323fi
2324
e5fe9a1f 2325if (test -z "$have_u_intxx_t" || test -z "$have_intxx_t" && \
aff51935 2326 test "x$ac_cv_header_sys_bitypes_h" = "xyes")
5cdfe03f 2327then
2328 AC_MSG_CHECKING([for intXX_t and u_intXX_t types in sys/bitypes.h])
2329 AC_TRY_COMPILE(
58d100bf 2330 [
2331#include <sys/bitypes.h>
aff51935 2332 ],
5cdfe03f 2333 [
837c30b8 2334 int8_t a; int16_t b; int32_t c;
2335 u_int8_t e; u_int16_t f; u_int32_t g;
2336 a = b = c = e = f = g = 1;
aff51935 2337 ],
5cdfe03f 2338 [
2339 AC_DEFINE(HAVE_U_INTXX_T)
2340 AC_DEFINE(HAVE_INTXX_T)
2341 AC_MSG_RESULT(yes)
2342 ],
2343 [AC_MSG_RESULT(no)]
aff51935 2344 )
5cdfe03f 2345fi
2346
0362750e 2347
2348AC_CACHE_CHECK([for u_char], ac_cv_have_u_char, [
2349 AC_TRY_COMPILE(
2350 [
2351#include <sys/types.h>
2352 ],
2353 [ u_char foo; foo = 125; ],
2354 [ ac_cv_have_u_char="yes" ],
2355 [ ac_cv_have_u_char="no" ]
2356 )
2357])
2358if test "x$ac_cv_have_u_char" = "xyes" ; then
3466e002 2359 AC_DEFINE(HAVE_U_CHAR, 1, [define if you have u_char data type])
0362750e 2360fi
2361
98a7c37b 2362TYPE_SOCKLEN_T
2b942fe0 2363
2d16d9a3 2364AC_CHECK_TYPES(sig_atomic_t,,,[#include <signal.h>])
ddceb1c8 2365
777ece68 2366AC_CHECK_TYPES(in_addr_t,,,
2367[#include <sys/types.h>
2368#include <netinet/in.h>])
7b578f7d 2369
58d100bf 2370AC_CACHE_CHECK([for size_t], ac_cv_have_size_t, [
2371 AC_TRY_COMPILE(
2372 [
18ba2aab 2373#include <sys/types.h>
58d100bf 2374 ],
2375 [ size_t foo; foo = 1235; ],
2376 [ ac_cv_have_size_t="yes" ],
2377 [ ac_cv_have_size_t="no" ]
2378 )
2379])
2380if test "x$ac_cv_have_size_t" = "xyes" ; then
3466e002 2381 AC_DEFINE(HAVE_SIZE_T, 1, [define if you have size_t data type])
58d100bf 2382fi
ea1970a3 2383
c04f75f1 2384AC_CACHE_CHECK([for ssize_t], ac_cv_have_ssize_t, [
2385 AC_TRY_COMPILE(
2386 [
2387#include <sys/types.h>
2388 ],
2389 [ ssize_t foo; foo = 1235; ],
2390 [ ac_cv_have_ssize_t="yes" ],
2391 [ ac_cv_have_ssize_t="no" ]
2392 )
2393])
2394if test "x$ac_cv_have_ssize_t" = "xyes" ; then
3466e002 2395 AC_DEFINE(HAVE_SSIZE_T, 1, [define if you have ssize_t data type])
c04f75f1 2396fi
2397
f1c4659d 2398AC_CACHE_CHECK([for clock_t], ac_cv_have_clock_t, [
2399 AC_TRY_COMPILE(
2400 [
2401#include <time.h>
2402 ],
2403 [ clock_t foo; foo = 1235; ],
2404 [ ac_cv_have_clock_t="yes" ],
2405 [ ac_cv_have_clock_t="no" ]
2406 )
2407])
2408if test "x$ac_cv_have_clock_t" = "xyes" ; then
3466e002 2409 AC_DEFINE(HAVE_CLOCK_T, 1, [define if you have clock_t data type])
f1c4659d 2410fi
2411
1c04b088 2412AC_CACHE_CHECK([for sa_family_t], ac_cv_have_sa_family_t, [
2413 AC_TRY_COMPILE(
2414 [
2415#include <sys/types.h>
2416#include <sys/socket.h>
2417 ],
2418 [ sa_family_t foo; foo = 1235; ],
2419 [ ac_cv_have_sa_family_t="yes" ],
77bb0bca 2420 [ AC_TRY_COMPILE(
2421 [
2422#include <sys/types.h>
2423#include <sys/socket.h>
2424#include <netinet/in.h>
2425 ],
2426 [ sa_family_t foo; foo = 1235; ],
2427 [ ac_cv_have_sa_family_t="yes" ],
2428
1c04b088 2429 [ ac_cv_have_sa_family_t="no" ]
77bb0bca 2430 )]
1c04b088 2431 )
2432])
2433if test "x$ac_cv_have_sa_family_t" = "xyes" ; then
3466e002 2434 AC_DEFINE(HAVE_SA_FAMILY_T, 1,
2435 [define if you have sa_family_t data type])
1c04b088 2436fi
2437
729bfe59 2438AC_CACHE_CHECK([for pid_t], ac_cv_have_pid_t, [
2439 AC_TRY_COMPILE(
2440 [
2441#include <sys/types.h>
2442 ],
2443 [ pid_t foo; foo = 1235; ],
2444 [ ac_cv_have_pid_t="yes" ],
2445 [ ac_cv_have_pid_t="no" ]
2446 )
2447])
2448if test "x$ac_cv_have_pid_t" = "xyes" ; then
3466e002 2449 AC_DEFINE(HAVE_PID_T, 1, [define if you have pid_t data type])
729bfe59 2450fi
2451
2452AC_CACHE_CHECK([for mode_t], ac_cv_have_mode_t, [
2453 AC_TRY_COMPILE(
2454 [
2455#include <sys/types.h>
2456 ],
2457 [ mode_t foo; foo = 1235; ],
2458 [ ac_cv_have_mode_t="yes" ],
2459 [ ac_cv_have_mode_t="no" ]
2460 )
2461])
2462if test "x$ac_cv_have_mode_t" = "xyes" ; then
3466e002 2463 AC_DEFINE(HAVE_MODE_T, 1, [define if you have mode_t data type])
729bfe59 2464fi
2465
e3a93db0 2466
58d100bf 2467AC_CACHE_CHECK([for struct sockaddr_storage], ac_cv_have_struct_sockaddr_storage, [
2468 AC_TRY_COMPILE(
2469 [
18ba2aab 2470#include <sys/types.h>
2471#include <sys/socket.h>
58d100bf 2472 ],
2473 [ struct sockaddr_storage s; ],
2474 [ ac_cv_have_struct_sockaddr_storage="yes" ],
2475 [ ac_cv_have_struct_sockaddr_storage="no" ]
2476 )
2477])
2478if test "x$ac_cv_have_struct_sockaddr_storage" = "xyes" ; then
3466e002 2479 AC_DEFINE(HAVE_STRUCT_SOCKADDR_STORAGE, 1,
2480 [define if you have struct sockaddr_storage data type])
58d100bf 2481fi
48e671d5 2482
58d100bf 2483AC_CACHE_CHECK([for struct sockaddr_in6], ac_cv_have_struct_sockaddr_in6, [
2484 AC_TRY_COMPILE(
2485 [
cbd7492e 2486#include <sys/types.h>
58d100bf 2487#include <netinet/in.h>
2488 ],
2489 [ struct sockaddr_in6 s; s.sin6_family = 0; ],
2490 [ ac_cv_have_struct_sockaddr_in6="yes" ],
2491 [ ac_cv_have_struct_sockaddr_in6="no" ]
2492 )
2493])
2494if test "x$ac_cv_have_struct_sockaddr_in6" = "xyes" ; then
3466e002 2495 AC_DEFINE(HAVE_STRUCT_SOCKADDR_IN6, 1,
2496 [define if you have struct sockaddr_in6 data type])
58d100bf 2497fi
48e671d5 2498
58d100bf 2499AC_CACHE_CHECK([for struct in6_addr], ac_cv_have_struct_in6_addr, [
2500 AC_TRY_COMPILE(
2501 [
cbd7492e 2502#include <sys/types.h>
58d100bf 2503#include <netinet/in.h>
2504 ],
2505 [ struct in6_addr s; s.s6_addr[0] = 0; ],
2506 [ ac_cv_have_struct_in6_addr="yes" ],
2507 [ ac_cv_have_struct_in6_addr="no" ]
2508 )
2509])
2510if test "x$ac_cv_have_struct_in6_addr" = "xyes" ; then
3466e002 2511 AC_DEFINE(HAVE_STRUCT_IN6_ADDR, 1,
2512 [define if you have struct in6_addr data type])
58d100bf 2513fi
48e671d5 2514
58d100bf 2515AC_CACHE_CHECK([for struct addrinfo], ac_cv_have_struct_addrinfo, [
2516 AC_TRY_COMPILE(
2517 [
18ba2aab 2518#include <sys/types.h>
2519#include <sys/socket.h>
2520#include <netdb.h>
58d100bf 2521 ],
2522 [ struct addrinfo s; s.ai_flags = AI_PASSIVE; ],
2523 [ ac_cv_have_struct_addrinfo="yes" ],
2524 [ ac_cv_have_struct_addrinfo="no" ]
2525 )
2526])
2527if test "x$ac_cv_have_struct_addrinfo" = "xyes" ; then
3466e002 2528 AC_DEFINE(HAVE_STRUCT_ADDRINFO, 1,
2529 [define if you have struct addrinfo data type])
58d100bf 2530fi
2531
89c7e31c 2532AC_CACHE_CHECK([for struct timeval], ac_cv_have_struct_timeval, [
2533 AC_TRY_COMPILE(
aff51935 2534 [ #include <sys/time.h> ],
2535 [ struct timeval tv; tv.tv_sec = 1;],
89c7e31c 2536 [ ac_cv_have_struct_timeval="yes" ],
2537 [ ac_cv_have_struct_timeval="no" ]
2538 )
2539])
2540if test "x$ac_cv_have_struct_timeval" = "xyes" ; then
3466e002 2541 AC_DEFINE(HAVE_STRUCT_TIMEVAL, 1, [define if you have struct timeval])
89c7e31c 2542 have_struct_timeval=1
2543fi
2544
5271b55c 2545AC_CHECK_TYPES(struct timespec)
2546
85abc74b 2547# We need int64_t or else certian parts of the compile will fail.
4b492aab 2548if test "x$ac_cv_have_int64_t" = "xno" && \
2549 test "x$ac_cv_sizeof_long_int" != "x8" && \
2550 test "x$ac_cv_sizeof_long_long_int" = "x0" ; then
85abc74b 2551 echo "OpenSSH requires int64_t support. Contact your vendor or install"
2552 echo "an alternative compiler (I.E., GCC) before continuing."
2553 echo ""
2554 exit 1;
733cf7f4 2555else
2556dnl test snprintf (broken on SCO w/gcc)
1a01a50c 2557 AC_RUN_IFELSE(
479cece8 2558 [AC_LANG_SOURCE([[
733cf7f4 2559#include <stdio.h>
2560#include <string.h>
2561#ifdef HAVE_SNPRINTF
2562main()
2563{
2564 char buf[50];
2565 char expected_out[50];
2566 int mazsize = 50 ;
2567#if (SIZEOF_LONG_INT == 8)
2568 long int num = 0x7fffffffffffffff;
2569#else
763a1a18 2570 long long num = 0x7fffffffffffffffll;
733cf7f4 2571#endif
2572 strcpy(expected_out, "9223372036854775807");
2573 snprintf(buf, mazsize, "%lld", num);
2574 if(strcmp(buf, expected_out) != 0)
aff51935 2575 exit(1);
733cf7f4 2576 exit(0);
2577}
2578#else
2579main() { exit(0); }
2580#endif
479cece8 2581 ]])], [ true ], [ AC_DEFINE(BROKEN_SNPRINTF) ],
1a01a50c 2582 AC_MSG_WARN([cross compiling: Assuming working snprintf()])
733cf7f4 2583 )
2c523de9 2584fi
2585
77bb0bca 2586dnl Checks for structure members
58d100bf 2587OSSH_CHECK_HEADER_FOR_FIELD(ut_host, utmp.h, HAVE_HOST_IN_UTMP)
2588OSSH_CHECK_HEADER_FOR_FIELD(ut_host, utmpx.h, HAVE_HOST_IN_UTMPX)
2589OSSH_CHECK_HEADER_FOR_FIELD(syslen, utmpx.h, HAVE_SYSLEN_IN_UTMPX)
2590OSSH_CHECK_HEADER_FOR_FIELD(ut_pid, utmp.h, HAVE_PID_IN_UTMP)
2591OSSH_CHECK_HEADER_FOR_FIELD(ut_type, utmp.h, HAVE_TYPE_IN_UTMP)
25422c70 2592OSSH_CHECK_HEADER_FOR_FIELD(ut_type, utmpx.h, HAVE_TYPE_IN_UTMPX)
58d100bf 2593OSSH_CHECK_HEADER_FOR_FIELD(ut_tv, utmp.h, HAVE_TV_IN_UTMP)
2594OSSH_CHECK_HEADER_FOR_FIELD(ut_id, utmp.h, HAVE_ID_IN_UTMP)
daaff4d5 2595OSSH_CHECK_HEADER_FOR_FIELD(ut_id, utmpx.h, HAVE_ID_IN_UTMPX)
58d100bf 2596OSSH_CHECK_HEADER_FOR_FIELD(ut_addr, utmp.h, HAVE_ADDR_IN_UTMP)
2597OSSH_CHECK_HEADER_FOR_FIELD(ut_addr, utmpx.h, HAVE_ADDR_IN_UTMPX)
2598OSSH_CHECK_HEADER_FOR_FIELD(ut_addr_v6, utmp.h, HAVE_ADDR_V6_IN_UTMP)
2599OSSH_CHECK_HEADER_FOR_FIELD(ut_addr_v6, utmpx.h, HAVE_ADDR_V6_IN_UTMPX)
1d7b9b20 2600OSSH_CHECK_HEADER_FOR_FIELD(ut_exit, utmp.h, HAVE_EXIT_IN_UTMP)
2601OSSH_CHECK_HEADER_FOR_FIELD(ut_time, utmp.h, HAVE_TIME_IN_UTMP)
2602OSSH_CHECK_HEADER_FOR_FIELD(ut_time, utmpx.h, HAVE_TIME_IN_UTMPX)
2603OSSH_CHECK_HEADER_FOR_FIELD(ut_tv, utmpx.h, HAVE_TV_IN_UTMPX)
98a7c37b 2604
2605AC_CHECK_MEMBERS([struct stat.st_blksize])
ccc45ee0 2606AC_CHECK_MEMBER([struct __res_state.retrans], [], [AC_DEFINE(__res_state, state,
2607 [Define if we don't have struct __res_state in resolv.h])],
2608[
2609#include <stdio.h>
2610#if HAVE_SYS_TYPES_H
2611# include <sys/types.h>
2612#endif
2613#include <netinet/in.h>
2614#include <arpa/nameser.h>
2615#include <resolv.h>
2616])
1d7b9b20 2617
58d100bf 2618AC_CACHE_CHECK([for ss_family field in struct sockaddr_storage],
2619 ac_cv_have_ss_family_in_struct_ss, [
2620 AC_TRY_COMPILE(
2621 [
18ba2aab 2622#include <sys/types.h>
2623#include <sys/socket.h>
58d100bf 2624 ],
2625 [ struct sockaddr_storage s; s.ss_family = 1; ],
2626 [ ac_cv_have_ss_family_in_struct_ss="yes" ],
2627 [ ac_cv_have_ss_family_in_struct_ss="no" ],
2628 )
2629])
2630if test "x$ac_cv_have_ss_family_in_struct_ss" = "xyes" ; then
3466e002 2631 AC_DEFINE(HAVE_SS_FAMILY_IN_SS, 1, [Fields in struct sockaddr_storage])
58d100bf 2632fi
2633
58d100bf 2634AC_CACHE_CHECK([for __ss_family field in struct sockaddr_storage],
2635 ac_cv_have___ss_family_in_struct_ss, [
2636 AC_TRY_COMPILE(
2637 [
18ba2aab 2638#include <sys/types.h>
2639#include <sys/socket.h>
58d100bf 2640 ],
2641 [ struct sockaddr_storage s; s.__ss_family = 1; ],
2642 [ ac_cv_have___ss_family_in_struct_ss="yes" ],
2643 [ ac_cv_have___ss_family_in_struct_ss="no" ]
2644 )
2645])
2646if test "x$ac_cv_have___ss_family_in_struct_ss" = "xyes" ; then
3466e002 2647 AC_DEFINE(HAVE___SS_FAMILY_IN_SS, 1,
2648 [Fields in struct sockaddr_storage])
58d100bf 2649fi
2650
2e73a022 2651AC_CACHE_CHECK([for pw_class field in struct passwd],
2652 ac_cv_have_pw_class_in_struct_passwd, [
2653 AC_TRY_COMPILE(
2654 [
2e73a022 2655#include <pwd.h>
2656 ],
97994d32 2657 [ struct passwd p; p.pw_class = 0; ],
2e73a022 2658 [ ac_cv_have_pw_class_in_struct_passwd="yes" ],
2659 [ ac_cv_have_pw_class_in_struct_passwd="no" ]
2660 )
2661])
2662if test "x$ac_cv_have_pw_class_in_struct_passwd" = "xyes" ; then
3466e002 2663 AC_DEFINE(HAVE_PW_CLASS_IN_PASSWD, 1,
2664 [Define if your password has a pw_class field])
2e73a022 2665fi
2666
7751d4eb 2667AC_CACHE_CHECK([for pw_expire field in struct passwd],
2668 ac_cv_have_pw_expire_in_struct_passwd, [
2669 AC_TRY_COMPILE(
2670 [
2671#include <pwd.h>
2672 ],
2673 [ struct passwd p; p.pw_expire = 0; ],
2674 [ ac_cv_have_pw_expire_in_struct_passwd="yes" ],
2675 [ ac_cv_have_pw_expire_in_struct_passwd="no" ]
2676 )
2677])
2678if test "x$ac_cv_have_pw_expire_in_struct_passwd" = "xyes" ; then
3466e002 2679 AC_DEFINE(HAVE_PW_EXPIRE_IN_PASSWD, 1,
2680 [Define if your password has a pw_expire field])
7751d4eb 2681fi
2682
2683AC_CACHE_CHECK([for pw_change field in struct passwd],
2684 ac_cv_have_pw_change_in_struct_passwd, [
2685 AC_TRY_COMPILE(
2686 [
2687#include <pwd.h>
2688 ],
2689 [ struct passwd p; p.pw_change = 0; ],
2690 [ ac_cv_have_pw_change_in_struct_passwd="yes" ],
2691 [ ac_cv_have_pw_change_in_struct_passwd="no" ]
2692 )
2693])
2694if test "x$ac_cv_have_pw_change_in_struct_passwd" = "xyes" ; then
3466e002 2695 AC_DEFINE(HAVE_PW_CHANGE_IN_PASSWD, 1,
2696 [Define if your password has a pw_change field])
7751d4eb 2697fi
58d100bf 2698
637f9177 2699dnl make sure we're using the real structure members and not defines
6f34652e 2700AC_CACHE_CHECK([for msg_accrights field in struct msghdr],
2701 ac_cv_have_accrights_in_msghdr, [
1a01a50c 2702 AC_COMPILE_IFELSE(
6f34652e 2703 [
f95c8ce8 2704#include <sys/types.h>
6f34652e 2705#include <sys/socket.h>
2706#include <sys/uio.h>
637f9177 2707int main() {
2708#ifdef msg_accrights
1a01a50c 2709#error "msg_accrights is a macro"
637f9177 2710exit(1);
2711#endif
2712struct msghdr m;
2713m.msg_accrights = 0;
2714exit(0);
2715}
6f34652e 2716 ],
6f34652e 2717 [ ac_cv_have_accrights_in_msghdr="yes" ],
2718 [ ac_cv_have_accrights_in_msghdr="no" ]
2719 )
2720])
2721if test "x$ac_cv_have_accrights_in_msghdr" = "xyes" ; then
3466e002 2722 AC_DEFINE(HAVE_ACCRIGHTS_IN_MSGHDR, 1,
2723 [Define if your system uses access rights style
2724 file descriptor passing])
6f34652e 2725fi
2726
7176df4f 2727AC_CACHE_CHECK([for msg_control field in struct msghdr],
2728 ac_cv_have_control_in_msghdr, [
1a01a50c 2729 AC_COMPILE_IFELSE(
7176df4f 2730 [
f95c8ce8 2731#include <sys/types.h>
7176df4f 2732#include <sys/socket.h>
2733#include <sys/uio.h>
637f9177 2734int main() {
2735#ifdef msg_control
1a01a50c 2736#error "msg_control is a macro"
637f9177 2737exit(1);
2738#endif
2739struct msghdr m;
2740m.msg_control = 0;
2741exit(0);
2742}
7176df4f 2743 ],
7176df4f 2744 [ ac_cv_have_control_in_msghdr="yes" ],
2745 [ ac_cv_have_control_in_msghdr="no" ]
2746 )
2747])
2748if test "x$ac_cv_have_control_in_msghdr" = "xyes" ; then
3466e002 2749 AC_DEFINE(HAVE_CONTROL_IN_MSGHDR, 1,
2750 [Define if your system uses ancillary data style
2751 file descriptor passing])
7176df4f 2752fi
2753
58d100bf 2754AC_CACHE_CHECK([if libc defines __progname], ac_cv_libc_defines___progname, [
aff51935 2755 AC_TRY_LINK([],
2756 [ extern char *__progname; printf("%s", __progname); ],
58d100bf 2757 [ ac_cv_libc_defines___progname="yes" ],
2758 [ ac_cv_libc_defines___progname="no" ]
2759 )
2760])
2761if test "x$ac_cv_libc_defines___progname" = "xyes" ; then
3466e002 2762 AC_DEFINE(HAVE___PROGNAME, 1, [Define if libc defines __progname])
58d100bf 2763fi
8946db53 2764
c921ee00 2765AC_CACHE_CHECK([whether $CC implements __FUNCTION__], ac_cv_cc_implements___FUNCTION__, [
2766 AC_TRY_LINK([
2767#include <stdio.h>
aff51935 2768],
2769 [ printf("%s", __FUNCTION__); ],
c921ee00 2770 [ ac_cv_cc_implements___FUNCTION__="yes" ],
2771 [ ac_cv_cc_implements___FUNCTION__="no" ]
2772 )
2773])
2774if test "x$ac_cv_cc_implements___FUNCTION__" = "xyes" ; then
3466e002 2775 AC_DEFINE(HAVE___FUNCTION__, 1,
2776 [Define if compiler implements __FUNCTION__])
c921ee00 2777fi
2778
2779AC_CACHE_CHECK([whether $CC implements __func__], ac_cv_cc_implements___func__, [
2780 AC_TRY_LINK([
2781#include <stdio.h>
aff51935 2782],
2783 [ printf("%s", __func__); ],
c921ee00 2784 [ ac_cv_cc_implements___func__="yes" ],
2785 [ ac_cv_cc_implements___func__="no" ]
2786 )
2787])
2788if test "x$ac_cv_cc_implements___func__" = "xyes" ; then
3466e002 2789 AC_DEFINE(HAVE___func__, 1, [Define if compiler implements __func__])
c921ee00 2790fi
2791
9a406e1e 2792AC_CACHE_CHECK([whether va_copy exists], ac_cv_have_va_copy, [
2793 AC_TRY_LINK(
2794 [#include <stdarg.h>
2795 va_list x,y;],
2796 [va_copy(x,y);],
2797 [ ac_cv_have_va_copy="yes" ],
2798 [ ac_cv_have_va_copy="no" ]
2799 )
2800])
2801if test "x$ac_cv_have_va_copy" = "xyes" ; then
2802 AC_DEFINE(HAVE_VA_COPY, 1, [Define if va_copy exists])
2803fi
2804
2805AC_CACHE_CHECK([whether __va_copy exists], ac_cv_have___va_copy, [
2806 AC_TRY_LINK(
2807 [#include <stdarg.h>
2808 va_list x,y;],
2809 [__va_copy(x,y);],
2810 [ ac_cv_have___va_copy="yes" ],
2811 [ ac_cv_have___va_copy="no" ]
2812 )
2813])
2814if test "x$ac_cv_have___va_copy" = "xyes" ; then
2815 AC_DEFINE(HAVE___VA_COPY, 1, [Define if __va_copy exists])
2816fi
2817
1812a662 2818AC_CACHE_CHECK([whether getopt has optreset support],
2819 ac_cv_have_getopt_optreset, [
2820 AC_TRY_LINK(
2821 [
2822#include <getopt.h>
2823 ],
2824 [ extern int optreset; optreset = 0; ],
2825 [ ac_cv_have_getopt_optreset="yes" ],
2826 [ ac_cv_have_getopt_optreset="no" ]
2827 )
2828])
2829if test "x$ac_cv_have_getopt_optreset" = "xyes" ; then
3466e002 2830 AC_DEFINE(HAVE_GETOPT_OPTRESET, 1,
2831 [Define if your getopt(3) defines and uses optreset])
1812a662 2832fi
a0391976 2833
819b676f 2834AC_CACHE_CHECK([if libc defines sys_errlist], ac_cv_libc_defines_sys_errlist, [
aff51935 2835 AC_TRY_LINK([],
2836 [ extern const char *const sys_errlist[]; printf("%s", sys_errlist[0]);],
819b676f 2837 [ ac_cv_libc_defines_sys_errlist="yes" ],
2838 [ ac_cv_libc_defines_sys_errlist="no" ]
2839 )
2840])
2841if test "x$ac_cv_libc_defines_sys_errlist" = "xyes" ; then
3466e002 2842 AC_DEFINE(HAVE_SYS_ERRLIST, 1,
2843 [Define if your system defines sys_errlist[]])
819b676f 2844fi
2845
2846
416ed5a7 2847AC_CACHE_CHECK([if libc defines sys_nerr], ac_cv_libc_defines_sys_nerr, [
aff51935 2848 AC_TRY_LINK([],
2849 [ extern int sys_nerr; printf("%i", sys_nerr);],
416ed5a7 2850 [ ac_cv_libc_defines_sys_nerr="yes" ],
2851 [ ac_cv_libc_defines_sys_nerr="no" ]
2852 )
2853])
2854if test "x$ac_cv_libc_defines_sys_nerr" = "xyes" ; then
3466e002 2855 AC_DEFINE(HAVE_SYS_NERR, 1, [Define if your system defines sys_nerr])
416ed5a7 2856fi
2857
aff51935 2858SCARD_MSG="no"
295c8801 2859# Check whether user wants sectok support
2860AC_ARG_WITH(sectok,
2861 [ --with-sectok Enable smartcard support using libsectok],
d0b19c95 2862 [
2863 if test "x$withval" != "xno" ; then
2864 if test "x$withval" != "xyes" ; then
2865 CPPFLAGS="$CPPFLAGS -I${withval}"
2866 LDFLAGS="$LDFLAGS -L${withval}"
2867 if test ! -z "$need_dash_r" ; then
2868 LDFLAGS="$LDFLAGS -R${withval}"
2869 fi
2870 if test ! -z "$blibpath" ; then
2871 blibpath="$blibpath:${withval}"
2872 fi
2873 fi
2874 AC_CHECK_HEADERS(sectok.h)
2875 if test "$ac_cv_header_sectok_h" != yes; then
2876 AC_MSG_ERROR(Can't find sectok.h)
2877 fi
2878 AC_CHECK_LIB(sectok, sectok_open)
2879 if test "$ac_cv_lib_sectok_sectok_open" != yes; then
2880 AC_MSG_ERROR(Can't find libsectok)
2881 fi
3466e002 2882 AC_DEFINE(SMARTCARD, 1,
2883 [Define if you want smartcard support])
2884 AC_DEFINE(USE_SECTOK, 1,
2885 [Define if you want smartcard support
2886 using sectok])
aff51935 2887 SCARD_MSG="yes, using sectok"
295c8801 2888 fi
2889 ]
2890)
2891
2892# Check whether user wants OpenSC support
987b458f 2893OPENSC_CONFIG="no"
295c8801 2894AC_ARG_WITH(opensc,
e47fb473 2895 [ --with-opensc[[=PFX]] Enable smartcard support using OpenSC (optionally in PATH)],
987b458f 2896 [
2897 if test "x$withval" != "xno" ; then
2898 if test "x$withval" != "xyes" ; then
2899 OPENSC_CONFIG=$withval/bin/opensc-config
2900 else
2901 AC_PATH_PROG(OPENSC_CONFIG, opensc-config, no)
2902 fi
2903 if test "$OPENSC_CONFIG" != "no"; then
2904 LIBOPENSC_CFLAGS=`$OPENSC_CONFIG --cflags`
2905 LIBOPENSC_LIBS=`$OPENSC_CONFIG --libs`
2906 CPPFLAGS="$CPPFLAGS $LIBOPENSC_CFLAGS"
2907 LDFLAGS="$LDFLAGS $LIBOPENSC_LIBS"
2908 AC_DEFINE(SMARTCARD)
3466e002 2909 AC_DEFINE(USE_OPENSC, 1,
2910 [Define if you want smartcard support
2911 using OpenSC])
987b458f 2912 SCARD_MSG="yes, using OpenSC"
2913 fi
2914 fi
2915 ]
2916)
d0b19c95 2917
c31dc31c 2918# Check libraries needed by DNS fingerprint support
aff51935 2919AC_SEARCH_LIBS(getrrsetbyname, resolv,
3466e002 2920 [AC_DEFINE(HAVE_GETRRSETBYNAME, 1,
2921 [Define if getrrsetbyname() exists])],
3e05e934 2922 [
c31dc31c 2923 # Needed by our getrrsetbyname()
2924 AC_SEARCH_LIBS(res_query, resolv)
2925 AC_SEARCH_LIBS(dn_expand, resolv)
dabb524a 2926 AC_MSG_CHECKING(if res_query will link)
2927 AC_TRY_LINK_FUNC(res_query, AC_MSG_RESULT(yes),
2928 [AC_MSG_RESULT(no)
2929 saved_LIBS="$LIBS"
2930 LIBS="$LIBS -lresolv"
2931 AC_MSG_CHECKING(for res_query in -lresolv)
2932 AC_LINK_IFELSE([
2933#include <resolv.h>
2934int main()
2935{
2936 res_query (0, 0, 0, 0, 0);
2937 return 0;
2938}
2939 ],
2940 [LIBS="$LIBS -lresolv"
2941 AC_MSG_RESULT(yes)],
2942 [LIBS="$saved_LIBS"
2943 AC_MSG_RESULT(no)])
2944 ])
c31dc31c 2945 AC_CHECK_FUNCS(_getshort _getlong)
1c829da5 2946 AC_CHECK_DECLS([_getshort, _getlong], , ,
b5765e1d 2947 [#include <sys/types.h>
2948 #include <arpa/nameser.h>])
c31dc31c 2949 AC_CHECK_MEMBER(HEADER.ad,
3466e002 2950 [AC_DEFINE(HAVE_HEADER_AD, 1,
2951 [Define if HEADER.ad exists in arpa/nameser.h])],,
c31dc31c 2952 [#include <arpa/nameser.h>])
2953 ])
3e05e934 2954
12928e80 2955# Check whether user wants Kerberos 5 support
aff51935 2956KRB5_MSG="no"
12928e80 2957AC_ARG_WITH(kerberos5,
aff51935 2958 [ --with-kerberos5=PATH Enable Kerberos 5 support],
5585c441 2959 [ if test "x$withval" != "xno" ; then
2960 if test "x$withval" = "xyes" ; then
2961 KRB5ROOT="/usr/local"
2962 else
2963 KRB5ROOT=${withval}
2964 fi
2965
3466e002 2966 AC_DEFINE(KRB5, 1, [Define if you want Kerberos 5 support])
5585c441 2967 KRB5_MSG="yes"
2968
2969 AC_MSG_CHECKING(for krb5-config)
2970 if test -x $KRB5ROOT/bin/krb5-config ; then
2971 KRB5CONF=$KRB5ROOT/bin/krb5-config
2972 AC_MSG_RESULT($KRB5CONF)
2973
2974 AC_MSG_CHECKING(for gssapi support)
2975 if $KRB5CONF | grep gssapi >/dev/null ; then
2976 AC_MSG_RESULT(yes)
3466e002 2977 AC_DEFINE(GSSAPI, 1,
2978 [Define this if you want GSSAPI
2979 support in the version 2 protocol])
071970fb 2980 k5confopts=gssapi
aff51935 2981 else
5585c441 2982 AC_MSG_RESULT(no)
071970fb 2983 k5confopts=""
aff51935 2984 fi
071970fb 2985 K5CFLAGS="`$KRB5CONF --cflags $k5confopts`"
2986 K5LIBS="`$KRB5CONF --libs $k5confopts`"
5585c441 2987 CPPFLAGS="$CPPFLAGS $K5CFLAGS"
5585c441 2988 AC_MSG_CHECKING(whether we are using Heimdal)
2989 AC_TRY_COMPILE([ #include <krb5.h> ],
2990 [ char *tmp = heimdal_version; ],
2991 [ AC_MSG_RESULT(yes)
3466e002 2992 AC_DEFINE(HEIMDAL, 1,
2993 [Define this if you are using the
2994 Heimdal version of Kerberos V5]) ],
5585c441 2995 AC_MSG_RESULT(no)
2996 )
2997 else
2998 AC_MSG_RESULT(no)
12928e80 2999 CPPFLAGS="$CPPFLAGS -I${KRB5ROOT}/include"
aff51935 3000 LDFLAGS="$LDFLAGS -L${KRB5ROOT}/lib"
aff51935 3001 AC_MSG_CHECKING(whether we are using Heimdal)
3002 AC_TRY_COMPILE([ #include <krb5.h> ],
3003 [ char *tmp = heimdal_version; ],
3004 [ AC_MSG_RESULT(yes)
3005 AC_DEFINE(HEIMDAL)
41707f74 3006 K5LIBS="-lkrb5 -ldes"
3007 K5LIBS="$K5LIBS -lcom_err -lasn1"
82f4e93d 3008 AC_CHECK_LIB(roken, net_write,
41707f74 3009 [K5LIBS="$K5LIBS -lroken"])
aff51935 3010 ],
3011 [ AC_MSG_RESULT(no)
3012 K5LIBS="-lkrb5 -lk5crypto -lcom_err"
3013 ]
3014 )
4e00038c 3015 AC_SEARCH_LIBS(dn_expand, resolv)
12928e80 3016
749560dd 3017 AC_CHECK_LIB(gssapi,gss_init_sec_context,
3018 [ AC_DEFINE(GSSAPI)
3019 K5LIBS="-lgssapi $K5LIBS" ],
3020 [ AC_CHECK_LIB(gssapi_krb5,gss_init_sec_context,
3021 [ AC_DEFINE(GSSAPI)
aff51935 3022 K5LIBS="-lgssapi_krb5 $K5LIBS" ],
749560dd 3023 AC_MSG_WARN([Cannot find any suitable gss-api library - build may fail]),
3024 $K5LIBS)
3025 ],
3026 $K5LIBS)
82f4e93d 3027
749560dd 3028 AC_CHECK_HEADER(gssapi.h, ,
3029 [ unset ac_cv_header_gssapi_h
aff51935 3030 CPPFLAGS="$CPPFLAGS -I${KRB5ROOT}/include/gssapi"
749560dd 3031 AC_CHECK_HEADERS(gssapi.h, ,
3032 AC_MSG_WARN([Cannot find any suitable gss-api header - build may fail])
aff51935 3033 )
749560dd 3034 ]
3035 )
3036
3037 oldCPP="$CPPFLAGS"
3038 CPPFLAGS="$CPPFLAGS -I${KRB5ROOT}/include/gssapi"
3039 AC_CHECK_HEADER(gssapi_krb5.h, ,
3040 [ CPPFLAGS="$oldCPP" ])
3041
aff51935 3042 fi
5585c441 3043 if test ! -z "$need_dash_r" ; then
3044 LDFLAGS="$LDFLAGS -R${KRB5ROOT}/lib"
3045 fi
3046 if test ! -z "$blibpath" ; then
3047 blibpath="$blibpath:${KRB5ROOT}/lib"
3048 fi
071970fb 3049
f5555364 3050 AC_CHECK_HEADERS(gssapi.h gssapi/gssapi.h)
3051 AC_CHECK_HEADERS(gssapi_krb5.h gssapi/gssapi_krb5.h)
3052 AC_CHECK_HEADERS(gssapi_generic.h gssapi/gssapi_generic.h)
071970fb 3053
f5555364 3054 LIBS="$LIBS $K5LIBS"
3466e002 3055 AC_SEARCH_LIBS(k_hasafs, kafs, AC_DEFINE(USE_AFS, 1,
3056 [Define this if you want to use libkafs' AFS support]))
f5555364 3057 fi
071970fb 3058 ]
12928e80 3059)
b5b68128 3060
a0391976 3061# Looking for programs, paths and files
a0391976 3062
ecac8ee5 3063PRIVSEP_PATH=/var/empty
3064AC_ARG_WITH(privsep-path,
cda1ebcb 3065 [ --with-privsep-path=xxx Path for privilege separation chroot (default=/var/empty)],
ecac8ee5 3066 [
6cf0200f 3067 if test -n "$withval" && test "x$withval" != "xno" && \
3068 test "x${withval}" != "xyes"; then
ecac8ee5 3069 PRIVSEP_PATH=$withval
3070 fi
3071 ]
3072)
3073AC_SUBST(PRIVSEP_PATH)
3074
a0391976 3075AC_ARG_WITH(xauth,
3076 [ --with-xauth=PATH Specify path to xauth program ],
3077 [
6cf0200f 3078 if test -n "$withval" && test "x$withval" != "xno" && \
3079 test "x${withval}" != "xyes"; then
cbd7492e 3080 xauth_path=$withval
a0391976 3081 fi
3082 ],
3083 [
2bf42e4a 3084 TestPath="$PATH"
3085 TestPath="${TestPath}${PATH_SEPARATOR}/usr/X/bin"
3086 TestPath="${TestPath}${PATH_SEPARATOR}/usr/bin/X11"
3087 TestPath="${TestPath}${PATH_SEPARATOR}/usr/X11R6/bin"
3088 TestPath="${TestPath}${PATH_SEPARATOR}/usr/openwin/bin"
3089 AC_PATH_PROG(xauth_path, xauth, , $TestPath)
e5fe9a1f 3090 if (test ! -z "$xauth_path" && test -x "/usr/openwin/bin/xauth") ; then
a0391976 3091 xauth_path="/usr/openwin/bin/xauth"
3092 fi
3093 ]
3094)
3095
65a4b4af 3096STRIP_OPT=-s
3097AC_ARG_ENABLE(strip,
3098 [ --disable-strip Disable calling strip(1) on install],
3099 [
3100 if test "x$enableval" = "xno" ; then
3101 STRIP_OPT=
3102 fi
3103 ]
3104)
3105AC_SUBST(STRIP_OPT)
3106
b3ec54b4 3107if test -z "$xauth_path" ; then
3108 XAUTH_PATH="undefined"
3109 AC_SUBST(XAUTH_PATH)
3110else
3466e002 3111 AC_DEFINE_UNQUOTED(XAUTH_PATH, "$xauth_path",
3112 [Define if xauth is found in your path])
b3ec54b4 3113 XAUTH_PATH=$xauth_path
3114 AC_SUBST(XAUTH_PATH)
a0391976 3115fi
a0391976 3116
3117# Check for mail directory (last resort if we cannot get it from headers)
3118if test ! -z "$MAIL" ; then
3119 maildir=`dirname $MAIL`
3466e002 3120 AC_DEFINE_UNQUOTED(MAIL_DIRECTORY, "$maildir",
3121 [Set this to your mail directory if you don't have maillock.h])
a0391976 3122fi
3123
479cece8 3124if test ! -z "$cross_compiling" && test "x$cross_compiling" = "xyes"; then
1a01a50c 3125 AC_MSG_WARN([cross compiling: Disabling /dev/ptmx test])
3126 disable_ptmx_check=yes
3127fi
a0391976 3128if test -z "$no_dev_ptmx" ; then
6e879cb4 3129 if test "x$disable_ptmx_check" != "xyes" ; then
aff51935 3130 AC_CHECK_FILE("/dev/ptmx",
6e879cb4 3131 [
3466e002 3132 AC_DEFINE_UNQUOTED(HAVE_DEV_PTMX, 1,
3133 [Define if you have /dev/ptmx])
6e879cb4 3134 have_dev_ptmx=1
3135 ]
3136 )
3137 fi
3276571c 3138fi
1a01a50c 3139
479cece8 3140if test ! -z "$cross_compiling" && test "x$cross_compiling" != "xyes"; then
1a01a50c 3141 AC_CHECK_FILE("/dev/ptc",
3142 [
3466e002 3143 AC_DEFINE_UNQUOTED(HAVE_DEV_PTS_AND_PTC, 1,
3144 [Define if you have /dev/ptc])
1a01a50c 3145 have_dev_ptc=1
3146 ]
3147 )
3148else
3149 AC_MSG_WARN([cross compiling: Disabling /dev/ptc test])
3150fi
3276571c 3151
a0391976 3152# Options from here on. Some of these are preset by platform above
fdf6b7aa 3153AC_ARG_WITH(mantype,
5d97cfbf 3154 [ --with-mantype=man|cat|doc Set man page type],
c54a6257 3155 [
5d97cfbf 3156 case "$withval" in
3157 man|cat|doc)
3158 MANTYPE=$withval
3159 ;;
3160 *)
3161 AC_MSG_ERROR(invalid man type: $withval)
3162 ;;
3163 esac
c54a6257 3164 ]
3165)
e0c4d3ac 3166if test -z "$MANTYPE"; then
2bf42e4a 3167 TestPath="/usr/bin${PATH_SEPARATOR}/usr/ucb"
3168 AC_PATH_PROGS(NROFF, nroff awf, /bin/false, $TestPath)
e0c4d3ac 3169 if ${NROFF} -mdoc ${srcdir}/ssh.1 >/dev/null 2>&1; then
3170 MANTYPE=doc
3171 elif ${NROFF} -man ${srcdir}/ssh.1 >/dev/null 2>&1; then
3172 MANTYPE=man
3173 else
3174 MANTYPE=cat
3175 fi
3176fi
c54a6257 3177AC_SUBST(MANTYPE)
e0c4d3ac 3178if test "$MANTYPE" = "doc"; then
3179 mansubdir=man;
3180else
3181 mansubdir=$MANTYPE;
3182fi
3183AC_SUBST(mansubdir)
0bc5b6fb 3184
a0391976 3185# Check whether to enable MD5 passwords
aff51935 3186MD5_MSG="no"
2ddcfdf3 3187AC_ARG_WITH(md5-passwords,
caf3bc51 3188 [ --with-md5-passwords Enable use of MD5 passwords],
0bc5b6fb 3189 [
bcf36c78 3190 if test "x$withval" != "xno" ; then
3466e002 3191 AC_DEFINE(HAVE_MD5_PASSWORDS, 1,
3192 [Define if you want to allow MD5 passwords])
aff51935 3193 MD5_MSG="yes"
0bc5b6fb 3194 fi
3195 ]
caf3bc51 3196)
3197
a0391976 3198# Whether to disable shadow password support
a7effaac 3199AC_ARG_WITH(shadow,
3200 [ --without-shadow Disable shadow password support],
3201 [
82f4e93d 3202 if test "x$withval" = "xno" ; then
a7effaac 3203 AC_DEFINE(DISABLE_SHADOW)
4cb5ffa0 3204 disable_shadow=yes
a7effaac 3205 fi
3206 ]
3207)
3208
4cb5ffa0 3209if test -z "$disable_shadow" ; then
3210 AC_MSG_CHECKING([if the systems has expire shadow information])
3211 AC_TRY_COMPILE(
3212 [
3213#include <sys/types.h>
3214#include <shadow.h>
3215 struct spwd sp;
3216 ],[ sp.sp_expire = sp.sp_lstchg = sp.sp_inact = 0; ],
3217 [ sp_expire_available=yes ], []
3218 )
3219
3220 if test "x$sp_expire_available" = "xyes" ; then
3221 AC_MSG_RESULT(yes)
3466e002 3222 AC_DEFINE(HAS_SHADOW_EXPIRE, 1,
3223 [Define if you want to use shadow password expire field])
4cb5ffa0 3224 else
3225 AC_MSG_RESULT(no)
3226 fi
3227fi
3228
a0391976 3229# Use ip address instead of hostname in $DISPLAY
44839801 3230if test ! -z "$IPADDR_IN_DISPLAY" ; then
3231 DISPLAY_HACK_MSG="yes"
3466e002 3232 AC_DEFINE(IPADDR_IN_DISPLAY, 1,
3233 [Define if you need to use IP address
3234 instead of hostname in $DISPLAY])
44839801 3235else
aff51935 3236 DISPLAY_HACK_MSG="no"
44839801 3237 AC_ARG_WITH(ipaddr-display,
3238 [ --with-ipaddr-display Use ip address instead of hostname in \$DISPLAY],
3239 [
82f4e93d 3240 if test "x$withval" != "xno" ; then
44839801 3241 AC_DEFINE(IPADDR_IN_DISPLAY)
aff51935 3242 DISPLAY_HACK_MSG="yes"
44839801 3243 fi
3244 ]
3245 )
3246fi
a7effaac 3247
95b99395 3248# check for /etc/default/login and use it if present.
daa41e62 3249AC_ARG_ENABLE(etc-default-login,
6ff3d0dc 3250 [ --disable-etc-default-login Disable using PATH from /etc/default/login [no]],
694d0cef 3251 [ if test "x$enableval" = "xno"; then
3252 AC_MSG_NOTICE([/etc/default/login handling disabled])
3253 etc_default_login=no
3254 else
3255 etc_default_login=yes
3256 fi ],
b0e7249f 3257 [ if test ! -z "$cross_compiling" && test "x$cross_compiling" = "xyes";
3258 then
3259 AC_MSG_WARN([cross compiling: not checking /etc/default/login])
3260 etc_default_login=no
3261 else
3262 etc_default_login=yes
3263 fi ]
694d0cef 3264)
95b99395 3265
694d0cef 3266if test "x$etc_default_login" != "xno"; then
3267 AC_CHECK_FILE("/etc/default/login",
3268 [ external_path_file=/etc/default/login ])
b0e7249f 3269 if test "x$external_path_file" = "x/etc/default/login"; then
3466e002 3270 AC_DEFINE(HAVE_ETC_DEFAULT_LOGIN, 1,
3271 [Define if your system has /etc/default/login])
1a01a50c 3272 fi
694d0cef 3273fi
95b99395 3274
8d184c09 3275dnl BSD systems use /etc/login.conf so --with-default-path= has no effect
4b492aab 3276if test $ac_cv_func_login_getcapbool = "yes" && \
3277 test $ac_cv_header_login_cap_h = "yes" ; then
95b99395 3278 external_path_file=/etc/login.conf
8d184c09 3279fi
95b99395 3280
a0391976 3281# Whether to mess with the default path
aff51935 3282SERVER_PATH_MSG="(default)"
c43d69a9 3283AC_ARG_WITH(default-path,
75817f90 3284 [ --with-default-path= Specify default \$PATH environment for server],
cb807f40 3285 [
95b99395 3286 if test "x$external_path_file" = "x/etc/login.conf" ; then
8d184c09 3287 AC_MSG_WARN([
3288--with-default-path=PATH has no effect on this system.
3289Edit /etc/login.conf instead.])
82f4e93d 3290 elif test "x$withval" != "xno" ; then
89bbd457 3291 if test ! -z "$external_path_file" ; then
95b99395 3292 AC_MSG_WARN([
3293--with-default-path=PATH will only be used if PATH is not defined in
3294$external_path_file .])
3295 fi
b2d818e6 3296 user_path="$withval"
aff51935 3297 SERVER_PATH_MSG="$withval"
cb807f40 3298 fi
b2d818e6 3299 ],
95b99395 3300 [ if test "x$external_path_file" = "x/etc/login.conf" ; then
3301 AC_MSG_WARN([Make sure the path to scp is in /etc/login.conf])
8d184c09 3302 else
89bbd457 3303 if test ! -z "$external_path_file" ; then
95b99395 3304 AC_MSG_WARN([
3305If PATH is defined in $external_path_file, ensure the path to scp is included,
3306otherwise scp will not work.])
3307 fi
b0e7249f 3308 AC_RUN_IFELSE(
3309 [AC_LANG_SOURCE([[
b2d818e6 3310/* find out what STDPATH is */
3311#include <stdio.h>
b2d818e6 3312#ifdef HAVE_PATHS_H
3313# include <paths.h>
3314#endif
3315#ifndef _PATH_STDPATH
d9a4e55b 3316# ifdef _PATH_USERPATH /* Irix */
3317# define _PATH_STDPATH _PATH_USERPATH
3318# else
3319# define _PATH_STDPATH "/usr/bin:/bin:/usr/sbin:/sbin"
3320# endif
b2d818e6 3321#endif
3322#include <sys/types.h>
3323#include <sys/stat.h>
3324#include <fcntl.h>
3325#define DATA "conftest.stdpath"
3326
3327main()
3328{
3329 FILE *fd;
3330 int rc;
82f4e93d 3331
b2d818e6 3332 fd = fopen(DATA,"w");
3333 if(fd == NULL)
3334 exit(1);
82f4e93d 3335
b2d818e6 3336 if ((rc = fprintf(fd,"%s", _PATH_STDPATH)) < 0)
3337 exit(1);
3338
3339 exit(0);
3340}
b0e7249f 3341 ]])],
3342 [ user_path=`cat conftest.stdpath` ],
b2d818e6 3343 [ user_path="/usr/bin:/bin:/usr/sbin:/sbin" ],
3344 [ user_path="/usr/bin:/bin:/usr/sbin:/sbin" ]
3345 )
3346# make sure $bindir is in USER_PATH so scp will work
3347 t_bindir=`eval echo ${bindir}`
3348 case $t_bindir in
3349 NONE/*) t_bindir=`echo $t_bindir | sed "s~NONE~$prefix~"` ;;
3350 esac
3351 case $t_bindir in
3352 NONE/*) t_bindir=`echo $t_bindir | sed "s~NONE~$ac_default_prefix~"` ;;
3353 esac
3354 echo $user_path | grep ":$t_bindir" > /dev/null 2>&1
3355 if test $? -ne 0 ; then
3356 echo $user_path | grep "^$t_bindir" > /dev/null 2>&1
3357 if test $? -ne 0 ; then
3358 user_path=$user_path:$t_bindir
3359 AC_MSG_RESULT(Adding $t_bindir to USER_PATH so scp will work)
3360 fi
3361 fi
8d184c09 3362 fi ]
cb807f40 3363)
95b99395 3364if test "x$external_path_file" != "x/etc/login.conf" ; then
3466e002 3365 AC_DEFINE_UNQUOTED(USER_PATH, "$user_path", [Specify default $PATH])
8d184c09 3366 AC_SUBST(user_path)
3367fi
cb807f40 3368
06617857 3369# Set superuser path separately to user path
06617857 3370AC_ARG_WITH(superuser-path,
3371 [ --with-superuser-path= Specify different path for super-user],
3372 [
6cf0200f 3373 if test -n "$withval" && test "x$withval" != "xno" && \
3374 test "x${withval}" != "xyes"; then
3466e002 3375 AC_DEFINE_UNQUOTED(SUPERUSER_PATH, "$withval",
3376 [Define if you want a different $PATH
3377 for the superuser])
06617857 3378 superuser_path=$withval
3379 fi
3380 ]
3381)
3382
3383
58d100bf 3384AC_MSG_CHECKING([if we need to convert IPv4 in IPv6-mapped addresses])
aff51935 3385IPV4_IN6_HACK_MSG="no"
80faa19f 3386AC_ARG_WITH(4in6,
3387 [ --with-4in6 Check for and convert IPv4 in IPv6 mapped addresses],
3388 [
3389 if test "x$withval" != "xno" ; then
3390 AC_MSG_RESULT(yes)
3466e002 3391 AC_DEFINE(IPV4_IN_IPV6, 1,
3392 [Detect IPv4 in IPv6 mapped addresses
3393 and treat as IPv4])
aff51935 3394 IPV4_IN6_HACK_MSG="yes"
80faa19f 3395 else
3396 AC_MSG_RESULT(no)
3397 fi
3398 ],[
3399 if test "x$inet6_default_4in6" = "xyes"; then
3400 AC_MSG_RESULT([yes (default)])
3401 AC_DEFINE(IPV4_IN_IPV6)
aff51935 3402 IPV4_IN6_HACK_MSG="yes"
80faa19f 3403 else
3404 AC_MSG_RESULT([no (default)])
3405 fi
3406 ]
3407)
3408
af774732 3409# Whether to enable BSD auth support
f1b0ecc3 3410BSD_AUTH_MSG=no
af774732 3411AC_ARG_WITH(bsd-auth,
3412 [ --with-bsd-auth Enable BSD auth support],
3413 [
82f4e93d 3414 if test "x$withval" != "xno" ; then
3466e002 3415 AC_DEFINE(BSD_AUTH, 1,
3416 [Define if you have BSD auth support])
f1b0ecc3 3417 BSD_AUTH_MSG=yes
af774732 3418 fi
3419 ]
3420)
3421
a0391976 3422# Where to place sshd.pid
19d9ac2a 3423piddir=/var/run
81dadca3 3424# make sure the directory exists
82f4e93d 3425if test ! -d $piddir ; then
81dadca3 3426 piddir=`eval echo ${sysconfdir}`
3427 case $piddir in
aff51935 3428 NONE/*) piddir=`echo $piddir | sed "s~NONE~$ac_default_prefix~"` ;;
81dadca3 3429 esac
3430fi
3431
47e45e44 3432AC_ARG_WITH(pid-dir,
3433 [ --with-pid-dir=PATH Specify location of ssh.pid file],
3434 [
6cf0200f 3435 if test -n "$withval" && test "x$withval" != "xno" && \
3436 test "x${withval}" != "xyes"; then
19d9ac2a 3437 piddir=$withval
82f4e93d 3438 if test ! -d $piddir ; then
81dadca3 3439 AC_MSG_WARN([** no $piddir directory on this system **])
3440 fi
47e45e44 3441 fi
3442 ]
3443)
b7a87eea 3444
3466e002 3445AC_DEFINE_UNQUOTED(_PATH_SSH_PIDDIR, "$piddir", [Specify location of ssh.pid])
19d9ac2a 3446AC_SUBST(piddir)
47e45e44 3447
1d7b9b20 3448dnl allow user to disable some login recording features
3449AC_ARG_ENABLE(lastlog,
bfd550a2 3450 [ --disable-lastlog disable use of lastlog even if detected [no]],
ddb154b3 3451 [
3452 if test "x$enableval" = "xno" ; then
3453 AC_DEFINE(DISABLE_LASTLOG)
3454 fi
3455 ]
1d7b9b20 3456)
3457AC_ARG_ENABLE(utmp,
bfd550a2 3458 [ --disable-utmp disable use of utmp even if detected [no]],
ddb154b3 3459 [
3460 if test "x$enableval" = "xno" ; then
3461 AC_DEFINE(DISABLE_UTMP)
3462 fi
3463 ]
1d7b9b20 3464)
3465AC_ARG_ENABLE(utmpx,
bfd550a2 3466 [ --disable-utmpx disable use of utmpx even if detected [no]],
ddb154b3 3467 [
3468 if test "x$enableval" = "xno" ; then
3466e002 3469 AC_DEFINE(DISABLE_UTMPX, 1,
3470 [Define if you don't want to use utmpx])
ddb154b3 3471 fi
3472 ]
1d7b9b20 3473)
3474AC_ARG_ENABLE(wtmp,
bfd550a2 3475 [ --disable-wtmp disable use of wtmp even if detected [no]],
ddb154b3 3476 [
3477 if test "x$enableval" = "xno" ; then
3478 AC_DEFINE(DISABLE_WTMP)
3479 fi
3480 ]
1d7b9b20 3481)
3482AC_ARG_ENABLE(wtmpx,
bfd550a2 3483 [ --disable-wtmpx disable use of wtmpx even if detected [no]],
ddb154b3 3484 [
3485 if test "x$enableval" = "xno" ; then
3466e002 3486 AC_DEFINE(DISABLE_WTMPX, 1,
3487 [Define if you don't want to use wtmpx])
ddb154b3 3488 fi
3489 ]
1d7b9b20 3490)
3491AC_ARG_ENABLE(libutil,
bfd550a2 3492 [ --disable-libutil disable use of libutil (login() etc.) [no]],
ddb154b3 3493 [
3494 if test "x$enableval" = "xno" ; then
3495 AC_DEFINE(DISABLE_LOGIN)
3496 fi
3497 ]
1d7b9b20 3498)
3499AC_ARG_ENABLE(pututline,
bfd550a2 3500 [ --disable-pututline disable use of pututline() etc. ([uw]tmp) [no]],
ddb154b3 3501 [
3502 if test "x$enableval" = "xno" ; then
3466e002 3503 AC_DEFINE(DISABLE_PUTUTLINE, 1,
3504 [Define if you don't want to use pututline()
3505 etc. to write [uw]tmp])
ddb154b3 3506 fi
3507 ]
1d7b9b20 3508)
3509AC_ARG_ENABLE(pututxline,
bfd550a2 3510 [ --disable-pututxline disable use of pututxline() etc. ([uw]tmpx) [no]],
ddb154b3 3511 [
3512 if test "x$enableval" = "xno" ; then
3466e002 3513 AC_DEFINE(DISABLE_PUTUTXLINE, 1,
3514 [Define if you don't want to use pututxline()
3515 etc. to write [uw]tmpx])
ddb154b3 3516 fi
3517 ]
1d7b9b20 3518)
3519AC_ARG_WITH(lastlog,
bfd550a2 3520 [ --with-lastlog=FILE|DIR specify lastlog location [common locations]],
8c89dd2b 3521 [
82f4e93d 3522 if test "x$withval" = "xno" ; then
8c89dd2b 3523 AC_DEFINE(DISABLE_LASTLOG)
6cf0200f 3524 elif test -n "$withval" && test "x${withval}" != "xyes"; then
8c89dd2b 3525 conf_lastlog_location=$withval
3526 fi
3527 ]
3528)
1d7b9b20 3529
3530dnl lastlog, [uw]tmpx? detection
3531dnl NOTE: set the paths in the platform section to avoid the
3532dnl need for command-line parameters
3533dnl lastlog and [uw]tmp are subject to a file search if all else fails
3534
3535dnl lastlog detection
3536dnl NOTE: the code itself will detect if lastlog is a directory
3537AC_MSG_CHECKING([if your system defines LASTLOG_FILE])
3538AC_TRY_COMPILE([
3539#include <sys/types.h>
3540#include <utmp.h>
3541#ifdef HAVE_LASTLOG_H
3542# include <lastlog.h>
3543#endif
d7c0f3d5 3544#ifdef HAVE_PATHS_H
1d7b9b20 3545# include <paths.h>
41cb4569 3546#endif
3547#ifdef HAVE_LOGIN_H
3548# include <login.h>
1d7b9b20 3549#endif
3550 ],
3551 [ char *lastlog = LASTLOG_FILE; ],
3552 [ AC_MSG_RESULT(yes) ],
d7c0f3d5 3553 [
3554 AC_MSG_RESULT(no)
3555 AC_MSG_CHECKING([if your system defines _PATH_LASTLOG])
3556 AC_TRY_COMPILE([
3557#include <sys/types.h>
3558#include <utmp.h>
3559#ifdef HAVE_LASTLOG_H
3560# include <lastlog.h>
3561#endif
3562#ifdef HAVE_PATHS_H
3563# include <paths.h>
3564#endif
3565 ],
3566 [ char *lastlog = _PATH_LASTLOG; ],
3567 [ AC_MSG_RESULT(yes) ],
3568 [
f282b668 3569 AC_MSG_RESULT(no)
d7c0f3d5 3570 system_lastlog_path=no
3571 ])
3572 ]
1d7b9b20 3573)
d7c0f3d5 3574
1d7b9b20 3575if test -z "$conf_lastlog_location"; then
3576 if test x"$system_lastlog_path" = x"no" ; then
3577 for f in /var/log/lastlog /usr/adm/lastlog /var/adm/lastlog /etc/security/lastlog ; do
e5fe9a1f 3578 if (test -d "$f" || test -f "$f") ; then
1d7b9b20 3579 conf_lastlog_location=$f
3580 fi
3581 done
3582 if test -z "$conf_lastlog_location"; then
f8119cef 3583 AC_MSG_WARN([** Cannot find lastlog **])
3584 dnl Don't define DISABLE_LASTLOG - that means we don't try wtmp/wtmpx
1d7b9b20 3585 fi
3586 fi
3587fi
3588
3589if test -n "$conf_lastlog_location"; then
3466e002 3590 AC_DEFINE_UNQUOTED(CONF_LASTLOG_FILE, "$conf_lastlog_location",
3591 [Define if you want to specify the path to your lastlog file])
82f4e93d 3592fi
1d7b9b20 3593
3594dnl utmp detection
3595AC_MSG_CHECKING([if your system defines UTMP_FILE])
3596AC_TRY_COMPILE([
3597#include <sys/types.h>
3598#include <utmp.h>
d7c0f3d5 3599#ifdef HAVE_PATHS_H
1d7b9b20 3600# include <paths.h>
3601#endif
3602 ],
3603 [ char *utmp = UTMP_FILE; ],
3604 [ AC_MSG_RESULT(yes) ],
3605 [ AC_MSG_RESULT(no)
3606 system_utmp_path=no ]
3607)
3608if test -z "$conf_utmp_location"; then
3609 if test x"$system_utmp_path" = x"no" ; then
3610 for f in /etc/utmp /usr/adm/utmp /var/run/utmp; do
3611 if test -f $f ; then
3612 conf_utmp_location=$f
3613 fi
3614 done
3615 if test -z "$conf_utmp_location"; then
3616 AC_DEFINE(DISABLE_UTMP)
3617 fi
3618 fi
3619fi
3620if test -n "$conf_utmp_location"; then
3466e002 3621 AC_DEFINE_UNQUOTED(CONF_UTMP_FILE, "$conf_utmp_location",
3622 [Define if you want to specify the path to your utmp file])
82f4e93d 3623fi
1d7b9b20 3624
3625dnl wtmp detection
3626AC_MSG_CHECKING([if your system defines WTMP_FILE])
3627AC_TRY_COMPILE([
3628#include <sys/types.h>
3629#include <utmp.h>
d7c0f3d5 3630#ifdef HAVE_PATHS_H
1d7b9b20 3631# include <paths.h>
3632#endif
3633 ],
3634 [ char *wtmp = WTMP_FILE; ],
3635 [ AC_MSG_RESULT(yes) ],
3636 [ AC_MSG_RESULT(no)
3637 system_wtmp_path=no ]
3638)
3639if test -z "$conf_wtmp_location"; then
3640 if test x"$system_wtmp_path" = x"no" ; then
3641 for f in /usr/adm/wtmp /var/log/wtmp; do
3642 if test -f $f ; then
3643 conf_wtmp_location=$f
3644 fi
3645 done
3646 if test -z "$conf_wtmp_location"; then
3647 AC_DEFINE(DISABLE_WTMP)
3648 fi
3649 fi
3650fi
3651if test -n "$conf_wtmp_location"; then
3466e002 3652 AC_DEFINE_UNQUOTED(CONF_WTMP_FILE, "$conf_wtmp_location",
3653 [Define if you want to specify the path to your wtmp file])
82f4e93d 3654fi
1d7b9b20 3655
3656
3657dnl utmpx detection - I don't know any system so perverse as to require
3658dnl utmpx, but not define UTMPX_FILE (ditto wtmpx.) No doubt it's out
3659dnl there, though.
3660AC_MSG_CHECKING([if your system defines UTMPX_FILE])
3661AC_TRY_COMPILE([
3662#include <sys/types.h>
3663#include <utmp.h>
3664#ifdef HAVE_UTMPX_H
3665#include <utmpx.h>
3666#endif
d7c0f3d5 3667#ifdef HAVE_PATHS_H
1d7b9b20 3668# include <paths.h>
3669#endif
3670 ],
3671 [ char *utmpx = UTMPX_FILE; ],
3672 [ AC_MSG_RESULT(yes) ],
3673 [ AC_MSG_RESULT(no)
3674 system_utmpx_path=no ]
3675)
3676if test -z "$conf_utmpx_location"; then
3677 if test x"$system_utmpx_path" = x"no" ; then
3678 AC_DEFINE(DISABLE_UTMPX)
3679 fi
3680else
3466e002 3681 AC_DEFINE_UNQUOTED(CONF_UTMPX_FILE, "$conf_utmpx_location",
3682 [Define if you want to specify the path to your utmpx file])
82f4e93d 3683fi
1d7b9b20 3684
3685dnl wtmpx detection
3686AC_MSG_CHECKING([if your system defines WTMPX_FILE])
3687AC_TRY_COMPILE([
3688#include <sys/types.h>
3689#include <utmp.h>
3690#ifdef HAVE_UTMPX_H
3691#include <utmpx.h>
3692#endif
d7c0f3d5 3693#ifdef HAVE_PATHS_H
1d7b9b20 3694# include <paths.h>
3695#endif
3696 ],
3697 [ char *wtmpx = WTMPX_FILE; ],
3698 [ AC_MSG_RESULT(yes) ],
3699 [ AC_MSG_RESULT(no)
3700 system_wtmpx_path=no ]
3701)
3702if test -z "$conf_wtmpx_location"; then
3703 if test x"$system_wtmpx_path" = x"no" ; then
3704 AC_DEFINE(DISABLE_WTMPX)
3705 fi
3706else
3466e002 3707 AC_DEFINE_UNQUOTED(CONF_WTMPX_FILE, "$conf_wtmpx_location",
3708 [Define if you want to specify the path to your wtmpx file])
82f4e93d 3709fi
1d7b9b20 3710
b7a87eea 3711
bd499f9e 3712if test ! -z "$blibpath" ; then
68ece370 3713 LDFLAGS="$LDFLAGS $blibflags$blibpath"
3714 AC_MSG_WARN([Please check and edit blibpath in LDFLAGS in Makefile])
bd499f9e 3715fi
3716
ddceb1c8 3717dnl remove pam and dl because they are in $LIBPAM
3718if test "$PAM_MSG" = yes ; then
98f2d9d5 3719 LIBS=`echo $LIBS | sed 's/-lpam //'`
3720fi
3721if test "$ac_cv_lib_pam_pam_set_item" = yes ; then
3722 LIBS=`echo $LIBS | sed 's/-ldl //'`
ddceb1c8 3723fi
3724
ed89c848 3725dnl Adding -Werror to CFLAGS early prevents configure tests from running.
3726dnl Add now.
3727CFLAGS="$CFLAGS $werror_flags"
3728
3c62e7eb 3729AC_EXEEXT
d7cfdd7c 3730AC_CONFIG_FILES([Makefile buildpkg.sh opensshd.init openbsd-compat/Makefile \
3731 scard/Makefile ssh_prng_cmds survey.sh])
98a7c37b 3732AC_OUTPUT
d3083fbd 3733
cbd7492e 3734# Print summary of options
3735
cbd7492e 3736# Someone please show me a better way :)
3737A=`eval echo ${prefix}` ; A=`eval echo ${A}`
3738B=`eval echo ${bindir}` ; B=`eval echo ${B}`
3739C=`eval echo ${sbindir}` ; C=`eval echo ${C}`
3740D=`eval echo ${sysconfdir}` ; D=`eval echo ${D}`
f5665f6f 3741E=`eval echo ${libexecdir}/ssh-askpass` ; E=`eval echo ${E}`
e0c4d3ac 3742F=`eval echo ${mandir}/${mansubdir}X` ; F=`eval echo ${F}`
cbd7492e 3743G=`eval echo ${piddir}` ; G=`eval echo ${G}`
ecac8ee5 3744H=`eval echo ${PRIVSEP_PATH}` ; H=`eval echo ${H}`
3745I=`eval echo ${user_path}` ; I=`eval echo ${I}`
3746J=`eval echo ${superuser_path}` ; J=`eval echo ${J}`
cbd7492e 3747
3748echo ""
26de7942 3749echo "OpenSSH has been configured with the following options:"
ecac8ee5 3750echo " User binaries: $B"
3751echo " System binaries: $C"
3752echo " Configuration files: $D"
3753echo " Askpass program: $E"
3754echo " Manual pages: $F"
3755echo " PID file: $G"
3756echo " Privilege separation chroot path: $H"
95b99395 3757if test "x$external_path_file" = "x/etc/login.conf" ; then
3758echo " At runtime, sshd will use the path defined in $external_path_file"
3759echo " Make sure the path to scp is present, otherwise scp will not work"
8d184c09 3760else
ecac8ee5 3761echo " sshd default user PATH: $I"
89bbd457 3762 if test ! -z "$external_path_file"; then
95b99395 3763echo " (If PATH is set in $external_path_file it will be used instead. If"
3764echo " used, ensure the path to scp is present, otherwise scp will not work.)"
3765 fi
8d184c09 3766fi
06617857 3767if test ! -z "$superuser_path" ; then
ecac8ee5 3768echo " sshd superuser user PATH: $J"
3769fi
3770echo " Manpage format: $MANTYPE"
3e05e934 3771echo " PAM support: $PAM_MSG"
ecac8ee5 3772echo " KerberosV support: $KRB5_MSG"
3773echo " Smartcard support: $SCARD_MSG"
ecac8ee5 3774echo " S/KEY support: $SKEY_MSG"
3775echo " TCP Wrappers support: $TCPW_MSG"
3776echo " MD5 password support: $MD5_MSG"
59031773 3777echo " libedit support: $LIBEDIT_MSG"
3deb1408 3778echo " IP address in \$DISPLAY hack: $DISPLAY_HACK_MSG"
ecac8ee5 3779echo " Translate v4 in v6 hack: $IPV4_IN6_HACK_MSG"
3780echo " BSD Auth support: $BSD_AUTH_MSG"
3781echo " Random number source: $RAND_MSG"
f1b0ecc3 3782if test ! -z "$USE_RAND_HELPER" ; then
ecac8ee5 3783echo " ssh-rand-helper collects from: $RAND_HELPER_MSG"
af774732 3784fi
3785
cbd7492e 3786echo ""
3787
0c2fb82f 3788echo " Host: ${host}"
3789echo " Compiler: ${CC}"
3790echo " Compiler flags: ${CFLAGS}"
3791echo "Preprocessor flags: ${CPPFLAGS}"
3792echo " Linker flags: ${LDFLAGS}"
ddceb1c8 3793echo " Libraries: ${LIBWRAP} ${LIBPAM} ${LIBS}"
cbd7492e 3794
3795echo ""
3796
9cefe228 3797if test "x$MAKE_PACKAGE_SUPPORTED" = "xyes" ; then
b3146b5f 3798 echo "SVR4 style packages are supported with \"make package\""
3799 echo ""
9cefe228 3800fi
3801
adeebd37 3802if test "x$PAM_MSG" = "xyes" ; then
f1b0ecc3 3803 echo "PAM is enabled. You may need to install a PAM control file "
3804 echo "for sshd, otherwise password authentication may fail. "
aff51935 3805 echo "Example PAM control files can be found in the contrib/ "
f1b0ecc3 3806 echo "subdirectory"
adeebd37 3807 echo ""
3808fi
3809
f1b0ecc3 3810if test ! -z "$RAND_HELPER_CMDHASH" ; then
3811 echo "WARNING: you are using the builtin random number collection "
3812 echo "service. Please read WARNING.RNG and request that your OS "
3813 echo "vendor includes kernel-based random number collection in "
3814 echo "future versions of your OS."
2c523de9 3815 echo ""
3816fi
af774732 3817
2f6f9cff 3818if test ! -z "$NO_PEERCHECK" ; then
3819 echo "WARNING: the operating system that you are using does not "
3820 echo "appear to support either the getpeereid() API nor the "
3821 echo "SO_PEERCRED getsockopt() option. These facilities are used to "
3822 echo "enforce security checks to prevent unauthorised connections to "
3823 echo "ssh-agent. Their absence increases the risk that a malicious "
3824 echo "user can connect to your agent. "
3825 echo ""
3826fi
3827
7b578f7d 3828if test "$AUDIT_MODULE" = "bsm" ; then
3829 echo "WARNING: BSM audit support is currently considered EXPERIMENTAL."
3830 echo "See the Solaris section in README.platform for details."
3831fi
git-cvsimport mirror of OpenSSH
This page took 1.016044 seconds and 5 git commands to generate.