]> andersk Git - openssh.git/blame - configure.ac
andersk / openssh.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
- (tim) [openssh/sshpty.c openssh/openbsd-compat/port-tun.c] put in some
[openssh.git] / configure.ac
CommitLineData
eb5d7ff6 1# $Id$
2b983b95 2#
3# Copyright (c) 1999-2004 Damien Miller
4#
5# Permission to use, copy, modify, and distribute this software for any
6# purpose with or without fee is hereby granted, provided that the above
7# copyright notice and this permission notice appear in all copies.
8#
9# THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
10# WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
11# MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR
12# ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
13# WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
14# ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
15# OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
0b202697 16
76e6410a 17AC_INIT(OpenSSH, Portable, openssh-unix-dev@mindrot.org)
823221b2 18AC_REVISION($Revision$)
98a7c37b 19AC_CONFIG_SRCDIR([ssh.c])
5881cd60 20
21AC_CONFIG_HEADER(config.h)
b14b2ae7 22AC_PROG_CC
a7effaac 23AC_CANONICAL_HOST
cf0c5df5 24AC_C_BIGENDIAN
5881cd60 25
a0391976 26# Checks for programs.
4bbf95fa 27AC_PROG_AWK
4cca272e 28AC_PROG_CPP
5881cd60 29AC_PROG_RANLIB
cf8dd513 30AC_PROG_INSTALL
c9ecc3c7 31AC_PROG_EGREP
bee0a37e 32AC_PATH_PROG(AR, ar)
ddd8c95b 33AC_PATH_PROG(CAT, cat)
34AC_PATH_PROG(KILL, kill)
13dd877b 35AC_PATH_PROGS(PERL, perl5 perl)
c3690df3 36AC_PATH_PROG(SED, sed)
a0f84251 37AC_SUBST(PERL)
ad85db64 38AC_PATH_PROG(ENT, ent)
39AC_SUBST(ENT)
6958bd37 40AC_PATH_PROG(TEST_MINUS_S_SH, bash)
41AC_PATH_PROG(TEST_MINUS_S_SH, ksh)
42AC_PATH_PROG(TEST_MINUS_S_SH, sh)
6193497b 43AC_PATH_PROG(SH, sh)
a3245b92 44AC_SUBST(TEST_SHELL,sh)
f498ed15 45
9cefe228 46dnl for buildpkg.sh
47AC_PATH_PROG(PATH_GROUPADD_PROG, groupadd, groupadd,
48 [/usr/sbin${PATH_SEPARATOR}/etc])
49AC_PATH_PROG(PATH_USERADD_PROG, useradd, useradd,
50 [/usr/sbin${PATH_SEPARATOR}/etc])
51AC_CHECK_PROG(MAKE_PACKAGE_SUPPORTED, pkgmk, yes, no)
eeb27c78 52if test -x /sbin/sh; then
53 AC_SUBST(STARTUP_SCRIPT_SHELL,/sbin/sh)
54else
55 AC_SUBST(STARTUP_SCRIPT_SHELL,/bin/sh)
56fi
9cefe228 57
948fd8b9 58# System features
59AC_SYS_LARGEFILE
60
c193d002 61if test -z "$AR" ; then
62 AC_MSG_ERROR([*** 'ar' missing, please install or fix your \$PATH ***])
63fi
64
2e73a022 65# Use LOGIN_PROGRAM from environment if possible
66if test ! -z "$LOGIN_PROGRAM" ; then
3466e002 67 AC_DEFINE_UNQUOTED(LOGIN_PROGRAM_FALLBACK, "$LOGIN_PROGRAM",
68 [If your header files don't define LOGIN_PROGRAM,
69 then use this (detected) from environment and PATH])
2e73a022 70else
71 # Search for login
72 AC_PATH_PROG(LOGIN_PROGRAM_FALLBACK, login)
73 if test ! -z "$LOGIN_PROGRAM_FALLBACK" ; then
74 AC_DEFINE_UNQUOTED(LOGIN_PROGRAM_FALLBACK, "$LOGIN_PROGRAM_FALLBACK")
75 fi
76fi
77
37656beb 78AC_PATH_PROG(PATH_PASSWD_PROG, passwd)
79if test ! -z "$PATH_PASSWD_PROG" ; then
3466e002 80 AC_DEFINE_UNQUOTED(_PATH_PASSWD_PROG, "$PATH_PASSWD_PROG",
81 [Full path of your "passwd" program])
37656beb 82fi
83
d423d822 84if test -z "$LD" ; then
85 LD=$CC
86fi
87AC_SUBST(LD)
82f4e93d 88
d423d822 89AC_C_INLINE
dfafb2e1 90
91AC_CHECK_DECL(LLONG_MAX, have_llong_max=1, , [#include <limits.h>])
92
aff51935 93if test "$GCC" = "yes" || test "$GCC" = "egcs"; then
af40ca44 94 CFLAGS="$CFLAGS -Wall -Wpointer-arith -Wuninitialized"
eeee8237 95 GCC_VER=`$CC -v 2>&1 | $AWK '/gcc version /{print $3}'`
5fdabf45 96 case $GCC_VER in
97 1.*) ;;
98 2.8* | 2.9*) CFLAGS="$CFLAGS -Wsign-compare" ;;
99 2.*) ;;
dbf07ba2 100 3.*) CFLAGS="$CFLAGS -Wsign-compare" ;;
cd595991 101 4.*) CFLAGS="$CFLAGS -Wsign-compare -Wno-pointer-sign" ;;
102 *) ;;
5fdabf45 103 esac
8a3ff1aa 104
dfafb2e1 105 if test -z "$have_llong_max"; then
106 # retry LLONG_MAX with -std=gnu99, needed on some Linuxes
107 unset ac_cv_have_decl_LLONG_MAX
108 saved_CFLAGS="$CFLAGS"
109 CFLAGS="$CFLAGS -std=gnu99"
110 AC_CHECK_DECL(LLONG_MAX,
111 [have_llong_max=1],
112 [CFLAGS="$saved_CFLAGS"],
113 [#include <limits.h>]
114 )
115 fi
d423d822 116fi
117
e6354014 118AC_ARG_WITH(rpath,
119 [ --without-rpath Disable auto-added -R linker paths],
120 [
82f4e93d 121 if test "x$withval" = "xno" ; then
e6354014 122 need_dash_r=""
123 fi
124 if test "x$withval" = "xyes" ; then
125 need_dash_r=1
126 fi
127 ]
128)
129
a0391976 130# Check for some target-specific stuff
a7effaac 131case "$host" in
9d6b1b96 132*-*-aix*)
aff51935 133 AC_MSG_CHECKING([how to specify blibpath for linker ($LD)])
68ece370 134 if (test -z "$blibpath"); then
0a15d73b 135 blibpath="/usr/lib:/lib"
68ece370 136 fi
137 saved_LDFLAGS="$LDFLAGS"
138 for tryflags in -blibpath: -Wl,-blibpath: -Wl,-rpath, ;do
139 if (test -z "$blibflags"); then
140 LDFLAGS="$saved_LDFLAGS $tryflags$blibpath"
141 AC_TRY_LINK([], [], [blibflags=$tryflags])
142 fi
143 done
144 if (test -z "$blibflags"); then
145 AC_MSG_RESULT(not found)
146 AC_MSG_ERROR([*** must be able to specify blibpath on AIX - check config.log])
147 else
148 AC_MSG_RESULT($blibflags)
bd499f9e 149 fi
68ece370 150 LDFLAGS="$saved_LDFLAGS"
e351e493 151 dnl Check for authenticate. Might be in libs.a on older AIXes
3466e002 152 AC_CHECK_FUNC(authenticate, [AC_DEFINE(WITH_AIXAUTHENTICATE, 1,
153 [Define if you want to enable AIX4's authenticate function])],
0764e748 154 [AC_CHECK_LIB(s,authenticate,
e351e493 155 [ AC_DEFINE(WITH_AIXAUTHENTICATE)
0764e748 156 LIBS="$LIBS -ls"
157 ])
158 ])
ba603e06 159 dnl Check for various auth function declarations in headers.
c85ed8e2 160 AC_CHECK_DECLS([authenticate, loginrestrictions, loginsuccess,
72ad335d 161 passwdexpired, setauthdb], , , [#include <usersec.h>])
e351e493 162 dnl Check if loginfailed is declared and takes 4 arguments (AIX >= 5.2)
ba603e06 163 AC_CHECK_DECLS(loginfailed,
e351e493 164 [AC_MSG_CHECKING(if loginfailed takes 4 arguments)
165 AC_TRY_COMPILE(
f58c0e01 166 [#include <usersec.h>],
e351e493 167 [(void)loginfailed("user","host","tty",0);],
168 [AC_MSG_RESULT(yes)
3466e002 169 AC_DEFINE(AIX_LOGINFAILED_4ARG, 1,
170 [Define if your AIX loginfailed() function
171 takes 4 arguments (AIX >= 5.2)])],
f58c0e01 172 [AC_MSG_RESULT(no)]
e351e493 173 )],
174 [],
175 [#include <usersec.h>]
176 )
2aa3a16c 177 AC_CHECK_FUNCS(setauthdb)
5ccf88cb 178 check_for_aix_broken_getaddrinfo=1
3466e002 179 AC_DEFINE(BROKEN_REALPATH, 1, [Define if you have a broken realpath.])
180 AC_DEFINE(SETEUID_BREAKS_SETUID, 1,
181 [Define if your platform breaks doing a seteuid before a setuid])
182 AC_DEFINE(BROKEN_SETREUID, 1, [Define if your setreuid() is broken])
183 AC_DEFINE(BROKEN_SETREGID, 1, [Define if your setregid() is broken])
a3cef3ca 184 dnl AIX handles lastlog as part of its login message
3466e002 185 AC_DEFINE(DISABLE_LASTLOG, 1, [Define if you don't want to use lastlog])
186 AC_DEFINE(LOGIN_NEEDS_UTMPX, 1,
187 [Some systems need a utmpx entry for /bin/login to work])
188 AC_DEFINE(SPT_TYPE,SPT_REUSEARGV,
189 [Define to a Set Process Title type if your system is
190 supported by bsd-setproctitle.c])
961c2997 191 AC_DEFINE(SSHPAM_CHAUTHTOK_NEEDS_RUID, 1,
192 [AIX 5.2 and 5.3 (and presumably newer) require this])
9d6b1b96 193 ;;
3c62e7eb 194*-*-cygwin*)
a52997bd 195 check_for_libcrypt_later=1
ffb8d130 196 LIBS="$LIBS /usr/lib/textmode.o"
3466e002 197 AC_DEFINE(HAVE_CYGWIN, 1, [Define if you are on Cygwin])
198 AC_DEFINE(USE_PIPES, 1, [Use PIPES instead of a socketpair()])
199 AC_DEFINE(DISABLE_SHADOW, 1,
200 [Define if you want to disable shadow passwords])
201 AC_DEFINE(IP_TOS_IS_BROKEN, 1,
202 [Define if your system choked on IP TOS setting])
203 AC_DEFINE(NO_X11_UNIX_SOCKETS, 1,
204 [Define if X11 doesn't support AF_UNIX sockets on that system])
205 AC_DEFINE(NO_IPPORT_RESERVED_CONCEPT, 1,
206 [Define if the concept of ports only accessible to
207 superusers isn't known])
208 AC_DEFINE(DISABLE_FD_PASSING, 1,
209 [Define if your platform needs to skip post auth
210 file descriptor passing])
3c62e7eb 211 ;;
d6fdb079 212*-*-dgux*)
213 AC_DEFINE(IP_TOS_IS_BROKEN)
0c6a72a5 214 AC_DEFINE(SETEUID_BREAKS_SETUID)
215 AC_DEFINE(BROKEN_SETREUID)
216 AC_DEFINE(BROKEN_SETREGID)
d6fdb079 217 ;;
39c98ef7 218*-*-darwin*)
33e2e066 219 AC_MSG_CHECKING(if we have working getaddrinfo)
220 AC_TRY_RUN([#include <mach-o/dyld.h>
221main() { if (NSVersionOfRunTimeLibrary("System") >= (60 << 16))
222 exit(0);
223 else
224 exit(1);
225}], [AC_MSG_RESULT(working)],
226 [AC_MSG_RESULT(buggy)
3466e002 227 AC_DEFINE(BROKEN_GETADDRINFO, 1, [getaddrinfo is broken (if present)])],
b27e573d 228 [AC_MSG_RESULT(assume it is working)])
635e0c42 229 AC_DEFINE(SETEUID_BREAKS_SETUID)
230 AC_DEFINE(BROKEN_SETREUID)
231 AC_DEFINE(BROKEN_SETREGID)
3466e002 232 AC_DEFINE_UNQUOTED(BIND_8_COMPAT, 1,
233 [Define if your resolver libs need this for getrrsetbyname])
39c98ef7 234 ;;
7d458c86 235*-*-hpux*)
236 # first we define all of the options common to all HP-UX releases
b8fea62d 237 CPPFLAGS="$CPPFLAGS -D_HPUX_SOURCE -D_XOPEN_SOURCE -D_XOPEN_SOURCE_EXTENDED=1"
44839801 238 IPADDR_IN_DISPLAY=yes
2b10f47a 239 AC_DEFINE(USE_PIPES)
3466e002 240 AC_DEFINE(LOGIN_NO_ENDOPT, 1,
241 [Define if your login program cannot handle end of options ("--")])
a2572aa7 242 AC_DEFINE(LOGIN_NEEDS_UTMPX)
3466e002 243 AC_DEFINE(LOCKED_PASSWD_STRING, "*",
244 [String used in /etc/passwd to denote locked account])
3a2b2b44 245 AC_DEFINE(SPT_TYPE,SPT_PSTAT)
83f987c3 246 MAIL="/var/mail/username"
f75ca46d 247 LIBS="$LIBS -lsec"
7d458c86 248 AC_CHECK_LIB(xnet, t_error, ,
249 AC_MSG_ERROR([*** -lxnet needed on HP-UX - check config.log ***]))
250
251 # next, we define all of the options specific to major releases
252 case "$host" in
253 *-*-hpux10*)
254 if test -z "$GCC"; then
255 CFLAGS="$CFLAGS -Ae"
256 fi
257 ;;
258 *-*-hpux11*)
3466e002 259 AC_DEFINE(PAM_SUN_CODEBASE, 1,
260 [Define if you are using Solaris-derived PAM which
261 passes pam_messages to the conversation function
262 with an extra level of indirection])
263 AC_DEFINE(DISABLE_UTMP, 1,
264 [Define if you don't want to use utmp])
7d458c86 265 AC_DEFINE(USE_BTMP, 1, [Use btmp to log bad logins])
266 check_for_hpux_broken_getaddrinfo=1
267 check_for_conflicting_getspnam=1
268 ;;
269 esac
270
271 # lastly, we define options specific to minor releases
272 case "$host" in
273 *-*-hpux10.26)
3466e002 274 AC_DEFINE(HAVE_SECUREWARE, 1,
275 [Define if you have SecureWare-based
276 protected password database])
7d458c86 277 disable_ptmx_check=yes
278 LIBS="$LIBS -lsecpw"
279 ;;
280 esac
2b763e31 281 ;;
d94aa2ae 282*-*-irix5*)
6ac7829a 283 PATH="$PATH:/usr/etc"
3466e002 284 AC_DEFINE(BROKEN_INET_NTOA, 1,
285 [Define if you system's inet_ntoa is busted
286 (e.g. Irix gcc issue)])
cb433561 287 AC_DEFINE(SETEUID_BREAKS_SETUID)
288 AC_DEFINE(BROKEN_SETREUID)
289 AC_DEFINE(BROKEN_SETREGID)
3466e002 290 AC_DEFINE(WITH_ABBREV_NO_TTY, 1,
291 [Define if you shouldn't strip 'tty' from your
292 ttyname in [uw]tmp])
3e6e3da0 293 AC_DEFINE(LOCKED_PASSWD_STRING, "*LK*")
b9795b89 294 ;;
295*-*-irix6*)
6ac7829a 296 PATH="$PATH:/usr/etc"
3466e002 297 AC_DEFINE(WITH_IRIX_ARRAY, 1,
298 [Define if you have/want arrays
299 (cluster-wide session managment, not C arrays)])
300 AC_DEFINE(WITH_IRIX_PROJECT, 1,
301 [Define if you want IRIX project management])
302 AC_DEFINE(WITH_IRIX_AUDIT, 1,
303 [Define if you want IRIX audit trails])
304 AC_CHECK_FUNC(jlimit_startjob, [AC_DEFINE(WITH_IRIX_JOBS, 1,
305 [Define if you want IRIX kernel jobs])])
416ed5a7 306 AC_DEFINE(BROKEN_INET_NTOA)
412c0eaa 307 AC_DEFINE(SETEUID_BREAKS_SETUID)
308 AC_DEFINE(BROKEN_SETREUID)
309 AC_DEFINE(BROKEN_SETREGID)
3466e002 310 AC_DEFINE(BROKEN_UPDWTMPX, 1, [updwtmpx is broken (if present)])
0e8f4eba 311 AC_DEFINE(WITH_ABBREV_NO_TTY)
3e6e3da0 312 AC_DEFINE(LOCKED_PASSWD_STRING, "*LK*")
d94aa2ae 313 ;;
5cdfe03f 314*-*-linux*)
315 no_dev_ptmx=1
717057b6 316 check_for_libcrypt_later=1
eacb954e 317 check_for_openpty_ctty_bug=1
3466e002 318 AC_DEFINE(DONT_TRY_OTHER_AF, 1, [Workaround more Linux IPv6 quirks])
319 AC_DEFINE(PAM_TTY_KLUDGE, 1,
320 [Work around problematic Linux PAM modules handling of PAM_TTY])
321 AC_DEFINE(LOCKED_PASSWD_PREFIX, "!",
322 [String used in /etc/passwd to denote locked account])
3a2b2b44 323 AC_DEFINE(SPT_TYPE,SPT_REUSEARGV)
3466e002 324 AC_DEFINE(LINK_OPNOTSUPP_ERRNO, EPERM,
325 [Define to whatever link() returns for "not supported"
326 if it doesn't return EOPNOTSUPP.])
b6610e8f 327 AC_DEFINE(_PATH_BTMP, "/var/log/btmp", [log for bad login attempts])
3466e002 328 AC_DEFINE(USE_BTMP)
80faa19f 329 inet6_default_4in6=yes
bf7c1e6c 330 case `uname -r` in
ad84c479 331 1.*|2.0.*)
3466e002 332 AC_DEFINE(BROKEN_CMSG_TYPE, 1,
333 [Define if cmsg_type is not passed correctly])
bf7c1e6c 334 ;;
bf7c1e6c 335 esac
c40f09ca 336 # tun(4) forwarding compat code
d91775e1 337 AC_CHECK_HEADERS(linux/if_tun.h)
b5081213 338 if test "x$ac_cv_header_linux_if_tun_h" = "xyes" ; then
c40f09ca 339 AC_DEFINE(SSH_TUN_LINUX, 1,
340 [Open tunnel devices the Linux tun/tap way])
341 AC_DEFINE(SSH_TUN_COMPAT_AF, 1,
342 [Use tunnel device compatibility to OpenBSD])
343 AC_DEFINE(SSH_TUN_PREPEND_AF, 1,
344 [Prepend the address family to IP tunnel traffic])
345 fi
5cdfe03f 346 ;;
66d6c27e 347mips-sony-bsd|mips-sony-newsos4)
4b2cf3f1 348 AC_DEFINE(NEED_SETPGRP, 1, [Need setpgrp to acquire controlling tty])
66d6c27e 349 SONY=1
66d6c27e 350 ;;
d468fc76 351*-*-netbsd*)
33e2e066 352 check_for_libcrypt_before=1
82f4e93d 353 if test "x$withval" != "xno" ; then
e6354014 354 need_dash_r=1
355 fi
0f6cb079 356 AC_DEFINE(SSH_TUN_FREEBSD, 1, [Open tunnel devices the FreeBSD way])
357 AC_CHECK_HEADER([net/if_tap.h], ,
358 AC_DEFINE(SSH_TUN_NO_L2, 1, [No layer 2 tunnel support]))
359 AC_DEFINE(SSH_TUN_PREPEND_AF, 1,
360 [Prepend the address family to IP tunnel traffic])
d468fc76 361 ;;
86b416a7 362*-*-freebsd*)
363 check_for_libcrypt_later=1
988c5031 364 AC_DEFINE(LOCKED_PASSWD_PREFIX, "*LOCKED*", [Account locked with pw(1)])
0f6cb079 365 AC_DEFINE(SSH_TUN_FREEBSD, 1, [Open tunnel devices the FreeBSD way])
366 AC_CHECK_HEADER([net/if_tap.h], ,
367 AC_DEFINE(SSH_TUN_NO_L2, 1, [No layer 2 tunnel support]))
86b416a7 368 ;;
8707b7eb 369*-*-bsdi*)
370 AC_DEFINE(SETEUID_BREAKS_SETUID)
371 AC_DEFINE(BROKEN_SETREUID)
372 AC_DEFINE(BROKEN_SETREGID)
373 ;;
729bfe59 374*-next-*)
729bfe59 375 conf_lastlog_location="/usr/adm/lastlog"
698d107e 376 conf_utmp_location=/etc/utmp
377 conf_wtmp_location=/usr/adm/wtmp
378 MAIL=/usr/spool/mail
3466e002 379 AC_DEFINE(HAVE_NEXT, 1, [Define if you are on NeXT])
443172c4 380 AC_DEFINE(BROKEN_REALPATH)
00937921 381 AC_DEFINE(USE_PIPES)
3466e002 382 AC_DEFINE(BROKEN_SAVED_UIDS, 1, [Needed for NeXT])
729bfe59 383 ;;
5b7b5e23 384*-*-openbsd*)
385 AC_DEFINE(HAVE_ATTRIBUTE__SENTINEL__, 1, [OpenBSD's gcc has sentinel])
8034a348 386 AC_DEFINE(HAVE_ATTRIBUTE__BOUNDED__, 1, [OpenBSD's gcc has bounded])
0f6cb079 387 AC_DEFINE(SSH_TUN_OPENBSD, 1, [Open tunnel devices the OpenBSD way])
5b7b5e23 388 ;;
9d6b1b96 389*-*-solaris*)
82f4e93d 390 if test "x$withval" != "xno" ; then
010e9d5b 391 need_dash_r=1
392 fi
adeebd37 393 AC_DEFINE(PAM_SUN_CODEBASE)
7e2d5fa4 394 AC_DEFINE(LOGIN_NEEDS_UTMPX)
3466e002 395 AC_DEFINE(LOGIN_NEEDS_TERM, 1,
396 [Some versions of /bin/login need the TERM supplied
397 on the commandline])
7f0a4ff1 398 AC_DEFINE(PAM_TTY_KLUDGE)
3466e002 399 AC_DEFINE(SSHPAM_CHAUTHTOK_NEEDS_RUID, 1,
400 [Define if pam_chauthtok wants real uid set
401 to the unpriv'ed user])
3e6e3da0 402 AC_DEFINE(LOCKED_PASSWD_STRING, "*LK*")
ad84c479 403 # Pushing STREAMS modules will cause sshd to acquire a controlling tty.
3466e002 404 AC_DEFINE(SSHD_ACQUIRES_CTTY, 1,
405 [Define if sshd somehow reacquires a controlling TTY
406 after setsid()])
95b99395 407 external_path_file=/etc/default/login
1d7b9b20 408 # hardwire lastlog location (can't detect it on some versions)
409 conf_lastlog_location="/var/adm/lastlog"
32c80420 410 AC_MSG_CHECKING(for obsolete utmp and wtmp in solaris2.x)
411 sol2ver=`echo "$host"| sed -e 's/.*[[0-9]]\.//'`
412 if test "$sol2ver" -ge 8; then
413 AC_MSG_RESULT(yes)
414 AC_DEFINE(DISABLE_UTMP)
3466e002 415 AC_DEFINE(DISABLE_WTMP, 1,
416 [Define if you don't want to use wtmp])
32c80420 417 else
418 AC_MSG_RESULT(no)
419 fi
9d6b1b96 420 ;;
a423beaf 421*-*-sunos4*)
0c2fb82f 422 CPPFLAGS="$CPPFLAGS -DSUNOS4"
a423beaf 423 AC_CHECK_FUNCS(getpwanam)
adeebd37 424 AC_DEFINE(PAM_SUN_CODEBASE)
32eec038 425 conf_utmp_location=/etc/utmp
426 conf_wtmp_location=/var/adm/wtmp
427 conf_lastlog_location=/var/adm/lastlog
137d7b6c 428 AC_DEFINE(USE_PIPES)
a423beaf 429 ;;
6f68f28a 430*-ncr-sysv*)
98a7c37b 431 LIBS="$LIBS -lc89"
29525240 432 AC_DEFINE(USE_PIPES)
eabb99c6 433 AC_DEFINE(SSHD_ACQUIRES_CTTY)
6fb3618d 434 AC_DEFINE(SETEUID_BREAKS_SETUID)
435 AC_DEFINE(BROKEN_SETREUID)
436 AC_DEFINE(BROKEN_SETREGID)
6f68f28a 437 ;;
132dd316 438*-sni-sysv*)
c8c15bcb 439 # /usr/ucblib MUST NOT be searched on ReliantUNIX
e2798e96 440 AC_CHECK_LIB(dl, dlsym, ,)
d08db6d1 441 # -lresolv needs to be at the end of LIBS or DNS lookups break
442 AC_CHECK_LIB(resolv, res_query, [ LIBS="$LIBS -lresolv" ])
9548d6c8 443 IPADDR_IN_DISPLAY=yes
444 AC_DEFINE(USE_PIPES)
132dd316 445 AC_DEFINE(IP_TOS_IS_BROKEN)
605369bb 446 AC_DEFINE(SETEUID_BREAKS_SETUID)
447 AC_DEFINE(BROKEN_SETREUID)
448 AC_DEFINE(BROKEN_SETREGID)
eabb99c6 449 AC_DEFINE(SSHD_ACQUIRES_CTTY)
95b99395 450 external_path_file=/etc/default/login
c8c15bcb 451 # /usr/ucblib/libucb.a no longer needed on ReliantUNIX
452 # Attention: always take care to bind libsocket and libnsl before libc,
453 # otherwise you will find lots of "SIOCGPGRP errno 22" on syslog
132dd316 454 ;;
79a7ba96 455# UnixWare 1.x, UnixWare 2.x, and others based on code from Univel.
77bb0bca 456*-*-sysv4.2*)
9a406e1e 457 CFLAGS="$CFLAGS -Dva_list=_VA_LIST"
ed6553e2 458 AC_DEFINE(USE_PIPES)
7ed101c0 459 AC_DEFINE(SETEUID_BREAKS_SETUID)
460 AC_DEFINE(BROKEN_SETREUID)
461 AC_DEFINE(BROKEN_SETREGID)
46f853b9 462 AC_DEFINE(PASSWD_NEEDS_USERNAME, 1, [must supply username to passwd])
e45da4d6 463 AC_DEFINE(LOCKED_PASSWD_STRING, "*LK*")
77bb0bca 464 ;;
79a7ba96 465# UnixWare 7.x, OpenUNIX 8
77bb0bca 466*-*-sysv5*)
d7d2cc6e 467 check_for_libcrypt_later=1
468 AC_DEFINE(UNIXWARE_LONG_PASSWORDS, 1, [Support passwords > 8 chars])
ed6553e2 469 AC_DEFINE(USE_PIPES)
7ed101c0 470 AC_DEFINE(SETEUID_BREAKS_SETUID)
471 AC_DEFINE(BROKEN_SETREUID)
472 AC_DEFINE(BROKEN_SETREGID)
3466e002 473 AC_DEFINE(PASSWD_NEEDS_USERNAME)
822015dd 474 case "$host" in
475 *-*-sysv5SCO_SV*) # SCO OpenServer 6.x
476 TEST_SHELL=/u95/bin/sh
3466e002 477 AC_DEFINE(BROKEN_LIBIAF, 1,
478 [ia_uinfo routines not supported by OS yet])
822015dd 479 ;;
e45da4d6 480 *) AC_DEFINE(LOCKED_PASSWD_STRING, "*LK*")
481 ;;
822015dd 482 esac
77bb0bca 483 ;;
9d6b1b96 484*-*-sysv*)
9d6b1b96 485 ;;
79a7ba96 486# SCO UNIX and OEM versions of SCO UNIX
77bb0bca 487*-*-sco3.2v4*)
11cf4f1f 488 AC_MSG_ERROR("This Platform is no longer supported.")
77bb0bca 489 ;;
79a7ba96 490# SCO OpenServer 5.x
77bb0bca 491*-*-sco3.2v5*)
21710e39 492 if test -z "$GCC"; then
493 CFLAGS="$CFLAGS -belf"
494 fi
ed6553e2 495 LIBS="$LIBS -lprot -lx -ltinfo -lm"
509b1f88 496 no_dev_ptmx=1
ed6553e2 497 AC_DEFINE(USE_PIPES)
6e879cb4 498 AC_DEFINE(HAVE_SECUREWARE)
d287c664 499 AC_DEFINE(DISABLE_SHADOW)
94d8258b 500 AC_DEFINE(DISABLE_FD_PASSING)
7ed101c0 501 AC_DEFINE(SETEUID_BREAKS_SETUID)
502 AC_DEFINE(BROKEN_SETREUID)
503 AC_DEFINE(BROKEN_SETREGID)
bcebad47 504 AC_DEFINE(WITH_ABBREV_NO_TTY)
34f2baf0 505 AC_DEFINE(BROKEN_UPDWTMPX)
3466e002 506 AC_DEFINE(PASSWD_NEEDS_USERNAME)
aca75d94 507 AC_CHECK_FUNCS(getluid setluid)
533875af 508 MANTYPE=man
a3245b92 509 TEST_SHELL=ksh
509b1f88 510 ;;
ccbb983c 511*-*-unicosmk*)
3466e002 512 AC_DEFINE(NO_SSH_LASTLOG, 1,
513 [Define if you don't want to use lastlog in session.c])
c1ad5966 514 AC_DEFINE(SETEUID_BREAKS_SETUID)
515 AC_DEFINE(BROKEN_SETREUID)
516 AC_DEFINE(BROKEN_SETREGID)
ccbb983c 517 AC_DEFINE(USE_PIPES)
518 AC_DEFINE(DISABLE_FD_PASSING)
519 LDFLAGS="$LDFLAGS"
520 LIBS="$LIBS -lgen -lrsc -lshare -luex -lacm"
521 MANTYPE=cat
d262b7f2 522 ;;
7b9a8c6e 523*-*-unicosmp*)
c1ad5966 524 AC_DEFINE(SETEUID_BREAKS_SETUID)
525 AC_DEFINE(BROKEN_SETREUID)
526 AC_DEFINE(BROKEN_SETREGID)
7b9a8c6e 527 AC_DEFINE(WITH_ABBREV_NO_TTY)
528 AC_DEFINE(USE_PIPES)
529 AC_DEFINE(DISABLE_FD_PASSING)
530 LDFLAGS="$LDFLAGS"
c1ad5966 531 LIBS="$LIBS -lgen -lacid -ldb"
7b9a8c6e 532 MANTYPE=cat
533 ;;
ca5c7d6a 534*-*-unicos*)
c1ad5966 535 AC_DEFINE(SETEUID_BREAKS_SETUID)
536 AC_DEFINE(BROKEN_SETREUID)
537 AC_DEFINE(BROKEN_SETREGID)
ca5c7d6a 538 AC_DEFINE(USE_PIPES)
94d8258b 539 AC_DEFINE(DISABLE_FD_PASSING)
ef51930f 540 AC_DEFINE(NO_SSH_LASTLOG)
ccbb983c 541 LDFLAGS="$LDFLAGS -Wl,-Dmsglevel=334:fatal"
542 LIBS="$LIBS -lgen -lrsc -lshare -luex -lacm"
543 MANTYPE=cat
a704dd54 544 ;;
4d33e531 545*-dec-osf*)
99c8ddac 546 AC_MSG_CHECKING(for Digital Unix SIA)
547 no_osfsia=""
548 AC_ARG_WITH(osfsia,
549 [ --with-osfsia Enable Digital Unix SIA],
550 [
551 if test "x$withval" = "xno" ; then
552 AC_MSG_RESULT(disabled)
553 no_osfsia=1
554 fi
555 ],
556 )
557 if test -z "$no_osfsia" ; then
4d33e531 558 if test -f /etc/sia/matrix.conf; then
559 AC_MSG_RESULT(yes)
3466e002 560 AC_DEFINE(HAVE_OSF_SIA, 1,
561 [Define if you have Digital Unix Security
562 Integration Architecture])
563 AC_DEFINE(DISABLE_LOGIN, 1,
564 [Define if you don't want to use your
565 system's login() call])
58d0df4e 566 AC_DEFINE(DISABLE_FD_PASSING)
4d33e531 567 LIBS="$LIBS -lsecurity -ldb -lm -laud"
568 else
569 AC_MSG_RESULT(no)
3466e002 570 AC_DEFINE(LOCKED_PASSWD_SUBSTR, "Nologin",
571 [String used in /etc/passwd to denote locked account])
4d33e531 572 fi
573 fi
a6e67b60 574 AC_DEFINE(BROKEN_GETADDRINFO)
f4f2ff4f 575 AC_DEFINE(SETEUID_BREAKS_SETUID)
08da2d08 576 AC_DEFINE(BROKEN_SETREUID)
577 AC_DEFINE(BROKEN_SETREGID)
4d33e531 578 ;;
41cb4569 579
9c54c067 580*-*-nto-qnx*)
41cb4569 581 AC_DEFINE(USE_PIPES)
582 AC_DEFINE(NO_X11_UNIX_SOCKETS)
3466e002 583 AC_DEFINE(MISSING_NFDBITS, 1, [Define on *nto-qnx systems])
584 AC_DEFINE(MISSING_HOWMANY, 1, [Define on *nto-qnx systems])
585 AC_DEFINE(MISSING_FD_MASK, 1, [Define on *nto-qnx systems])
9c54c067 586 AC_DEFINE(DISABLE_LASTLOG)
49c64dd6 587 AC_DEFINE(SSHD_ACQUIRES_CTTY)
0c7e8877 588 enable_etc_default_login=no # has incompatible /etc/default/login
41cb4569 589 ;;
35fc74ed 590
591*-*-ultrix*)
3466e002 592 AC_DEFINE(BROKEN_GETGROUPS, 1, [getgroups(0,NULL) will return -1])
593 AC_DEFINE(BROKEN_MMAP, 1, [Ultrix mmap can't map files])
4b2cf3f1 594 AC_DEFINE(NEED_SETPGRP)
b5765e1d 595 AC_DEFINE(HAVE_SYS_SYSLOG_H, 1, [Force use of sys/syslog.h on Ultrix])
596 ;;
157b6700 597
598*-*-lynxos)
599 CFLAGS="$CFLAGS -D__NO_INCLUDE_WARN__"
3466e002 600 AC_DEFINE(MISSING_HOWMANY)
157b6700 601 AC_DEFINE(BROKEN_SETVBUF, 1, [LynxOS has broken setvbuf() implementation])
602 ;;
a7effaac 603esac
604
8e7b16f8 605# Allow user to specify flags
606AC_ARG_WITH(cflags,
607 [ --with-cflags Specify additional flags to pass to compiler],
608 [
6cf0200f 609 if test -n "$withval" && test "x$withval" != "xno" && \
610 test "x${withval}" != "xyes"; then
8e7b16f8 611 CFLAGS="$CFLAGS $withval"
612 fi
82f4e93d 613 ]
8e7b16f8 614)
0c2fb82f 615AC_ARG_WITH(cppflags,
616 [ --with-cppflags Specify additional flags to pass to preprocessor] ,
617 [
6cf0200f 618 if test -n "$withval" && test "x$withval" != "xno" && \
619 test "x${withval}" != "xyes"; then
0c2fb82f 620 CPPFLAGS="$CPPFLAGS $withval"
621 fi
622 ]
623)
8e7b16f8 624AC_ARG_WITH(ldflags,
97b378bf 625 [ --with-ldflags Specify additional flags to pass to linker],
8e7b16f8 626 [
6cf0200f 627 if test -n "$withval" && test "x$withval" != "xno" && \
628 test "x${withval}" != "xyes"; then
8e7b16f8 629 LDFLAGS="$LDFLAGS $withval"
630 fi
82f4e93d 631 ]
8e7b16f8 632)
633AC_ARG_WITH(libs,
634 [ --with-libs Specify additional libraries to link with],
635 [
6cf0200f 636 if test -n "$withval" && test "x$withval" != "xno" && \
637 test "x${withval}" != "xyes"; then
8e7b16f8 638 LIBS="$LIBS $withval"
639 fi
82f4e93d 640 ]
8e7b16f8 641)
ed89c848 642AC_ARG_WITH(Werror,
643 [ --with-Werror Build main code with -Werror],
644 [
645 if test -n "$withval" && test "x$withval" != "xno"; then
646 werror_flags="-Werror"
1012885d 647 if test "x${withval}" != "xyes"; then
ed89c848 648 werror_flags="$withval"
649 fi
650 fi
651 ]
652)
8e7b16f8 653
c5829391 654AC_MSG_CHECKING(compiler and flags for sanity)
479cece8 655AC_RUN_IFELSE(
656 [AC_LANG_SOURCE([
c5829391 657#include <stdio.h>
658int main(){exit(0);}
479cece8 659 ])],
c5829391 660 [ AC_MSG_RESULT(yes) ],
661 [
662 AC_MSG_RESULT(no)
663 AC_MSG_ERROR([*** compiler cannot create working executables, check config.log ***])
1a01a50c 664 ],
665 [ AC_MSG_WARN([cross compiling: not checking compiler sanity]) ]
c5829391 666)
667
b04a9f8c 668dnl Checks for header files.
669AC_CHECK_HEADERS( \
670 bstring.h \
671 crypt.h \
672 dirent.h \
673 endian.h \
674 features.h \
675 floatingpoint.h \
676 getopt.h \
677 glob.h \
678 ia.h \
4c653d8e 679 iaf.h \
b04a9f8c 680 limits.h \
681 login.h \
682 login_cap.h \
683 maillock.h \
684 ndir.h \
685 netdb.h \
686 netgroup.h \
b04a9f8c 687 pam/pam_appl.h \
688 paths.h \
689 pty.h \
690 readpassphrase.h \
691 rpc/types.h \
692 security/pam_appl.h \
f73e2ad7 693 sha2.h \
b04a9f8c 694 shadow.h \
695 stddef.h \
696 stdint.h \
0957c2cf 697 string.h \
b04a9f8c 698 strings.h \
699 sys/audit.h \
700 sys/bitypes.h \
701 sys/bsdtty.h \
702 sys/cdefs.h \
703 sys/dir.h \
704 sys/mman.h \
705 sys/ndir.h \
706 sys/prctl.h \
707 sys/pstat.h \
708 sys/select.h \
709 sys/stat.h \
710 sys/stream.h \
711 sys/stropts.h \
712 sys/strtio.h \
713 sys/sysmacros.h \
714 sys/time.h \
715 sys/timers.h \
716 sys/un.h \
717 time.h \
718 tmpdir.h \
719 ttyent.h \
25dd2ce6 720 unistd.h \
b04a9f8c 721 usersec.h \
722 util.h \
723 utime.h \
724 utmp.h \
725 utmpx.h \
ea76f54c 726 vis.h \
b04a9f8c 727)
ddceb1c8 728
823221b2 729# lastlog.h requires sys/time.h to be included first on Solaris
730AC_CHECK_HEADERS(lastlog.h, [], [], [
731#ifdef HAVE_SYS_TIME_H
732# include <sys/time.h>
733#endif
734])
735
765a24cd 736# sys/ptms.h requires sys/stream.h to be included first on Solaris
737AC_CHECK_HEADERS(sys/ptms.h, [], [], [
738#ifdef HAVE_SYS_STREAM_H
739# include <sys/stream.h>
740#endif
741])
742
a0391976 743# Checks for libraries.
98a7c37b 744AC_CHECK_FUNC(yp_match, , AC_CHECK_LIB(nsl, yp_match))
745AC_CHECK_FUNC(setsockopt, , AC_CHECK_LIB(socket, setsockopt))
2c523de9 746
446227d6 747dnl IRIX and Solaris 2.5.1 have dirname() in libgen
748AC_CHECK_FUNCS(dirname, [AC_CHECK_HEADERS(libgen.h)] ,[
749 AC_CHECK_LIB(gen, dirname,[
750 AC_CACHE_CHECK([for broken dirname],
751 ac_cv_have_broken_dirname, [
752 save_LIBS="$LIBS"
753 LIBS="$LIBS -lgen"
b0e7249f 754 AC_RUN_IFELSE(
755 [AC_LANG_SOURCE([[
446227d6 756#include <libgen.h>
757#include <string.h>
758
759int main(int argc, char **argv) {
760 char *s, buf[32];
761
762 strncpy(buf,"/etc", 32);
763 s = dirname(buf);
764 if (!s || strncmp(s, "/", 32) != 0) {
765 exit(1);
766 } else {
767 exit(0);
768 }
769}
b0e7249f 770 ]])],
771 [ ac_cv_have_broken_dirname="no" ],
772 [ ac_cv_have_broken_dirname="yes" ],
446227d6 773 [ ac_cv_have_broken_dirname="no" ],
446227d6 774 )
775 LIBS="$save_LIBS"
776 ])
777 if test "x$ac_cv_have_broken_dirname" = "xno" ; then
778 LIBS="$LIBS -lgen"
779 AC_DEFINE(HAVE_DIRNAME)
780 AC_CHECK_HEADERS(libgen.h)
781 fi
782 ])
783])
784
785AC_CHECK_FUNC(getspnam, ,
786 AC_CHECK_LIB(gen, getspnam, LIBS="$LIBS -lgen"))
3466e002 787AC_SEARCH_LIBS(basename, gen, AC_DEFINE(HAVE_BASENAME, 1,
788 [Define if you have the basename function.]))
446227d6 789
98a7c37b 790dnl zlib is required
791AC_ARG_WITH(zlib,
792 [ --with-zlib=PATH Use zlib in PATH],
6dd05556 793 [ if test "x$withval" = "xno" ; then
794 AC_MSG_ERROR([*** zlib is required ***])
795 elif test "x$withval" != "xyes"; then
98a7c37b 796 if test -d "$withval/lib"; then
797 if test -n "${need_dash_r}"; then
5a162955 798 LDFLAGS="-L${withval}/lib -R${withval}/lib ${LDFLAGS}"
98a7c37b 799 else
5a162955 800 LDFLAGS="-L${withval}/lib ${LDFLAGS}"
98a7c37b 801 fi
802 else
803 if test -n "${need_dash_r}"; then
5a162955 804 LDFLAGS="-L${withval} -R${withval} ${LDFLAGS}"
98a7c37b 805 else
5a162955 806 LDFLAGS="-L${withval} ${LDFLAGS}"
98a7c37b 807 fi
808 fi
809 if test -d "$withval/include"; then
5a162955 810 CPPFLAGS="-I${withval}/include ${CPPFLAGS}"
98a7c37b 811 else
5a162955 812 CPPFLAGS="-I${withval} ${CPPFLAGS}"
98a7c37b 813 fi
6dd05556 814 fi ]
98a7c37b 815)
816
0a15d73b 817AC_CHECK_LIB(z, deflate, ,
818 [
819 saved_CPPFLAGS="$CPPFLAGS"
820 saved_LDFLAGS="$LDFLAGS"
821 save_LIBS="$LIBS"
822 dnl Check default zlib install dir
823 if test -n "${need_dash_r}"; then
824 LDFLAGS="-L/usr/local/lib -R/usr/local/lib ${saved_LDFLAGS}"
825 else
826 LDFLAGS="-L/usr/local/lib ${saved_LDFLAGS}"
827 fi
828 CPPFLAGS="-I/usr/local/include ${saved_CPPFLAGS}"
829 LIBS="$LIBS -lz"
830 AC_TRY_LINK_FUNC(deflate, AC_DEFINE(HAVE_LIBZ),
831 [
832 AC_MSG_ERROR([*** zlib missing - please install first or check config.log ***])
833 ]
834 )
835 ]
836)
4ad65809 837AC_CHECK_HEADER([zlib.h], ,AC_MSG_ERROR([*** zlib.h missing - please install first or check config.log ***]))
8068d564 838
839AC_ARG_WITH(zlib-version-check,
840 [ --without-zlib-version-check Disable zlib version check],
841 [ if test "x$withval" = "xno" ; then
842 zlib_check_nonfatal=1
843 fi
844 ]
845)
846
5c7fc85d 847AC_MSG_CHECKING(for possibly buggy zlib)
479cece8 848AC_RUN_IFELSE([AC_LANG_SOURCE([[
5c7fc85d 849#include <stdio.h>
4ad65809 850#include <zlib.h>
851int main()
852{
5c7fc85d 853 int a=0, b=0, c=0, d=0, n, v;
854 n = sscanf(ZLIB_VERSION, "%d.%d.%d.%d", &a, &b, &c, &d);
855 if (n != 3 && n != 4)
4ad65809 856 exit(1);
5c7fc85d 857 v = a*1000000 + b*10000 + c*100 + d;
858 fprintf(stderr, "found zlib version %s (%d)\n", ZLIB_VERSION, v);
859
860 /* 1.1.4 is OK */
861 if (a == 1 && b == 1 && c >= 4)
4ad65809 862 exit(0);
5c7fc85d 863
0072b59d 864 /* 1.2.3 and up are OK */
865 if (v >= 1020300)
5c7fc85d 866 exit(0);
867
4ad65809 868 exit(2);
869}
479cece8 870 ]])],
5c7fc85d 871 AC_MSG_RESULT(no),
872 [ AC_MSG_RESULT(yes)
8068d564 873 if test -z "$zlib_check_nonfatal" ; then
874 AC_MSG_ERROR([*** zlib too old - check config.log ***
875Your reported zlib version has known security problems. It's possible your
876vendor has fixed these problems without changing the version number. If you
877are sure this is the case, you can disable the check by running
878"./configure --without-zlib-version-check".
6090bcfe 879If you are in doubt, upgrade zlib to version 1.2.3 or greater.
5c7fc85d 880See http://www.gzip.org/zlib/ for details.])
8068d564 881 else
882 AC_MSG_WARN([zlib version may have security problems])
883 fi
1a01a50c 884 ],
885 [ AC_MSG_WARN([cross compiling: not checking zlib version]) ]
4ad65809 886)
48e7916f 887
2c523de9 888dnl UnixWare 2.x
aff51935 889AC_CHECK_FUNC(strcasecmp,
2c523de9 890 [], [ AC_CHECK_LIB(resolv, strcasecmp, LIBS="$LIBS -lresolv") ]
891)
23361281 892AC_CHECK_FUNCS(utimes,
cda1ebcb 893 [], [ AC_CHECK_LIB(c89, utimes, [AC_DEFINE(HAVE_UTIMES)
894 LIBS="$LIBS -lc89"]) ]
2c523de9 895)
4cca272e 896
7c6d759d 897dnl Checks for libutil functions
898AC_CHECK_HEADERS(libutil.h)
3466e002 899AC_SEARCH_LIBS(login, util bsd, [AC_DEFINE(HAVE_LOGIN, 1,
900 [Define if your libraries define login()])])
7c6d759d 901AC_CHECK_FUNCS(logout updwtmp logwtmp)
902
a738c3b0 903AC_FUNC_STRFTIME
904
84ceda19 905# Check for ALTDIRFUNC glob() extension
906AC_MSG_CHECKING(for GLOB_ALTDIRFUNC support)
907AC_EGREP_CPP(FOUNDIT,
908 [
909 #include <glob.h>
910 #ifdef GLOB_ALTDIRFUNC
911 FOUNDIT
912 #endif
aff51935 913 ],
84ceda19 914 [
3466e002 915 AC_DEFINE(GLOB_HAS_ALTDIRFUNC, 1,
916 [Define if your system glob() function has
917 the GLOB_ALTDIRFUNC extension])
84ceda19 918 AC_MSG_RESULT(yes)
919 ],
920 [
921 AC_MSG_RESULT(no)
922 ]
923)
4cca272e 924
40849fdb 925# Check for g.gl_matchc glob() extension
926AC_MSG_CHECKING(for gl_matchc field in glob_t)
13ff27b7 927AC_TRY_COMPILE(FOUNDIT,
928 [ #include <glob.h> ],
929 [glob_t g; g.gl_matchc = 1;],
aff51935 930 [
3466e002 931 AC_DEFINE(GLOB_HAS_GL_MATCHC, 1,
932 [Define if your system glob() function has
933 gl_matchc options in glob_t])
aff51935 934 AC_MSG_RESULT(yes)
935 ],
936 [
937 AC_MSG_RESULT(no)
938 ]
40849fdb 939)
940
edbe6722 941AC_MSG_CHECKING([whether struct dirent allocates space for d_name])
1a01a50c 942AC_RUN_IFELSE(
479cece8 943 [AC_LANG_SOURCE([[
edbe6722 944#include <sys/types.h>
945#include <dirent.h>
aec4cb4f 946int main(void){struct dirent d;exit(sizeof(d.d_name)<=sizeof(char));}
479cece8 947 ]])],
aff51935 948 [AC_MSG_RESULT(yes)],
edbe6722 949 [
950 AC_MSG_RESULT(no)
3466e002 951 AC_DEFINE(BROKEN_ONE_BYTE_DIRENT_D_NAME, 1,
d08db6d1 952 [Define if your struct dirent expects you to
3466e002 953 allocate extra space for d_name])
1a01a50c 954 ],
82f4e93d 955 [
1a01a50c 956 AC_MSG_WARN([cross compiling: assuming BROKEN_ONE_BYTE_DIRENT_D_NAME])
957 AC_DEFINE(BROKEN_ONE_BYTE_DIRENT_D_NAME)
edbe6722 958 ]
959)
960
419e26e7 961AC_MSG_CHECKING([for /proc/pid/fd directory])
962if test -d "/proc/$$/fd" ; then
3466e002 963 AC_DEFINE(HAVE_PROC_PID, 1, [Define if you have /proc/$pid/fd])
419e26e7 964 AC_MSG_RESULT(yes)
965else
966 AC_MSG_RESULT(no)
967fi
968
278588d8 969# Check whether user wants S/Key support
aff51935 970SKEY_MSG="no"
278588d8 971AC_ARG_WITH(skey,
6ff3d0dc 972 [ --with-skey[[=PATH]] Enable S/Key support (optionally in PATH)],
278588d8 973 [
974 if test "x$withval" != "xno" ; then
975
976 if test "x$withval" != "xyes" ; then
977 CPPFLAGS="$CPPFLAGS -I${withval}/include"
978 LDFLAGS="$LDFLAGS -L${withval}/lib"
979 fi
980
3466e002 981 AC_DEFINE(SKEY, 1, [Define if you want S/Key support])
278588d8 982 LIBS="-lskey $LIBS"
aff51935 983 SKEY_MSG="yes"
82f4e93d 984
ddceb1c8 985 AC_MSG_CHECKING([for s/key support])
b0e7249f 986 AC_LINK_IFELSE(
987 [AC_LANG_SOURCE([[
ddceb1c8 988#include <stdio.h>
989#include <skey.h>
aec4cb4f 990int main() { char *ff = skey_keyinfo(""); ff=""; exit(0); }
b0e7249f 991 ]])],
ddceb1c8 992 [AC_MSG_RESULT(yes)],
278588d8 993 [
ddceb1c8 994 AC_MSG_RESULT(no)
278588d8 995 AC_MSG_ERROR([** Incomplete or missing s/key libraries.])
996 ])
141fc639 997 AC_MSG_CHECKING(if skeychallenge takes 4 arguments)
998 AC_TRY_COMPILE(
999 [#include <stdio.h>
1000 #include <skey.h>],
1001 [(void)skeychallenge(NULL,"name","",0);],
1002 [AC_MSG_RESULT(yes)
3466e002 1003 AC_DEFINE(SKEYCHALLENGE_4ARG, 1,
1004 [Define if your skeychallenge()
1005 function takes 4 arguments (NetBSD)])],
141fc639 1006 [AC_MSG_RESULT(no)]
1007 )
278588d8 1008 fi
1009 ]
1010)
1011
1012# Check whether user wants TCP wrappers support
98a7c37b 1013TCPW_MSG="no"
278588d8 1014AC_ARG_WITH(tcp-wrappers,
6ff3d0dc 1015 [ --with-tcp-wrappers[[=PATH]] Enable tcpwrappers support (optionally in PATH)],
278588d8 1016 [
1017 if test "x$withval" != "xno" ; then
1018 saved_LIBS="$LIBS"
98a7c37b 1019 saved_LDFLAGS="$LDFLAGS"
1020 saved_CPPFLAGS="$CPPFLAGS"
4b492aab 1021 if test -n "${withval}" && \
6cf0200f 1022 test "x${withval}" != "xyes"; then
98a7c37b 1023 if test -d "${withval}/lib"; then
1024 if test -n "${need_dash_r}"; then
5a162955 1025 LDFLAGS="-L${withval}/lib -R${withval}/lib ${LDFLAGS}"
98a7c37b 1026 else
5a162955 1027 LDFLAGS="-L${withval}/lib ${LDFLAGS}"
98a7c37b 1028 fi
1029 else
1030 if test -n "${need_dash_r}"; then
5a162955 1031 LDFLAGS="-L${withval} -R${withval} ${LDFLAGS}"
98a7c37b 1032 else
5a162955 1033 LDFLAGS="-L${withval} ${LDFLAGS}"
98a7c37b 1034 fi
1035 fi
1036 if test -d "${withval}/include"; then
5a162955 1037 CPPFLAGS="-I${withval}/include ${CPPFLAGS}"
98a7c37b 1038 else
5a162955 1039 CPPFLAGS="-I${withval} ${CPPFLAGS}"
98a7c37b 1040 fi
98a7c37b 1041 fi
ddceb1c8 1042 LIBWRAP="-lwrap"
1043 LIBS="$LIBWRAP $LIBS"
278588d8 1044 AC_MSG_CHECKING(for libwrap)
1045 AC_TRY_LINK(
1046 [
77f09220 1047#include <sys/types.h>
1048#include <sys/socket.h>
1049#include <netinet/in.h>
278588d8 1050#include <tcpd.h>
1051 int deny_severity = 0, allow_severity = 0;
1052 ],
1053 [hosts_access(0);],
1054 [
1055 AC_MSG_RESULT(yes)
3466e002 1056 AC_DEFINE(LIBWRAP, 1,
1057 [Define if you want
1058 TCP Wrappers support])
ddceb1c8 1059 AC_SUBST(LIBWRAP)
98a7c37b 1060 TCPW_MSG="yes"
278588d8 1061 ],
1062 [
1063 AC_MSG_ERROR([*** libwrap missing])
1064 ]
1065 )
ddceb1c8 1066 LIBS="$saved_LIBS"
278588d8 1067 fi
1068 ]
1069)
1070
59031773 1071# Check whether user wants libedit support
1072LIBEDIT_MSG="no"
1073AC_ARG_WITH(libedit,
6ff3d0dc 1074 [ --with-libedit[[=PATH]] Enable libedit support for sftp],
59031773 1075 [ if test "x$withval" != "xno" ; then
737edf04 1076 if test "x$withval" != "xyes"; then
bb116c8e 1077 CPPFLAGS="$CPPFLAGS -I${withval}/include"
1078 if test -n "${need_dash_r}"; then
1079 LDFLAGS="-L${withval}/lib -R${withval}/lib ${LDFLAGS}"
1080 else
1081 LDFLAGS="-L${withval}/lib ${LDFLAGS}"
1082 fi
737edf04 1083 fi
59031773 1084 AC_CHECK_LIB(edit, el_init,
3466e002 1085 [ AC_DEFINE(USE_LIBEDIT, 1, [Use libedit for sftp])
59031773 1086 LIBEDIT="-ledit -lcurses"
1087 LIBEDIT_MSG="yes"
1088 AC_SUBST(LIBEDIT)
1089 ],
737edf04 1090 [ AC_MSG_ERROR(libedit not found) ],
1091 [ -lcurses ]
59031773 1092 )
f47ddccb 1093 AC_MSG_CHECKING(if libedit version is compatible)
d92622f9 1094 AC_COMPILE_IFELSE(
1095 [AC_LANG_SOURCE([[
1096#include <histedit.h>
f47ddccb 1097int main(void)
1098{
1099 int i = H_SETSIZE;
1100 el_init("", NULL, NULL, NULL);
1101 exit(0);
1102}
d92622f9 1103 ]])],
f47ddccb 1104 [ AC_MSG_RESULT(yes) ],
1105 [ AC_MSG_RESULT(no)
1106 AC_MSG_ERROR(libedit version is not compatible) ]
1107 )
59031773 1108 fi ]
1109)
1110
7b578f7d 1111AUDIT_MODULE=none
1112AC_ARG_WITH(audit,
1113 [ --with-audit=module Enable EXPERIMENTAL audit support (modules=debug,bsm)],
1114 [
1115 AC_MSG_CHECKING(for supported audit module)
1116 case "$withval" in
1117 bsm)
1118 AC_MSG_RESULT(bsm)
1119 AUDIT_MODULE=bsm
1120 dnl Checks for headers, libs and functions
1121 AC_CHECK_HEADERS(bsm/audit.h, [],
1122 [AC_MSG_ERROR(BSM enabled and bsm/audit.h not found)])
1123 AC_CHECK_LIB(bsm, getaudit, [],
1124 [AC_MSG_ERROR(BSM enabled and required library not found)])
1125 AC_CHECK_FUNCS(getaudit, [],
1126 [AC_MSG_ERROR(BSM enabled and required function not found)])
1127 # These are optional
7939c496 1128 AC_CHECK_FUNCS(getaudit_addr)
3466e002 1129 AC_DEFINE(USE_BSM_AUDIT, 1, [Use BSM audit module])
7b578f7d 1130 ;;
1131 debug)
1132 AUDIT_MODULE=debug
1133 AC_MSG_RESULT(debug)
3466e002 1134 AC_DEFINE(SSH_AUDIT_EVENTS, 1, Use audit debugging module)
7b578f7d 1135 ;;
a2b3321d 1136 no)
d92622f9 1137 AC_MSG_RESULT(no)
a2b3321d 1138 ;;
7b578f7d 1139 *)
1140 AC_MSG_ERROR([Unknown audit module $withval])
1141 ;;
1142 esac ]
1143)
1144
19160674 1145dnl Checks for library functions. Please keep in alphabetical order
b04a9f8c 1146AC_CHECK_FUNCS( \
1147 arc4random \
9a406e1e 1148 asprintf \
b04a9f8c 1149 b64_ntop \
1150 __b64_ntop \
1151 b64_pton \
1152 __b64_pton \
1153 bcopy \
1154 bindresvport_sa \
1155 clock \
1156 closefrom \
1157 dirfd \
b04a9f8c 1158 fchmod \
1159 fchown \
1160 freeaddrinfo \
1161 futimes \
1162 getaddrinfo \
1163 getcwd \
1164 getgrouplist \
1165 getnameinfo \
1166 getopt \
1167 getpeereid \
1168 _getpty \
1169 getrlimit \
1170 getttyent \
1171 glob \
1172 inet_aton \
1173 inet_ntoa \
1174 inet_ntop \
1175 innetgr \
1176 login_getcapbool \
1177 md5_crypt \
1178 memmove \
1179 mkdtemp \
1180 mmap \
1181 ngetaddrinfo \
1182 nsleep \
1183 ogetaddrinfo \
1184 openlog_r \
1185 openpty \
1186 prctl \
1187 pstat \
1188 readpassphrase \
1189 realpath \
1190 recvmsg \
1191 rresvport_af \
1192 sendmsg \
1193 setdtablesize \
1194 setegid \
1195 setenv \
1196 seteuid \
1197 setgroups \
1198 setlogin \
1199 setpcred \
1200 setproctitle \
1201 setregid \
1202 setreuid \
1203 setrlimit \
1204 setsid \
1205 setvbuf \
1206 sigaction \
1207 sigvec \
1208 snprintf \
1209 socketpair \
1210 strdup \
1211 strerror \
1212 strlcat \
1213 strlcpy \
1214 strmode \
1215 strnvis \
1216 strtonum \
1e29a0c8 1217 strtoll \
b04a9f8c 1218 strtoul \
1219 sysconf \
1220 tcgetpgrp \
1221 truncate \
1222 unsetenv \
1223 updwtmpx \
9a406e1e 1224 vasprintf \
b04a9f8c 1225 vhangup \
1226 vsnprintf \
1227 waitpid \
19160674 1228)
98a7c37b 1229
1a086f97 1230# IRIX has a const char return value for gai_strerror()
1231AC_CHECK_FUNCS(gai_strerror,[
1232 AC_DEFINE(HAVE_GAI_STRERROR)
1233 AC_TRY_COMPILE([
1234#include <sys/types.h>
1235#include <sys/socket.h>
1236#include <netdb.h>
1237
1238const char *gai_strerror(int);],[
1239char *str;
1240
1241str = gai_strerror(0);],[
1242 AC_DEFINE(HAVE_CONST_GAI_STRERROR_PROTO, 1,
1243 [Define if gai_strerror() returns const char *])])])
1244
3466e002 1245AC_SEARCH_LIBS(nanosleep, rt posix4, AC_DEFINE(HAVE_NANOSLEEP, 1,
1246 [Some systems put nanosleep outside of libc]))
92b1decf 1247
309709db 1248dnl Make sure prototypes are defined for these before using them.
309709db 1249AC_CHECK_DECL(getrusage, [AC_CHECK_FUNCS(getrusage)])
0957c2cf 1250AC_CHECK_DECL(strsep,
1251 [AC_CHECK_FUNCS(strsep)],
1252 [],
1253 [
1254#ifdef HAVE_STRING_H
1255# include <string.h>
1256#endif
1257 ])
08412d26 1258
3490699c 1259dnl tcsendbreak might be a macro
1260AC_CHECK_DECL(tcsendbreak,
1261 [AC_DEFINE(HAVE_TCSENDBREAK)],
aff51935 1262 [AC_CHECK_FUNCS(tcsendbreak)],
3490699c 1263 [#include <termios.h>]
1264)
1265
41e0e158 1266AC_CHECK_DECLS(h_errno, , ,[#include <netdb.h>])
1267
3f176010 1268AC_CHECK_FUNCS(setresuid, [
1269 dnl Some platorms have setresuid that isn't implemented, test for this
1270 AC_MSG_CHECKING(if setresuid seems to work)
479cece8 1271 AC_RUN_IFELSE(
1272 [AC_LANG_SOURCE([[
9a3fe0e2 1273#include <stdlib.h>
1274#include <errno.h>
1275int main(){errno=0; setresuid(0,0,0); if (errno==ENOSYS) exit(1); else exit(0);}
479cece8 1276 ]])],
3f176010 1277 [AC_MSG_RESULT(yes)],
3466e002 1278 [AC_DEFINE(BROKEN_SETRESUID, 1,
1279 [Define if your setresuid() is broken])
1a01a50c 1280 AC_MSG_RESULT(not implemented)],
1281 [AC_MSG_WARN([cross compiling: not checking setresuid])]
3f176010 1282 )
1283])
9a3fe0e2 1284
3f176010 1285AC_CHECK_FUNCS(setresgid, [
1286 dnl Some platorms have setresgid that isn't implemented, test for this
1287 AC_MSG_CHECKING(if setresgid seems to work)
479cece8 1288 AC_RUN_IFELSE(
1289 [AC_LANG_SOURCE([[
9a3fe0e2 1290#include <stdlib.h>
1291#include <errno.h>
1292int main(){errno=0; setresgid(0,0,0); if (errno==ENOSYS) exit(1); else exit(0);}
479cece8 1293 ]])],
3f176010 1294 [AC_MSG_RESULT(yes)],
3466e002 1295 [AC_DEFINE(BROKEN_SETRESGID, 1,
1296 [Define if your setresgid() is broken])
1a01a50c 1297 AC_MSG_RESULT(not implemented)],
1298 [AC_MSG_WARN([cross compiling: not checking setresuid])]
3f176010 1299 )
1300])
9a3fe0e2 1301
2e73a022 1302dnl Checks for time functions
1d7b9b20 1303AC_CHECK_FUNCS(gettimeofday time)
2e73a022 1304dnl Checks for utmp functions
b03bd394 1305AC_CHECK_FUNCS(endutent getutent getutid getutline pututline setutent)
1d7b9b20 1306AC_CHECK_FUNCS(utmpname)
2e73a022 1307dnl Checks for utmpx functions
b03bd394 1308AC_CHECK_FUNCS(endutxent getutxent getutxid getutxline pututxline )
1d7b9b20 1309AC_CHECK_FUNCS(setutxent utmpxname)
76cd7316 1310
aff51935 1311AC_CHECK_FUNC(daemon,
3466e002 1312 [AC_DEFINE(HAVE_DAEMON, 1, [Define if your libraries define daemon()])],
1313 [AC_CHECK_LIB(bsd, daemon,
1314 [LIBS="$LIBS -lbsd"; AC_DEFINE(HAVE_DAEMON)])]
beb43d31 1315)
1316
aff51935 1317AC_CHECK_FUNC(getpagesize,
3466e002 1318 [AC_DEFINE(HAVE_GETPAGESIZE, 1,
1319 [Define if your libraries define getpagesize()])],
1320 [AC_CHECK_LIB(ucb, getpagesize,
1321 [LIBS="$LIBS -lucb"; AC_DEFINE(HAVE_GETPAGESIZE)])]
aa6bd60a 1322)
1323
2647ae26 1324# Check for broken snprintf
1325if test "x$ac_cv_func_snprintf" = "xyes" ; then
1326 AC_MSG_CHECKING([whether snprintf correctly terminates long strings])
1a01a50c 1327 AC_RUN_IFELSE(
479cece8 1328 [AC_LANG_SOURCE([[
2647ae26 1329#include <stdio.h>
aec4cb4f 1330int main(void){char b[5];snprintf(b,5,"123456789");exit(b[4]!='\0');}
479cece8 1331 ]])],
aff51935 1332 [AC_MSG_RESULT(yes)],
2647ae26 1333 [
1334 AC_MSG_RESULT(no)
3466e002 1335 AC_DEFINE(BROKEN_SNPRINTF, 1,
1336 [Define if your snprintf is busted])
2647ae26 1337 AC_MSG_WARN([****** Your snprintf() function is broken, complain to your vendor])
1a01a50c 1338 ],
1339 [ AC_MSG_WARN([cross compiling: Assuming working snprintf()]) ]
2647ae26 1340 )
1341fi
1342
9a406e1e 1343# If we don't have a working asprintf, then we strongly depend on vsnprintf
1344# returning the right thing on overflow: the number of characters it tried to
1345# create (as per SUSv3)
1346if test "x$ac_cv_func_asprintf" != "xyes" && \
1347 test "x$ac_cv_func_vsnprintf" = "xyes" ; then
1348 AC_MSG_CHECKING([whether vsnprintf returns correct values on overflow])
1349 AC_RUN_IFELSE(
1350 [AC_LANG_SOURCE([[
1351#include <sys/types.h>
1352#include <stdio.h>
1353#include <stdarg.h>
1354
1355int x_snprintf(char *str,size_t count,const char *fmt,...)
1356{
1357 size_t ret; va_list ap;
1358 va_start(ap, fmt); ret = vsnprintf(str, count, fmt, ap); va_end(ap);
1359 return ret;
1360}
1361int main(void)
1362{
1363 char x[1];
1364 exit(x_snprintf(x, 1, "%s %d", "hello", 12345) == 11 ? 0 : 1);
1365} ]])],
1366 [AC_MSG_RESULT(yes)],
1367 [
1368 AC_MSG_RESULT(no)
1369 AC_DEFINE(BROKEN_SNPRINTF, 1,
1370 [Define if your snprintf is busted])
1371 AC_MSG_WARN([****** Your vsnprintf() function is broken, complain to your vendor])
1372 ],
1373 [ AC_MSG_WARN([cross compiling: Assuming working vsnprintf()]) ]
1374 )
1375fi
1376
31b0732a 1377# On systems where [v]snprintf is broken, but is declared in stdio,
1378# check that the fmt argument is const char * or just char *.
1379# This is only useful for when BROKEN_SNPRINTF
1380AC_MSG_CHECKING([whether snprintf can declare const char *fmt])
1381AC_COMPILE_IFELSE([AC_LANG_SOURCE([[#include <stdio.h>
1382 int snprintf(char *a, size_t b, const char *c, ...) { return 0; }
1383 int main(void) { snprintf(0, 0, 0); }
1384 ]])],
1385 [AC_MSG_RESULT(yes)
1386 AC_DEFINE(SNPRINTF_CONST, [const],
1387 [Define as const if snprintf() can declare const char *fmt])],
1388 [AC_MSG_RESULT(no)
1389 AC_DEFINE(SNPRINTF_CONST, [/* not const */])])
1390
2f6f9cff 1391# Check for missing getpeereid (or equiv) support
1392NO_PEERCHECK=""
1393if test "x$ac_cv_func_getpeereid" != "xyes" ; then
1394 AC_MSG_CHECKING([whether system supports SO_PEERCRED getsockopt])
1395 AC_TRY_COMPILE(
1396 [#include <sys/types.h>
1397 #include <sys/socket.h>],
1398 [int i = SO_PEERCRED;],
62eb7db4 1399 [ AC_MSG_RESULT(yes)
3466e002 1400 AC_DEFINE(HAVE_SO_PEERCRED, 1, [Have PEERCRED socket option])
62eb7db4 1401 ],
2f6f9cff 1402 [AC_MSG_RESULT(no)
1403 NO_PEERCHECK=1]
1404 )
1405fi
1406
70e7d0b0 1407dnl see whether mkstemp() requires XXXXXX
1408if test "x$ac_cv_func_mkdtemp" = "xyes" ; then
1409AC_MSG_CHECKING([for (overly) strict mkstemp])
b0e7249f 1410AC_RUN_IFELSE(
1411 [AC_LANG_SOURCE([[
70e7d0b0 1412#include <stdlib.h>
1413main() { char template[]="conftest.mkstemp-test";
1414if (mkstemp(template) == -1)
1415 exit(1);
1416unlink(template); exit(0);
1417}
b0e7249f 1418 ]])],
70e7d0b0 1419 [
1420 AC_MSG_RESULT(no)
1421 ],
aff51935 1422 [
70e7d0b0 1423 AC_MSG_RESULT(yes)
3466e002 1424 AC_DEFINE(HAVE_STRICT_MKSTEMP, 1, [Silly mkstemp()])
70e7d0b0 1425 ],
1426 [
1427 AC_MSG_RESULT(yes)
1428 AC_DEFINE(HAVE_STRICT_MKSTEMP)
aff51935 1429 ]
70e7d0b0 1430)
1431fi
1432
eacb954e 1433dnl make sure that openpty does not reacquire controlling terminal
1434if test ! -z "$check_for_openpty_ctty_bug"; then
1435 AC_MSG_CHECKING(if openpty correctly handles controlling tty)
b0e7249f 1436 AC_RUN_IFELSE(
1437 [AC_LANG_SOURCE([[
eacb954e 1438#include <stdio.h>
1439#include <sys/fcntl.h>
1440#include <sys/types.h>
1441#include <sys/wait.h>
1442
1443int
1444main()
1445{
1446 pid_t pid;
1447 int fd, ptyfd, ttyfd, status;
1448
1449 pid = fork();
1450 if (pid < 0) { /* failed */
1451 exit(1);
1452 } else if (pid > 0) { /* parent */
1453 waitpid(pid, &status, 0);
aff51935 1454 if (WIFEXITED(status))
eacb954e 1455 exit(WEXITSTATUS(status));
1456 else
1457 exit(2);
1458 } else { /* child */
1459 close(0); close(1); close(2);
1460 setsid();
1461 openpty(&ptyfd, &ttyfd, NULL, NULL, NULL);
1462 fd = open("/dev/tty", O_RDWR | O_NOCTTY);
1463 if (fd >= 0)
1464 exit(3); /* Acquired ctty: broken */
1465 else
1466 exit(0); /* Did not acquire ctty: OK */
1467 }
1468}
b0e7249f 1469 ]])],
eacb954e 1470 [
1471 AC_MSG_RESULT(yes)
1472 ],
1473 [
1474 AC_MSG_RESULT(no)
1475 AC_DEFINE(SSHD_ACQUIRES_CTTY)
b0e7249f 1476 ],
1477 [
1478 AC_MSG_RESULT(cross-compiling, assuming yes)
eacb954e 1479 ]
1480 )
1481fi
1482
4b492aab 1483if test "x$ac_cv_func_getaddrinfo" = "xyes" && \
1484 test "x$check_for_hpux_broken_getaddrinfo" = "x1"; then
2fe51906 1485 AC_MSG_CHECKING(if getaddrinfo seems to work)
b0e7249f 1486 AC_RUN_IFELSE(
1487 [AC_LANG_SOURCE([[
2fe51906 1488#include <stdio.h>
1489#include <sys/socket.h>
1490#include <netdb.h>
1491#include <errno.h>
1492#include <netinet/in.h>
1493
1494#define TEST_PORT "2222"
1495
1496int
1497main(void)
1498{
1499 int err, sock;
1500 struct addrinfo *gai_ai, *ai, hints;
1501 char ntop[NI_MAXHOST], strport[NI_MAXSERV], *name = NULL;
1502
1503 memset(&hints, 0, sizeof(hints));
1504 hints.ai_family = PF_UNSPEC;
1505 hints.ai_socktype = SOCK_STREAM;
1506 hints.ai_flags = AI_PASSIVE;
1507
1508 err = getaddrinfo(name, TEST_PORT, &hints, &gai_ai);
1509 if (err != 0) {
1510 fprintf(stderr, "getaddrinfo failed (%s)", gai_strerror(err));
1511 exit(1);
1512 }
1513
1514 for (ai = gai_ai; ai != NULL; ai = ai->ai_next) {
1515 if (ai->ai_family != AF_INET6)
1516 continue;
1517
1518 err = getnameinfo(ai->ai_addr, ai->ai_addrlen, ntop,
1519 sizeof(ntop), strport, sizeof(strport),
1520 NI_NUMERICHOST|NI_NUMERICSERV);
1521
1522 if (err != 0) {
1523 if (err == EAI_SYSTEM)
1524 perror("getnameinfo EAI_SYSTEM");
1525 else
1526 fprintf(stderr, "getnameinfo failed: %s\n",
1527 gai_strerror(err));
1528 exit(2);
1529 }
1530
1531 sock = socket(ai->ai_family, ai->ai_socktype, ai->ai_protocol);
1532 if (sock < 0)
1533 perror("socket");
1534 if (bind(sock, ai->ai_addr, ai->ai_addrlen) < 0) {
1535 if (errno == EBADF)
1536 exit(3);
1537 }
1538 }
1539 exit(0);
1540}
b0e7249f 1541 ]])],
2fe51906 1542 [
1543 AC_MSG_RESULT(yes)
1544 ],
1545 [
1546 AC_MSG_RESULT(no)
1547 AC_DEFINE(BROKEN_GETADDRINFO)
b0e7249f 1548 ],
1549 [
1550 AC_MSG_RESULT(cross-compiling, assuming yes)
2fe51906 1551 ]
1552 )
1553fi
1554
4b492aab 1555if test "x$ac_cv_func_getaddrinfo" = "xyes" && \
1556 test "x$check_for_aix_broken_getaddrinfo" = "x1"; then
5ccf88cb 1557 AC_MSG_CHECKING(if getaddrinfo seems to work)
b0e7249f 1558 AC_RUN_IFELSE(
1559 [AC_LANG_SOURCE([[
5ccf88cb 1560#include <stdio.h>
1561#include <sys/socket.h>
1562#include <netdb.h>
1563#include <errno.h>
1564#include <netinet/in.h>
1565
1566#define TEST_PORT "2222"
1567
1568int
1569main(void)
1570{
1571 int err, sock;
1572 struct addrinfo *gai_ai, *ai, hints;
1573 char ntop[NI_MAXHOST], strport[NI_MAXSERV], *name = NULL;
1574
1575 memset(&hints, 0, sizeof(hints));
1576 hints.ai_family = PF_UNSPEC;
1577 hints.ai_socktype = SOCK_STREAM;
1578 hints.ai_flags = AI_PASSIVE;
1579
1580 err = getaddrinfo(name, TEST_PORT, &hints, &gai_ai);
1581 if (err != 0) {
1582 fprintf(stderr, "getaddrinfo failed (%s)", gai_strerror(err));
1583 exit(1);
1584 }
1585
1586 for (ai = gai_ai; ai != NULL; ai = ai->ai_next) {
1587 if (ai->ai_family != AF_INET && ai->ai_family != AF_INET6)
1588 continue;
1589
1590 err = getnameinfo(ai->ai_addr, ai->ai_addrlen, ntop,
1591 sizeof(ntop), strport, sizeof(strport),
1592 NI_NUMERICHOST|NI_NUMERICSERV);
1593
1594 if (ai->ai_family == AF_INET && err != 0) {
1595 perror("getnameinfo");
1596 exit(2);
1597 }
1598 }
1599 exit(0);
1600}
b0e7249f 1601 ]])],
5ccf88cb 1602 [
1603 AC_MSG_RESULT(yes)
3466e002 1604 AC_DEFINE(AIX_GETNAMEINFO_HACK, 1,
1605 [Define if you have a getaddrinfo that fails
1606 for the all-zeros IPv6 address])
5ccf88cb 1607 ],
1608 [
1609 AC_MSG_RESULT(no)
1610 AC_DEFINE(BROKEN_GETADDRINFO)
b0e7249f 1611 ],
1612 AC_MSG_RESULT(cross-compiling, assuming no)
5ccf88cb 1613 ]
1614 )
1615fi
1616
b29fd59f 1617if test "x$check_for_conflicting_getspnam" = "x1"; then
1618 AC_MSG_CHECKING(for conflicting getspnam in shadow.h)
1619 AC_COMPILE_IFELSE(
1620 [
1621#include <shadow.h>
1622int main(void) {exit(0);}
1623 ],
1624 [
1625 AC_MSG_RESULT(no)
1626 ],
1627 [
1628 AC_MSG_RESULT(yes)
1629 AC_DEFINE(GETSPNAM_CONFLICTING_DEFS, 1,
1630 [Conflicting defs for getspnam])
1631 ]
1632 )
1633fi
1634
7f8f5e00 1635AC_FUNC_GETPGRP
1636
717057b6 1637# Check for PAM libs
cbd7492e 1638PAM_MSG="no"
a0391976 1639AC_ARG_WITH(pam,
717057b6 1640 [ --with-pam Enable PAM support ],
a0391976 1641 [
717057b6 1642 if test "x$withval" != "xno" ; then
2511d104 1643 if test "x$ac_cv_header_security_pam_appl_h" != "xyes" && \
1644 test "x$ac_cv_header_pam_pam_appl_h" != "xyes" ; then
717057b6 1645 AC_MSG_ERROR([PAM headers not found])
1646 fi
a0391976 1647
717057b6 1648 AC_CHECK_LIB(dl, dlopen, , )
1649 AC_CHECK_LIB(pam, pam_set_item, , AC_MSG_ERROR([*** libpam missing]))
1650 AC_CHECK_FUNCS(pam_getenvlist)
749560dd 1651 AC_CHECK_FUNCS(pam_putenv)
2b763e31 1652
717057b6 1653 PAM_MSG="yes"
4cb5ffa0 1654
3466e002 1655 AC_DEFINE(USE_PAM, 1,
1656 [Define if you want to enable PAM support])
98f2d9d5 1657 if test $ac_cv_lib_dl_dlopen = yes; then
1658 LIBPAM="-lpam -ldl"
1659 else
1660 LIBPAM="-lpam"
1661 fi
1662 AC_SUBST(LIBPAM)
717057b6 1663 fi
1664 ]
1665)
cbd7492e 1666
717057b6 1667# Check for older PAM
1668if test "x$PAM_MSG" = "xyes" ; then
a0391976 1669 # Check PAM strerror arguments (old PAM)
1670 AC_MSG_CHECKING([whether pam_strerror takes only one argument])
1671 AC_TRY_COMPILE(
1672 [
18ba2aab 1673#include <stdlib.h>
2511d104 1674#if defined(HAVE_SECURITY_PAM_APPL_H)
18ba2aab 1675#include <security/pam_appl.h>
2511d104 1676#elif defined (HAVE_PAM_PAM_APPL_H)
1677#include <pam/pam_appl.h>
1678#endif
aff51935 1679 ],
1680 [(void)pam_strerror((pam_handle_t *)NULL, -1);],
a0391976 1681 [AC_MSG_RESULT(no)],
1682 [
3466e002 1683 AC_DEFINE(HAVE_OLD_PAM, 1,
1684 [Define if you have an old version of PAM
1685 which takes only one argument to pam_strerror])
a0391976 1686 AC_MSG_RESULT(yes)
cbd7492e 1687 PAM_MSG="yes (old library)"
a0391976 1688 ]
717057b6 1689 )
a0391976 1690fi
1691
5b991353 1692# Search for OpenSSL
1693saved_CPPFLAGS="$CPPFLAGS"
1694saved_LDFLAGS="$LDFLAGS"
a0391976 1695AC_ARG_WITH(ssl-dir,
1696 [ --with-ssl-dir=PATH Specify path to OpenSSL installation ],
1697 [
e9e4a1c7 1698 if test "x$withval" != "xno" ; then
99eb0f64 1699 case "$withval" in
1700 # Relative paths
1701 ./*|../*) withval="`pwd`/$withval"
1702 esac
5b991353 1703 if test -d "$withval/lib"; then
1704 if test -n "${need_dash_r}"; then
1705 LDFLAGS="-L${withval}/lib -R${withval}/lib ${LDFLAGS}"
1706 else
1707 LDFLAGS="-L${withval}/lib ${LDFLAGS}"
d6f13fbb 1708 fi
1709 else
5b991353 1710 if test -n "${need_dash_r}"; then
1711 LDFLAGS="-L${withval} -R${withval} ${LDFLAGS}"
1712 else
1713 LDFLAGS="-L${withval} ${LDFLAGS}"
d6f13fbb 1714 fi
1715 fi
5b991353 1716 if test -d "$withval/include"; then
1717 CPPFLAGS="-I${withval}/include ${CPPFLAGS}"
d6f13fbb 1718 else
5b991353 1719 CPPFLAGS="-I${withval} ${CPPFLAGS}"
58d100bf 1720 fi
a0391976 1721 fi
5b991353 1722 ]
1723)
5486a457 1724LIBS="-lcrypto $LIBS"
3466e002 1725AC_TRY_LINK_FUNC(RAND_add, AC_DEFINE(HAVE_OPENSSL, 1,
1726 [Define if your ssl headers are included
1727 with #include <openssl/header.h>]),
d45e3d76 1728 [
5b991353 1729 dnl Check default openssl install dir
1730 if test -n "${need_dash_r}"; then
1731 LDFLAGS="-L/usr/local/ssl/lib -R/usr/local/ssl/lib ${saved_LDFLAGS}"
d45e3d76 1732 else
5b991353 1733 LDFLAGS="-L/usr/local/ssl/lib ${saved_LDFLAGS}"
d45e3d76 1734 fi
5b991353 1735 CPPFLAGS="-I/usr/local/ssl/include ${saved_CPPFLAGS}"
1736 AC_TRY_LINK_FUNC(RAND_add, AC_DEFINE(HAVE_OPENSSL),
1737 [
1738 AC_MSG_ERROR([*** Can't find recent OpenSSL libcrypto (see config.log for details) ***])
1739 ]
1740 )
1741 ]
1742)
1743
cd018561 1744# Determine OpenSSL header version
1745AC_MSG_CHECKING([OpenSSL header version])
1a01a50c 1746AC_RUN_IFELSE(
479cece8 1747 [AC_LANG_SOURCE([[
cd018561 1748#include <stdio.h>
1749#include <string.h>
1750#include <openssl/opensslv.h>
1751#define DATA "conftest.sslincver"
1752int main(void) {
aff51935 1753 FILE *fd;
1754 int rc;
cd018561 1755
aff51935 1756 fd = fopen(DATA,"w");
1757 if(fd == NULL)
1758 exit(1);
cd018561 1759
1760 if ((rc = fprintf(fd ,"%x (%s)\n", OPENSSL_VERSION_NUMBER, OPENSSL_VERSION_TEXT)) <0)
1761 exit(1);
1762
1763 exit(0);
1764}
479cece8 1765 ]])],
cd018561 1766 [
1767 ssl_header_ver=`cat conftest.sslincver`
1768 AC_MSG_RESULT($ssl_header_ver)
1769 ],
1770 [
1771 AC_MSG_RESULT(not found)
1772 AC_MSG_ERROR(OpenSSL version header not found.)
1a01a50c 1773 ],
1774 [
1775 AC_MSG_WARN([cross compiling: not checking])
cd018561 1776 ]
1777)
1778
1779# Determine OpenSSL library version
1780AC_MSG_CHECKING([OpenSSL library version])
1a01a50c 1781AC_RUN_IFELSE(
479cece8 1782 [AC_LANG_SOURCE([[
cd018561 1783#include <stdio.h>
1784#include <string.h>
1785#include <openssl/opensslv.h>
1786#include <openssl/crypto.h>
1787#define DATA "conftest.ssllibver"
1788int main(void) {
aff51935 1789 FILE *fd;
1790 int rc;
cd018561 1791
aff51935 1792 fd = fopen(DATA,"w");
1793 if(fd == NULL)
1794 exit(1);
cd018561 1795
1796 if ((rc = fprintf(fd ,"%x (%s)\n", SSLeay(), SSLeay_version(SSLEAY_VERSION))) <0)
1797 exit(1);
1798
1799 exit(0);
1800}
479cece8 1801 ]])],
cd018561 1802 [
1803 ssl_library_ver=`cat conftest.ssllibver`
1804 AC_MSG_RESULT($ssl_library_ver)
1805 ],
1806 [
1807 AC_MSG_RESULT(not found)
1808 AC_MSG_ERROR(OpenSSL library not found.)
1a01a50c 1809 ],
1810 [
1811 AC_MSG_WARN([cross compiling: not checking])
cd018561 1812 ]
1813)
58d100bf 1814
9780116c 1815# Sanity check OpenSSL headers
1816AC_MSG_CHECKING([whether OpenSSL's headers match the library])
1a01a50c 1817AC_RUN_IFELSE(
479cece8 1818 [AC_LANG_SOURCE([[
9780116c 1819#include <string.h>
1820#include <openssl/opensslv.h>
aec4cb4f 1821int main(void) { exit(SSLeay() == OPENSSL_VERSION_NUMBER ? 0 : 1); }
479cece8 1822 ]])],
9780116c 1823 [
1824 AC_MSG_RESULT(yes)
1825 ],
1826 [
1827 AC_MSG_RESULT(no)
e15ba28b 1828 AC_MSG_ERROR([Your OpenSSL headers do not match your library.
1829Check config.log for details.
1830Also see contrib/findssl.sh for help identifying header/library mismatches.])
1a01a50c 1831 ],
1832 [
1833 AC_MSG_WARN([cross compiling: not checking])
9780116c 1834 ]
1835)
1836
c7ad0d99 1837AC_ARG_WITH(ssl-engine,
1838 [ --with-ssl-engine Enable OpenSSL (hardware) ENGINE support ],
1839 [ if test "x$withval" != "xno" ; then
1840 AC_MSG_CHECKING(for OpenSSL ENGINE support)
1841 AC_TRY_COMPILE(
1842 [ #include <openssl/engine.h>],
1843 [
1844int main(void){ENGINE_load_builtin_engines();ENGINE_register_all_complete();}
1845 ],
1846 [ AC_MSG_RESULT(yes)
1847 AC_DEFINE(USE_OPENSSL_ENGINE, 1,
1848 [Enable OpenSSL engine support])
1849 ],
1850 [ AC_MSG_ERROR(OpenSSL ENGINE support not found)]
1851 )
1852 fi ]
1853)
1854
e5146707 1855# Check for OpenSSL without EVP_aes_{192,256}_cbc
1856AC_MSG_CHECKING([whether OpenSSL has crippled AES support])
1857AC_COMPILE_IFELSE(
1858 [AC_LANG_SOURCE([[
1859#include <string.h>
1860#include <openssl/evp.h>
300ea548 1861int main(void) { exit(EVP_aes_192_cbc() == NULL || EVP_aes_256_cbc() == NULL);}
e5146707 1862 ]])],
1863 [
1864 AC_MSG_RESULT(no)
1865 ],
1866 [
1867 AC_MSG_RESULT(yes)
1868 AC_DEFINE(OPENSSL_LOBOTOMISED_AES, 1,
1869 [libcrypto is missing AES 192 and 256 bit functions])
1870 ]
1871)
1872
5486a457 1873# Some systems want crypt() from libcrypt, *not* the version in OpenSSL,
1874# because the system crypt() is more featureful.
1875if test "x$check_for_libcrypt_before" = "x1"; then
1876 AC_CHECK_LIB(crypt, crypt)
1877fi
1878
aff51935 1879# Some Linux systems (Slackware) need crypt() from libcrypt, *not* the
8087c5ee 1880# version in OpenSSL.
05114c74 1881if test "x$check_for_libcrypt_later" = "x1"; then
20cad736 1882 AC_CHECK_LIB(crypt, crypt, LIBS="$LIBS -lcrypt")
717057b6 1883fi
1884
13ff27b7 1885# Search for SHA256 support in libc and/or OpenSSL
1886AC_CHECK_FUNCS(SHA256_Update EVP_sha256)
1887
4c653d8e 1888AC_CHECK_LIB(iaf, ia_openinfo)
f1b0ecc3 1889
1890### Configure cryptographic random number support
1891
1892# Check wheter OpenSSL seeds itself
1893AC_MSG_CHECKING([whether OpenSSL's PRNG is internally seeded])
1a01a50c 1894AC_RUN_IFELSE(
479cece8 1895 [AC_LANG_SOURCE([[
f1b0ecc3 1896#include <string.h>
1897#include <openssl/rand.h>
aec4cb4f 1898int main(void) { exit(RAND_status() == 1 ? 0 : 1); }
479cece8 1899 ]])],
f1b0ecc3 1900 [
1901 OPENSSL_SEEDS_ITSELF=yes
1902 AC_MSG_RESULT(yes)
1903 ],
1904 [
1905 AC_MSG_RESULT(no)
1906 # Default to use of the rand helper if OpenSSL doesn't
1907 # seed itself
1908 USE_RAND_HELPER=yes
1a01a50c 1909 ],
1910 [
1911 AC_MSG_WARN([cross compiling: assuming yes])
1912 # This is safe, since all recent OpenSSL versions will
82f4e93d 1913 # complain at runtime if not seeded correctly.
1a01a50c 1914 OPENSSL_SEEDS_ITSELF=yes
f1b0ecc3 1915 ]
1916)
1917
1918
1919# Do we want to force the use of the rand helper?
1920AC_ARG_WITH(rand-helper,
1921 [ --with-rand-helper Use subprocess to gather strong randomness ],
1922 [
1923 if test "x$withval" = "xno" ; then
aff51935 1924 # Force use of OpenSSL's internal RNG, even if
f1b0ecc3 1925 # the previous test showed it to be unseeded.
1926 if test -z "$OPENSSL_SEEDS_ITSELF" ; then
1927 AC_MSG_WARN([*** Forcing use of OpenSSL's non-self-seeding PRNG])
1928 OPENSSL_SEEDS_ITSELF=yes
1929 USE_RAND_HELPER=""
1930 fi
1931 else
1932 USE_RAND_HELPER=yes
1933 fi
1934 ],
82f4e93d 1935)
f1b0ecc3 1936
1937# Which randomness source do we use?
4b492aab 1938if test ! -z "$OPENSSL_SEEDS_ITSELF" && test -z "$USE_RAND_HELPER" ; then
f1b0ecc3 1939 # OpenSSL only
3466e002 1940 AC_DEFINE(OPENSSL_PRNG_ONLY, 1,
1941 [Define if you want OpenSSL's internally seeded PRNG only])
f1b0ecc3 1942 RAND_MSG="OpenSSL internal ONLY"
1943 INSTALL_SSH_RAND_HELPER=""
70e2f2f3 1944elif test ! -z "$USE_RAND_HELPER" ; then
1945 # install rand helper
f1b0ecc3 1946 RAND_MSG="ssh-rand-helper"
1947 INSTALL_SSH_RAND_HELPER="yes"
1948fi
1949AC_SUBST(INSTALL_SSH_RAND_HELPER)
1950
1951### Configuration of ssh-rand-helper
1952
1953# PRNGD TCP socket
1954AC_ARG_WITH(prngd-port,
1955 [ --with-prngd-port=PORT read entropy from PRNGD/EGD TCP localhost:PORT],
1956 [
eb5d7ff6 1957 case "$withval" in
1958 no)
1959 withval=""
1960 ;;
1961 [[0-9]]*)
1962 ;;
1963 *)
1964 AC_MSG_ERROR(You must specify a numeric port number for --with-prngd-port)
1965 ;;
1966 esac
1967 if test ! -z "$withval" ; then
f1b0ecc3 1968 PRNGD_PORT="$withval"
3466e002 1969 AC_DEFINE_UNQUOTED(PRNGD_PORT, $PRNGD_PORT,
1970 [Port number of PRNGD/EGD random number socket])
f1b0ecc3 1971 fi
1972 ]
1973)
1974
1975# PRNGD Unix domain socket
1976AC_ARG_WITH(prngd-socket,
1977 [ --with-prngd-socket=FILE read entropy from PRNGD/EGD socket FILE (default=/var/run/egd-pool)],
1978 [
eb5d7ff6 1979 case "$withval" in
1980 yes)
f1b0ecc3 1981 withval="/var/run/egd-pool"
eb5d7ff6 1982 ;;
1983 no)
1984 withval=""
1985 ;;
1986 /*)
1987 ;;
1988 *)
1989 AC_MSG_ERROR(You must specify an absolute path to the entropy socket)
1990 ;;
1991 esac
1992
1993 if test ! -z "$withval" ; then
f1b0ecc3 1994 if test ! -z "$PRNGD_PORT" ; then
1995 AC_MSG_ERROR(You may not specify both a PRNGD/EGD port and socket)
1996 fi
906e811b 1997 if test ! -r "$withval" ; then
f1b0ecc3 1998 AC_MSG_WARN(Entropy socket is not readable)
1999 fi
2000 PRNGD_SOCKET="$withval"
3466e002 2001 AC_DEFINE_UNQUOTED(PRNGD_SOCKET, "$PRNGD_SOCKET",
2002 [Location of PRNGD/EGD random number socket])
f1b0ecc3 2003 fi
ddceb1c8 2004 ],
2005 [
2006 # Check for existing socket only if we don't have a random device already
2007 if test "$USE_RAND_HELPER" = yes ; then
2008 AC_MSG_CHECKING(for PRNGD/EGD socket)
2009 # Insert other locations here
2010 for sock in /var/run/egd-pool /dev/egd-pool /etc/entropy; do
2011 if test -r $sock && $TEST_MINUS_S_SH -c "test -S $sock -o -p $sock" ; then
2012 PRNGD_SOCKET="$sock"
2013 AC_DEFINE_UNQUOTED(PRNGD_SOCKET, "$PRNGD_SOCKET")
2014 break;
2015 fi
2016 done
2017 if test ! -z "$PRNGD_SOCKET" ; then
2018 AC_MSG_RESULT($PRNGD_SOCKET)
2019 else
2020 AC_MSG_RESULT(not found)
2021 fi
2022 fi
f1b0ecc3 2023 ]
2024)
2025
2026# Change default command timeout for hashing entropy source
2027entropy_timeout=200
2028AC_ARG_WITH(entropy-timeout,
2029 [ --with-entropy-timeout Specify entropy gathering command timeout (msec)],
2030 [
6cf0200f 2031 if test -n "$withval" && test "x$withval" != "xno" && \
2032 test "x${withval}" != "xyes"; then
f1b0ecc3 2033 entropy_timeout=$withval
2034 fi
82f4e93d 2035 ]
f1b0ecc3 2036)
3466e002 2037AC_DEFINE_UNQUOTED(ENTROPY_TIMEOUT_MSEC, $entropy_timeout,
2038 [Builtin PRNG command timeout])
f1b0ecc3 2039
fd3cbf67 2040SSH_PRIVSEP_USER=sshd
9a0fbcb3 2041AC_ARG_WITH(privsep-user,
5222e7ef 2042 [ --with-privsep-user=user Specify non-privileged user for privilege separation],
9a0fbcb3 2043 [
6cf0200f 2044 if test -n "$withval" && test "x$withval" != "xno" && \
2045 test "x${withval}" != "xyes"; then
fd3cbf67 2046 SSH_PRIVSEP_USER=$withval
9a0fbcb3 2047 fi
82f4e93d 2048 ]
9a0fbcb3 2049)
3466e002 2050AC_DEFINE_UNQUOTED(SSH_PRIVSEP_USER, "$SSH_PRIVSEP_USER",
2051 [non-privileged user for privilege separation])
fd3cbf67 2052AC_SUBST(SSH_PRIVSEP_USER)
9a0fbcb3 2053
81dadca3 2054# We do this little dance with the search path to insure
2055# that programs that we select for use by installed programs
2056# (which may be run by the super-user) come from trusted
2057# locations before they come from the user's private area.
2058# This should help avoid accidentally configuring some
2059# random version of a program in someone's personal bin.
2060
2061OPATH=$PATH
2062PATH=/bin:/usr/bin
f95c8ce8 2063test -h /bin 2> /dev/null && PATH=/usr/bin
81dadca3 2064test -d /sbin && PATH=$PATH:/sbin
2065test -d /usr/sbin && PATH=$PATH:/usr/sbin
2066PATH=$PATH:/etc:$OPATH
2067
aff51935 2068# These programs are used by the command hashing source to gather entropy
f1b0ecc3 2069OSSH_PATH_ENTROPY_PROG(PROG_LS, ls)
2070OSSH_PATH_ENTROPY_PROG(PROG_NETSTAT, netstat)
2071OSSH_PATH_ENTROPY_PROG(PROG_ARP, arp)
2072OSSH_PATH_ENTROPY_PROG(PROG_IFCONFIG, ifconfig)
2073OSSH_PATH_ENTROPY_PROG(PROG_JSTAT, jstat)
2074OSSH_PATH_ENTROPY_PROG(PROG_PS, ps)
2075OSSH_PATH_ENTROPY_PROG(PROG_SAR, sar)
2076OSSH_PATH_ENTROPY_PROG(PROG_W, w)
2077OSSH_PATH_ENTROPY_PROG(PROG_WHO, who)
2078OSSH_PATH_ENTROPY_PROG(PROG_LAST, last)
2079OSSH_PATH_ENTROPY_PROG(PROG_LASTLOG, lastlog)
2080OSSH_PATH_ENTROPY_PROG(PROG_DF, df)
2081OSSH_PATH_ENTROPY_PROG(PROG_VMSTAT, vmstat)
2082OSSH_PATH_ENTROPY_PROG(PROG_UPTIME, uptime)
2083OSSH_PATH_ENTROPY_PROG(PROG_IPCS, ipcs)
2084OSSH_PATH_ENTROPY_PROG(PROG_TAIL, tail)
81dadca3 2085# restore PATH
2086PATH=$OPATH
f1b0ecc3 2087
2088# Where does ssh-rand-helper get its randomness from?
2089INSTALL_SSH_PRNG_CMDS=""
2090if test ! -z "$INSTALL_SSH_RAND_HELPER" ; then
2091 if test ! -z "$PRNGD_PORT" ; then
2092 RAND_HELPER_MSG="TCP localhost:$PRNGD_PORT"
2093 elif test ! -z "$PRNGD_SOCKET" ; then
2094 RAND_HELPER_MSG="Unix domain socket \"$PRNGD_SOCKET\""
2095 else
2096 RAND_HELPER_MSG="Command hashing (timeout $entropy_timeout)"
2097 RAND_HELPER_CMDHASH=yes
2098 INSTALL_SSH_PRNG_CMDS="yes"
2099 fi
2100fi
2101AC_SUBST(INSTALL_SSH_PRNG_CMDS)
2102
2103
66d6c27e 2104# Cheap hack to ensure NEWS-OS libraries are arranged right.
2105if test ! -z "$SONY" ; then
2106 LIBS="$LIBS -liberty";
2107fi
2108
9a406e1e 2109# Check for long long datatypes
2110AC_CHECK_TYPES([long long, unsigned long long, long double])
2111
2112# Check datatype sizes
976f7e19 2113AC_CHECK_SIZEOF(char, 1)
2b942fe0 2114AC_CHECK_SIZEOF(short int, 2)
2115AC_CHECK_SIZEOF(int, 4)
2116AC_CHECK_SIZEOF(long int, 4)
2117AC_CHECK_SIZEOF(long long int, 8)
2118
52f1ccb2 2119# Sanity check long long for some platforms (AIX)
2120if test "x$ac_cv_sizeof_long_long_int" = "x4" ; then
2121 ac_cv_sizeof_long_long_int=0
2122fi
2123
90f15776 2124# compute LLONG_MIN and LLONG_MAX if we don't know them.
2125if test -z "$have_llong_max"; then
2126 AC_MSG_CHECKING([for max value of long long])
2127 AC_RUN_IFELSE(
2128 [AC_LANG_SOURCE([[
2129#include <stdio.h>
2130/* Why is this so damn hard? */
2131#ifdef __GNUC__
2132# undef __GNUC__
2133#endif
2134#define __USE_ISOC99
2135#include <limits.h>
2136#define DATA "conftest.llminmax"
055252ed 2137#define my_abs(a) ((a) < 0 ? ((a) * -1) : (a))
2138
2139/*
2140 * printf in libc on some platforms (eg old Tru64) does not understand %lld so
2141 * we do this the hard way.
2142 */
2143static int
2144fprint_ll(FILE *f, long long n)
2145{
2146 unsigned int i;
2147 int l[sizeof(long long) * 8];
2148
2149 if (n < 0)
2150 if (fprintf(f, "-") < 0)
2151 return -1;
2152 for (i = 0; n != 0; i++) {
2153 l[i] = my_abs(n % 10);
2154 n /= 10;
2155 }
2156 do {
2157 if (fprintf(f, "%d", l[--i]) < 0)
2158 return -1;
2159 } while (i != 0);
2160 if (fprintf(f, " ") < 0)
2161 return -1;
2162 return 0;
2163}
2164
90f15776 2165int main(void) {
2166 FILE *f;
2167 long long i, llmin, llmax = 0;
2168
2169 if((f = fopen(DATA,"w")) == NULL)
2170 exit(1);
2171
2172#if defined(LLONG_MIN) && defined(LLONG_MAX)
2173 fprintf(stderr, "Using system header for LLONG_MIN and LLONG_MAX\n");
2174 llmin = LLONG_MIN;
2175 llmax = LLONG_MAX;
2176#else
2177 fprintf(stderr, "Calculating LLONG_MIN and LLONG_MAX\n");
2178 /* This will work on one's complement and two's complement */
2179 for (i = 1; i > llmax; i <<= 1, i++)
2180 llmax = i;
2181 llmin = llmax + 1LL; /* wrap */
2182#endif
2183
2184 /* Sanity check */
2185 if (llmin + 1 < llmin || llmin - 1 < llmin || llmax + 1 > llmax
055252ed 2186 || llmax - 1 > llmax || llmin == llmax || llmin == 0
2187 || llmax == 0 || llmax < LONG_MAX || llmin > LONG_MIN) {
90f15776 2188 fprintf(f, "unknown unknown\n");
2189 exit(2);
2190 }
2191
055252ed 2192 if (fprint_ll(f, llmin) < 0)
90f15776 2193 exit(3);
055252ed 2194 if (fprint_ll(f, llmax) < 0)
2195 exit(4);
2196 if (fclose(f) < 0)
2197 exit(5);
90f15776 2198 exit(0);
2199}
2200 ]])],
2201 [
2202 llong_min=`$AWK '{print $1}' conftest.llminmax`
2203 llong_max=`$AWK '{print $2}' conftest.llminmax`
2204
90f15776 2205 AC_MSG_RESULT($llong_max)
2206 AC_DEFINE_UNQUOTED(LLONG_MAX, [${llong_max}LL],
2207 [max value of long long calculated by configure])
2208 AC_MSG_CHECKING([for min value of long long])
2209 AC_MSG_RESULT($llong_min)
2210 AC_DEFINE_UNQUOTED(LLONG_MIN, [${llong_min}LL],
2211 [min value of long long calculated by configure])
2212 ],
2213 [
2214 AC_MSG_RESULT(not found)
2215 ],
2216 [
2217 AC_MSG_WARN([cross compiling: not checking])
2218 ]
2219 )
2220fi
2221
2222
a0391976 2223# More checks for data types
14a9a859 2224AC_CACHE_CHECK([for u_int type], ac_cv_have_u_int, [
2225 AC_TRY_COMPILE(
aff51935 2226 [ #include <sys/types.h> ],
2227 [ u_int a; a = 1;],
14a9a859 2228 [ ac_cv_have_u_int="yes" ],
2229 [ ac_cv_have_u_int="no" ]
2230 )
2231])
2232if test "x$ac_cv_have_u_int" = "xyes" ; then
3466e002 2233 AC_DEFINE(HAVE_U_INT, 1, [define if you have u_int data type])
14a9a859 2234 have_u_int=1
2235fi
2236
58d100bf 2237AC_CACHE_CHECK([for intXX_t types], ac_cv_have_intxx_t, [
2238 AC_TRY_COMPILE(
aff51935 2239 [ #include <sys/types.h> ],
2240 [ int8_t a; int16_t b; int32_t c; a = b = c = 1;],
58d100bf 2241 [ ac_cv_have_intxx_t="yes" ],
2242 [ ac_cv_have_intxx_t="no" ]
2243 )
2244])
2245if test "x$ac_cv_have_intxx_t" = "xyes" ; then
3466e002 2246 AC_DEFINE(HAVE_INTXX_T, 1, [define if you have intxx_t data type])
58d100bf 2247 have_intxx_t=1
2248fi
41cb4569 2249
2250if (test -z "$have_intxx_t" && \
aff51935 2251 test "x$ac_cv_header_stdint_h" = "xyes")
41cb4569 2252then
2253 AC_MSG_CHECKING([for intXX_t types in stdint.h])
2254 AC_TRY_COMPILE(
aff51935 2255 [ #include <stdint.h> ],
2256 [ int8_t a; int16_t b; int32_t c; a = b = c = 1;],
41cb4569 2257 [
2258 AC_DEFINE(HAVE_INTXX_T)
2259 AC_MSG_RESULT(yes)
2260 ],
2261 [ AC_MSG_RESULT(no) ]
2262 )
2263fi
2264
bd590612 2265AC_CACHE_CHECK([for int64_t type], ac_cv_have_int64_t, [
2266 AC_TRY_COMPILE(
1cbbe6c8 2267 [
2268#include <sys/types.h>
2269#ifdef HAVE_STDINT_H
2270# include <stdint.h>
2271#endif
2272#include <sys/socket.h>
2273#ifdef HAVE_SYS_BITYPES_H
2274# include <sys/bitypes.h>
2275#endif
aff51935 2276 ],
2277 [ int64_t a; a = 1;],
bd590612 2278 [ ac_cv_have_int64_t="yes" ],
2279 [ ac_cv_have_int64_t="no" ]
2280 )
2281])
2282if test "x$ac_cv_have_int64_t" = "xyes" ; then
3466e002 2283 AC_DEFINE(HAVE_INT64_T, 1, [define if you have int64_t data type])
ddceb1c8 2284fi
2285
58d100bf 2286AC_CACHE_CHECK([for u_intXX_t types], ac_cv_have_u_intxx_t, [
2287 AC_TRY_COMPILE(
aff51935 2288 [ #include <sys/types.h> ],
2289 [ u_int8_t a; u_int16_t b; u_int32_t c; a = b = c = 1;],
58d100bf 2290 [ ac_cv_have_u_intxx_t="yes" ],
2291 [ ac_cv_have_u_intxx_t="no" ]
2292 )
2293])
2294if test "x$ac_cv_have_u_intxx_t" = "xyes" ; then
3466e002 2295 AC_DEFINE(HAVE_U_INTXX_T, 1, [define if you have u_intxx_t data type])
58d100bf 2296 have_u_intxx_t=1
2297fi
2b942fe0 2298
41cb4569 2299if test -z "$have_u_intxx_t" ; then
2300 AC_MSG_CHECKING([for u_intXX_t types in sys/socket.h])
2301 AC_TRY_COMPILE(
aff51935 2302 [ #include <sys/socket.h> ],
2303 [ u_int8_t a; u_int16_t b; u_int32_t c; a = b = c = 1;],
41cb4569 2304 [
2305 AC_DEFINE(HAVE_U_INTXX_T)
2306 AC_MSG_RESULT(yes)
2307 ],
2308 [ AC_MSG_RESULT(no) ]
2309 )
2310fi
2311
bd590612 2312AC_CACHE_CHECK([for u_int64_t types], ac_cv_have_u_int64_t, [
2313 AC_TRY_COMPILE(
aff51935 2314 [ #include <sys/types.h> ],
2315 [ u_int64_t a; a = 1;],
bd590612 2316 [ ac_cv_have_u_int64_t="yes" ],
2317 [ ac_cv_have_u_int64_t="no" ]
2318 )
2319])
2320if test "x$ac_cv_have_u_int64_t" = "xyes" ; then
3466e002 2321 AC_DEFINE(HAVE_U_INT64_T, 1, [define if you have u_int64_t data type])
bd590612 2322 have_u_int64_t=1
2323fi
2324
ddceb1c8 2325if test -z "$have_u_int64_t" ; then
2326 AC_MSG_CHECKING([for u_int64_t type in sys/bitypes.h])
2327 AC_TRY_COMPILE(
aff51935 2328 [ #include <sys/bitypes.h> ],
ddceb1c8 2329 [ u_int64_t a; a = 1],
2330 [
2331 AC_DEFINE(HAVE_U_INT64_T)
2332 AC_MSG_RESULT(yes)
2333 ],
2334 [ AC_MSG_RESULT(no) ]
2335 )
2336fi
2337
41cb4569 2338if test -z "$have_u_intxx_t" ; then
2339 AC_CACHE_CHECK([for uintXX_t types], ac_cv_have_uintxx_t, [
2340 AC_TRY_COMPILE(
2341 [
2342#include <sys/types.h>
aff51935 2343 ],
2344 [ uint8_t a; uint16_t b; uint32_t c; a = b = c = 1; ],
41cb4569 2345 [ ac_cv_have_uintxx_t="yes" ],
2346 [ ac_cv_have_uintxx_t="no" ]
2347 )
2348 ])
2349 if test "x$ac_cv_have_uintxx_t" = "xyes" ; then
3466e002 2350 AC_DEFINE(HAVE_UINTXX_T, 1,
2351 [define if you have uintxx_t data type])
41cb4569 2352 fi
2353fi
2354
2355if test -z "$have_uintxx_t" ; then
2356 AC_MSG_CHECKING([for uintXX_t types in stdint.h])
2357 AC_TRY_COMPILE(
aff51935 2358 [ #include <stdint.h> ],
2359 [ uint8_t a; uint16_t b; uint32_t c; a = b = c = 1;],
41cb4569 2360 [
2361 AC_DEFINE(HAVE_UINTXX_T)
2362 AC_MSG_RESULT(yes)
2363 ],
2364 [ AC_MSG_RESULT(no) ]
2365 )
2366fi
2367
e5fe9a1f 2368if (test -z "$have_u_intxx_t" || test -z "$have_intxx_t" && \
aff51935 2369 test "x$ac_cv_header_sys_bitypes_h" = "xyes")
5cdfe03f 2370then
2371 AC_MSG_CHECKING([for intXX_t and u_intXX_t types in sys/bitypes.h])
2372 AC_TRY_COMPILE(
58d100bf 2373 [
2374#include <sys/bitypes.h>
aff51935 2375 ],
5cdfe03f 2376 [
837c30b8 2377 int8_t a; int16_t b; int32_t c;
2378 u_int8_t e; u_int16_t f; u_int32_t g;
2379 a = b = c = e = f = g = 1;
aff51935 2380 ],
5cdfe03f 2381 [
2382 AC_DEFINE(HAVE_U_INTXX_T)
2383 AC_DEFINE(HAVE_INTXX_T)
2384 AC_MSG_RESULT(yes)
2385 ],
2386 [AC_MSG_RESULT(no)]
aff51935 2387 )
5cdfe03f 2388fi
2389
0362750e 2390
2391AC_CACHE_CHECK([for u_char], ac_cv_have_u_char, [
2392 AC_TRY_COMPILE(
2393 [
2394#include <sys/types.h>
2395 ],
2396 [ u_char foo; foo = 125; ],
2397 [ ac_cv_have_u_char="yes" ],
2398 [ ac_cv_have_u_char="no" ]
2399 )
2400])
2401if test "x$ac_cv_have_u_char" = "xyes" ; then
3466e002 2402 AC_DEFINE(HAVE_U_CHAR, 1, [define if you have u_char data type])
0362750e 2403fi
2404
98a7c37b 2405TYPE_SOCKLEN_T
2b942fe0 2406
2d16d9a3 2407AC_CHECK_TYPES(sig_atomic_t,,,[#include <signal.h>])
ddceb1c8 2408
777ece68 2409AC_CHECK_TYPES(in_addr_t,,,
2410[#include <sys/types.h>
2411#include <netinet/in.h>])
7b578f7d 2412
58d100bf 2413AC_CACHE_CHECK([for size_t], ac_cv_have_size_t, [
2414 AC_TRY_COMPILE(
2415 [
18ba2aab 2416#include <sys/types.h>
58d100bf 2417 ],
2418 [ size_t foo; foo = 1235; ],
2419 [ ac_cv_have_size_t="yes" ],
2420 [ ac_cv_have_size_t="no" ]
2421 )
2422])
2423if test "x$ac_cv_have_size_t" = "xyes" ; then
3466e002 2424 AC_DEFINE(HAVE_SIZE_T, 1, [define if you have size_t data type])
58d100bf 2425fi
ea1970a3 2426
c04f75f1 2427AC_CACHE_CHECK([for ssize_t], ac_cv_have_ssize_t, [
2428 AC_TRY_COMPILE(
2429 [
2430#include <sys/types.h>
2431 ],
2432 [ ssize_t foo; foo = 1235; ],
2433 [ ac_cv_have_ssize_t="yes" ],
2434 [ ac_cv_have_ssize_t="no" ]
2435 )
2436])
2437if test "x$ac_cv_have_ssize_t" = "xyes" ; then
3466e002 2438 AC_DEFINE(HAVE_SSIZE_T, 1, [define if you have ssize_t data type])
c04f75f1 2439fi
2440
f1c4659d 2441AC_CACHE_CHECK([for clock_t], ac_cv_have_clock_t, [
2442 AC_TRY_COMPILE(
2443 [
2444#include <time.h>
2445 ],
2446 [ clock_t foo; foo = 1235; ],
2447 [ ac_cv_have_clock_t="yes" ],
2448 [ ac_cv_have_clock_t="no" ]
2449 )
2450])
2451if test "x$ac_cv_have_clock_t" = "xyes" ; then
3466e002 2452 AC_DEFINE(HAVE_CLOCK_T, 1, [define if you have clock_t data type])
f1c4659d 2453fi
2454
1c04b088 2455AC_CACHE_CHECK([for sa_family_t], ac_cv_have_sa_family_t, [
2456 AC_TRY_COMPILE(
2457 [
2458#include <sys/types.h>
2459#include <sys/socket.h>
2460 ],
2461 [ sa_family_t foo; foo = 1235; ],
2462 [ ac_cv_have_sa_family_t="yes" ],
77bb0bca 2463 [ AC_TRY_COMPILE(
2464 [
2465#include <sys/types.h>
2466#include <sys/socket.h>
2467#include <netinet/in.h>
2468 ],
2469 [ sa_family_t foo; foo = 1235; ],
2470 [ ac_cv_have_sa_family_t="yes" ],
2471
1c04b088 2472 [ ac_cv_have_sa_family_t="no" ]
77bb0bca 2473 )]
1c04b088 2474 )
2475])
2476if test "x$ac_cv_have_sa_family_t" = "xyes" ; then
3466e002 2477 AC_DEFINE(HAVE_SA_FAMILY_T, 1,
2478 [define if you have sa_family_t data type])
1c04b088 2479fi
2480
729bfe59 2481AC_CACHE_CHECK([for pid_t], ac_cv_have_pid_t, [
2482 AC_TRY_COMPILE(
2483 [
2484#include <sys/types.h>
2485 ],
2486 [ pid_t foo; foo = 1235; ],
2487 [ ac_cv_have_pid_t="yes" ],
2488 [ ac_cv_have_pid_t="no" ]
2489 )
2490])
2491if test "x$ac_cv_have_pid_t" = "xyes" ; then
3466e002 2492 AC_DEFINE(HAVE_PID_T, 1, [define if you have pid_t data type])
729bfe59 2493fi
2494
2495AC_CACHE_CHECK([for mode_t], ac_cv_have_mode_t, [
2496 AC_TRY_COMPILE(
2497 [
2498#include <sys/types.h>
2499 ],
2500 [ mode_t foo; foo = 1235; ],
2501 [ ac_cv_have_mode_t="yes" ],
2502 [ ac_cv_have_mode_t="no" ]
2503 )
2504])
2505if test "x$ac_cv_have_mode_t" = "xyes" ; then
3466e002 2506 AC_DEFINE(HAVE_MODE_T, 1, [define if you have mode_t data type])
729bfe59 2507fi
2508
e3a93db0 2509
58d100bf 2510AC_CACHE_CHECK([for struct sockaddr_storage], ac_cv_have_struct_sockaddr_storage, [
2511 AC_TRY_COMPILE(
2512 [
18ba2aab 2513#include <sys/types.h>
2514#include <sys/socket.h>
58d100bf 2515 ],
2516 [ struct sockaddr_storage s; ],
2517 [ ac_cv_have_struct_sockaddr_storage="yes" ],
2518 [ ac_cv_have_struct_sockaddr_storage="no" ]
2519 )
2520])
2521if test "x$ac_cv_have_struct_sockaddr_storage" = "xyes" ; then
3466e002 2522 AC_DEFINE(HAVE_STRUCT_SOCKADDR_STORAGE, 1,
2523 [define if you have struct sockaddr_storage data type])
58d100bf 2524fi
48e671d5 2525
58d100bf 2526AC_CACHE_CHECK([for struct sockaddr_in6], ac_cv_have_struct_sockaddr_in6, [
2527 AC_TRY_COMPILE(
2528 [
cbd7492e 2529#include <sys/types.h>
58d100bf 2530#include <netinet/in.h>
2531 ],
2532 [ struct sockaddr_in6 s; s.sin6_family = 0; ],
2533 [ ac_cv_have_struct_sockaddr_in6="yes" ],
2534 [ ac_cv_have_struct_sockaddr_in6="no" ]
2535 )
2536])
2537if test "x$ac_cv_have_struct_sockaddr_in6" = "xyes" ; then
3466e002 2538 AC_DEFINE(HAVE_STRUCT_SOCKADDR_IN6, 1,
2539 [define if you have struct sockaddr_in6 data type])
58d100bf 2540fi
48e671d5 2541
58d100bf 2542AC_CACHE_CHECK([for struct in6_addr], ac_cv_have_struct_in6_addr, [
2543 AC_TRY_COMPILE(
2544 [
cbd7492e 2545#include <sys/types.h>
58d100bf 2546#include <netinet/in.h>
2547 ],
2548 [ struct in6_addr s; s.s6_addr[0] = 0; ],
2549 [ ac_cv_have_struct_in6_addr="yes" ],
2550 [ ac_cv_have_struct_in6_addr="no" ]
2551 )
2552])
2553if test "x$ac_cv_have_struct_in6_addr" = "xyes" ; then
3466e002 2554 AC_DEFINE(HAVE_STRUCT_IN6_ADDR, 1,
2555 [define if you have struct in6_addr data type])
58d100bf 2556fi
48e671d5 2557
58d100bf 2558AC_CACHE_CHECK([for struct addrinfo], ac_cv_have_struct_addrinfo, [
2559 AC_TRY_COMPILE(
2560 [
18ba2aab 2561#include <sys/types.h>
2562#include <sys/socket.h>
2563#include <netdb.h>
58d100bf 2564 ],
2565 [ struct addrinfo s; s.ai_flags = AI_PASSIVE; ],
2566 [ ac_cv_have_struct_addrinfo="yes" ],
2567 [ ac_cv_have_struct_addrinfo="no" ]
2568 )
2569])
2570if test "x$ac_cv_have_struct_addrinfo" = "xyes" ; then
3466e002 2571 AC_DEFINE(HAVE_STRUCT_ADDRINFO, 1,
2572 [define if you have struct addrinfo data type])
58d100bf 2573fi
2574
89c7e31c 2575AC_CACHE_CHECK([for struct timeval], ac_cv_have_struct_timeval, [
2576 AC_TRY_COMPILE(
aff51935 2577 [ #include <sys/time.h> ],
2578 [ struct timeval tv; tv.tv_sec = 1;],
89c7e31c 2579 [ ac_cv_have_struct_timeval="yes" ],
2580 [ ac_cv_have_struct_timeval="no" ]
2581 )
2582])
2583if test "x$ac_cv_have_struct_timeval" = "xyes" ; then
3466e002 2584 AC_DEFINE(HAVE_STRUCT_TIMEVAL, 1, [define if you have struct timeval])
89c7e31c 2585 have_struct_timeval=1
2586fi
2587
5271b55c 2588AC_CHECK_TYPES(struct timespec)
2589
85abc74b 2590# We need int64_t or else certian parts of the compile will fail.
4b492aab 2591if test "x$ac_cv_have_int64_t" = "xno" && \
2592 test "x$ac_cv_sizeof_long_int" != "x8" && \
2593 test "x$ac_cv_sizeof_long_long_int" = "x0" ; then
85abc74b 2594 echo "OpenSSH requires int64_t support. Contact your vendor or install"
2595 echo "an alternative compiler (I.E., GCC) before continuing."
2596 echo ""
2597 exit 1;
733cf7f4 2598else
2599dnl test snprintf (broken on SCO w/gcc)
1a01a50c 2600 AC_RUN_IFELSE(
479cece8 2601 [AC_LANG_SOURCE([[
733cf7f4 2602#include <stdio.h>
2603#include <string.h>
2604#ifdef HAVE_SNPRINTF
2605main()
2606{
2607 char buf[50];
2608 char expected_out[50];
2609 int mazsize = 50 ;
2610#if (SIZEOF_LONG_INT == 8)
2611 long int num = 0x7fffffffffffffff;
2612#else
763a1a18 2613 long long num = 0x7fffffffffffffffll;
733cf7f4 2614#endif
2615 strcpy(expected_out, "9223372036854775807");
2616 snprintf(buf, mazsize, "%lld", num);
2617 if(strcmp(buf, expected_out) != 0)
aff51935 2618 exit(1);
733cf7f4 2619 exit(0);
2620}
2621#else
2622main() { exit(0); }
2623#endif
479cece8 2624 ]])], [ true ], [ AC_DEFINE(BROKEN_SNPRINTF) ],
1a01a50c 2625 AC_MSG_WARN([cross compiling: Assuming working snprintf()])
733cf7f4 2626 )
2c523de9 2627fi
2628
77bb0bca 2629dnl Checks for structure members
58d100bf 2630OSSH_CHECK_HEADER_FOR_FIELD(ut_host, utmp.h, HAVE_HOST_IN_UTMP)
2631OSSH_CHECK_HEADER_FOR_FIELD(ut_host, utmpx.h, HAVE_HOST_IN_UTMPX)
2632OSSH_CHECK_HEADER_FOR_FIELD(syslen, utmpx.h, HAVE_SYSLEN_IN_UTMPX)
2633OSSH_CHECK_HEADER_FOR_FIELD(ut_pid, utmp.h, HAVE_PID_IN_UTMP)
2634OSSH_CHECK_HEADER_FOR_FIELD(ut_type, utmp.h, HAVE_TYPE_IN_UTMP)
25422c70 2635OSSH_CHECK_HEADER_FOR_FIELD(ut_type, utmpx.h, HAVE_TYPE_IN_UTMPX)
58d100bf 2636OSSH_CHECK_HEADER_FOR_FIELD(ut_tv, utmp.h, HAVE_TV_IN_UTMP)
2637OSSH_CHECK_HEADER_FOR_FIELD(ut_id, utmp.h, HAVE_ID_IN_UTMP)
daaff4d5 2638OSSH_CHECK_HEADER_FOR_FIELD(ut_id, utmpx.h, HAVE_ID_IN_UTMPX)
58d100bf 2639OSSH_CHECK_HEADER_FOR_FIELD(ut_addr, utmp.h, HAVE_ADDR_IN_UTMP)
2640OSSH_CHECK_HEADER_FOR_FIELD(ut_addr, utmpx.h, HAVE_ADDR_IN_UTMPX)
2641OSSH_CHECK_HEADER_FOR_FIELD(ut_addr_v6, utmp.h, HAVE_ADDR_V6_IN_UTMP)
2642OSSH_CHECK_HEADER_FOR_FIELD(ut_addr_v6, utmpx.h, HAVE_ADDR_V6_IN_UTMPX)
1d7b9b20 2643OSSH_CHECK_HEADER_FOR_FIELD(ut_exit, utmp.h, HAVE_EXIT_IN_UTMP)
2644OSSH_CHECK_HEADER_FOR_FIELD(ut_time, utmp.h, HAVE_TIME_IN_UTMP)
2645OSSH_CHECK_HEADER_FOR_FIELD(ut_time, utmpx.h, HAVE_TIME_IN_UTMPX)
2646OSSH_CHECK_HEADER_FOR_FIELD(ut_tv, utmpx.h, HAVE_TV_IN_UTMPX)
98a7c37b 2647
2648AC_CHECK_MEMBERS([struct stat.st_blksize])
ccc45ee0 2649AC_CHECK_MEMBER([struct __res_state.retrans], [], [AC_DEFINE(__res_state, state,
2650 [Define if we don't have struct __res_state in resolv.h])],
2651[
2652#include <stdio.h>
2653#if HAVE_SYS_TYPES_H
2654# include <sys/types.h>
2655#endif
2656#include <netinet/in.h>
2657#include <arpa/nameser.h>
2658#include <resolv.h>
2659])
1d7b9b20 2660
58d100bf 2661AC_CACHE_CHECK([for ss_family field in struct sockaddr_storage],
2662 ac_cv_have_ss_family_in_struct_ss, [
2663 AC_TRY_COMPILE(
2664 [
18ba2aab 2665#include <sys/types.h>
2666#include <sys/socket.h>
58d100bf 2667 ],
2668 [ struct sockaddr_storage s; s.ss_family = 1; ],
2669 [ ac_cv_have_ss_family_in_struct_ss="yes" ],
2670 [ ac_cv_have_ss_family_in_struct_ss="no" ],
2671 )
2672])
2673if test "x$ac_cv_have_ss_family_in_struct_ss" = "xyes" ; then
3466e002 2674 AC_DEFINE(HAVE_SS_FAMILY_IN_SS, 1, [Fields in struct sockaddr_storage])
58d100bf 2675fi
2676
58d100bf 2677AC_CACHE_CHECK([for __ss_family field in struct sockaddr_storage],
2678 ac_cv_have___ss_family_in_struct_ss, [
2679 AC_TRY_COMPILE(
2680 [
18ba2aab 2681#include <sys/types.h>
2682#include <sys/socket.h>
58d100bf 2683 ],
2684 [ struct sockaddr_storage s; s.__ss_family = 1; ],
2685 [ ac_cv_have___ss_family_in_struct_ss="yes" ],
2686 [ ac_cv_have___ss_family_in_struct_ss="no" ]
2687 )
2688])
2689if test "x$ac_cv_have___ss_family_in_struct_ss" = "xyes" ; then
3466e002 2690 AC_DEFINE(HAVE___SS_FAMILY_IN_SS, 1,
2691 [Fields in struct sockaddr_storage])
58d100bf 2692fi
2693
2e73a022 2694AC_CACHE_CHECK([for pw_class field in struct passwd],
2695 ac_cv_have_pw_class_in_struct_passwd, [
2696 AC_TRY_COMPILE(
2697 [
2e73a022 2698#include <pwd.h>
2699 ],
97994d32 2700 [ struct passwd p; p.pw_class = 0; ],
2e73a022 2701 [ ac_cv_have_pw_class_in_struct_passwd="yes" ],
2702 [ ac_cv_have_pw_class_in_struct_passwd="no" ]
2703 )
2704])
2705if test "x$ac_cv_have_pw_class_in_struct_passwd" = "xyes" ; then
3466e002 2706 AC_DEFINE(HAVE_PW_CLASS_IN_PASSWD, 1,
2707 [Define if your password has a pw_class field])
2e73a022 2708fi
2709
7751d4eb 2710AC_CACHE_CHECK([for pw_expire field in struct passwd],
2711 ac_cv_have_pw_expire_in_struct_passwd, [
2712 AC_TRY_COMPILE(
2713 [
2714#include <pwd.h>
2715 ],
2716 [ struct passwd p; p.pw_expire = 0; ],
2717 [ ac_cv_have_pw_expire_in_struct_passwd="yes" ],
2718 [ ac_cv_have_pw_expire_in_struct_passwd="no" ]
2719 )
2720])
2721if test "x$ac_cv_have_pw_expire_in_struct_passwd" = "xyes" ; then
3466e002 2722 AC_DEFINE(HAVE_PW_EXPIRE_IN_PASSWD, 1,
2723 [Define if your password has a pw_expire field])
7751d4eb 2724fi
2725
2726AC_CACHE_CHECK([for pw_change field in struct passwd],
2727 ac_cv_have_pw_change_in_struct_passwd, [
2728 AC_TRY_COMPILE(
2729 [
2730#include <pwd.h>
2731 ],
2732 [ struct passwd p; p.pw_change = 0; ],
2733 [ ac_cv_have_pw_change_in_struct_passwd="yes" ],
2734 [ ac_cv_have_pw_change_in_struct_passwd="no" ]
2735 )
2736])
2737if test "x$ac_cv_have_pw_change_in_struct_passwd" = "xyes" ; then
3466e002 2738 AC_DEFINE(HAVE_PW_CHANGE_IN_PASSWD, 1,
2739 [Define if your password has a pw_change field])
7751d4eb 2740fi
58d100bf 2741
637f9177 2742dnl make sure we're using the real structure members and not defines
6f34652e 2743AC_CACHE_CHECK([for msg_accrights field in struct msghdr],
2744 ac_cv_have_accrights_in_msghdr, [
1a01a50c 2745 AC_COMPILE_IFELSE(
6f34652e 2746 [
f95c8ce8 2747#include <sys/types.h>
6f34652e 2748#include <sys/socket.h>
2749#include <sys/uio.h>
637f9177 2750int main() {
2751#ifdef msg_accrights
1a01a50c 2752#error "msg_accrights is a macro"
637f9177 2753exit(1);
2754#endif
2755struct msghdr m;
2756m.msg_accrights = 0;
2757exit(0);
2758}
6f34652e 2759 ],
6f34652e 2760 [ ac_cv_have_accrights_in_msghdr="yes" ],
2761 [ ac_cv_have_accrights_in_msghdr="no" ]
2762 )
2763])
2764if test "x$ac_cv_have_accrights_in_msghdr" = "xyes" ; then
3466e002 2765 AC_DEFINE(HAVE_ACCRIGHTS_IN_MSGHDR, 1,
2766 [Define if your system uses access rights style
2767 file descriptor passing])
6f34652e 2768fi
2769
7176df4f 2770AC_CACHE_CHECK([for msg_control field in struct msghdr],
2771 ac_cv_have_control_in_msghdr, [
1a01a50c 2772 AC_COMPILE_IFELSE(
7176df4f 2773 [
f95c8ce8 2774#include <sys/types.h>
7176df4f 2775#include <sys/socket.h>
2776#include <sys/uio.h>
637f9177 2777int main() {
2778#ifdef msg_control
1a01a50c 2779#error "msg_control is a macro"
637f9177 2780exit(1);
2781#endif
2782struct msghdr m;
2783m.msg_control = 0;
2784exit(0);
2785}
7176df4f 2786 ],
7176df4f 2787 [ ac_cv_have_control_in_msghdr="yes" ],
2788 [ ac_cv_have_control_in_msghdr="no" ]
2789 )
2790])
2791if test "x$ac_cv_have_control_in_msghdr" = "xyes" ; then
3466e002 2792 AC_DEFINE(HAVE_CONTROL_IN_MSGHDR, 1,
2793 [Define if your system uses ancillary data style
2794 file descriptor passing])
7176df4f 2795fi
2796
58d100bf 2797AC_CACHE_CHECK([if libc defines __progname], ac_cv_libc_defines___progname, [
aff51935 2798 AC_TRY_LINK([],
2799 [ extern char *__progname; printf("%s", __progname); ],
58d100bf 2800 [ ac_cv_libc_defines___progname="yes" ],
2801 [ ac_cv_libc_defines___progname="no" ]
2802 )
2803])
2804if test "x$ac_cv_libc_defines___progname" = "xyes" ; then
3466e002 2805 AC_DEFINE(HAVE___PROGNAME, 1, [Define if libc defines __progname])
58d100bf 2806fi
8946db53 2807
c921ee00 2808AC_CACHE_CHECK([whether $CC implements __FUNCTION__], ac_cv_cc_implements___FUNCTION__, [
2809 AC_TRY_LINK([
2810#include <stdio.h>
aff51935 2811],
2812 [ printf("%s", __FUNCTION__); ],
c921ee00 2813 [ ac_cv_cc_implements___FUNCTION__="yes" ],
2814 [ ac_cv_cc_implements___FUNCTION__="no" ]
2815 )
2816])
2817if test "x$ac_cv_cc_implements___FUNCTION__" = "xyes" ; then
3466e002 2818 AC_DEFINE(HAVE___FUNCTION__, 1,
2819 [Define if compiler implements __FUNCTION__])
c921ee00 2820fi
2821
2822AC_CACHE_CHECK([whether $CC implements __func__], ac_cv_cc_implements___func__, [
2823 AC_TRY_LINK([
2824#include <stdio.h>
aff51935 2825],
2826 [ printf("%s", __func__); ],
c921ee00 2827 [ ac_cv_cc_implements___func__="yes" ],
2828 [ ac_cv_cc_implements___func__="no" ]
2829 )
2830])
2831if test "x$ac_cv_cc_implements___func__" = "xyes" ; then
3466e002 2832 AC_DEFINE(HAVE___func__, 1, [Define if compiler implements __func__])
c921ee00 2833fi
2834
9a406e1e 2835AC_CACHE_CHECK([whether va_copy exists], ac_cv_have_va_copy, [
2836 AC_TRY_LINK(
2837 [#include <stdarg.h>
2838 va_list x,y;],
2839 [va_copy(x,y);],
2840 [ ac_cv_have_va_copy="yes" ],
2841 [ ac_cv_have_va_copy="no" ]
2842 )
2843])
2844if test "x$ac_cv_have_va_copy" = "xyes" ; then
2845 AC_DEFINE(HAVE_VA_COPY, 1, [Define if va_copy exists])
2846fi
2847
2848AC_CACHE_CHECK([whether __va_copy exists], ac_cv_have___va_copy, [
2849 AC_TRY_LINK(
2850 [#include <stdarg.h>
2851 va_list x,y;],
2852 [__va_copy(x,y);],
2853 [ ac_cv_have___va_copy="yes" ],
2854 [ ac_cv_have___va_copy="no" ]
2855 )
2856])
2857if test "x$ac_cv_have___va_copy" = "xyes" ; then
2858 AC_DEFINE(HAVE___VA_COPY, 1, [Define if __va_copy exists])
2859fi
2860
1812a662 2861AC_CACHE_CHECK([whether getopt has optreset support],
2862 ac_cv_have_getopt_optreset, [
2863 AC_TRY_LINK(
2864 [
2865#include <getopt.h>
2866 ],
2867 [ extern int optreset; optreset = 0; ],
2868 [ ac_cv_have_getopt_optreset="yes" ],
2869 [ ac_cv_have_getopt_optreset="no" ]
2870 )
2871])
2872if test "x$ac_cv_have_getopt_optreset" = "xyes" ; then
3466e002 2873 AC_DEFINE(HAVE_GETOPT_OPTRESET, 1,
2874 [Define if your getopt(3) defines and uses optreset])
1812a662 2875fi
a0391976 2876
819b676f 2877AC_CACHE_CHECK([if libc defines sys_errlist], ac_cv_libc_defines_sys_errlist, [
aff51935 2878 AC_TRY_LINK([],
2879 [ extern const char *const sys_errlist[]; printf("%s", sys_errlist[0]);],
819b676f 2880 [ ac_cv_libc_defines_sys_errlist="yes" ],
2881 [ ac_cv_libc_defines_sys_errlist="no" ]
2882 )
2883])
2884if test "x$ac_cv_libc_defines_sys_errlist" = "xyes" ; then
3466e002 2885 AC_DEFINE(HAVE_SYS_ERRLIST, 1,
2886 [Define if your system defines sys_errlist[]])
819b676f 2887fi
2888
2889
416ed5a7 2890AC_CACHE_CHECK([if libc defines sys_nerr], ac_cv_libc_defines_sys_nerr, [
aff51935 2891 AC_TRY_LINK([],
2892 [ extern int sys_nerr; printf("%i", sys_nerr);],
416ed5a7 2893 [ ac_cv_libc_defines_sys_nerr="yes" ],
2894 [ ac_cv_libc_defines_sys_nerr="no" ]
2895 )
2896])
2897if test "x$ac_cv_libc_defines_sys_nerr" = "xyes" ; then
3466e002 2898 AC_DEFINE(HAVE_SYS_NERR, 1, [Define if your system defines sys_nerr])
416ed5a7 2899fi
2900
aff51935 2901SCARD_MSG="no"
295c8801 2902# Check whether user wants sectok support
2903AC_ARG_WITH(sectok,
2904 [ --with-sectok Enable smartcard support using libsectok],
d0b19c95 2905 [
2906 if test "x$withval" != "xno" ; then
2907 if test "x$withval" != "xyes" ; then
2908 CPPFLAGS="$CPPFLAGS -I${withval}"
2909 LDFLAGS="$LDFLAGS -L${withval}"
2910 if test ! -z "$need_dash_r" ; then
2911 LDFLAGS="$LDFLAGS -R${withval}"
2912 fi
2913 if test ! -z "$blibpath" ; then
2914 blibpath="$blibpath:${withval}"
2915 fi
2916 fi
2917 AC_CHECK_HEADERS(sectok.h)
2918 if test "$ac_cv_header_sectok_h" != yes; then
2919 AC_MSG_ERROR(Can't find sectok.h)
2920 fi
2921 AC_CHECK_LIB(sectok, sectok_open)
2922 if test "$ac_cv_lib_sectok_sectok_open" != yes; then
2923 AC_MSG_ERROR(Can't find libsectok)
2924 fi
3466e002 2925 AC_DEFINE(SMARTCARD, 1,
2926 [Define if you want smartcard support])
2927 AC_DEFINE(USE_SECTOK, 1,
2928 [Define if you want smartcard support
2929 using sectok])
aff51935 2930 SCARD_MSG="yes, using sectok"
295c8801 2931 fi
2932 ]
2933)
2934
2935# Check whether user wants OpenSC support
987b458f 2936OPENSC_CONFIG="no"
295c8801 2937AC_ARG_WITH(opensc,
e47fb473 2938 [ --with-opensc[[=PFX]] Enable smartcard support using OpenSC (optionally in PATH)],
987b458f 2939 [
2940 if test "x$withval" != "xno" ; then
2941 if test "x$withval" != "xyes" ; then
2942 OPENSC_CONFIG=$withval/bin/opensc-config
2943 else
2944 AC_PATH_PROG(OPENSC_CONFIG, opensc-config, no)
2945 fi
2946 if test "$OPENSC_CONFIG" != "no"; then
2947 LIBOPENSC_CFLAGS=`$OPENSC_CONFIG --cflags`
2948 LIBOPENSC_LIBS=`$OPENSC_CONFIG --libs`
2949 CPPFLAGS="$CPPFLAGS $LIBOPENSC_CFLAGS"
2950 LDFLAGS="$LDFLAGS $LIBOPENSC_LIBS"
2951 AC_DEFINE(SMARTCARD)
3466e002 2952 AC_DEFINE(USE_OPENSC, 1,
2953 [Define if you want smartcard support
2954 using OpenSC])
987b458f 2955 SCARD_MSG="yes, using OpenSC"
2956 fi
2957 fi
2958 ]
2959)
d0b19c95 2960
c31dc31c 2961# Check libraries needed by DNS fingerprint support
aff51935 2962AC_SEARCH_LIBS(getrrsetbyname, resolv,
3466e002 2963 [AC_DEFINE(HAVE_GETRRSETBYNAME, 1,
2964 [Define if getrrsetbyname() exists])],
3e05e934 2965 [
c31dc31c 2966 # Needed by our getrrsetbyname()
2967 AC_SEARCH_LIBS(res_query, resolv)
2968 AC_SEARCH_LIBS(dn_expand, resolv)
dabb524a 2969 AC_MSG_CHECKING(if res_query will link)
2970 AC_TRY_LINK_FUNC(res_query, AC_MSG_RESULT(yes),
2971 [AC_MSG_RESULT(no)
2972 saved_LIBS="$LIBS"
2973 LIBS="$LIBS -lresolv"
2974 AC_MSG_CHECKING(for res_query in -lresolv)
2975 AC_LINK_IFELSE([
2976#include <resolv.h>
2977int main()
2978{
2979 res_query (0, 0, 0, 0, 0);
2980 return 0;
2981}
2982 ],
2983 [LIBS="$LIBS -lresolv"
2984 AC_MSG_RESULT(yes)],
2985 [LIBS="$saved_LIBS"
2986 AC_MSG_RESULT(no)])
2987 ])
c31dc31c 2988 AC_CHECK_FUNCS(_getshort _getlong)
1c829da5 2989 AC_CHECK_DECLS([_getshort, _getlong], , ,
b5765e1d 2990 [#include <sys/types.h>
2991 #include <arpa/nameser.h>])
c31dc31c 2992 AC_CHECK_MEMBER(HEADER.ad,
3466e002 2993 [AC_DEFINE(HAVE_HEADER_AD, 1,
2994 [Define if HEADER.ad exists in arpa/nameser.h])],,
c31dc31c 2995 [#include <arpa/nameser.h>])
2996 ])
3e05e934 2997
12928e80 2998# Check whether user wants Kerberos 5 support
aff51935 2999KRB5_MSG="no"
12928e80 3000AC_ARG_WITH(kerberos5,
aff51935 3001 [ --with-kerberos5=PATH Enable Kerberos 5 support],
5585c441 3002 [ if test "x$withval" != "xno" ; then
3003 if test "x$withval" = "xyes" ; then
3004 KRB5ROOT="/usr/local"
3005 else
3006 KRB5ROOT=${withval}
3007 fi
3008
3466e002 3009 AC_DEFINE(KRB5, 1, [Define if you want Kerberos 5 support])
5585c441 3010 KRB5_MSG="yes"
3011
3012 AC_MSG_CHECKING(for krb5-config)
3013 if test -x $KRB5ROOT/bin/krb5-config ; then
3014 KRB5CONF=$KRB5ROOT/bin/krb5-config
3015 AC_MSG_RESULT($KRB5CONF)
3016
3017 AC_MSG_CHECKING(for gssapi support)
3018 if $KRB5CONF | grep gssapi >/dev/null ; then
3019 AC_MSG_RESULT(yes)
3466e002 3020 AC_DEFINE(GSSAPI, 1,
3021 [Define this if you want GSSAPI
3022 support in the version 2 protocol])
071970fb 3023 k5confopts=gssapi
aff51935 3024 else
5585c441 3025 AC_MSG_RESULT(no)
071970fb 3026 k5confopts=""
aff51935 3027 fi
071970fb 3028 K5CFLAGS="`$KRB5CONF --cflags $k5confopts`"
3029 K5LIBS="`$KRB5CONF --libs $k5confopts`"
5585c441 3030 CPPFLAGS="$CPPFLAGS $K5CFLAGS"
5585c441 3031 AC_MSG_CHECKING(whether we are using Heimdal)
3032 AC_TRY_COMPILE([ #include <krb5.h> ],
3033 [ char *tmp = heimdal_version; ],
3034 [ AC_MSG_RESULT(yes)
3466e002 3035 AC_DEFINE(HEIMDAL, 1,
3036 [Define this if you are using the
3037 Heimdal version of Kerberos V5]) ],
5585c441 3038 AC_MSG_RESULT(no)
3039 )
3040 else
3041 AC_MSG_RESULT(no)
12928e80 3042 CPPFLAGS="$CPPFLAGS -I${KRB5ROOT}/include"
aff51935 3043 LDFLAGS="$LDFLAGS -L${KRB5ROOT}/lib"
aff51935 3044 AC_MSG_CHECKING(whether we are using Heimdal)
3045 AC_TRY_COMPILE([ #include <krb5.h> ],
3046 [ char *tmp = heimdal_version; ],
3047 [ AC_MSG_RESULT(yes)
3048 AC_DEFINE(HEIMDAL)
41707f74 3049 K5LIBS="-lkrb5 -ldes"
3050 K5LIBS="$K5LIBS -lcom_err -lasn1"
82f4e93d 3051 AC_CHECK_LIB(roken, net_write,
41707f74 3052 [K5LIBS="$K5LIBS -lroken"])
aff51935 3053 ],
3054 [ AC_MSG_RESULT(no)
3055 K5LIBS="-lkrb5 -lk5crypto -lcom_err"
3056 ]
3057 )
4e00038c 3058 AC_SEARCH_LIBS(dn_expand, resolv)
12928e80 3059
749560dd 3060 AC_CHECK_LIB(gssapi,gss_init_sec_context,
3061 [ AC_DEFINE(GSSAPI)
3062 K5LIBS="-lgssapi $K5LIBS" ],
3063 [ AC_CHECK_LIB(gssapi_krb5,gss_init_sec_context,
3064 [ AC_DEFINE(GSSAPI)
aff51935 3065 K5LIBS="-lgssapi_krb5 $K5LIBS" ],
749560dd 3066 AC_MSG_WARN([Cannot find any suitable gss-api library - build may fail]),
3067 $K5LIBS)
3068 ],
3069 $K5LIBS)
82f4e93d 3070
749560dd 3071 AC_CHECK_HEADER(gssapi.h, ,
3072 [ unset ac_cv_header_gssapi_h
aff51935 3073 CPPFLAGS="$CPPFLAGS -I${KRB5ROOT}/include/gssapi"
749560dd 3074 AC_CHECK_HEADERS(gssapi.h, ,
3075 AC_MSG_WARN([Cannot find any suitable gss-api header - build may fail])
aff51935 3076 )
749560dd 3077 ]
3078 )
3079
3080 oldCPP="$CPPFLAGS"
3081 CPPFLAGS="$CPPFLAGS -I${KRB5ROOT}/include/gssapi"
3082 AC_CHECK_HEADER(gssapi_krb5.h, ,
3083 [ CPPFLAGS="$oldCPP" ])
3084
aff51935 3085 fi
5585c441 3086 if test ! -z "$need_dash_r" ; then
3087 LDFLAGS="$LDFLAGS -R${KRB5ROOT}/lib"
3088 fi
3089 if test ! -z "$blibpath" ; then
3090 blibpath="$blibpath:${KRB5ROOT}/lib"
3091 fi
071970fb 3092
f5555364 3093 AC_CHECK_HEADERS(gssapi.h gssapi/gssapi.h)
3094 AC_CHECK_HEADERS(gssapi_krb5.h gssapi/gssapi_krb5.h)
3095 AC_CHECK_HEADERS(gssapi_generic.h gssapi/gssapi_generic.h)
071970fb 3096
f5555364 3097 LIBS="$LIBS $K5LIBS"
3466e002 3098 AC_SEARCH_LIBS(k_hasafs, kafs, AC_DEFINE(USE_AFS, 1,
3099 [Define this if you want to use libkafs' AFS support]))
f5555364 3100 fi
071970fb 3101 ]
12928e80 3102)
b5b68128 3103
a0391976 3104# Looking for programs, paths and files
a0391976 3105
ecac8ee5 3106PRIVSEP_PATH=/var/empty
3107AC_ARG_WITH(privsep-path,
cda1ebcb 3108 [ --with-privsep-path=xxx Path for privilege separation chroot (default=/var/empty)],
ecac8ee5 3109 [
6cf0200f 3110 if test -n "$withval" && test "x$withval" != "xno" && \
3111 test "x${withval}" != "xyes"; then
ecac8ee5 3112 PRIVSEP_PATH=$withval
3113 fi
3114 ]
3115)
3116AC_SUBST(PRIVSEP_PATH)
3117
a0391976 3118AC_ARG_WITH(xauth,
3119 [ --with-xauth=PATH Specify path to xauth program ],
3120 [
6cf0200f 3121 if test -n "$withval" && test "x$withval" != "xno" && \
3122 test "x${withval}" != "xyes"; then
cbd7492e 3123 xauth_path=$withval
a0391976 3124 fi
3125 ],
3126 [
2bf42e4a 3127 TestPath="$PATH"
3128 TestPath="${TestPath}${PATH_SEPARATOR}/usr/X/bin"
3129 TestPath="${TestPath}${PATH_SEPARATOR}/usr/bin/X11"
3130 TestPath="${TestPath}${PATH_SEPARATOR}/usr/X11R6/bin"
3131 TestPath="${TestPath}${PATH_SEPARATOR}/usr/openwin/bin"
3132 AC_PATH_PROG(xauth_path, xauth, , $TestPath)
e5fe9a1f 3133 if (test ! -z "$xauth_path" && test -x "/usr/openwin/bin/xauth") ; then
a0391976 3134 xauth_path="/usr/openwin/bin/xauth"
3135 fi
3136 ]
3137)
3138
65a4b4af 3139STRIP_OPT=-s
3140AC_ARG_ENABLE(strip,
3141 [ --disable-strip Disable calling strip(1) on install],
3142 [
3143 if test "x$enableval" = "xno" ; then
3144 STRIP_OPT=
3145 fi
3146 ]
3147)
3148AC_SUBST(STRIP_OPT)
3149
b3ec54b4 3150if test -z "$xauth_path" ; then
3151 XAUTH_PATH="undefined"
3152 AC_SUBST(XAUTH_PATH)
3153else
3466e002 3154 AC_DEFINE_UNQUOTED(XAUTH_PATH, "$xauth_path",
3155 [Define if xauth is found in your path])
b3ec54b4 3156 XAUTH_PATH=$xauth_path
3157 AC_SUBST(XAUTH_PATH)
a0391976 3158fi
a0391976 3159
3160# Check for mail directory (last resort if we cannot get it from headers)
3161if test ! -z "$MAIL" ; then
3162 maildir=`dirname $MAIL`
3466e002 3163 AC_DEFINE_UNQUOTED(MAIL_DIRECTORY, "$maildir",
3164 [Set this to your mail directory if you don't have maillock.h])
a0391976 3165fi
3166
479cece8 3167if test ! -z "$cross_compiling" && test "x$cross_compiling" = "xyes"; then
1a01a50c 3168 AC_MSG_WARN([cross compiling: Disabling /dev/ptmx test])
3169 disable_ptmx_check=yes
3170fi
a0391976 3171if test -z "$no_dev_ptmx" ; then
6e879cb4 3172 if test "x$disable_ptmx_check" != "xyes" ; then
aff51935 3173 AC_CHECK_FILE("/dev/ptmx",
6e879cb4 3174 [
3466e002 3175 AC_DEFINE_UNQUOTED(HAVE_DEV_PTMX, 1,
3176 [Define if you have /dev/ptmx])
6e879cb4 3177 have_dev_ptmx=1
3178 ]
3179 )
3180 fi
3276571c 3181fi
1a01a50c 3182
479cece8 3183if test ! -z "$cross_compiling" && test "x$cross_compiling" != "xyes"; then
1a01a50c 3184 AC_CHECK_FILE("/dev/ptc",
3185 [
3466e002 3186 AC_DEFINE_UNQUOTED(HAVE_DEV_PTS_AND_PTC, 1,
3187 [Define if you have /dev/ptc])
1a01a50c 3188 have_dev_ptc=1
3189 ]
3190 )
3191else
3192 AC_MSG_WARN([cross compiling: Disabling /dev/ptc test])
3193fi
3276571c 3194
a0391976 3195# Options from here on. Some of these are preset by platform above
fdf6b7aa 3196AC_ARG_WITH(mantype,
5d97cfbf 3197 [ --with-mantype=man|cat|doc Set man page type],
c54a6257 3198 [
5d97cfbf 3199 case "$withval" in
3200 man|cat|doc)
3201 MANTYPE=$withval
3202 ;;
3203 *)
3204 AC_MSG_ERROR(invalid man type: $withval)
3205 ;;
3206 esac
c54a6257 3207 ]
3208)
e0c4d3ac 3209if test -z "$MANTYPE"; then
2bf42e4a 3210 TestPath="/usr/bin${PATH_SEPARATOR}/usr/ucb"
3211 AC_PATH_PROGS(NROFF, nroff awf, /bin/false, $TestPath)
e0c4d3ac 3212 if ${NROFF} -mdoc ${srcdir}/ssh.1 >/dev/null 2>&1; then
3213 MANTYPE=doc
3214 elif ${NROFF} -man ${srcdir}/ssh.1 >/dev/null 2>&1; then
3215 MANTYPE=man
3216 else
3217 MANTYPE=cat
3218 fi
3219fi
c54a6257 3220AC_SUBST(MANTYPE)
e0c4d3ac 3221if test "$MANTYPE" = "doc"; then
3222 mansubdir=man;
3223else
3224 mansubdir=$MANTYPE;
3225fi
3226AC_SUBST(mansubdir)
0bc5b6fb 3227
a0391976 3228# Check whether to enable MD5 passwords
aff51935 3229MD5_MSG="no"
2ddcfdf3 3230AC_ARG_WITH(md5-passwords,
caf3bc51 3231 [ --with-md5-passwords Enable use of MD5 passwords],
0bc5b6fb 3232 [
bcf36c78 3233 if test "x$withval" != "xno" ; then
3466e002 3234 AC_DEFINE(HAVE_MD5_PASSWORDS, 1,
3235 [Define if you want to allow MD5 passwords])
aff51935 3236 MD5_MSG="yes"
0bc5b6fb 3237 fi
3238 ]
caf3bc51 3239)
3240
a0391976 3241# Whether to disable shadow password support
a7effaac 3242AC_ARG_WITH(shadow,
3243 [ --without-shadow Disable shadow password support],
3244 [
82f4e93d 3245 if test "x$withval" = "xno" ; then
a7effaac 3246 AC_DEFINE(DISABLE_SHADOW)
4cb5ffa0 3247 disable_shadow=yes
a7effaac 3248 fi
3249 ]
3250)
3251
4cb5ffa0 3252if test -z "$disable_shadow" ; then
3253 AC_MSG_CHECKING([if the systems has expire shadow information])
3254 AC_TRY_COMPILE(
3255 [
3256#include <sys/types.h>
3257#include <shadow.h>
3258 struct spwd sp;
3259 ],[ sp.sp_expire = sp.sp_lstchg = sp.sp_inact = 0; ],
3260 [ sp_expire_available=yes ], []
3261 )
3262
3263 if test "x$sp_expire_available" = "xyes" ; then
3264 AC_MSG_RESULT(yes)
3466e002 3265 AC_DEFINE(HAS_SHADOW_EXPIRE, 1,
3266 [Define if you want to use shadow password expire field])
4cb5ffa0 3267 else
3268 AC_MSG_RESULT(no)
3269 fi
3270fi
3271
a0391976 3272# Use ip address instead of hostname in $DISPLAY
44839801 3273if test ! -z "$IPADDR_IN_DISPLAY" ; then
3274 DISPLAY_HACK_MSG="yes"
3466e002 3275 AC_DEFINE(IPADDR_IN_DISPLAY, 1,
3276 [Define if you need to use IP address
3277 instead of hostname in $DISPLAY])
44839801 3278else
aff51935 3279 DISPLAY_HACK_MSG="no"
44839801 3280 AC_ARG_WITH(ipaddr-display,
3281 [ --with-ipaddr-display Use ip address instead of hostname in \$DISPLAY],
3282 [
82f4e93d 3283 if test "x$withval" != "xno" ; then
44839801 3284 AC_DEFINE(IPADDR_IN_DISPLAY)
aff51935 3285 DISPLAY_HACK_MSG="yes"
44839801 3286 fi
3287 ]
3288 )
3289fi
a7effaac 3290
95b99395 3291# check for /etc/default/login and use it if present.
daa41e62 3292AC_ARG_ENABLE(etc-default-login,
6ff3d0dc 3293 [ --disable-etc-default-login Disable using PATH from /etc/default/login [no]],
694d0cef 3294 [ if test "x$enableval" = "xno"; then
3295 AC_MSG_NOTICE([/etc/default/login handling disabled])
3296 etc_default_login=no
3297 else
3298 etc_default_login=yes
3299 fi ],
b0e7249f 3300 [ if test ! -z "$cross_compiling" && test "x$cross_compiling" = "xyes";
3301 then
3302 AC_MSG_WARN([cross compiling: not checking /etc/default/login])
3303 etc_default_login=no
3304 else
3305 etc_default_login=yes
3306 fi ]
694d0cef 3307)
95b99395 3308
694d0cef 3309if test "x$etc_default_login" != "xno"; then
3310 AC_CHECK_FILE("/etc/default/login",
3311 [ external_path_file=/etc/default/login ])
b0e7249f 3312 if test "x$external_path_file" = "x/etc/default/login"; then
3466e002 3313 AC_DEFINE(HAVE_ETC_DEFAULT_LOGIN, 1,
3314 [Define if your system has /etc/default/login])
1a01a50c 3315 fi
694d0cef 3316fi
95b99395 3317
8d184c09 3318dnl BSD systems use /etc/login.conf so --with-default-path= has no effect
4b492aab 3319if test $ac_cv_func_login_getcapbool = "yes" && \
3320 test $ac_cv_header_login_cap_h = "yes" ; then
95b99395 3321 external_path_file=/etc/login.conf
8d184c09 3322fi
95b99395 3323
a0391976 3324# Whether to mess with the default path
aff51935 3325SERVER_PATH_MSG="(default)"
c43d69a9 3326AC_ARG_WITH(default-path,
75817f90 3327 [ --with-default-path= Specify default \$PATH environment for server],
cb807f40 3328 [
95b99395 3329 if test "x$external_path_file" = "x/etc/login.conf" ; then
8d184c09 3330 AC_MSG_WARN([
3331--with-default-path=PATH has no effect on this system.
3332Edit /etc/login.conf instead.])
82f4e93d 3333 elif test "x$withval" != "xno" ; then
89bbd457 3334 if test ! -z "$external_path_file" ; then
95b99395 3335 AC_MSG_WARN([
3336--with-default-path=PATH will only be used if PATH is not defined in
3337$external_path_file .])
3338 fi
b2d818e6 3339 user_path="$withval"
aff51935 3340 SERVER_PATH_MSG="$withval"
cb807f40 3341 fi
b2d818e6 3342 ],
95b99395 3343 [ if test "x$external_path_file" = "x/etc/login.conf" ; then
3344 AC_MSG_WARN([Make sure the path to scp is in /etc/login.conf])
8d184c09 3345 else
89bbd457 3346 if test ! -z "$external_path_file" ; then
95b99395 3347 AC_MSG_WARN([
3348If PATH is defined in $external_path_file, ensure the path to scp is included,
3349otherwise scp will not work.])
3350 fi
b0e7249f 3351 AC_RUN_IFELSE(
3352 [AC_LANG_SOURCE([[
b2d818e6 3353/* find out what STDPATH is */
3354#include <stdio.h>
b2d818e6 3355#ifdef HAVE_PATHS_H
3356# include <paths.h>
3357#endif
3358#ifndef _PATH_STDPATH
d9a4e55b 3359# ifdef _PATH_USERPATH /* Irix */
3360# define _PATH_STDPATH _PATH_USERPATH
3361# else
3362# define _PATH_STDPATH "/usr/bin:/bin:/usr/sbin:/sbin"
3363# endif
b2d818e6 3364#endif
3365#include <sys/types.h>
3366#include <sys/stat.h>
3367#include <fcntl.h>
3368#define DATA "conftest.stdpath"
3369
3370main()
3371{
3372 FILE *fd;
3373 int rc;
82f4e93d 3374
b2d818e6 3375 fd = fopen(DATA,"w");
3376 if(fd == NULL)
3377 exit(1);
82f4e93d 3378
b2d818e6 3379 if ((rc = fprintf(fd,"%s", _PATH_STDPATH)) < 0)
3380 exit(1);
3381
3382 exit(0);
3383}
b0e7249f 3384 ]])],
3385 [ user_path=`cat conftest.stdpath` ],
b2d818e6 3386 [ user_path="/usr/bin:/bin:/usr/sbin:/sbin" ],
3387 [ user_path="/usr/bin:/bin:/usr/sbin:/sbin" ]
3388 )
3389# make sure $bindir is in USER_PATH so scp will work
3390 t_bindir=`eval echo ${bindir}`
3391 case $t_bindir in
3392 NONE/*) t_bindir=`echo $t_bindir | sed "s~NONE~$prefix~"` ;;
3393 esac
3394 case $t_bindir in
3395 NONE/*) t_bindir=`echo $t_bindir | sed "s~NONE~$ac_default_prefix~"` ;;
3396 esac
3397 echo $user_path | grep ":$t_bindir" > /dev/null 2>&1
3398 if test $? -ne 0 ; then
3399 echo $user_path | grep "^$t_bindir" > /dev/null 2>&1
3400 if test $? -ne 0 ; then
3401 user_path=$user_path:$t_bindir
3402 AC_MSG_RESULT(Adding $t_bindir to USER_PATH so scp will work)
3403 fi
3404 fi
8d184c09 3405 fi ]
cb807f40 3406)
95b99395 3407if test "x$external_path_file" != "x/etc/login.conf" ; then
3466e002 3408 AC_DEFINE_UNQUOTED(USER_PATH, "$user_path", [Specify default $PATH])
8d184c09 3409 AC_SUBST(user_path)
3410fi
cb807f40 3411
06617857 3412# Set superuser path separately to user path
06617857 3413AC_ARG_WITH(superuser-path,
3414 [ --with-superuser-path= Specify different path for super-user],
3415 [
6cf0200f 3416 if test -n "$withval" && test "x$withval" != "xno" && \
3417 test "x${withval}" != "xyes"; then
3466e002 3418 AC_DEFINE_UNQUOTED(SUPERUSER_PATH, "$withval",
3419 [Define if you want a different $PATH
3420 for the superuser])
06617857 3421 superuser_path=$withval
3422 fi
3423 ]
3424)
3425
3426
58d100bf 3427AC_MSG_CHECKING([if we need to convert IPv4 in IPv6-mapped addresses])
aff51935 3428IPV4_IN6_HACK_MSG="no"
80faa19f 3429AC_ARG_WITH(4in6,
3430 [ --with-4in6 Check for and convert IPv4 in IPv6 mapped addresses],
3431 [
3432 if test "x$withval" != "xno" ; then
3433 AC_MSG_RESULT(yes)
3466e002 3434 AC_DEFINE(IPV4_IN_IPV6, 1,
3435 [Detect IPv4 in IPv6 mapped addresses
3436 and treat as IPv4])
aff51935 3437 IPV4_IN6_HACK_MSG="yes"
80faa19f 3438 else
3439 AC_MSG_RESULT(no)
3440 fi
3441 ],[
3442 if test "x$inet6_default_4in6" = "xyes"; then
3443 AC_MSG_RESULT([yes (default)])
3444 AC_DEFINE(IPV4_IN_IPV6)
aff51935 3445 IPV4_IN6_HACK_MSG="yes"
80faa19f 3446 else
3447 AC_MSG_RESULT([no (default)])
3448 fi
3449 ]
3450)
3451
af774732 3452# Whether to enable BSD auth support
f1b0ecc3 3453BSD_AUTH_MSG=no
af774732 3454AC_ARG_WITH(bsd-auth,
3455 [ --with-bsd-auth Enable BSD auth support],
3456 [
82f4e93d 3457 if test "x$withval" != "xno" ; then
3466e002 3458 AC_DEFINE(BSD_AUTH, 1,
3459 [Define if you have BSD auth support])
f1b0ecc3 3460 BSD_AUTH_MSG=yes
af774732 3461 fi
3462 ]
3463)
3464
a0391976 3465# Where to place sshd.pid
19d9ac2a 3466piddir=/var/run
81dadca3 3467# make sure the directory exists
82f4e93d 3468if test ! -d $piddir ; then
81dadca3 3469 piddir=`eval echo ${sysconfdir}`
3470 case $piddir in
aff51935 3471 NONE/*) piddir=`echo $piddir | sed "s~NONE~$ac_default_prefix~"` ;;
81dadca3 3472 esac
3473fi
3474
47e45e44 3475AC_ARG_WITH(pid-dir,
3476 [ --with-pid-dir=PATH Specify location of ssh.pid file],
3477 [
6cf0200f 3478 if test -n "$withval" && test "x$withval" != "xno" && \
3479 test "x${withval}" != "xyes"; then
19d9ac2a 3480 piddir=$withval
82f4e93d 3481 if test ! -d $piddir ; then
81dadca3 3482 AC_MSG_WARN([** no $piddir directory on this system **])
3483 fi
47e45e44 3484 fi
3485 ]
3486)
b7a87eea 3487
3466e002 3488AC_DEFINE_UNQUOTED(_PATH_SSH_PIDDIR, "$piddir", [Specify location of ssh.pid])
19d9ac2a 3489AC_SUBST(piddir)
47e45e44 3490
1d7b9b20 3491dnl allow user to disable some login recording features
3492AC_ARG_ENABLE(lastlog,
bfd550a2 3493 [ --disable-lastlog disable use of lastlog even if detected [no]],
ddb154b3 3494 [
3495 if test "x$enableval" = "xno" ; then
3496 AC_DEFINE(DISABLE_LASTLOG)
3497 fi
3498 ]
1d7b9b20 3499)
3500AC_ARG_ENABLE(utmp,
bfd550a2 3501 [ --disable-utmp disable use of utmp even if detected [no]],
ddb154b3 3502 [
3503 if test "x$enableval" = "xno" ; then
3504 AC_DEFINE(DISABLE_UTMP)
3505 fi
3506 ]
1d7b9b20 3507)
3508AC_ARG_ENABLE(utmpx,
bfd550a2 3509 [ --disable-utmpx disable use of utmpx even if detected [no]],
ddb154b3 3510 [
3511 if test "x$enableval" = "xno" ; then
3466e002 3512 AC_DEFINE(DISABLE_UTMPX, 1,
3513 [Define if you don't want to use utmpx])
ddb154b3 3514 fi
3515 ]
1d7b9b20 3516)
3517AC_ARG_ENABLE(wtmp,
bfd550a2 3518 [ --disable-wtmp disable use of wtmp even if detected [no]],
ddb154b3 3519 [
3520 if test "x$enableval" = "xno" ; then
3521 AC_DEFINE(DISABLE_WTMP)
3522 fi
3523 ]
1d7b9b20 3524)
3525AC_ARG_ENABLE(wtmpx,
bfd550a2 3526 [ --disable-wtmpx disable use of wtmpx even if detected [no]],
ddb154b3 3527 [
3528 if test "x$enableval" = "xno" ; then
3466e002 3529 AC_DEFINE(DISABLE_WTMPX, 1,
3530 [Define if you don't want to use wtmpx])
ddb154b3 3531 fi
3532 ]
1d7b9b20 3533)
3534AC_ARG_ENABLE(libutil,
bfd550a2 3535 [ --disable-libutil disable use of libutil (login() etc.) [no]],
ddb154b3 3536 [
3537 if test "x$enableval" = "xno" ; then
3538 AC_DEFINE(DISABLE_LOGIN)
3539 fi
3540 ]
1d7b9b20 3541)
3542AC_ARG_ENABLE(pututline,
bfd550a2 3543 [ --disable-pututline disable use of pututline() etc. ([uw]tmp) [no]],
ddb154b3 3544 [
3545 if test "x$enableval" = "xno" ; then
3466e002 3546 AC_DEFINE(DISABLE_PUTUTLINE, 1,
3547 [Define if you don't want to use pututline()
3548 etc. to write [uw]tmp])
ddb154b3 3549 fi
3550 ]
1d7b9b20 3551)
3552AC_ARG_ENABLE(pututxline,
bfd550a2 3553 [ --disable-pututxline disable use of pututxline() etc. ([uw]tmpx) [no]],
ddb154b3 3554 [
3555 if test "x$enableval" = "xno" ; then
3466e002 3556 AC_DEFINE(DISABLE_PUTUTXLINE, 1,
3557 [Define if you don't want to use pututxline()
3558 etc. to write [uw]tmpx])
ddb154b3 3559 fi
3560 ]
1d7b9b20 3561)
3562AC_ARG_WITH(lastlog,
bfd550a2 3563 [ --with-lastlog=FILE|DIR specify lastlog location [common locations]],
8c89dd2b 3564 [
82f4e93d 3565 if test "x$withval" = "xno" ; then
8c89dd2b 3566 AC_DEFINE(DISABLE_LASTLOG)
6cf0200f 3567 elif test -n "$withval" && test "x${withval}" != "xyes"; then
8c89dd2b 3568 conf_lastlog_location=$withval
3569 fi
3570 ]
3571)
1d7b9b20 3572
3573dnl lastlog, [uw]tmpx? detection
3574dnl NOTE: set the paths in the platform section to avoid the
3575dnl need for command-line parameters
3576dnl lastlog and [uw]tmp are subject to a file search if all else fails
3577
3578dnl lastlog detection
3579dnl NOTE: the code itself will detect if lastlog is a directory
3580AC_MSG_CHECKING([if your system defines LASTLOG_FILE])
3581AC_TRY_COMPILE([
3582#include <sys/types.h>
3583#include <utmp.h>
3584#ifdef HAVE_LASTLOG_H
3585# include <lastlog.h>
3586#endif
d7c0f3d5 3587#ifdef HAVE_PATHS_H
1d7b9b20 3588# include <paths.h>
41cb4569 3589#endif
3590#ifdef HAVE_LOGIN_H
3591# include <login.h>
1d7b9b20 3592#endif
3593 ],
3594 [ char *lastlog = LASTLOG_FILE; ],
3595 [ AC_MSG_RESULT(yes) ],
d7c0f3d5 3596 [
3597 AC_MSG_RESULT(no)
3598 AC_MSG_CHECKING([if your system defines _PATH_LASTLOG])
3599 AC_TRY_COMPILE([
3600#include <sys/types.h>
3601#include <utmp.h>
3602#ifdef HAVE_LASTLOG_H
3603# include <lastlog.h>
3604#endif
3605#ifdef HAVE_PATHS_H
3606# include <paths.h>
3607#endif
3608 ],
3609 [ char *lastlog = _PATH_LASTLOG; ],
3610 [ AC_MSG_RESULT(yes) ],
3611 [
f282b668 3612 AC_MSG_RESULT(no)
d7c0f3d5 3613 system_lastlog_path=no
3614 ])
3615 ]
1d7b9b20 3616)
d7c0f3d5 3617
1d7b9b20 3618if test -z "$conf_lastlog_location"; then
3619 if test x"$system_lastlog_path" = x"no" ; then
3620 for f in /var/log/lastlog /usr/adm/lastlog /var/adm/lastlog /etc/security/lastlog ; do
e5fe9a1f 3621 if (test -d "$f" || test -f "$f") ; then
1d7b9b20 3622 conf_lastlog_location=$f
3623 fi
3624 done
3625 if test -z "$conf_lastlog_location"; then
f8119cef 3626 AC_MSG_WARN([** Cannot find lastlog **])
3627 dnl Don't define DISABLE_LASTLOG - that means we don't try wtmp/wtmpx
1d7b9b20 3628 fi
3629 fi
3630fi
3631
3632if test -n "$conf_lastlog_location"; then
3466e002 3633 AC_DEFINE_UNQUOTED(CONF_LASTLOG_FILE, "$conf_lastlog_location",
3634 [Define if you want to specify the path to your lastlog file])
82f4e93d 3635fi
1d7b9b20 3636
3637dnl utmp detection
3638AC_MSG_CHECKING([if your system defines UTMP_FILE])
3639AC_TRY_COMPILE([
3640#include <sys/types.h>
3641#include <utmp.h>
d7c0f3d5 3642#ifdef HAVE_PATHS_H
1d7b9b20 3643# include <paths.h>
3644#endif
3645 ],
3646 [ char *utmp = UTMP_FILE; ],
3647 [ AC_MSG_RESULT(yes) ],
3648 [ AC_MSG_RESULT(no)
3649 system_utmp_path=no ]
3650)
3651if test -z "$conf_utmp_location"; then
3652 if test x"$system_utmp_path" = x"no" ; then
3653 for f in /etc/utmp /usr/adm/utmp /var/run/utmp; do
3654 if test -f $f ; then
3655 conf_utmp_location=$f
3656 fi
3657 done
3658 if test -z "$conf_utmp_location"; then
3659 AC_DEFINE(DISABLE_UTMP)
3660 fi
3661 fi
3662fi
3663if test -n "$conf_utmp_location"; then
3466e002 3664 AC_DEFINE_UNQUOTED(CONF_UTMP_FILE, "$conf_utmp_location",
3665 [Define if you want to specify the path to your utmp file])
82f4e93d 3666fi
1d7b9b20 3667
3668dnl wtmp detection
3669AC_MSG_CHECKING([if your system defines WTMP_FILE])
3670AC_TRY_COMPILE([
3671#include <sys/types.h>
3672#include <utmp.h>
d7c0f3d5 3673#ifdef HAVE_PATHS_H
1d7b9b20 3674# include <paths.h>
3675#endif
3676 ],
3677 [ char *wtmp = WTMP_FILE; ],
3678 [ AC_MSG_RESULT(yes) ],
3679 [ AC_MSG_RESULT(no)
3680 system_wtmp_path=no ]
3681)
3682if test -z "$conf_wtmp_location"; then
3683 if test x"$system_wtmp_path" = x"no" ; then
3684 for f in /usr/adm/wtmp /var/log/wtmp; do
3685 if test -f $f ; then
3686 conf_wtmp_location=$f
3687 fi
3688 done
3689 if test -z "$conf_wtmp_location"; then
3690 AC_DEFINE(DISABLE_WTMP)
3691 fi
3692 fi
3693fi
3694if test -n "$conf_wtmp_location"; then
3466e002 3695 AC_DEFINE_UNQUOTED(CONF_WTMP_FILE, "$conf_wtmp_location",
3696 [Define if you want to specify the path to your wtmp file])
82f4e93d 3697fi
1d7b9b20 3698
3699
3700dnl utmpx detection - I don't know any system so perverse as to require
3701dnl utmpx, but not define UTMPX_FILE (ditto wtmpx.) No doubt it's out
3702dnl there, though.
3703AC_MSG_CHECKING([if your system defines UTMPX_FILE])
3704AC_TRY_COMPILE([
3705#include <sys/types.h>
3706#include <utmp.h>
3707#ifdef HAVE_UTMPX_H
3708#include <utmpx.h>
3709#endif
d7c0f3d5 3710#ifdef HAVE_PATHS_H
1d7b9b20 3711# include <paths.h>
3712#endif
3713 ],
3714 [ char *utmpx = UTMPX_FILE; ],
3715 [ AC_MSG_RESULT(yes) ],
3716 [ AC_MSG_RESULT(no)
3717 system_utmpx_path=no ]
3718)
3719if test -z "$conf_utmpx_location"; then
3720 if test x"$system_utmpx_path" = x"no" ; then
3721 AC_DEFINE(DISABLE_UTMPX)
3722 fi
3723else
3466e002 3724 AC_DEFINE_UNQUOTED(CONF_UTMPX_FILE, "$conf_utmpx_location",
3725 [Define if you want to specify the path to your utmpx file])
82f4e93d 3726fi
1d7b9b20 3727
3728dnl wtmpx detection
3729AC_MSG_CHECKING([if your system defines WTMPX_FILE])
3730AC_TRY_COMPILE([
3731#include <sys/types.h>
3732#include <utmp.h>
3733#ifdef HAVE_UTMPX_H
3734#include <utmpx.h>
3735#endif
d7c0f3d5 3736#ifdef HAVE_PATHS_H
1d7b9b20 3737# include <paths.h>
3738#endif
3739 ],
3740 [ char *wtmpx = WTMPX_FILE; ],
3741 [ AC_MSG_RESULT(yes) ],
3742 [ AC_MSG_RESULT(no)
3743 system_wtmpx_path=no ]
3744)
3745if test -z "$conf_wtmpx_location"; then
3746 if test x"$system_wtmpx_path" = x"no" ; then
3747 AC_DEFINE(DISABLE_WTMPX)
3748 fi
3749else
3466e002 3750 AC_DEFINE_UNQUOTED(CONF_WTMPX_FILE, "$conf_wtmpx_location",
3751 [Define if you want to specify the path to your wtmpx file])
82f4e93d 3752fi
1d7b9b20 3753
b7a87eea 3754
bd499f9e 3755if test ! -z "$blibpath" ; then
68ece370 3756 LDFLAGS="$LDFLAGS $blibflags$blibpath"
3757 AC_MSG_WARN([Please check and edit blibpath in LDFLAGS in Makefile])
bd499f9e 3758fi
3759
ddceb1c8 3760dnl remove pam and dl because they are in $LIBPAM
3761if test "$PAM_MSG" = yes ; then
98f2d9d5 3762 LIBS=`echo $LIBS | sed 's/-lpam //'`
3763fi
3764if test "$ac_cv_lib_pam_pam_set_item" = yes ; then
3765 LIBS=`echo $LIBS | sed 's/-ldl //'`
ddceb1c8 3766fi
3767
ed89c848 3768dnl Adding -Werror to CFLAGS early prevents configure tests from running.
3769dnl Add now.
3770CFLAGS="$CFLAGS $werror_flags"
3771
3c62e7eb 3772AC_EXEEXT
d7cfdd7c 3773AC_CONFIG_FILES([Makefile buildpkg.sh opensshd.init openbsd-compat/Makefile \
46096a5b 3774 openbsd-compat/regress/Makefile scard/Makefile ssh_prng_cmds survey.sh])
98a7c37b 3775AC_OUTPUT
d3083fbd 3776
cbd7492e 3777# Print summary of options
3778
cbd7492e 3779# Someone please show me a better way :)
3780A=`eval echo ${prefix}` ; A=`eval echo ${A}`
3781B=`eval echo ${bindir}` ; B=`eval echo ${B}`
3782C=`eval echo ${sbindir}` ; C=`eval echo ${C}`
3783D=`eval echo ${sysconfdir}` ; D=`eval echo ${D}`
f5665f6f 3784E=`eval echo ${libexecdir}/ssh-askpass` ; E=`eval echo ${E}`
e0c4d3ac 3785F=`eval echo ${mandir}/${mansubdir}X` ; F=`eval echo ${F}`
cbd7492e 3786G=`eval echo ${piddir}` ; G=`eval echo ${G}`
ecac8ee5 3787H=`eval echo ${PRIVSEP_PATH}` ; H=`eval echo ${H}`
3788I=`eval echo ${user_path}` ; I=`eval echo ${I}`
3789J=`eval echo ${superuser_path}` ; J=`eval echo ${J}`
cbd7492e 3790
3791echo ""
26de7942 3792echo "OpenSSH has been configured with the following options:"
ecac8ee5 3793echo " User binaries: $B"
3794echo " System binaries: $C"
3795echo " Configuration files: $D"
3796echo " Askpass program: $E"
3797echo " Manual pages: $F"
3798echo " PID file: $G"
3799echo " Privilege separation chroot path: $H"
95b99395 3800if test "x$external_path_file" = "x/etc/login.conf" ; then
3801echo " At runtime, sshd will use the path defined in $external_path_file"
3802echo " Make sure the path to scp is present, otherwise scp will not work"
8d184c09 3803else
ecac8ee5 3804echo " sshd default user PATH: $I"
89bbd457 3805 if test ! -z "$external_path_file"; then
95b99395 3806echo " (If PATH is set in $external_path_file it will be used instead. If"
3807echo " used, ensure the path to scp is present, otherwise scp will not work.)"
3808 fi
8d184c09 3809fi
06617857 3810if test ! -z "$superuser_path" ; then
ecac8ee5 3811echo " sshd superuser user PATH: $J"
3812fi
3813echo " Manpage format: $MANTYPE"
3e05e934 3814echo " PAM support: $PAM_MSG"
ecac8ee5 3815echo " KerberosV support: $KRB5_MSG"
3816echo " Smartcard support: $SCARD_MSG"
ecac8ee5 3817echo " S/KEY support: $SKEY_MSG"
3818echo " TCP Wrappers support: $TCPW_MSG"
3819echo " MD5 password support: $MD5_MSG"
59031773 3820echo " libedit support: $LIBEDIT_MSG"
3deb1408 3821echo " IP address in \$DISPLAY hack: $DISPLAY_HACK_MSG"
ecac8ee5 3822echo " Translate v4 in v6 hack: $IPV4_IN6_HACK_MSG"
3823echo " BSD Auth support: $BSD_AUTH_MSG"
3824echo " Random number source: $RAND_MSG"
f1b0ecc3 3825if test ! -z "$USE_RAND_HELPER" ; then
ecac8ee5 3826echo " ssh-rand-helper collects from: $RAND_HELPER_MSG"
af774732 3827fi
3828
cbd7492e 3829echo ""
3830
0c2fb82f 3831echo " Host: ${host}"
3832echo " Compiler: ${CC}"
3833echo " Compiler flags: ${CFLAGS}"
3834echo "Preprocessor flags: ${CPPFLAGS}"
3835echo " Linker flags: ${LDFLAGS}"
ddceb1c8 3836echo " Libraries: ${LIBWRAP} ${LIBPAM} ${LIBS}"
cbd7492e 3837
3838echo ""
3839
9cefe228 3840if test "x$MAKE_PACKAGE_SUPPORTED" = "xyes" ; then
b3146b5f 3841 echo "SVR4 style packages are supported with \"make package\""
3842 echo ""
9cefe228 3843fi
3844
adeebd37 3845if test "x$PAM_MSG" = "xyes" ; then
f1b0ecc3 3846 echo "PAM is enabled. You may need to install a PAM control file "
3847 echo "for sshd, otherwise password authentication may fail. "
aff51935 3848 echo "Example PAM control files can be found in the contrib/ "
f1b0ecc3 3849 echo "subdirectory"
adeebd37 3850 echo ""
3851fi
3852
f1b0ecc3 3853if test ! -z "$RAND_HELPER_CMDHASH" ; then
3854 echo "WARNING: you are using the builtin random number collection "
3855 echo "service. Please read WARNING.RNG and request that your OS "
3856 echo "vendor includes kernel-based random number collection in "
3857 echo "future versions of your OS."
2c523de9 3858 echo ""
3859fi
af774732 3860
2f6f9cff 3861if test ! -z "$NO_PEERCHECK" ; then
3862 echo "WARNING: the operating system that you are using does not "
3863 echo "appear to support either the getpeereid() API nor the "
3864 echo "SO_PEERCRED getsockopt() option. These facilities are used to "
3865 echo "enforce security checks to prevent unauthorised connections to "
3866 echo "ssh-agent. Their absence increases the risk that a malicious "
3867 echo "user can connect to your agent. "
3868 echo ""
3869fi
3870
7b578f7d 3871if test "$AUDIT_MODULE" = "bsm" ; then
3872 echo "WARNING: BSM audit support is currently considered EXPERIMENTAL."
3873 echo "See the Solaris section in README.platform for details."
3874fi
git-cvsimport mirror of OpenSSH
This page took 1.338212 seconds and 5 git commands to generate.