]> andersk Git - openssh.git/blame - configure.ac
andersk / openssh.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
- (dtucker) [configure.ac] Bug #1156: QNX apparently needs SSHD_ACQUIRES_CTTY
[openssh.git] / configure.ac
CommitLineData
eb5d7ff6 1# $Id$
2b983b95 2#
3# Copyright (c) 1999-2004 Damien Miller
4#
5# Permission to use, copy, modify, and distribute this software for any
6# purpose with or without fee is hereby granted, provided that the above
7# copyright notice and this permission notice appear in all copies.
8#
9# THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
10# WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
11# MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR
12# ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
13# WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
14# ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
15# OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
0b202697 16
76e6410a 17AC_INIT(OpenSSH, Portable, openssh-unix-dev@mindrot.org)
823221b2 18AC_REVISION($Revision$)
98a7c37b 19AC_CONFIG_SRCDIR([ssh.c])
5881cd60 20
21AC_CONFIG_HEADER(config.h)
b14b2ae7 22AC_PROG_CC
a7effaac 23AC_CANONICAL_HOST
cf0c5df5 24AC_C_BIGENDIAN
5881cd60 25
a0391976 26# Checks for programs.
4bbf95fa 27AC_PROG_AWK
4cca272e 28AC_PROG_CPP
5881cd60 29AC_PROG_RANLIB
cf8dd513 30AC_PROG_INSTALL
c9ecc3c7 31AC_PROG_EGREP
bee0a37e 32AC_PATH_PROG(AR, ar)
ddd8c95b 33AC_PATH_PROG(CAT, cat)
34AC_PATH_PROG(KILL, kill)
13dd877b 35AC_PATH_PROGS(PERL, perl5 perl)
c3690df3 36AC_PATH_PROG(SED, sed)
a0f84251 37AC_SUBST(PERL)
ad85db64 38AC_PATH_PROG(ENT, ent)
39AC_SUBST(ENT)
6958bd37 40AC_PATH_PROG(TEST_MINUS_S_SH, bash)
41AC_PATH_PROG(TEST_MINUS_S_SH, ksh)
42AC_PATH_PROG(TEST_MINUS_S_SH, sh)
6193497b 43AC_PATH_PROG(SH, sh)
a3245b92 44AC_SUBST(TEST_SHELL,sh)
f498ed15 45
9cefe228 46dnl for buildpkg.sh
47AC_PATH_PROG(PATH_GROUPADD_PROG, groupadd, groupadd,
48 [/usr/sbin${PATH_SEPARATOR}/etc])
49AC_PATH_PROG(PATH_USERADD_PROG, useradd, useradd,
50 [/usr/sbin${PATH_SEPARATOR}/etc])
51AC_CHECK_PROG(MAKE_PACKAGE_SUPPORTED, pkgmk, yes, no)
eeb27c78 52if test -x /sbin/sh; then
53 AC_SUBST(STARTUP_SCRIPT_SHELL,/sbin/sh)
54else
55 AC_SUBST(STARTUP_SCRIPT_SHELL,/bin/sh)
56fi
9cefe228 57
948fd8b9 58# System features
59AC_SYS_LARGEFILE
60
c193d002 61if test -z "$AR" ; then
62 AC_MSG_ERROR([*** 'ar' missing, please install or fix your \$PATH ***])
63fi
64
2e73a022 65# Use LOGIN_PROGRAM from environment if possible
66if test ! -z "$LOGIN_PROGRAM" ; then
3466e002 67 AC_DEFINE_UNQUOTED(LOGIN_PROGRAM_FALLBACK, "$LOGIN_PROGRAM",
68 [If your header files don't define LOGIN_PROGRAM,
69 then use this (detected) from environment and PATH])
2e73a022 70else
71 # Search for login
72 AC_PATH_PROG(LOGIN_PROGRAM_FALLBACK, login)
73 if test ! -z "$LOGIN_PROGRAM_FALLBACK" ; then
74 AC_DEFINE_UNQUOTED(LOGIN_PROGRAM_FALLBACK, "$LOGIN_PROGRAM_FALLBACK")
75 fi
76fi
77
37656beb 78AC_PATH_PROG(PATH_PASSWD_PROG, passwd)
79if test ! -z "$PATH_PASSWD_PROG" ; then
3466e002 80 AC_DEFINE_UNQUOTED(_PATH_PASSWD_PROG, "$PATH_PASSWD_PROG",
81 [Full path of your "passwd" program])
37656beb 82fi
83
d423d822 84if test -z "$LD" ; then
85 LD=$CC
86fi
87AC_SUBST(LD)
82f4e93d 88
d423d822 89AC_C_INLINE
dfafb2e1 90
91AC_CHECK_DECL(LLONG_MAX, have_llong_max=1, , [#include <limits.h>])
92
aff51935 93if test "$GCC" = "yes" || test "$GCC" = "egcs"; then
af40ca44 94 CFLAGS="$CFLAGS -Wall -Wpointer-arith -Wuninitialized"
eeee8237 95 GCC_VER=`$CC -v 2>&1 | $AWK '/gcc version /{print $3}'`
5fdabf45 96 case $GCC_VER in
97 1.*) ;;
98 2.8* | 2.9*) CFLAGS="$CFLAGS -Wsign-compare" ;;
99 2.*) ;;
dbf07ba2 100 3.*) CFLAGS="$CFLAGS -Wsign-compare" ;;
cd595991 101 4.*) CFLAGS="$CFLAGS -Wsign-compare -Wno-pointer-sign" ;;
102 *) ;;
5fdabf45 103 esac
8a3ff1aa 104
dfafb2e1 105 if test -z "$have_llong_max"; then
106 # retry LLONG_MAX with -std=gnu99, needed on some Linuxes
107 unset ac_cv_have_decl_LLONG_MAX
108 saved_CFLAGS="$CFLAGS"
109 CFLAGS="$CFLAGS -std=gnu99"
110 AC_CHECK_DECL(LLONG_MAX,
111 [have_llong_max=1],
112 [CFLAGS="$saved_CFLAGS"],
113 [#include <limits.h>]
114 )
115 fi
d423d822 116fi
117
e6354014 118AC_ARG_WITH(rpath,
119 [ --without-rpath Disable auto-added -R linker paths],
120 [
82f4e93d 121 if test "x$withval" = "xno" ; then
e6354014 122 need_dash_r=""
123 fi
124 if test "x$withval" = "xyes" ; then
125 need_dash_r=1
126 fi
127 ]
128)
129
a0391976 130# Check for some target-specific stuff
a7effaac 131case "$host" in
9d6b1b96 132*-*-aix*)
aff51935 133 AC_MSG_CHECKING([how to specify blibpath for linker ($LD)])
68ece370 134 if (test -z "$blibpath"); then
0a15d73b 135 blibpath="/usr/lib:/lib"
68ece370 136 fi
137 saved_LDFLAGS="$LDFLAGS"
138 for tryflags in -blibpath: -Wl,-blibpath: -Wl,-rpath, ;do
139 if (test -z "$blibflags"); then
140 LDFLAGS="$saved_LDFLAGS $tryflags$blibpath"
141 AC_TRY_LINK([], [], [blibflags=$tryflags])
142 fi
143 done
144 if (test -z "$blibflags"); then
145 AC_MSG_RESULT(not found)
146 AC_MSG_ERROR([*** must be able to specify blibpath on AIX - check config.log])
147 else
148 AC_MSG_RESULT($blibflags)
bd499f9e 149 fi
68ece370 150 LDFLAGS="$saved_LDFLAGS"
e351e493 151 dnl Check for authenticate. Might be in libs.a on older AIXes
3466e002 152 AC_CHECK_FUNC(authenticate, [AC_DEFINE(WITH_AIXAUTHENTICATE, 1,
153 [Define if you want to enable AIX4's authenticate function])],
0764e748 154 [AC_CHECK_LIB(s,authenticate,
e351e493 155 [ AC_DEFINE(WITH_AIXAUTHENTICATE)
0764e748 156 LIBS="$LIBS -ls"
157 ])
158 ])
ba603e06 159 dnl Check for various auth function declarations in headers.
c85ed8e2 160 AC_CHECK_DECLS([authenticate, loginrestrictions, loginsuccess,
72ad335d 161 passwdexpired, setauthdb], , , [#include <usersec.h>])
e351e493 162 dnl Check if loginfailed is declared and takes 4 arguments (AIX >= 5.2)
ba603e06 163 AC_CHECK_DECLS(loginfailed,
e351e493 164 [AC_MSG_CHECKING(if loginfailed takes 4 arguments)
165 AC_TRY_COMPILE(
f58c0e01 166 [#include <usersec.h>],
e351e493 167 [(void)loginfailed("user","host","tty",0);],
168 [AC_MSG_RESULT(yes)
3466e002 169 AC_DEFINE(AIX_LOGINFAILED_4ARG, 1,
170 [Define if your AIX loginfailed() function
171 takes 4 arguments (AIX >= 5.2)])],
f58c0e01 172 [AC_MSG_RESULT(no)]
e351e493 173 )],
174 [],
175 [#include <usersec.h>]
176 )
2aa3a16c 177 AC_CHECK_FUNCS(setauthdb)
5ccf88cb 178 check_for_aix_broken_getaddrinfo=1
3466e002 179 AC_DEFINE(BROKEN_REALPATH, 1, [Define if you have a broken realpath.])
180 AC_DEFINE(SETEUID_BREAKS_SETUID, 1,
181 [Define if your platform breaks doing a seteuid before a setuid])
182 AC_DEFINE(BROKEN_SETREUID, 1, [Define if your setreuid() is broken])
183 AC_DEFINE(BROKEN_SETREGID, 1, [Define if your setregid() is broken])
a3cef3ca 184 dnl AIX handles lastlog as part of its login message
3466e002 185 AC_DEFINE(DISABLE_LASTLOG, 1, [Define if you don't want to use lastlog])
186 AC_DEFINE(LOGIN_NEEDS_UTMPX, 1,
187 [Some systems need a utmpx entry for /bin/login to work])
188 AC_DEFINE(SPT_TYPE,SPT_REUSEARGV,
189 [Define to a Set Process Title type if your system is
190 supported by bsd-setproctitle.c])
961c2997 191 AC_DEFINE(SSHPAM_CHAUTHTOK_NEEDS_RUID, 1,
192 [AIX 5.2 and 5.3 (and presumably newer) require this])
9d6b1b96 193 ;;
3c62e7eb 194*-*-cygwin*)
a52997bd 195 check_for_libcrypt_later=1
ffb8d130 196 LIBS="$LIBS /usr/lib/textmode.o"
3466e002 197 AC_DEFINE(HAVE_CYGWIN, 1, [Define if you are on Cygwin])
198 AC_DEFINE(USE_PIPES, 1, [Use PIPES instead of a socketpair()])
199 AC_DEFINE(DISABLE_SHADOW, 1,
200 [Define if you want to disable shadow passwords])
201 AC_DEFINE(IP_TOS_IS_BROKEN, 1,
202 [Define if your system choked on IP TOS setting])
203 AC_DEFINE(NO_X11_UNIX_SOCKETS, 1,
204 [Define if X11 doesn't support AF_UNIX sockets on that system])
205 AC_DEFINE(NO_IPPORT_RESERVED_CONCEPT, 1,
206 [Define if the concept of ports only accessible to
207 superusers isn't known])
208 AC_DEFINE(DISABLE_FD_PASSING, 1,
209 [Define if your platform needs to skip post auth
210 file descriptor passing])
3c62e7eb 211 ;;
d6fdb079 212*-*-dgux*)
213 AC_DEFINE(IP_TOS_IS_BROKEN)
0c6a72a5 214 AC_DEFINE(SETEUID_BREAKS_SETUID)
215 AC_DEFINE(BROKEN_SETREUID)
216 AC_DEFINE(BROKEN_SETREGID)
d6fdb079 217 ;;
39c98ef7 218*-*-darwin*)
33e2e066 219 AC_MSG_CHECKING(if we have working getaddrinfo)
220 AC_TRY_RUN([#include <mach-o/dyld.h>
221main() { if (NSVersionOfRunTimeLibrary("System") >= (60 << 16))
222 exit(0);
223 else
224 exit(1);
225}], [AC_MSG_RESULT(working)],
226 [AC_MSG_RESULT(buggy)
3466e002 227 AC_DEFINE(BROKEN_GETADDRINFO, 1, [getaddrinfo is broken (if present)])],
b27e573d 228 [AC_MSG_RESULT(assume it is working)])
635e0c42 229 AC_DEFINE(SETEUID_BREAKS_SETUID)
230 AC_DEFINE(BROKEN_SETREUID)
231 AC_DEFINE(BROKEN_SETREGID)
3466e002 232 AC_DEFINE_UNQUOTED(BIND_8_COMPAT, 1,
233 [Define if your resolver libs need this for getrrsetbyname])
39c98ef7 234 ;;
7d458c86 235*-*-hpux*)
236 # first we define all of the options common to all HP-UX releases
b8fea62d 237 CPPFLAGS="$CPPFLAGS -D_HPUX_SOURCE -D_XOPEN_SOURCE -D_XOPEN_SOURCE_EXTENDED=1"
44839801 238 IPADDR_IN_DISPLAY=yes
2b10f47a 239 AC_DEFINE(USE_PIPES)
3466e002 240 AC_DEFINE(LOGIN_NO_ENDOPT, 1,
241 [Define if your login program cannot handle end of options ("--")])
a2572aa7 242 AC_DEFINE(LOGIN_NEEDS_UTMPX)
3466e002 243 AC_DEFINE(LOCKED_PASSWD_STRING, "*",
244 [String used in /etc/passwd to denote locked account])
3a2b2b44 245 AC_DEFINE(SPT_TYPE,SPT_PSTAT)
83f987c3 246 MAIL="/var/mail/username"
f75ca46d 247 LIBS="$LIBS -lsec"
7d458c86 248 AC_CHECK_LIB(xnet, t_error, ,
249 AC_MSG_ERROR([*** -lxnet needed on HP-UX - check config.log ***]))
250
251 # next, we define all of the options specific to major releases
252 case "$host" in
253 *-*-hpux10*)
254 if test -z "$GCC"; then
255 CFLAGS="$CFLAGS -Ae"
256 fi
257 ;;
258 *-*-hpux11*)
3466e002 259 AC_DEFINE(PAM_SUN_CODEBASE, 1,
260 [Define if you are using Solaris-derived PAM which
261 passes pam_messages to the conversation function
262 with an extra level of indirection])
263 AC_DEFINE(DISABLE_UTMP, 1,
264 [Define if you don't want to use utmp])
7d458c86 265 AC_DEFINE(USE_BTMP, 1, [Use btmp to log bad logins])
266 check_for_hpux_broken_getaddrinfo=1
267 check_for_conflicting_getspnam=1
268 ;;
269 esac
270
271 # lastly, we define options specific to minor releases
272 case "$host" in
273 *-*-hpux10.26)
3466e002 274 AC_DEFINE(HAVE_SECUREWARE, 1,
275 [Define if you have SecureWare-based
276 protected password database])
7d458c86 277 disable_ptmx_check=yes
278 LIBS="$LIBS -lsecpw"
279 ;;
280 esac
2b763e31 281 ;;
d94aa2ae 282*-*-irix5*)
6ac7829a 283 PATH="$PATH:/usr/etc"
3466e002 284 AC_DEFINE(BROKEN_INET_NTOA, 1,
285 [Define if you system's inet_ntoa is busted
286 (e.g. Irix gcc issue)])
cb433561 287 AC_DEFINE(SETEUID_BREAKS_SETUID)
288 AC_DEFINE(BROKEN_SETREUID)
289 AC_DEFINE(BROKEN_SETREGID)
3466e002 290 AC_DEFINE(WITH_ABBREV_NO_TTY, 1,
291 [Define if you shouldn't strip 'tty' from your
292 ttyname in [uw]tmp])
3e6e3da0 293 AC_DEFINE(LOCKED_PASSWD_STRING, "*LK*")
b9795b89 294 ;;
295*-*-irix6*)
6ac7829a 296 PATH="$PATH:/usr/etc"
3466e002 297 AC_DEFINE(WITH_IRIX_ARRAY, 1,
298 [Define if you have/want arrays
299 (cluster-wide session managment, not C arrays)])
300 AC_DEFINE(WITH_IRIX_PROJECT, 1,
301 [Define if you want IRIX project management])
302 AC_DEFINE(WITH_IRIX_AUDIT, 1,
303 [Define if you want IRIX audit trails])
304 AC_CHECK_FUNC(jlimit_startjob, [AC_DEFINE(WITH_IRIX_JOBS, 1,
305 [Define if you want IRIX kernel jobs])])
416ed5a7 306 AC_DEFINE(BROKEN_INET_NTOA)
412c0eaa 307 AC_DEFINE(SETEUID_BREAKS_SETUID)
308 AC_DEFINE(BROKEN_SETREUID)
309 AC_DEFINE(BROKEN_SETREGID)
3466e002 310 AC_DEFINE(BROKEN_UPDWTMPX, 1, [updwtmpx is broken (if present)])
0e8f4eba 311 AC_DEFINE(WITH_ABBREV_NO_TTY)
3e6e3da0 312 AC_DEFINE(LOCKED_PASSWD_STRING, "*LK*")
d94aa2ae 313 ;;
5cdfe03f 314*-*-linux*)
315 no_dev_ptmx=1
717057b6 316 check_for_libcrypt_later=1
eacb954e 317 check_for_openpty_ctty_bug=1
3466e002 318 AC_DEFINE(DONT_TRY_OTHER_AF, 1, [Workaround more Linux IPv6 quirks])
319 AC_DEFINE(PAM_TTY_KLUDGE, 1,
320 [Work around problematic Linux PAM modules handling of PAM_TTY])
321 AC_DEFINE(LOCKED_PASSWD_PREFIX, "!",
322 [String used in /etc/passwd to denote locked account])
3a2b2b44 323 AC_DEFINE(SPT_TYPE,SPT_REUSEARGV)
3466e002 324 AC_DEFINE(LINK_OPNOTSUPP_ERRNO, EPERM,
325 [Define to whatever link() returns for "not supported"
326 if it doesn't return EOPNOTSUPP.])
b6610e8f 327 AC_DEFINE(_PATH_BTMP, "/var/log/btmp", [log for bad login attempts])
3466e002 328 AC_DEFINE(USE_BTMP)
80faa19f 329 inet6_default_4in6=yes
bf7c1e6c 330 case `uname -r` in
ad84c479 331 1.*|2.0.*)
3466e002 332 AC_DEFINE(BROKEN_CMSG_TYPE, 1,
333 [Define if cmsg_type is not passed correctly])
bf7c1e6c 334 ;;
bf7c1e6c 335 esac
c40f09ca 336 # tun(4) forwarding compat code
d91775e1 337 AC_CHECK_HEADERS(linux/if_tun.h)
b5081213 338 if test "x$ac_cv_header_linux_if_tun_h" = "xyes" ; then
c40f09ca 339 AC_DEFINE(SSH_TUN_LINUX, 1,
340 [Open tunnel devices the Linux tun/tap way])
341 AC_DEFINE(SSH_TUN_COMPAT_AF, 1,
342 [Use tunnel device compatibility to OpenBSD])
343 AC_DEFINE(SSH_TUN_PREPEND_AF, 1,
344 [Prepend the address family to IP tunnel traffic])
345 fi
5cdfe03f 346 ;;
66d6c27e 347mips-sony-bsd|mips-sony-newsos4)
4b2cf3f1 348 AC_DEFINE(NEED_SETPGRP, 1, [Need setpgrp to acquire controlling tty])
66d6c27e 349 SONY=1
66d6c27e 350 ;;
d468fc76 351*-*-netbsd*)
33e2e066 352 check_for_libcrypt_before=1
82f4e93d 353 if test "x$withval" != "xno" ; then
e6354014 354 need_dash_r=1
355 fi
0f6cb079 356 AC_DEFINE(SSH_TUN_FREEBSD, 1, [Open tunnel devices the FreeBSD way])
357 AC_CHECK_HEADER([net/if_tap.h], ,
358 AC_DEFINE(SSH_TUN_NO_L2, 1, [No layer 2 tunnel support]))
359 AC_DEFINE(SSH_TUN_PREPEND_AF, 1,
360 [Prepend the address family to IP tunnel traffic])
d468fc76 361 ;;
86b416a7 362*-*-freebsd*)
363 check_for_libcrypt_later=1
988c5031 364 AC_DEFINE(LOCKED_PASSWD_PREFIX, "*LOCKED*", [Account locked with pw(1)])
0f6cb079 365 AC_DEFINE(SSH_TUN_FREEBSD, 1, [Open tunnel devices the FreeBSD way])
366 AC_CHECK_HEADER([net/if_tap.h], ,
367 AC_DEFINE(SSH_TUN_NO_L2, 1, [No layer 2 tunnel support]))
86b416a7 368 ;;
8707b7eb 369*-*-bsdi*)
370 AC_DEFINE(SETEUID_BREAKS_SETUID)
371 AC_DEFINE(BROKEN_SETREUID)
372 AC_DEFINE(BROKEN_SETREGID)
373 ;;
729bfe59 374*-next-*)
729bfe59 375 conf_lastlog_location="/usr/adm/lastlog"
698d107e 376 conf_utmp_location=/etc/utmp
377 conf_wtmp_location=/usr/adm/wtmp
378 MAIL=/usr/spool/mail
3466e002 379 AC_DEFINE(HAVE_NEXT, 1, [Define if you are on NeXT])
443172c4 380 AC_DEFINE(BROKEN_REALPATH)
00937921 381 AC_DEFINE(USE_PIPES)
3466e002 382 AC_DEFINE(BROKEN_SAVED_UIDS, 1, [Needed for NeXT])
729bfe59 383 ;;
5b7b5e23 384*-*-openbsd*)
385 AC_DEFINE(HAVE_ATTRIBUTE__SENTINEL__, 1, [OpenBSD's gcc has sentinel])
8034a348 386 AC_DEFINE(HAVE_ATTRIBUTE__BOUNDED__, 1, [OpenBSD's gcc has bounded])
0f6cb079 387 AC_DEFINE(SSH_TUN_OPENBSD, 1, [Open tunnel devices the OpenBSD way])
5b7b5e23 388 ;;
9d6b1b96 389*-*-solaris*)
82f4e93d 390 if test "x$withval" != "xno" ; then
010e9d5b 391 need_dash_r=1
392 fi
adeebd37 393 AC_DEFINE(PAM_SUN_CODEBASE)
7e2d5fa4 394 AC_DEFINE(LOGIN_NEEDS_UTMPX)
3466e002 395 AC_DEFINE(LOGIN_NEEDS_TERM, 1,
396 [Some versions of /bin/login need the TERM supplied
397 on the commandline])
7f0a4ff1 398 AC_DEFINE(PAM_TTY_KLUDGE)
3466e002 399 AC_DEFINE(SSHPAM_CHAUTHTOK_NEEDS_RUID, 1,
400 [Define if pam_chauthtok wants real uid set
401 to the unpriv'ed user])
3e6e3da0 402 AC_DEFINE(LOCKED_PASSWD_STRING, "*LK*")
ad84c479 403 # Pushing STREAMS modules will cause sshd to acquire a controlling tty.
3466e002 404 AC_DEFINE(SSHD_ACQUIRES_CTTY, 1,
405 [Define if sshd somehow reacquires a controlling TTY
406 after setsid()])
95b99395 407 external_path_file=/etc/default/login
1d7b9b20 408 # hardwire lastlog location (can't detect it on some versions)
409 conf_lastlog_location="/var/adm/lastlog"
32c80420 410 AC_MSG_CHECKING(for obsolete utmp and wtmp in solaris2.x)
411 sol2ver=`echo "$host"| sed -e 's/.*[[0-9]]\.//'`
412 if test "$sol2ver" -ge 8; then
413 AC_MSG_RESULT(yes)
414 AC_DEFINE(DISABLE_UTMP)
3466e002 415 AC_DEFINE(DISABLE_WTMP, 1,
416 [Define if you don't want to use wtmp])
32c80420 417 else
418 AC_MSG_RESULT(no)
419 fi
9d6b1b96 420 ;;
a423beaf 421*-*-sunos4*)
0c2fb82f 422 CPPFLAGS="$CPPFLAGS -DSUNOS4"
a423beaf 423 AC_CHECK_FUNCS(getpwanam)
adeebd37 424 AC_DEFINE(PAM_SUN_CODEBASE)
32eec038 425 conf_utmp_location=/etc/utmp
426 conf_wtmp_location=/var/adm/wtmp
427 conf_lastlog_location=/var/adm/lastlog
137d7b6c 428 AC_DEFINE(USE_PIPES)
a423beaf 429 ;;
6f68f28a 430*-ncr-sysv*)
98a7c37b 431 LIBS="$LIBS -lc89"
29525240 432 AC_DEFINE(USE_PIPES)
eabb99c6 433 AC_DEFINE(SSHD_ACQUIRES_CTTY)
6fb3618d 434 AC_DEFINE(SETEUID_BREAKS_SETUID)
435 AC_DEFINE(BROKEN_SETREUID)
436 AC_DEFINE(BROKEN_SETREGID)
6f68f28a 437 ;;
132dd316 438*-sni-sysv*)
c8c15bcb 439 # /usr/ucblib MUST NOT be searched on ReliantUNIX
e2798e96 440 AC_CHECK_LIB(dl, dlsym, ,)
d08db6d1 441 # -lresolv needs to be at the end of LIBS or DNS lookups break
442 AC_CHECK_LIB(resolv, res_query, [ LIBS="$LIBS -lresolv" ])
9548d6c8 443 IPADDR_IN_DISPLAY=yes
444 AC_DEFINE(USE_PIPES)
132dd316 445 AC_DEFINE(IP_TOS_IS_BROKEN)
605369bb 446 AC_DEFINE(SETEUID_BREAKS_SETUID)
447 AC_DEFINE(BROKEN_SETREUID)
448 AC_DEFINE(BROKEN_SETREGID)
eabb99c6 449 AC_DEFINE(SSHD_ACQUIRES_CTTY)
95b99395 450 external_path_file=/etc/default/login
c8c15bcb 451 # /usr/ucblib/libucb.a no longer needed on ReliantUNIX
452 # Attention: always take care to bind libsocket and libnsl before libc,
453 # otherwise you will find lots of "SIOCGPGRP errno 22" on syslog
132dd316 454 ;;
79a7ba96 455# UnixWare 1.x, UnixWare 2.x, and others based on code from Univel.
77bb0bca 456*-*-sysv4.2*)
9a406e1e 457 CFLAGS="$CFLAGS -Dva_list=_VA_LIST"
ed6553e2 458 AC_DEFINE(USE_PIPES)
7ed101c0 459 AC_DEFINE(SETEUID_BREAKS_SETUID)
460 AC_DEFINE(BROKEN_SETREUID)
461 AC_DEFINE(BROKEN_SETREGID)
46f853b9 462 AC_DEFINE(PASSWD_NEEDS_USERNAME, 1, [must supply username to passwd])
e45da4d6 463 AC_DEFINE(LOCKED_PASSWD_STRING, "*LK*")
77bb0bca 464 ;;
79a7ba96 465# UnixWare 7.x, OpenUNIX 8
77bb0bca 466*-*-sysv5*)
d7d2cc6e 467 check_for_libcrypt_later=1
468 AC_DEFINE(UNIXWARE_LONG_PASSWORDS, 1, [Support passwords > 8 chars])
ed6553e2 469 AC_DEFINE(USE_PIPES)
7ed101c0 470 AC_DEFINE(SETEUID_BREAKS_SETUID)
471 AC_DEFINE(BROKEN_SETREUID)
472 AC_DEFINE(BROKEN_SETREGID)
3466e002 473 AC_DEFINE(PASSWD_NEEDS_USERNAME)
822015dd 474 case "$host" in
475 *-*-sysv5SCO_SV*) # SCO OpenServer 6.x
476 TEST_SHELL=/u95/bin/sh
3466e002 477 AC_DEFINE(BROKEN_LIBIAF, 1,
478 [ia_uinfo routines not supported by OS yet])
822015dd 479 ;;
e45da4d6 480 *) AC_DEFINE(LOCKED_PASSWD_STRING, "*LK*")
481 ;;
822015dd 482 esac
77bb0bca 483 ;;
9d6b1b96 484*-*-sysv*)
9d6b1b96 485 ;;
79a7ba96 486# SCO UNIX and OEM versions of SCO UNIX
77bb0bca 487*-*-sco3.2v4*)
11cf4f1f 488 AC_MSG_ERROR("This Platform is no longer supported.")
77bb0bca 489 ;;
79a7ba96 490# SCO OpenServer 5.x
77bb0bca 491*-*-sco3.2v5*)
21710e39 492 if test -z "$GCC"; then
493 CFLAGS="$CFLAGS -belf"
494 fi
ed6553e2 495 LIBS="$LIBS -lprot -lx -ltinfo -lm"
509b1f88 496 no_dev_ptmx=1
ed6553e2 497 AC_DEFINE(USE_PIPES)
6e879cb4 498 AC_DEFINE(HAVE_SECUREWARE)
d287c664 499 AC_DEFINE(DISABLE_SHADOW)
94d8258b 500 AC_DEFINE(DISABLE_FD_PASSING)
7ed101c0 501 AC_DEFINE(SETEUID_BREAKS_SETUID)
502 AC_DEFINE(BROKEN_SETREUID)
503 AC_DEFINE(BROKEN_SETREGID)
bcebad47 504 AC_DEFINE(WITH_ABBREV_NO_TTY)
34f2baf0 505 AC_DEFINE(BROKEN_UPDWTMPX)
3466e002 506 AC_DEFINE(PASSWD_NEEDS_USERNAME)
aca75d94 507 AC_CHECK_FUNCS(getluid setluid)
533875af 508 MANTYPE=man
a3245b92 509 TEST_SHELL=ksh
509b1f88 510 ;;
ccbb983c 511*-*-unicosmk*)
3466e002 512 AC_DEFINE(NO_SSH_LASTLOG, 1,
513 [Define if you don't want to use lastlog in session.c])
c1ad5966 514 AC_DEFINE(SETEUID_BREAKS_SETUID)
515 AC_DEFINE(BROKEN_SETREUID)
516 AC_DEFINE(BROKEN_SETREGID)
ccbb983c 517 AC_DEFINE(USE_PIPES)
518 AC_DEFINE(DISABLE_FD_PASSING)
519 LDFLAGS="$LDFLAGS"
520 LIBS="$LIBS -lgen -lrsc -lshare -luex -lacm"
521 MANTYPE=cat
d262b7f2 522 ;;
7b9a8c6e 523*-*-unicosmp*)
c1ad5966 524 AC_DEFINE(SETEUID_BREAKS_SETUID)
525 AC_DEFINE(BROKEN_SETREUID)
526 AC_DEFINE(BROKEN_SETREGID)
7b9a8c6e 527 AC_DEFINE(WITH_ABBREV_NO_TTY)
528 AC_DEFINE(USE_PIPES)
529 AC_DEFINE(DISABLE_FD_PASSING)
530 LDFLAGS="$LDFLAGS"
c1ad5966 531 LIBS="$LIBS -lgen -lacid -ldb"
7b9a8c6e 532 MANTYPE=cat
533 ;;
ca5c7d6a 534*-*-unicos*)
c1ad5966 535 AC_DEFINE(SETEUID_BREAKS_SETUID)
536 AC_DEFINE(BROKEN_SETREUID)
537 AC_DEFINE(BROKEN_SETREGID)
ca5c7d6a 538 AC_DEFINE(USE_PIPES)
94d8258b 539 AC_DEFINE(DISABLE_FD_PASSING)
ef51930f 540 AC_DEFINE(NO_SSH_LASTLOG)
ccbb983c 541 LDFLAGS="$LDFLAGS -Wl,-Dmsglevel=334:fatal"
542 LIBS="$LIBS -lgen -lrsc -lshare -luex -lacm"
543 MANTYPE=cat
a704dd54 544 ;;
4d33e531 545*-dec-osf*)
99c8ddac 546 AC_MSG_CHECKING(for Digital Unix SIA)
547 no_osfsia=""
548 AC_ARG_WITH(osfsia,
549 [ --with-osfsia Enable Digital Unix SIA],
550 [
551 if test "x$withval" = "xno" ; then
552 AC_MSG_RESULT(disabled)
553 no_osfsia=1
554 fi
555 ],
556 )
557 if test -z "$no_osfsia" ; then
4d33e531 558 if test -f /etc/sia/matrix.conf; then
559 AC_MSG_RESULT(yes)
3466e002 560 AC_DEFINE(HAVE_OSF_SIA, 1,
561 [Define if you have Digital Unix Security
562 Integration Architecture])
563 AC_DEFINE(DISABLE_LOGIN, 1,
564 [Define if you don't want to use your
565 system's login() call])
58d0df4e 566 AC_DEFINE(DISABLE_FD_PASSING)
4d33e531 567 LIBS="$LIBS -lsecurity -ldb -lm -laud"
568 else
569 AC_MSG_RESULT(no)
3466e002 570 AC_DEFINE(LOCKED_PASSWD_SUBSTR, "Nologin",
571 [String used in /etc/passwd to denote locked account])
4d33e531 572 fi
573 fi
a6e67b60 574 AC_DEFINE(BROKEN_GETADDRINFO)
f4f2ff4f 575 AC_DEFINE(SETEUID_BREAKS_SETUID)
08da2d08 576 AC_DEFINE(BROKEN_SETREUID)
577 AC_DEFINE(BROKEN_SETREGID)
4d33e531 578 ;;
41cb4569 579
9c54c067 580*-*-nto-qnx*)
41cb4569 581 AC_DEFINE(USE_PIPES)
582 AC_DEFINE(NO_X11_UNIX_SOCKETS)
3466e002 583 AC_DEFINE(MISSING_NFDBITS, 1, [Define on *nto-qnx systems])
584 AC_DEFINE(MISSING_HOWMANY, 1, [Define on *nto-qnx systems])
585 AC_DEFINE(MISSING_FD_MASK, 1, [Define on *nto-qnx systems])
9c54c067 586 AC_DEFINE(DISABLE_LASTLOG)
49c64dd6 587 AC_DEFINE(SSHD_ACQUIRES_CTTY)
0c7e8877 588 enable_etc_default_login=no # has incompatible /etc/default/login
41cb4569 589 ;;
35fc74ed 590
591*-*-ultrix*)
3466e002 592 AC_DEFINE(BROKEN_GETGROUPS, 1, [getgroups(0,NULL) will return -1])
593 AC_DEFINE(BROKEN_MMAP, 1, [Ultrix mmap can't map files])
4b2cf3f1 594 AC_DEFINE(NEED_SETPGRP)
b5765e1d 595 AC_DEFINE(HAVE_SYS_SYSLOG_H, 1, [Force use of sys/syslog.h on Ultrix])
596 ;;
157b6700 597
598*-*-lynxos)
599 CFLAGS="$CFLAGS -D__NO_INCLUDE_WARN__"
3466e002 600 AC_DEFINE(MISSING_HOWMANY)
157b6700 601 AC_DEFINE(BROKEN_SETVBUF, 1, [LynxOS has broken setvbuf() implementation])
602 ;;
a7effaac 603esac
604
8e7b16f8 605# Allow user to specify flags
606AC_ARG_WITH(cflags,
607 [ --with-cflags Specify additional flags to pass to compiler],
608 [
6cf0200f 609 if test -n "$withval" && test "x$withval" != "xno" && \
610 test "x${withval}" != "xyes"; then
8e7b16f8 611 CFLAGS="$CFLAGS $withval"
612 fi
82f4e93d 613 ]
8e7b16f8 614)
0c2fb82f 615AC_ARG_WITH(cppflags,
616 [ --with-cppflags Specify additional flags to pass to preprocessor] ,
617 [
6cf0200f 618 if test -n "$withval" && test "x$withval" != "xno" && \
619 test "x${withval}" != "xyes"; then
0c2fb82f 620 CPPFLAGS="$CPPFLAGS $withval"
621 fi
622 ]
623)
8e7b16f8 624AC_ARG_WITH(ldflags,
97b378bf 625 [ --with-ldflags Specify additional flags to pass to linker],
8e7b16f8 626 [
6cf0200f 627 if test -n "$withval" && test "x$withval" != "xno" && \
628 test "x${withval}" != "xyes"; then
8e7b16f8 629 LDFLAGS="$LDFLAGS $withval"
630 fi
82f4e93d 631 ]
8e7b16f8 632)
633AC_ARG_WITH(libs,
634 [ --with-libs Specify additional libraries to link with],
635 [
6cf0200f 636 if test -n "$withval" && test "x$withval" != "xno" && \
637 test "x${withval}" != "xyes"; then
8e7b16f8 638 LIBS="$LIBS $withval"
639 fi
82f4e93d 640 ]
8e7b16f8 641)
ed89c848 642AC_ARG_WITH(Werror,
643 [ --with-Werror Build main code with -Werror],
644 [
645 if test -n "$withval" && test "x$withval" != "xno"; then
646 werror_flags="-Werror"
1012885d 647 if test "x${withval}" != "xyes"; then
ed89c848 648 werror_flags="$withval"
649 fi
650 fi
651 ]
652)
8e7b16f8 653
c5829391 654AC_MSG_CHECKING(compiler and flags for sanity)
479cece8 655AC_RUN_IFELSE(
656 [AC_LANG_SOURCE([
c5829391 657#include <stdio.h>
658int main(){exit(0);}
479cece8 659 ])],
c5829391 660 [ AC_MSG_RESULT(yes) ],
661 [
662 AC_MSG_RESULT(no)
663 AC_MSG_ERROR([*** compiler cannot create working executables, check config.log ***])
1a01a50c 664 ],
665 [ AC_MSG_WARN([cross compiling: not checking compiler sanity]) ]
c5829391 666)
667
b04a9f8c 668dnl Checks for header files.
669AC_CHECK_HEADERS( \
670 bstring.h \
671 crypt.h \
672 dirent.h \
673 endian.h \
674 features.h \
675 floatingpoint.h \
676 getopt.h \
677 glob.h \
678 ia.h \
4c653d8e 679 iaf.h \
b04a9f8c 680 limits.h \
681 login.h \
682 login_cap.h \
683 maillock.h \
684 ndir.h \
685 netdb.h \
686 netgroup.h \
b04a9f8c 687 pam/pam_appl.h \
688 paths.h \
689 pty.h \
690 readpassphrase.h \
691 rpc/types.h \
692 security/pam_appl.h \
693 shadow.h \
694 stddef.h \
695 stdint.h \
0957c2cf 696 string.h \
b04a9f8c 697 strings.h \
698 sys/audit.h \
699 sys/bitypes.h \
700 sys/bsdtty.h \
701 sys/cdefs.h \
702 sys/dir.h \
703 sys/mman.h \
704 sys/ndir.h \
705 sys/prctl.h \
706 sys/pstat.h \
707 sys/select.h \
708 sys/stat.h \
709 sys/stream.h \
710 sys/stropts.h \
711 sys/strtio.h \
712 sys/sysmacros.h \
713 sys/time.h \
714 sys/timers.h \
715 sys/un.h \
716 time.h \
717 tmpdir.h \
718 ttyent.h \
25dd2ce6 719 unistd.h \
b04a9f8c 720 usersec.h \
721 util.h \
722 utime.h \
723 utmp.h \
724 utmpx.h \
ea76f54c 725 vis.h \
b04a9f8c 726)
ddceb1c8 727
823221b2 728# lastlog.h requires sys/time.h to be included first on Solaris
729AC_CHECK_HEADERS(lastlog.h, [], [], [
730#ifdef HAVE_SYS_TIME_H
731# include <sys/time.h>
732#endif
733])
734
765a24cd 735# sys/ptms.h requires sys/stream.h to be included first on Solaris
736AC_CHECK_HEADERS(sys/ptms.h, [], [], [
737#ifdef HAVE_SYS_STREAM_H
738# include <sys/stream.h>
739#endif
740])
741
a0391976 742# Checks for libraries.
98a7c37b 743AC_CHECK_FUNC(yp_match, , AC_CHECK_LIB(nsl, yp_match))
744AC_CHECK_FUNC(setsockopt, , AC_CHECK_LIB(socket, setsockopt))
2c523de9 745
446227d6 746dnl IRIX and Solaris 2.5.1 have dirname() in libgen
747AC_CHECK_FUNCS(dirname, [AC_CHECK_HEADERS(libgen.h)] ,[
748 AC_CHECK_LIB(gen, dirname,[
749 AC_CACHE_CHECK([for broken dirname],
750 ac_cv_have_broken_dirname, [
751 save_LIBS="$LIBS"
752 LIBS="$LIBS -lgen"
b0e7249f 753 AC_RUN_IFELSE(
754 [AC_LANG_SOURCE([[
446227d6 755#include <libgen.h>
756#include <string.h>
757
758int main(int argc, char **argv) {
759 char *s, buf[32];
760
761 strncpy(buf,"/etc", 32);
762 s = dirname(buf);
763 if (!s || strncmp(s, "/", 32) != 0) {
764 exit(1);
765 } else {
766 exit(0);
767 }
768}
b0e7249f 769 ]])],
770 [ ac_cv_have_broken_dirname="no" ],
771 [ ac_cv_have_broken_dirname="yes" ],
446227d6 772 [ ac_cv_have_broken_dirname="no" ],
446227d6 773 )
774 LIBS="$save_LIBS"
775 ])
776 if test "x$ac_cv_have_broken_dirname" = "xno" ; then
777 LIBS="$LIBS -lgen"
778 AC_DEFINE(HAVE_DIRNAME)
779 AC_CHECK_HEADERS(libgen.h)
780 fi
781 ])
782])
783
784AC_CHECK_FUNC(getspnam, ,
785 AC_CHECK_LIB(gen, getspnam, LIBS="$LIBS -lgen"))
3466e002 786AC_SEARCH_LIBS(basename, gen, AC_DEFINE(HAVE_BASENAME, 1,
787 [Define if you have the basename function.]))
446227d6 788
98a7c37b 789dnl zlib is required
790AC_ARG_WITH(zlib,
791 [ --with-zlib=PATH Use zlib in PATH],
6dd05556 792 [ if test "x$withval" = "xno" ; then
793 AC_MSG_ERROR([*** zlib is required ***])
794 elif test "x$withval" != "xyes"; then
98a7c37b 795 if test -d "$withval/lib"; then
796 if test -n "${need_dash_r}"; then
5a162955 797 LDFLAGS="-L${withval}/lib -R${withval}/lib ${LDFLAGS}"
98a7c37b 798 else
5a162955 799 LDFLAGS="-L${withval}/lib ${LDFLAGS}"
98a7c37b 800 fi
801 else
802 if test -n "${need_dash_r}"; then
5a162955 803 LDFLAGS="-L${withval} -R${withval} ${LDFLAGS}"
98a7c37b 804 else
5a162955 805 LDFLAGS="-L${withval} ${LDFLAGS}"
98a7c37b 806 fi
807 fi
808 if test -d "$withval/include"; then
5a162955 809 CPPFLAGS="-I${withval}/include ${CPPFLAGS}"
98a7c37b 810 else
5a162955 811 CPPFLAGS="-I${withval} ${CPPFLAGS}"
98a7c37b 812 fi
6dd05556 813 fi ]
98a7c37b 814)
815
0a15d73b 816AC_CHECK_LIB(z, deflate, ,
817 [
818 saved_CPPFLAGS="$CPPFLAGS"
819 saved_LDFLAGS="$LDFLAGS"
820 save_LIBS="$LIBS"
821 dnl Check default zlib install dir
822 if test -n "${need_dash_r}"; then
823 LDFLAGS="-L/usr/local/lib -R/usr/local/lib ${saved_LDFLAGS}"
824 else
825 LDFLAGS="-L/usr/local/lib ${saved_LDFLAGS}"
826 fi
827 CPPFLAGS="-I/usr/local/include ${saved_CPPFLAGS}"
828 LIBS="$LIBS -lz"
829 AC_TRY_LINK_FUNC(deflate, AC_DEFINE(HAVE_LIBZ),
830 [
831 AC_MSG_ERROR([*** zlib missing - please install first or check config.log ***])
832 ]
833 )
834 ]
835)
4ad65809 836AC_CHECK_HEADER([zlib.h], ,AC_MSG_ERROR([*** zlib.h missing - please install first or check config.log ***]))
8068d564 837
838AC_ARG_WITH(zlib-version-check,
839 [ --without-zlib-version-check Disable zlib version check],
840 [ if test "x$withval" = "xno" ; then
841 zlib_check_nonfatal=1
842 fi
843 ]
844)
845
5c7fc85d 846AC_MSG_CHECKING(for possibly buggy zlib)
479cece8 847AC_RUN_IFELSE([AC_LANG_SOURCE([[
5c7fc85d 848#include <stdio.h>
4ad65809 849#include <zlib.h>
850int main()
851{
5c7fc85d 852 int a=0, b=0, c=0, d=0, n, v;
853 n = sscanf(ZLIB_VERSION, "%d.%d.%d.%d", &a, &b, &c, &d);
854 if (n != 3 && n != 4)
4ad65809 855 exit(1);
5c7fc85d 856 v = a*1000000 + b*10000 + c*100 + d;
857 fprintf(stderr, "found zlib version %s (%d)\n", ZLIB_VERSION, v);
858
859 /* 1.1.4 is OK */
860 if (a == 1 && b == 1 && c >= 4)
4ad65809 861 exit(0);
5c7fc85d 862
0072b59d 863 /* 1.2.3 and up are OK */
864 if (v >= 1020300)
5c7fc85d 865 exit(0);
866
4ad65809 867 exit(2);
868}
479cece8 869 ]])],
5c7fc85d 870 AC_MSG_RESULT(no),
871 [ AC_MSG_RESULT(yes)
8068d564 872 if test -z "$zlib_check_nonfatal" ; then
873 AC_MSG_ERROR([*** zlib too old - check config.log ***
874Your reported zlib version has known security problems. It's possible your
875vendor has fixed these problems without changing the version number. If you
876are sure this is the case, you can disable the check by running
877"./configure --without-zlib-version-check".
6090bcfe 878If you are in doubt, upgrade zlib to version 1.2.3 or greater.
5c7fc85d 879See http://www.gzip.org/zlib/ for details.])
8068d564 880 else
881 AC_MSG_WARN([zlib version may have security problems])
882 fi
1a01a50c 883 ],
884 [ AC_MSG_WARN([cross compiling: not checking zlib version]) ]
4ad65809 885)
48e7916f 886
2c523de9 887dnl UnixWare 2.x
aff51935 888AC_CHECK_FUNC(strcasecmp,
2c523de9 889 [], [ AC_CHECK_LIB(resolv, strcasecmp, LIBS="$LIBS -lresolv") ]
890)
23361281 891AC_CHECK_FUNCS(utimes,
cda1ebcb 892 [], [ AC_CHECK_LIB(c89, utimes, [AC_DEFINE(HAVE_UTIMES)
893 LIBS="$LIBS -lc89"]) ]
2c523de9 894)
4cca272e 895
7c6d759d 896dnl Checks for libutil functions
897AC_CHECK_HEADERS(libutil.h)
3466e002 898AC_SEARCH_LIBS(login, util bsd, [AC_DEFINE(HAVE_LOGIN, 1,
899 [Define if your libraries define login()])])
7c6d759d 900AC_CHECK_FUNCS(logout updwtmp logwtmp)
901
a738c3b0 902AC_FUNC_STRFTIME
903
84ceda19 904# Check for ALTDIRFUNC glob() extension
905AC_MSG_CHECKING(for GLOB_ALTDIRFUNC support)
906AC_EGREP_CPP(FOUNDIT,
907 [
908 #include <glob.h>
909 #ifdef GLOB_ALTDIRFUNC
910 FOUNDIT
911 #endif
aff51935 912 ],
84ceda19 913 [
3466e002 914 AC_DEFINE(GLOB_HAS_ALTDIRFUNC, 1,
915 [Define if your system glob() function has
916 the GLOB_ALTDIRFUNC extension])
84ceda19 917 AC_MSG_RESULT(yes)
918 ],
919 [
920 AC_MSG_RESULT(no)
921 ]
922)
4cca272e 923
40849fdb 924# Check for g.gl_matchc glob() extension
925AC_MSG_CHECKING(for gl_matchc field in glob_t)
926AC_EGREP_CPP(FOUNDIT,
aff51935 927 [
928 #include <glob.h>
40849fdb 929 int main(void){glob_t g; g.gl_matchc = 1;}
aff51935 930 ],
931 [
3466e002 932 AC_DEFINE(GLOB_HAS_GL_MATCHC, 1,
933 [Define if your system glob() function has
934 gl_matchc options in glob_t])
aff51935 935 AC_MSG_RESULT(yes)
936 ],
937 [
938 AC_MSG_RESULT(no)
939 ]
40849fdb 940)
941
edbe6722 942AC_MSG_CHECKING([whether struct dirent allocates space for d_name])
1a01a50c 943AC_RUN_IFELSE(
479cece8 944 [AC_LANG_SOURCE([[
edbe6722 945#include <sys/types.h>
946#include <dirent.h>
aec4cb4f 947int main(void){struct dirent d;exit(sizeof(d.d_name)<=sizeof(char));}
479cece8 948 ]])],
aff51935 949 [AC_MSG_RESULT(yes)],
edbe6722 950 [
951 AC_MSG_RESULT(no)
3466e002 952 AC_DEFINE(BROKEN_ONE_BYTE_DIRENT_D_NAME, 1,
d08db6d1 953 [Define if your struct dirent expects you to
3466e002 954 allocate extra space for d_name])
1a01a50c 955 ],
82f4e93d 956 [
1a01a50c 957 AC_MSG_WARN([cross compiling: assuming BROKEN_ONE_BYTE_DIRENT_D_NAME])
958 AC_DEFINE(BROKEN_ONE_BYTE_DIRENT_D_NAME)
edbe6722 959 ]
960)
961
419e26e7 962AC_MSG_CHECKING([for /proc/pid/fd directory])
963if test -d "/proc/$$/fd" ; then
3466e002 964 AC_DEFINE(HAVE_PROC_PID, 1, [Define if you have /proc/$pid/fd])
419e26e7 965 AC_MSG_RESULT(yes)
966else
967 AC_MSG_RESULT(no)
968fi
969
278588d8 970# Check whether user wants S/Key support
aff51935 971SKEY_MSG="no"
278588d8 972AC_ARG_WITH(skey,
6ff3d0dc 973 [ --with-skey[[=PATH]] Enable S/Key support (optionally in PATH)],
278588d8 974 [
975 if test "x$withval" != "xno" ; then
976
977 if test "x$withval" != "xyes" ; then
978 CPPFLAGS="$CPPFLAGS -I${withval}/include"
979 LDFLAGS="$LDFLAGS -L${withval}/lib"
980 fi
981
3466e002 982 AC_DEFINE(SKEY, 1, [Define if you want S/Key support])
278588d8 983 LIBS="-lskey $LIBS"
aff51935 984 SKEY_MSG="yes"
82f4e93d 985
ddceb1c8 986 AC_MSG_CHECKING([for s/key support])
b0e7249f 987 AC_LINK_IFELSE(
988 [AC_LANG_SOURCE([[
ddceb1c8 989#include <stdio.h>
990#include <skey.h>
aec4cb4f 991int main() { char *ff = skey_keyinfo(""); ff=""; exit(0); }
b0e7249f 992 ]])],
ddceb1c8 993 [AC_MSG_RESULT(yes)],
278588d8 994 [
ddceb1c8 995 AC_MSG_RESULT(no)
278588d8 996 AC_MSG_ERROR([** Incomplete or missing s/key libraries.])
997 ])
141fc639 998 AC_MSG_CHECKING(if skeychallenge takes 4 arguments)
999 AC_TRY_COMPILE(
1000 [#include <stdio.h>
1001 #include <skey.h>],
1002 [(void)skeychallenge(NULL,"name","",0);],
1003 [AC_MSG_RESULT(yes)
3466e002 1004 AC_DEFINE(SKEYCHALLENGE_4ARG, 1,
1005 [Define if your skeychallenge()
1006 function takes 4 arguments (NetBSD)])],
141fc639 1007 [AC_MSG_RESULT(no)]
1008 )
278588d8 1009 fi
1010 ]
1011)
1012
1013# Check whether user wants TCP wrappers support
98a7c37b 1014TCPW_MSG="no"
278588d8 1015AC_ARG_WITH(tcp-wrappers,
6ff3d0dc 1016 [ --with-tcp-wrappers[[=PATH]] Enable tcpwrappers support (optionally in PATH)],
278588d8 1017 [
1018 if test "x$withval" != "xno" ; then
1019 saved_LIBS="$LIBS"
98a7c37b 1020 saved_LDFLAGS="$LDFLAGS"
1021 saved_CPPFLAGS="$CPPFLAGS"
4b492aab 1022 if test -n "${withval}" && \
6cf0200f 1023 test "x${withval}" != "xyes"; then
98a7c37b 1024 if test -d "${withval}/lib"; then
1025 if test -n "${need_dash_r}"; then
5a162955 1026 LDFLAGS="-L${withval}/lib -R${withval}/lib ${LDFLAGS}"
98a7c37b 1027 else
5a162955 1028 LDFLAGS="-L${withval}/lib ${LDFLAGS}"
98a7c37b 1029 fi
1030 else
1031 if test -n "${need_dash_r}"; then
5a162955 1032 LDFLAGS="-L${withval} -R${withval} ${LDFLAGS}"
98a7c37b 1033 else
5a162955 1034 LDFLAGS="-L${withval} ${LDFLAGS}"
98a7c37b 1035 fi
1036 fi
1037 if test -d "${withval}/include"; then
5a162955 1038 CPPFLAGS="-I${withval}/include ${CPPFLAGS}"
98a7c37b 1039 else
5a162955 1040 CPPFLAGS="-I${withval} ${CPPFLAGS}"
98a7c37b 1041 fi
98a7c37b 1042 fi
ddceb1c8 1043 LIBWRAP="-lwrap"
1044 LIBS="$LIBWRAP $LIBS"
278588d8 1045 AC_MSG_CHECKING(for libwrap)
1046 AC_TRY_LINK(
1047 [
77f09220 1048#include <sys/types.h>
1049#include <sys/socket.h>
1050#include <netinet/in.h>
278588d8 1051#include <tcpd.h>
1052 int deny_severity = 0, allow_severity = 0;
1053 ],
1054 [hosts_access(0);],
1055 [
1056 AC_MSG_RESULT(yes)
3466e002 1057 AC_DEFINE(LIBWRAP, 1,
1058 [Define if you want
1059 TCP Wrappers support])
ddceb1c8 1060 AC_SUBST(LIBWRAP)
98a7c37b 1061 TCPW_MSG="yes"
278588d8 1062 ],
1063 [
1064 AC_MSG_ERROR([*** libwrap missing])
1065 ]
1066 )
ddceb1c8 1067 LIBS="$saved_LIBS"
278588d8 1068 fi
1069 ]
1070)
1071
59031773 1072# Check whether user wants libedit support
1073LIBEDIT_MSG="no"
1074AC_ARG_WITH(libedit,
6ff3d0dc 1075 [ --with-libedit[[=PATH]] Enable libedit support for sftp],
59031773 1076 [ if test "x$withval" != "xno" ; then
737edf04 1077 if test "x$withval" != "xyes"; then
bb116c8e 1078 CPPFLAGS="$CPPFLAGS -I${withval}/include"
1079 if test -n "${need_dash_r}"; then
1080 LDFLAGS="-L${withval}/lib -R${withval}/lib ${LDFLAGS}"
1081 else
1082 LDFLAGS="-L${withval}/lib ${LDFLAGS}"
1083 fi
737edf04 1084 fi
59031773 1085 AC_CHECK_LIB(edit, el_init,
3466e002 1086 [ AC_DEFINE(USE_LIBEDIT, 1, [Use libedit for sftp])
59031773 1087 LIBEDIT="-ledit -lcurses"
1088 LIBEDIT_MSG="yes"
1089 AC_SUBST(LIBEDIT)
1090 ],
737edf04 1091 [ AC_MSG_ERROR(libedit not found) ],
1092 [ -lcurses ]
59031773 1093 )
f47ddccb 1094 AC_MSG_CHECKING(if libedit version is compatible)
d92622f9 1095 AC_COMPILE_IFELSE(
1096 [AC_LANG_SOURCE([[
1097#include <histedit.h>
f47ddccb 1098int main(void)
1099{
1100 int i = H_SETSIZE;
1101 el_init("", NULL, NULL, NULL);
1102 exit(0);
1103}
d92622f9 1104 ]])],
f47ddccb 1105 [ AC_MSG_RESULT(yes) ],
1106 [ AC_MSG_RESULT(no)
1107 AC_MSG_ERROR(libedit version is not compatible) ]
1108 )
59031773 1109 fi ]
1110)
1111
7b578f7d 1112AUDIT_MODULE=none
1113AC_ARG_WITH(audit,
1114 [ --with-audit=module Enable EXPERIMENTAL audit support (modules=debug,bsm)],
1115 [
1116 AC_MSG_CHECKING(for supported audit module)
1117 case "$withval" in
1118 bsm)
1119 AC_MSG_RESULT(bsm)
1120 AUDIT_MODULE=bsm
1121 dnl Checks for headers, libs and functions
1122 AC_CHECK_HEADERS(bsm/audit.h, [],
1123 [AC_MSG_ERROR(BSM enabled and bsm/audit.h not found)])
1124 AC_CHECK_LIB(bsm, getaudit, [],
1125 [AC_MSG_ERROR(BSM enabled and required library not found)])
1126 AC_CHECK_FUNCS(getaudit, [],
1127 [AC_MSG_ERROR(BSM enabled and required function not found)])
1128 # These are optional
7939c496 1129 AC_CHECK_FUNCS(getaudit_addr)
3466e002 1130 AC_DEFINE(USE_BSM_AUDIT, 1, [Use BSM audit module])
7b578f7d 1131 ;;
1132 debug)
1133 AUDIT_MODULE=debug
1134 AC_MSG_RESULT(debug)
3466e002 1135 AC_DEFINE(SSH_AUDIT_EVENTS, 1, Use audit debugging module)
7b578f7d 1136 ;;
a2b3321d 1137 no)
d92622f9 1138 AC_MSG_RESULT(no)
a2b3321d 1139 ;;
7b578f7d 1140 *)
1141 AC_MSG_ERROR([Unknown audit module $withval])
1142 ;;
1143 esac ]
1144)
1145
19160674 1146dnl Checks for library functions. Please keep in alphabetical order
b04a9f8c 1147AC_CHECK_FUNCS( \
1148 arc4random \
9a406e1e 1149 asprintf \
b04a9f8c 1150 b64_ntop \
1151 __b64_ntop \
1152 b64_pton \
1153 __b64_pton \
1154 bcopy \
1155 bindresvport_sa \
1156 clock \
1157 closefrom \
1158 dirfd \
b04a9f8c 1159 fchmod \
1160 fchown \
1161 freeaddrinfo \
1162 futimes \
1163 getaddrinfo \
1164 getcwd \
1165 getgrouplist \
1166 getnameinfo \
1167 getopt \
1168 getpeereid \
1169 _getpty \
1170 getrlimit \
1171 getttyent \
1172 glob \
1173 inet_aton \
1174 inet_ntoa \
1175 inet_ntop \
1176 innetgr \
1177 login_getcapbool \
1178 md5_crypt \
1179 memmove \
1180 mkdtemp \
1181 mmap \
1182 ngetaddrinfo \
1183 nsleep \
1184 ogetaddrinfo \
1185 openlog_r \
1186 openpty \
1187 prctl \
1188 pstat \
1189 readpassphrase \
1190 realpath \
1191 recvmsg \
1192 rresvport_af \
1193 sendmsg \
1194 setdtablesize \
1195 setegid \
1196 setenv \
1197 seteuid \
1198 setgroups \
1199 setlogin \
1200 setpcred \
1201 setproctitle \
1202 setregid \
1203 setreuid \
1204 setrlimit \
1205 setsid \
1206 setvbuf \
1207 sigaction \
1208 sigvec \
1209 snprintf \
1210 socketpair \
1211 strdup \
1212 strerror \
1213 strlcat \
1214 strlcpy \
1215 strmode \
1216 strnvis \
1217 strtonum \
1e29a0c8 1218 strtoll \
b04a9f8c 1219 strtoul \
1220 sysconf \
1221 tcgetpgrp \
1222 truncate \
1223 unsetenv \
1224 updwtmpx \
9a406e1e 1225 vasprintf \
b04a9f8c 1226 vhangup \
1227 vsnprintf \
1228 waitpid \
19160674 1229)
98a7c37b 1230
1a086f97 1231# IRIX has a const char return value for gai_strerror()
1232AC_CHECK_FUNCS(gai_strerror,[
1233 AC_DEFINE(HAVE_GAI_STRERROR)
1234 AC_TRY_COMPILE([
1235#include <sys/types.h>
1236#include <sys/socket.h>
1237#include <netdb.h>
1238
1239const char *gai_strerror(int);],[
1240char *str;
1241
1242str = gai_strerror(0);],[
1243 AC_DEFINE(HAVE_CONST_GAI_STRERROR_PROTO, 1,
1244 [Define if gai_strerror() returns const char *])])])
1245
3466e002 1246AC_SEARCH_LIBS(nanosleep, rt posix4, AC_DEFINE(HAVE_NANOSLEEP, 1,
1247 [Some systems put nanosleep outside of libc]))
92b1decf 1248
309709db 1249dnl Make sure prototypes are defined for these before using them.
309709db 1250AC_CHECK_DECL(getrusage, [AC_CHECK_FUNCS(getrusage)])
0957c2cf 1251AC_CHECK_DECL(strsep,
1252 [AC_CHECK_FUNCS(strsep)],
1253 [],
1254 [
1255#ifdef HAVE_STRING_H
1256# include <string.h>
1257#endif
1258 ])
08412d26 1259
3490699c 1260dnl tcsendbreak might be a macro
1261AC_CHECK_DECL(tcsendbreak,
1262 [AC_DEFINE(HAVE_TCSENDBREAK)],
aff51935 1263 [AC_CHECK_FUNCS(tcsendbreak)],
3490699c 1264 [#include <termios.h>]
1265)
1266
41e0e158 1267AC_CHECK_DECLS(h_errno, , ,[#include <netdb.h>])
1268
3f176010 1269AC_CHECK_FUNCS(setresuid, [
1270 dnl Some platorms have setresuid that isn't implemented, test for this
1271 AC_MSG_CHECKING(if setresuid seems to work)
479cece8 1272 AC_RUN_IFELSE(
1273 [AC_LANG_SOURCE([[
9a3fe0e2 1274#include <stdlib.h>
1275#include <errno.h>
1276int main(){errno=0; setresuid(0,0,0); if (errno==ENOSYS) exit(1); else exit(0);}
479cece8 1277 ]])],
3f176010 1278 [AC_MSG_RESULT(yes)],
3466e002 1279 [AC_DEFINE(BROKEN_SETRESUID, 1,
1280 [Define if your setresuid() is broken])
1a01a50c 1281 AC_MSG_RESULT(not implemented)],
1282 [AC_MSG_WARN([cross compiling: not checking setresuid])]
3f176010 1283 )
1284])
9a3fe0e2 1285
3f176010 1286AC_CHECK_FUNCS(setresgid, [
1287 dnl Some platorms have setresgid that isn't implemented, test for this
1288 AC_MSG_CHECKING(if setresgid seems to work)
479cece8 1289 AC_RUN_IFELSE(
1290 [AC_LANG_SOURCE([[
9a3fe0e2 1291#include <stdlib.h>
1292#include <errno.h>
1293int main(){errno=0; setresgid(0,0,0); if (errno==ENOSYS) exit(1); else exit(0);}
479cece8 1294 ]])],
3f176010 1295 [AC_MSG_RESULT(yes)],
3466e002 1296 [AC_DEFINE(BROKEN_SETRESGID, 1,
1297 [Define if your setresgid() is broken])
1a01a50c 1298 AC_MSG_RESULT(not implemented)],
1299 [AC_MSG_WARN([cross compiling: not checking setresuid])]
3f176010 1300 )
1301])
9a3fe0e2 1302
2e73a022 1303dnl Checks for time functions
1d7b9b20 1304AC_CHECK_FUNCS(gettimeofday time)
2e73a022 1305dnl Checks for utmp functions
b03bd394 1306AC_CHECK_FUNCS(endutent getutent getutid getutline pututline setutent)
1d7b9b20 1307AC_CHECK_FUNCS(utmpname)
2e73a022 1308dnl Checks for utmpx functions
b03bd394 1309AC_CHECK_FUNCS(endutxent getutxent getutxid getutxline pututxline )
1d7b9b20 1310AC_CHECK_FUNCS(setutxent utmpxname)
76cd7316 1311
aff51935 1312AC_CHECK_FUNC(daemon,
3466e002 1313 [AC_DEFINE(HAVE_DAEMON, 1, [Define if your libraries define daemon()])],
1314 [AC_CHECK_LIB(bsd, daemon,
1315 [LIBS="$LIBS -lbsd"; AC_DEFINE(HAVE_DAEMON)])]
beb43d31 1316)
1317
aff51935 1318AC_CHECK_FUNC(getpagesize,
3466e002 1319 [AC_DEFINE(HAVE_GETPAGESIZE, 1,
1320 [Define if your libraries define getpagesize()])],
1321 [AC_CHECK_LIB(ucb, getpagesize,
1322 [LIBS="$LIBS -lucb"; AC_DEFINE(HAVE_GETPAGESIZE)])]
aa6bd60a 1323)
1324
2647ae26 1325# Check for broken snprintf
1326if test "x$ac_cv_func_snprintf" = "xyes" ; then
1327 AC_MSG_CHECKING([whether snprintf correctly terminates long strings])
1a01a50c 1328 AC_RUN_IFELSE(
479cece8 1329 [AC_LANG_SOURCE([[
2647ae26 1330#include <stdio.h>
aec4cb4f 1331int main(void){char b[5];snprintf(b,5,"123456789");exit(b[4]!='\0');}
479cece8 1332 ]])],
aff51935 1333 [AC_MSG_RESULT(yes)],
2647ae26 1334 [
1335 AC_MSG_RESULT(no)
3466e002 1336 AC_DEFINE(BROKEN_SNPRINTF, 1,
1337 [Define if your snprintf is busted])
2647ae26 1338 AC_MSG_WARN([****** Your snprintf() function is broken, complain to your vendor])
1a01a50c 1339 ],
1340 [ AC_MSG_WARN([cross compiling: Assuming working snprintf()]) ]
2647ae26 1341 )
1342fi
1343
9a406e1e 1344# If we don't have a working asprintf, then we strongly depend on vsnprintf
1345# returning the right thing on overflow: the number of characters it tried to
1346# create (as per SUSv3)
1347if test "x$ac_cv_func_asprintf" != "xyes" && \
1348 test "x$ac_cv_func_vsnprintf" = "xyes" ; then
1349 AC_MSG_CHECKING([whether vsnprintf returns correct values on overflow])
1350 AC_RUN_IFELSE(
1351 [AC_LANG_SOURCE([[
1352#include <sys/types.h>
1353#include <stdio.h>
1354#include <stdarg.h>
1355
1356int x_snprintf(char *str,size_t count,const char *fmt,...)
1357{
1358 size_t ret; va_list ap;
1359 va_start(ap, fmt); ret = vsnprintf(str, count, fmt, ap); va_end(ap);
1360 return ret;
1361}
1362int main(void)
1363{
1364 char x[1];
1365 exit(x_snprintf(x, 1, "%s %d", "hello", 12345) == 11 ? 0 : 1);
1366} ]])],
1367 [AC_MSG_RESULT(yes)],
1368 [
1369 AC_MSG_RESULT(no)
1370 AC_DEFINE(BROKEN_SNPRINTF, 1,
1371 [Define if your snprintf is busted])
1372 AC_MSG_WARN([****** Your vsnprintf() function is broken, complain to your vendor])
1373 ],
1374 [ AC_MSG_WARN([cross compiling: Assuming working vsnprintf()]) ]
1375 )
1376fi
1377
31b0732a 1378# On systems where [v]snprintf is broken, but is declared in stdio,
1379# check that the fmt argument is const char * or just char *.
1380# This is only useful for when BROKEN_SNPRINTF
1381AC_MSG_CHECKING([whether snprintf can declare const char *fmt])
1382AC_COMPILE_IFELSE([AC_LANG_SOURCE([[#include <stdio.h>
1383 int snprintf(char *a, size_t b, const char *c, ...) { return 0; }
1384 int main(void) { snprintf(0, 0, 0); }
1385 ]])],
1386 [AC_MSG_RESULT(yes)
1387 AC_DEFINE(SNPRINTF_CONST, [const],
1388 [Define as const if snprintf() can declare const char *fmt])],
1389 [AC_MSG_RESULT(no)
1390 AC_DEFINE(SNPRINTF_CONST, [/* not const */])])
1391
2f6f9cff 1392# Check for missing getpeereid (or equiv) support
1393NO_PEERCHECK=""
1394if test "x$ac_cv_func_getpeereid" != "xyes" ; then
1395 AC_MSG_CHECKING([whether system supports SO_PEERCRED getsockopt])
1396 AC_TRY_COMPILE(
1397 [#include <sys/types.h>
1398 #include <sys/socket.h>],
1399 [int i = SO_PEERCRED;],
62eb7db4 1400 [ AC_MSG_RESULT(yes)
3466e002 1401 AC_DEFINE(HAVE_SO_PEERCRED, 1, [Have PEERCRED socket option])
62eb7db4 1402 ],
2f6f9cff 1403 [AC_MSG_RESULT(no)
1404 NO_PEERCHECK=1]
1405 )
1406fi
1407
70e7d0b0 1408dnl see whether mkstemp() requires XXXXXX
1409if test "x$ac_cv_func_mkdtemp" = "xyes" ; then
1410AC_MSG_CHECKING([for (overly) strict mkstemp])
b0e7249f 1411AC_RUN_IFELSE(
1412 [AC_LANG_SOURCE([[
70e7d0b0 1413#include <stdlib.h>
1414main() { char template[]="conftest.mkstemp-test";
1415if (mkstemp(template) == -1)
1416 exit(1);
1417unlink(template); exit(0);
1418}
b0e7249f 1419 ]])],
70e7d0b0 1420 [
1421 AC_MSG_RESULT(no)
1422 ],
aff51935 1423 [
70e7d0b0 1424 AC_MSG_RESULT(yes)
3466e002 1425 AC_DEFINE(HAVE_STRICT_MKSTEMP, 1, [Silly mkstemp()])
70e7d0b0 1426 ],
1427 [
1428 AC_MSG_RESULT(yes)
1429 AC_DEFINE(HAVE_STRICT_MKSTEMP)
aff51935 1430 ]
70e7d0b0 1431)
1432fi
1433
eacb954e 1434dnl make sure that openpty does not reacquire controlling terminal
1435if test ! -z "$check_for_openpty_ctty_bug"; then
1436 AC_MSG_CHECKING(if openpty correctly handles controlling tty)
b0e7249f 1437 AC_RUN_IFELSE(
1438 [AC_LANG_SOURCE([[
eacb954e 1439#include <stdio.h>
1440#include <sys/fcntl.h>
1441#include <sys/types.h>
1442#include <sys/wait.h>
1443
1444int
1445main()
1446{
1447 pid_t pid;
1448 int fd, ptyfd, ttyfd, status;
1449
1450 pid = fork();
1451 if (pid < 0) { /* failed */
1452 exit(1);
1453 } else if (pid > 0) { /* parent */
1454 waitpid(pid, &status, 0);
aff51935 1455 if (WIFEXITED(status))
eacb954e 1456 exit(WEXITSTATUS(status));
1457 else
1458 exit(2);
1459 } else { /* child */
1460 close(0); close(1); close(2);
1461 setsid();
1462 openpty(&ptyfd, &ttyfd, NULL, NULL, NULL);
1463 fd = open("/dev/tty", O_RDWR | O_NOCTTY);
1464 if (fd >= 0)
1465 exit(3); /* Acquired ctty: broken */
1466 else
1467 exit(0); /* Did not acquire ctty: OK */
1468 }
1469}
b0e7249f 1470 ]])],
eacb954e 1471 [
1472 AC_MSG_RESULT(yes)
1473 ],
1474 [
1475 AC_MSG_RESULT(no)
1476 AC_DEFINE(SSHD_ACQUIRES_CTTY)
b0e7249f 1477 ],
1478 [
1479 AC_MSG_RESULT(cross-compiling, assuming yes)
eacb954e 1480 ]
1481 )
1482fi
1483
4b492aab 1484if test "x$ac_cv_func_getaddrinfo" = "xyes" && \
1485 test "x$check_for_hpux_broken_getaddrinfo" = "x1"; then
2fe51906 1486 AC_MSG_CHECKING(if getaddrinfo seems to work)
b0e7249f 1487 AC_RUN_IFELSE(
1488 [AC_LANG_SOURCE([[
2fe51906 1489#include <stdio.h>
1490#include <sys/socket.h>
1491#include <netdb.h>
1492#include <errno.h>
1493#include <netinet/in.h>
1494
1495#define TEST_PORT "2222"
1496
1497int
1498main(void)
1499{
1500 int err, sock;
1501 struct addrinfo *gai_ai, *ai, hints;
1502 char ntop[NI_MAXHOST], strport[NI_MAXSERV], *name = NULL;
1503
1504 memset(&hints, 0, sizeof(hints));
1505 hints.ai_family = PF_UNSPEC;
1506 hints.ai_socktype = SOCK_STREAM;
1507 hints.ai_flags = AI_PASSIVE;
1508
1509 err = getaddrinfo(name, TEST_PORT, &hints, &gai_ai);
1510 if (err != 0) {
1511 fprintf(stderr, "getaddrinfo failed (%s)", gai_strerror(err));
1512 exit(1);
1513 }
1514
1515 for (ai = gai_ai; ai != NULL; ai = ai->ai_next) {
1516 if (ai->ai_family != AF_INET6)
1517 continue;
1518
1519 err = getnameinfo(ai->ai_addr, ai->ai_addrlen, ntop,
1520 sizeof(ntop), strport, sizeof(strport),
1521 NI_NUMERICHOST|NI_NUMERICSERV);
1522
1523 if (err != 0) {
1524 if (err == EAI_SYSTEM)
1525 perror("getnameinfo EAI_SYSTEM");
1526 else
1527 fprintf(stderr, "getnameinfo failed: %s\n",
1528 gai_strerror(err));
1529 exit(2);
1530 }
1531
1532 sock = socket(ai->ai_family, ai->ai_socktype, ai->ai_protocol);
1533 if (sock < 0)
1534 perror("socket");
1535 if (bind(sock, ai->ai_addr, ai->ai_addrlen) < 0) {
1536 if (errno == EBADF)
1537 exit(3);
1538 }
1539 }
1540 exit(0);
1541}
b0e7249f 1542 ]])],
2fe51906 1543 [
1544 AC_MSG_RESULT(yes)
1545 ],
1546 [
1547 AC_MSG_RESULT(no)
1548 AC_DEFINE(BROKEN_GETADDRINFO)
b0e7249f 1549 ],
1550 [
1551 AC_MSG_RESULT(cross-compiling, assuming yes)
2fe51906 1552 ]
1553 )
1554fi
1555
4b492aab 1556if test "x$ac_cv_func_getaddrinfo" = "xyes" && \
1557 test "x$check_for_aix_broken_getaddrinfo" = "x1"; then
5ccf88cb 1558 AC_MSG_CHECKING(if getaddrinfo seems to work)
b0e7249f 1559 AC_RUN_IFELSE(
1560 [AC_LANG_SOURCE([[
5ccf88cb 1561#include <stdio.h>
1562#include <sys/socket.h>
1563#include <netdb.h>
1564#include <errno.h>
1565#include <netinet/in.h>
1566
1567#define TEST_PORT "2222"
1568
1569int
1570main(void)
1571{
1572 int err, sock;
1573 struct addrinfo *gai_ai, *ai, hints;
1574 char ntop[NI_MAXHOST], strport[NI_MAXSERV], *name = NULL;
1575
1576 memset(&hints, 0, sizeof(hints));
1577 hints.ai_family = PF_UNSPEC;
1578 hints.ai_socktype = SOCK_STREAM;
1579 hints.ai_flags = AI_PASSIVE;
1580
1581 err = getaddrinfo(name, TEST_PORT, &hints, &gai_ai);
1582 if (err != 0) {
1583 fprintf(stderr, "getaddrinfo failed (%s)", gai_strerror(err));
1584 exit(1);
1585 }
1586
1587 for (ai = gai_ai; ai != NULL; ai = ai->ai_next) {
1588 if (ai->ai_family != AF_INET && ai->ai_family != AF_INET6)
1589 continue;
1590
1591 err = getnameinfo(ai->ai_addr, ai->ai_addrlen, ntop,
1592 sizeof(ntop), strport, sizeof(strport),
1593 NI_NUMERICHOST|NI_NUMERICSERV);
1594
1595 if (ai->ai_family == AF_INET && err != 0) {
1596 perror("getnameinfo");
1597 exit(2);
1598 }
1599 }
1600 exit(0);
1601}
b0e7249f 1602 ]])],
5ccf88cb 1603 [
1604 AC_MSG_RESULT(yes)
3466e002 1605 AC_DEFINE(AIX_GETNAMEINFO_HACK, 1,
1606 [Define if you have a getaddrinfo that fails
1607 for the all-zeros IPv6 address])
5ccf88cb 1608 ],
1609 [
1610 AC_MSG_RESULT(no)
1611 AC_DEFINE(BROKEN_GETADDRINFO)
b0e7249f 1612 ],
1613 AC_MSG_RESULT(cross-compiling, assuming no)
5ccf88cb 1614 ]
1615 )
1616fi
1617
b29fd59f 1618if test "x$check_for_conflicting_getspnam" = "x1"; then
1619 AC_MSG_CHECKING(for conflicting getspnam in shadow.h)
1620 AC_COMPILE_IFELSE(
1621 [
1622#include <shadow.h>
1623int main(void) {exit(0);}
1624 ],
1625 [
1626 AC_MSG_RESULT(no)
1627 ],
1628 [
1629 AC_MSG_RESULT(yes)
1630 AC_DEFINE(GETSPNAM_CONFLICTING_DEFS, 1,
1631 [Conflicting defs for getspnam])
1632 ]
1633 )
1634fi
1635
7f8f5e00 1636AC_FUNC_GETPGRP
1637
717057b6 1638# Check for PAM libs
cbd7492e 1639PAM_MSG="no"
a0391976 1640AC_ARG_WITH(pam,
717057b6 1641 [ --with-pam Enable PAM support ],
a0391976 1642 [
717057b6 1643 if test "x$withval" != "xno" ; then
2511d104 1644 if test "x$ac_cv_header_security_pam_appl_h" != "xyes" && \
1645 test "x$ac_cv_header_pam_pam_appl_h" != "xyes" ; then
717057b6 1646 AC_MSG_ERROR([PAM headers not found])
1647 fi
a0391976 1648
717057b6 1649 AC_CHECK_LIB(dl, dlopen, , )
1650 AC_CHECK_LIB(pam, pam_set_item, , AC_MSG_ERROR([*** libpam missing]))
1651 AC_CHECK_FUNCS(pam_getenvlist)
749560dd 1652 AC_CHECK_FUNCS(pam_putenv)
2b763e31 1653
717057b6 1654 PAM_MSG="yes"
4cb5ffa0 1655
3466e002 1656 AC_DEFINE(USE_PAM, 1,
1657 [Define if you want to enable PAM support])
98f2d9d5 1658 if test $ac_cv_lib_dl_dlopen = yes; then
1659 LIBPAM="-lpam -ldl"
1660 else
1661 LIBPAM="-lpam"
1662 fi
1663 AC_SUBST(LIBPAM)
717057b6 1664 fi
1665 ]
1666)
cbd7492e 1667
717057b6 1668# Check for older PAM
1669if test "x$PAM_MSG" = "xyes" ; then
a0391976 1670 # Check PAM strerror arguments (old PAM)
1671 AC_MSG_CHECKING([whether pam_strerror takes only one argument])
1672 AC_TRY_COMPILE(
1673 [
18ba2aab 1674#include <stdlib.h>
2511d104 1675#if defined(HAVE_SECURITY_PAM_APPL_H)
18ba2aab 1676#include <security/pam_appl.h>
2511d104 1677#elif defined (HAVE_PAM_PAM_APPL_H)
1678#include <pam/pam_appl.h>
1679#endif
aff51935 1680 ],
1681 [(void)pam_strerror((pam_handle_t *)NULL, -1);],
a0391976 1682 [AC_MSG_RESULT(no)],
1683 [
3466e002 1684 AC_DEFINE(HAVE_OLD_PAM, 1,
1685 [Define if you have an old version of PAM
1686 which takes only one argument to pam_strerror])
a0391976 1687 AC_MSG_RESULT(yes)
cbd7492e 1688 PAM_MSG="yes (old library)"
a0391976 1689 ]
717057b6 1690 )
a0391976 1691fi
1692
5b991353 1693# Search for OpenSSL
1694saved_CPPFLAGS="$CPPFLAGS"
1695saved_LDFLAGS="$LDFLAGS"
a0391976 1696AC_ARG_WITH(ssl-dir,
1697 [ --with-ssl-dir=PATH Specify path to OpenSSL installation ],
1698 [
e9e4a1c7 1699 if test "x$withval" != "xno" ; then
99eb0f64 1700 case "$withval" in
1701 # Relative paths
1702 ./*|../*) withval="`pwd`/$withval"
1703 esac
5b991353 1704 if test -d "$withval/lib"; then
1705 if test -n "${need_dash_r}"; then
1706 LDFLAGS="-L${withval}/lib -R${withval}/lib ${LDFLAGS}"
1707 else
1708 LDFLAGS="-L${withval}/lib ${LDFLAGS}"
d6f13fbb 1709 fi
1710 else
5b991353 1711 if test -n "${need_dash_r}"; then
1712 LDFLAGS="-L${withval} -R${withval} ${LDFLAGS}"
1713 else
1714 LDFLAGS="-L${withval} ${LDFLAGS}"
d6f13fbb 1715 fi
1716 fi
5b991353 1717 if test -d "$withval/include"; then
1718 CPPFLAGS="-I${withval}/include ${CPPFLAGS}"
d6f13fbb 1719 else
5b991353 1720 CPPFLAGS="-I${withval} ${CPPFLAGS}"
58d100bf 1721 fi
a0391976 1722 fi
5b991353 1723 ]
1724)
5486a457 1725LIBS="-lcrypto $LIBS"
3466e002 1726AC_TRY_LINK_FUNC(RAND_add, AC_DEFINE(HAVE_OPENSSL, 1,
1727 [Define if your ssl headers are included
1728 with #include <openssl/header.h>]),
d45e3d76 1729 [
5b991353 1730 dnl Check default openssl install dir
1731 if test -n "${need_dash_r}"; then
1732 LDFLAGS="-L/usr/local/ssl/lib -R/usr/local/ssl/lib ${saved_LDFLAGS}"
d45e3d76 1733 else
5b991353 1734 LDFLAGS="-L/usr/local/ssl/lib ${saved_LDFLAGS}"
d45e3d76 1735 fi
5b991353 1736 CPPFLAGS="-I/usr/local/ssl/include ${saved_CPPFLAGS}"
1737 AC_TRY_LINK_FUNC(RAND_add, AC_DEFINE(HAVE_OPENSSL),
1738 [
1739 AC_MSG_ERROR([*** Can't find recent OpenSSL libcrypto (see config.log for details) ***])
1740 ]
1741 )
1742 ]
1743)
1744
cd018561 1745# Determine OpenSSL header version
1746AC_MSG_CHECKING([OpenSSL header version])
1a01a50c 1747AC_RUN_IFELSE(
479cece8 1748 [AC_LANG_SOURCE([[
cd018561 1749#include <stdio.h>
1750#include <string.h>
1751#include <openssl/opensslv.h>
1752#define DATA "conftest.sslincver"
1753int main(void) {
aff51935 1754 FILE *fd;
1755 int rc;
cd018561 1756
aff51935 1757 fd = fopen(DATA,"w");
1758 if(fd == NULL)
1759 exit(1);
cd018561 1760
1761 if ((rc = fprintf(fd ,"%x (%s)\n", OPENSSL_VERSION_NUMBER, OPENSSL_VERSION_TEXT)) <0)
1762 exit(1);
1763
1764 exit(0);
1765}
479cece8 1766 ]])],
cd018561 1767 [
1768 ssl_header_ver=`cat conftest.sslincver`
1769 AC_MSG_RESULT($ssl_header_ver)
1770 ],
1771 [
1772 AC_MSG_RESULT(not found)
1773 AC_MSG_ERROR(OpenSSL version header not found.)
1a01a50c 1774 ],
1775 [
1776 AC_MSG_WARN([cross compiling: not checking])
cd018561 1777 ]
1778)
1779
1780# Determine OpenSSL library version
1781AC_MSG_CHECKING([OpenSSL library version])
1a01a50c 1782AC_RUN_IFELSE(
479cece8 1783 [AC_LANG_SOURCE([[
cd018561 1784#include <stdio.h>
1785#include <string.h>
1786#include <openssl/opensslv.h>
1787#include <openssl/crypto.h>
1788#define DATA "conftest.ssllibver"
1789int main(void) {
aff51935 1790 FILE *fd;
1791 int rc;
cd018561 1792
aff51935 1793 fd = fopen(DATA,"w");
1794 if(fd == NULL)
1795 exit(1);
cd018561 1796
1797 if ((rc = fprintf(fd ,"%x (%s)\n", SSLeay(), SSLeay_version(SSLEAY_VERSION))) <0)
1798 exit(1);
1799
1800 exit(0);
1801}
479cece8 1802 ]])],
cd018561 1803 [
1804 ssl_library_ver=`cat conftest.ssllibver`
1805 AC_MSG_RESULT($ssl_library_ver)
1806 ],
1807 [
1808 AC_MSG_RESULT(not found)
1809 AC_MSG_ERROR(OpenSSL library not found.)
1a01a50c 1810 ],
1811 [
1812 AC_MSG_WARN([cross compiling: not checking])
cd018561 1813 ]
1814)
58d100bf 1815
9780116c 1816# Sanity check OpenSSL headers
1817AC_MSG_CHECKING([whether OpenSSL's headers match the library])
1a01a50c 1818AC_RUN_IFELSE(
479cece8 1819 [AC_LANG_SOURCE([[
9780116c 1820#include <string.h>
1821#include <openssl/opensslv.h>
aec4cb4f 1822int main(void) { exit(SSLeay() == OPENSSL_VERSION_NUMBER ? 0 : 1); }
479cece8 1823 ]])],
9780116c 1824 [
1825 AC_MSG_RESULT(yes)
1826 ],
1827 [
1828 AC_MSG_RESULT(no)
e15ba28b 1829 AC_MSG_ERROR([Your OpenSSL headers do not match your library.
1830Check config.log for details.
1831Also see contrib/findssl.sh for help identifying header/library mismatches.])
1a01a50c 1832 ],
1833 [
1834 AC_MSG_WARN([cross compiling: not checking])
9780116c 1835 ]
1836)
1837
c7ad0d99 1838AC_ARG_WITH(ssl-engine,
1839 [ --with-ssl-engine Enable OpenSSL (hardware) ENGINE support ],
1840 [ if test "x$withval" != "xno" ; then
1841 AC_MSG_CHECKING(for OpenSSL ENGINE support)
1842 AC_TRY_COMPILE(
1843 [ #include <openssl/engine.h>],
1844 [
1845int main(void){ENGINE_load_builtin_engines();ENGINE_register_all_complete();}
1846 ],
1847 [ AC_MSG_RESULT(yes)
1848 AC_DEFINE(USE_OPENSSL_ENGINE, 1,
1849 [Enable OpenSSL engine support])
1850 ],
1851 [ AC_MSG_ERROR(OpenSSL ENGINE support not found)]
1852 )
1853 fi ]
1854)
1855
e5146707 1856# Check for OpenSSL without EVP_aes_{192,256}_cbc
1857AC_MSG_CHECKING([whether OpenSSL has crippled AES support])
1858AC_COMPILE_IFELSE(
1859 [AC_LANG_SOURCE([[
1860#include <string.h>
1861#include <openssl/evp.h>
300ea548 1862int main(void) { exit(EVP_aes_192_cbc() == NULL || EVP_aes_256_cbc() == NULL);}
e5146707 1863 ]])],
1864 [
1865 AC_MSG_RESULT(no)
1866 ],
1867 [
1868 AC_MSG_RESULT(yes)
1869 AC_DEFINE(OPENSSL_LOBOTOMISED_AES, 1,
1870 [libcrypto is missing AES 192 and 256 bit functions])
1871 ]
1872)
1873
5486a457 1874# Some systems want crypt() from libcrypt, *not* the version in OpenSSL,
1875# because the system crypt() is more featureful.
1876if test "x$check_for_libcrypt_before" = "x1"; then
1877 AC_CHECK_LIB(crypt, crypt)
1878fi
1879
aff51935 1880# Some Linux systems (Slackware) need crypt() from libcrypt, *not* the
8087c5ee 1881# version in OpenSSL.
05114c74 1882if test "x$check_for_libcrypt_later" = "x1"; then
20cad736 1883 AC_CHECK_LIB(crypt, crypt, LIBS="$LIBS -lcrypt")
717057b6 1884fi
1885
4c653d8e 1886AC_CHECK_LIB(iaf, ia_openinfo)
f1b0ecc3 1887
1888### Configure cryptographic random number support
1889
1890# Check wheter OpenSSL seeds itself
1891AC_MSG_CHECKING([whether OpenSSL's PRNG is internally seeded])
1a01a50c 1892AC_RUN_IFELSE(
479cece8 1893 [AC_LANG_SOURCE([[
f1b0ecc3 1894#include <string.h>
1895#include <openssl/rand.h>
aec4cb4f 1896int main(void) { exit(RAND_status() == 1 ? 0 : 1); }
479cece8 1897 ]])],
f1b0ecc3 1898 [
1899 OPENSSL_SEEDS_ITSELF=yes
1900 AC_MSG_RESULT(yes)
1901 ],
1902 [
1903 AC_MSG_RESULT(no)
1904 # Default to use of the rand helper if OpenSSL doesn't
1905 # seed itself
1906 USE_RAND_HELPER=yes
1a01a50c 1907 ],
1908 [
1909 AC_MSG_WARN([cross compiling: assuming yes])
1910 # This is safe, since all recent OpenSSL versions will
82f4e93d 1911 # complain at runtime if not seeded correctly.
1a01a50c 1912 OPENSSL_SEEDS_ITSELF=yes
f1b0ecc3 1913 ]
1914)
1915
1916
1917# Do we want to force the use of the rand helper?
1918AC_ARG_WITH(rand-helper,
1919 [ --with-rand-helper Use subprocess to gather strong randomness ],
1920 [
1921 if test "x$withval" = "xno" ; then
aff51935 1922 # Force use of OpenSSL's internal RNG, even if
f1b0ecc3 1923 # the previous test showed it to be unseeded.
1924 if test -z "$OPENSSL_SEEDS_ITSELF" ; then
1925 AC_MSG_WARN([*** Forcing use of OpenSSL's non-self-seeding PRNG])
1926 OPENSSL_SEEDS_ITSELF=yes
1927 USE_RAND_HELPER=""
1928 fi
1929 else
1930 USE_RAND_HELPER=yes
1931 fi
1932 ],
82f4e93d 1933)
f1b0ecc3 1934
1935# Which randomness source do we use?
4b492aab 1936if test ! -z "$OPENSSL_SEEDS_ITSELF" && test -z "$USE_RAND_HELPER" ; then
f1b0ecc3 1937 # OpenSSL only
3466e002 1938 AC_DEFINE(OPENSSL_PRNG_ONLY, 1,
1939 [Define if you want OpenSSL's internally seeded PRNG only])
f1b0ecc3 1940 RAND_MSG="OpenSSL internal ONLY"
1941 INSTALL_SSH_RAND_HELPER=""
70e2f2f3 1942elif test ! -z "$USE_RAND_HELPER" ; then
1943 # install rand helper
f1b0ecc3 1944 RAND_MSG="ssh-rand-helper"
1945 INSTALL_SSH_RAND_HELPER="yes"
1946fi
1947AC_SUBST(INSTALL_SSH_RAND_HELPER)
1948
1949### Configuration of ssh-rand-helper
1950
1951# PRNGD TCP socket
1952AC_ARG_WITH(prngd-port,
1953 [ --with-prngd-port=PORT read entropy from PRNGD/EGD TCP localhost:PORT],
1954 [
eb5d7ff6 1955 case "$withval" in
1956 no)
1957 withval=""
1958 ;;
1959 [[0-9]]*)
1960 ;;
1961 *)
1962 AC_MSG_ERROR(You must specify a numeric port number for --with-prngd-port)
1963 ;;
1964 esac
1965 if test ! -z "$withval" ; then
f1b0ecc3 1966 PRNGD_PORT="$withval"
3466e002 1967 AC_DEFINE_UNQUOTED(PRNGD_PORT, $PRNGD_PORT,
1968 [Port number of PRNGD/EGD random number socket])
f1b0ecc3 1969 fi
1970 ]
1971)
1972
1973# PRNGD Unix domain socket
1974AC_ARG_WITH(prngd-socket,
1975 [ --with-prngd-socket=FILE read entropy from PRNGD/EGD socket FILE (default=/var/run/egd-pool)],
1976 [
eb5d7ff6 1977 case "$withval" in
1978 yes)
f1b0ecc3 1979 withval="/var/run/egd-pool"
eb5d7ff6 1980 ;;
1981 no)
1982 withval=""
1983 ;;
1984 /*)
1985 ;;
1986 *)
1987 AC_MSG_ERROR(You must specify an absolute path to the entropy socket)
1988 ;;
1989 esac
1990
1991 if test ! -z "$withval" ; then
f1b0ecc3 1992 if test ! -z "$PRNGD_PORT" ; then
1993 AC_MSG_ERROR(You may not specify both a PRNGD/EGD port and socket)
1994 fi
906e811b 1995 if test ! -r "$withval" ; then
f1b0ecc3 1996 AC_MSG_WARN(Entropy socket is not readable)
1997 fi
1998 PRNGD_SOCKET="$withval"
3466e002 1999 AC_DEFINE_UNQUOTED(PRNGD_SOCKET, "$PRNGD_SOCKET",
2000 [Location of PRNGD/EGD random number socket])
f1b0ecc3 2001 fi
ddceb1c8 2002 ],
2003 [
2004 # Check for existing socket only if we don't have a random device already
2005 if test "$USE_RAND_HELPER" = yes ; then
2006 AC_MSG_CHECKING(for PRNGD/EGD socket)
2007 # Insert other locations here
2008 for sock in /var/run/egd-pool /dev/egd-pool /etc/entropy; do
2009 if test -r $sock && $TEST_MINUS_S_SH -c "test -S $sock -o -p $sock" ; then
2010 PRNGD_SOCKET="$sock"
2011 AC_DEFINE_UNQUOTED(PRNGD_SOCKET, "$PRNGD_SOCKET")
2012 break;
2013 fi
2014 done
2015 if test ! -z "$PRNGD_SOCKET" ; then
2016 AC_MSG_RESULT($PRNGD_SOCKET)
2017 else
2018 AC_MSG_RESULT(not found)
2019 fi
2020 fi
f1b0ecc3 2021 ]
2022)
2023
2024# Change default command timeout for hashing entropy source
2025entropy_timeout=200
2026AC_ARG_WITH(entropy-timeout,
2027 [ --with-entropy-timeout Specify entropy gathering command timeout (msec)],
2028 [
6cf0200f 2029 if test -n "$withval" && test "x$withval" != "xno" && \
2030 test "x${withval}" != "xyes"; then
f1b0ecc3 2031 entropy_timeout=$withval
2032 fi
82f4e93d 2033 ]
f1b0ecc3 2034)
3466e002 2035AC_DEFINE_UNQUOTED(ENTROPY_TIMEOUT_MSEC, $entropy_timeout,
2036 [Builtin PRNG command timeout])
f1b0ecc3 2037
fd3cbf67 2038SSH_PRIVSEP_USER=sshd
9a0fbcb3 2039AC_ARG_WITH(privsep-user,
5222e7ef 2040 [ --with-privsep-user=user Specify non-privileged user for privilege separation],
9a0fbcb3 2041 [
6cf0200f 2042 if test -n "$withval" && test "x$withval" != "xno" && \
2043 test "x${withval}" != "xyes"; then
fd3cbf67 2044 SSH_PRIVSEP_USER=$withval
9a0fbcb3 2045 fi
82f4e93d 2046 ]
9a0fbcb3 2047)
3466e002 2048AC_DEFINE_UNQUOTED(SSH_PRIVSEP_USER, "$SSH_PRIVSEP_USER",
2049 [non-privileged user for privilege separation])
fd3cbf67 2050AC_SUBST(SSH_PRIVSEP_USER)
9a0fbcb3 2051
81dadca3 2052# We do this little dance with the search path to insure
2053# that programs that we select for use by installed programs
2054# (which may be run by the super-user) come from trusted
2055# locations before they come from the user's private area.
2056# This should help avoid accidentally configuring some
2057# random version of a program in someone's personal bin.
2058
2059OPATH=$PATH
2060PATH=/bin:/usr/bin
f95c8ce8 2061test -h /bin 2> /dev/null && PATH=/usr/bin
81dadca3 2062test -d /sbin && PATH=$PATH:/sbin
2063test -d /usr/sbin && PATH=$PATH:/usr/sbin
2064PATH=$PATH:/etc:$OPATH
2065
aff51935 2066# These programs are used by the command hashing source to gather entropy
f1b0ecc3 2067OSSH_PATH_ENTROPY_PROG(PROG_LS, ls)
2068OSSH_PATH_ENTROPY_PROG(PROG_NETSTAT, netstat)
2069OSSH_PATH_ENTROPY_PROG(PROG_ARP, arp)
2070OSSH_PATH_ENTROPY_PROG(PROG_IFCONFIG, ifconfig)
2071OSSH_PATH_ENTROPY_PROG(PROG_JSTAT, jstat)
2072OSSH_PATH_ENTROPY_PROG(PROG_PS, ps)
2073OSSH_PATH_ENTROPY_PROG(PROG_SAR, sar)
2074OSSH_PATH_ENTROPY_PROG(PROG_W, w)
2075OSSH_PATH_ENTROPY_PROG(PROG_WHO, who)
2076OSSH_PATH_ENTROPY_PROG(PROG_LAST, last)
2077OSSH_PATH_ENTROPY_PROG(PROG_LASTLOG, lastlog)
2078OSSH_PATH_ENTROPY_PROG(PROG_DF, df)
2079OSSH_PATH_ENTROPY_PROG(PROG_VMSTAT, vmstat)
2080OSSH_PATH_ENTROPY_PROG(PROG_UPTIME, uptime)
2081OSSH_PATH_ENTROPY_PROG(PROG_IPCS, ipcs)
2082OSSH_PATH_ENTROPY_PROG(PROG_TAIL, tail)
81dadca3 2083# restore PATH
2084PATH=$OPATH
f1b0ecc3 2085
2086# Where does ssh-rand-helper get its randomness from?
2087INSTALL_SSH_PRNG_CMDS=""
2088if test ! -z "$INSTALL_SSH_RAND_HELPER" ; then
2089 if test ! -z "$PRNGD_PORT" ; then
2090 RAND_HELPER_MSG="TCP localhost:$PRNGD_PORT"
2091 elif test ! -z "$PRNGD_SOCKET" ; then
2092 RAND_HELPER_MSG="Unix domain socket \"$PRNGD_SOCKET\""
2093 else
2094 RAND_HELPER_MSG="Command hashing (timeout $entropy_timeout)"
2095 RAND_HELPER_CMDHASH=yes
2096 INSTALL_SSH_PRNG_CMDS="yes"
2097 fi
2098fi
2099AC_SUBST(INSTALL_SSH_PRNG_CMDS)
2100
2101
66d6c27e 2102# Cheap hack to ensure NEWS-OS libraries are arranged right.
2103if test ! -z "$SONY" ; then
2104 LIBS="$LIBS -liberty";
2105fi
2106
9a406e1e 2107# Check for long long datatypes
2108AC_CHECK_TYPES([long long, unsigned long long, long double])
2109
2110# Check datatype sizes
976f7e19 2111AC_CHECK_SIZEOF(char, 1)
2b942fe0 2112AC_CHECK_SIZEOF(short int, 2)
2113AC_CHECK_SIZEOF(int, 4)
2114AC_CHECK_SIZEOF(long int, 4)
2115AC_CHECK_SIZEOF(long long int, 8)
2116
52f1ccb2 2117# Sanity check long long for some platforms (AIX)
2118if test "x$ac_cv_sizeof_long_long_int" = "x4" ; then
2119 ac_cv_sizeof_long_long_int=0
2120fi
2121
90f15776 2122# compute LLONG_MIN and LLONG_MAX if we don't know them.
2123if test -z "$have_llong_max"; then
2124 AC_MSG_CHECKING([for max value of long long])
2125 AC_RUN_IFELSE(
2126 [AC_LANG_SOURCE([[
2127#include <stdio.h>
2128/* Why is this so damn hard? */
2129#ifdef __GNUC__
2130# undef __GNUC__
2131#endif
2132#define __USE_ISOC99
2133#include <limits.h>
2134#define DATA "conftest.llminmax"
2135int main(void) {
2136 FILE *f;
2137 long long i, llmin, llmax = 0;
2138
2139 if((f = fopen(DATA,"w")) == NULL)
2140 exit(1);
2141
2142#if defined(LLONG_MIN) && defined(LLONG_MAX)
2143 fprintf(stderr, "Using system header for LLONG_MIN and LLONG_MAX\n");
2144 llmin = LLONG_MIN;
2145 llmax = LLONG_MAX;
2146#else
2147 fprintf(stderr, "Calculating LLONG_MIN and LLONG_MAX\n");
2148 /* This will work on one's complement and two's complement */
2149 for (i = 1; i > llmax; i <<= 1, i++)
2150 llmax = i;
2151 llmin = llmax + 1LL; /* wrap */
2152#endif
2153
2154 /* Sanity check */
2155 if (llmin + 1 < llmin || llmin - 1 < llmin || llmax + 1 > llmax
2156 || llmax - 1 > llmax) {
2157 fprintf(f, "unknown unknown\n");
2158 exit(2);
2159 }
2160
2161 if (fprintf(f ,"%lld %lld", llmin, llmax) < 0)
2162 exit(3);
2163
2164 exit(0);
2165}
2166 ]])],
2167 [
2168 llong_min=`$AWK '{print $1}' conftest.llminmax`
2169 llong_max=`$AWK '{print $2}' conftest.llminmax`
2170
2171 # snprintf on some Tru64s doesn't understand "%lld"
2172 case "$host" in
2173 alpha-dec-osf*)
2174 if test "x$ac_cv_sizeof_long_long_int" = "x8" &&
2175 test "x$llong_max" = "xld"; then
2176 llong_min="-9223372036854775808"
2177 llong_max="9223372036854775807"
2178 fi
2179 ;;
2180 esac
2181
2182 AC_MSG_RESULT($llong_max)
2183 AC_DEFINE_UNQUOTED(LLONG_MAX, [${llong_max}LL],
2184 [max value of long long calculated by configure])
2185 AC_MSG_CHECKING([for min value of long long])
2186 AC_MSG_RESULT($llong_min)
2187 AC_DEFINE_UNQUOTED(LLONG_MIN, [${llong_min}LL],
2188 [min value of long long calculated by configure])
2189 ],
2190 [
2191 AC_MSG_RESULT(not found)
2192 ],
2193 [
2194 AC_MSG_WARN([cross compiling: not checking])
2195 ]
2196 )
2197fi
2198
2199
a0391976 2200# More checks for data types
14a9a859 2201AC_CACHE_CHECK([for u_int type], ac_cv_have_u_int, [
2202 AC_TRY_COMPILE(
aff51935 2203 [ #include <sys/types.h> ],
2204 [ u_int a; a = 1;],
14a9a859 2205 [ ac_cv_have_u_int="yes" ],
2206 [ ac_cv_have_u_int="no" ]
2207 )
2208])
2209if test "x$ac_cv_have_u_int" = "xyes" ; then
3466e002 2210 AC_DEFINE(HAVE_U_INT, 1, [define if you have u_int data type])
14a9a859 2211 have_u_int=1
2212fi
2213
58d100bf 2214AC_CACHE_CHECK([for intXX_t types], ac_cv_have_intxx_t, [
2215 AC_TRY_COMPILE(
aff51935 2216 [ #include <sys/types.h> ],
2217 [ int8_t a; int16_t b; int32_t c; a = b = c = 1;],
58d100bf 2218 [ ac_cv_have_intxx_t="yes" ],
2219 [ ac_cv_have_intxx_t="no" ]
2220 )
2221])
2222if test "x$ac_cv_have_intxx_t" = "xyes" ; then
3466e002 2223 AC_DEFINE(HAVE_INTXX_T, 1, [define if you have intxx_t data type])
58d100bf 2224 have_intxx_t=1
2225fi
41cb4569 2226
2227if (test -z "$have_intxx_t" && \
aff51935 2228 test "x$ac_cv_header_stdint_h" = "xyes")
41cb4569 2229then
2230 AC_MSG_CHECKING([for intXX_t types in stdint.h])
2231 AC_TRY_COMPILE(
aff51935 2232 [ #include <stdint.h> ],
2233 [ int8_t a; int16_t b; int32_t c; a = b = c = 1;],
41cb4569 2234 [
2235 AC_DEFINE(HAVE_INTXX_T)
2236 AC_MSG_RESULT(yes)
2237 ],
2238 [ AC_MSG_RESULT(no) ]
2239 )
2240fi
2241
bd590612 2242AC_CACHE_CHECK([for int64_t type], ac_cv_have_int64_t, [
2243 AC_TRY_COMPILE(
1cbbe6c8 2244 [
2245#include <sys/types.h>
2246#ifdef HAVE_STDINT_H
2247# include <stdint.h>
2248#endif
2249#include <sys/socket.h>
2250#ifdef HAVE_SYS_BITYPES_H
2251# include <sys/bitypes.h>
2252#endif
aff51935 2253 ],
2254 [ int64_t a; a = 1;],
bd590612 2255 [ ac_cv_have_int64_t="yes" ],
2256 [ ac_cv_have_int64_t="no" ]
2257 )
2258])
2259if test "x$ac_cv_have_int64_t" = "xyes" ; then
3466e002 2260 AC_DEFINE(HAVE_INT64_T, 1, [define if you have int64_t data type])
ddceb1c8 2261fi
2262
58d100bf 2263AC_CACHE_CHECK([for u_intXX_t types], ac_cv_have_u_intxx_t, [
2264 AC_TRY_COMPILE(
aff51935 2265 [ #include <sys/types.h> ],
2266 [ u_int8_t a; u_int16_t b; u_int32_t c; a = b = c = 1;],
58d100bf 2267 [ ac_cv_have_u_intxx_t="yes" ],
2268 [ ac_cv_have_u_intxx_t="no" ]
2269 )
2270])
2271if test "x$ac_cv_have_u_intxx_t" = "xyes" ; then
3466e002 2272 AC_DEFINE(HAVE_U_INTXX_T, 1, [define if you have u_intxx_t data type])
58d100bf 2273 have_u_intxx_t=1
2274fi
2b942fe0 2275
41cb4569 2276if test -z "$have_u_intxx_t" ; then
2277 AC_MSG_CHECKING([for u_intXX_t types in sys/socket.h])
2278 AC_TRY_COMPILE(
aff51935 2279 [ #include <sys/socket.h> ],
2280 [ u_int8_t a; u_int16_t b; u_int32_t c; a = b = c = 1;],
41cb4569 2281 [
2282 AC_DEFINE(HAVE_U_INTXX_T)
2283 AC_MSG_RESULT(yes)
2284 ],
2285 [ AC_MSG_RESULT(no) ]
2286 )
2287fi
2288
bd590612 2289AC_CACHE_CHECK([for u_int64_t types], ac_cv_have_u_int64_t, [
2290 AC_TRY_COMPILE(
aff51935 2291 [ #include <sys/types.h> ],
2292 [ u_int64_t a; a = 1;],
bd590612 2293 [ ac_cv_have_u_int64_t="yes" ],
2294 [ ac_cv_have_u_int64_t="no" ]
2295 )
2296])
2297if test "x$ac_cv_have_u_int64_t" = "xyes" ; then
3466e002 2298 AC_DEFINE(HAVE_U_INT64_T, 1, [define if you have u_int64_t data type])
bd590612 2299 have_u_int64_t=1
2300fi
2301
ddceb1c8 2302if test -z "$have_u_int64_t" ; then
2303 AC_MSG_CHECKING([for u_int64_t type in sys/bitypes.h])
2304 AC_TRY_COMPILE(
aff51935 2305 [ #include <sys/bitypes.h> ],
ddceb1c8 2306 [ u_int64_t a; a = 1],
2307 [
2308 AC_DEFINE(HAVE_U_INT64_T)
2309 AC_MSG_RESULT(yes)
2310 ],
2311 [ AC_MSG_RESULT(no) ]
2312 )
2313fi
2314
41cb4569 2315if test -z "$have_u_intxx_t" ; then
2316 AC_CACHE_CHECK([for uintXX_t types], ac_cv_have_uintxx_t, [
2317 AC_TRY_COMPILE(
2318 [
2319#include <sys/types.h>
aff51935 2320 ],
2321 [ uint8_t a; uint16_t b; uint32_t c; a = b = c = 1; ],
41cb4569 2322 [ ac_cv_have_uintxx_t="yes" ],
2323 [ ac_cv_have_uintxx_t="no" ]
2324 )
2325 ])
2326 if test "x$ac_cv_have_uintxx_t" = "xyes" ; then
3466e002 2327 AC_DEFINE(HAVE_UINTXX_T, 1,
2328 [define if you have uintxx_t data type])
41cb4569 2329 fi
2330fi
2331
2332if test -z "$have_uintxx_t" ; then
2333 AC_MSG_CHECKING([for uintXX_t types in stdint.h])
2334 AC_TRY_COMPILE(
aff51935 2335 [ #include <stdint.h> ],
2336 [ uint8_t a; uint16_t b; uint32_t c; a = b = c = 1;],
41cb4569 2337 [
2338 AC_DEFINE(HAVE_UINTXX_T)
2339 AC_MSG_RESULT(yes)
2340 ],
2341 [ AC_MSG_RESULT(no) ]
2342 )
2343fi
2344
e5fe9a1f 2345if (test -z "$have_u_intxx_t" || test -z "$have_intxx_t" && \
aff51935 2346 test "x$ac_cv_header_sys_bitypes_h" = "xyes")
5cdfe03f 2347then
2348 AC_MSG_CHECKING([for intXX_t and u_intXX_t types in sys/bitypes.h])
2349 AC_TRY_COMPILE(
58d100bf 2350 [
2351#include <sys/bitypes.h>
aff51935 2352 ],
5cdfe03f 2353 [
837c30b8 2354 int8_t a; int16_t b; int32_t c;
2355 u_int8_t e; u_int16_t f; u_int32_t g;
2356 a = b = c = e = f = g = 1;
aff51935 2357 ],
5cdfe03f 2358 [
2359 AC_DEFINE(HAVE_U_INTXX_T)
2360 AC_DEFINE(HAVE_INTXX_T)
2361 AC_MSG_RESULT(yes)
2362 ],
2363 [AC_MSG_RESULT(no)]
aff51935 2364 )
5cdfe03f 2365fi
2366
0362750e 2367
2368AC_CACHE_CHECK([for u_char], ac_cv_have_u_char, [
2369 AC_TRY_COMPILE(
2370 [
2371#include <sys/types.h>
2372 ],
2373 [ u_char foo; foo = 125; ],
2374 [ ac_cv_have_u_char="yes" ],
2375 [ ac_cv_have_u_char="no" ]
2376 )
2377])
2378if test "x$ac_cv_have_u_char" = "xyes" ; then
3466e002 2379 AC_DEFINE(HAVE_U_CHAR, 1, [define if you have u_char data type])
0362750e 2380fi
2381
98a7c37b 2382TYPE_SOCKLEN_T
2b942fe0 2383
2d16d9a3 2384AC_CHECK_TYPES(sig_atomic_t,,,[#include <signal.h>])
ddceb1c8 2385
777ece68 2386AC_CHECK_TYPES(in_addr_t,,,
2387[#include <sys/types.h>
2388#include <netinet/in.h>])
7b578f7d 2389
58d100bf 2390AC_CACHE_CHECK([for size_t], ac_cv_have_size_t, [
2391 AC_TRY_COMPILE(
2392 [
18ba2aab 2393#include <sys/types.h>
58d100bf 2394 ],
2395 [ size_t foo; foo = 1235; ],
2396 [ ac_cv_have_size_t="yes" ],
2397 [ ac_cv_have_size_t="no" ]
2398 )
2399])
2400if test "x$ac_cv_have_size_t" = "xyes" ; then
3466e002 2401 AC_DEFINE(HAVE_SIZE_T, 1, [define if you have size_t data type])
58d100bf 2402fi
ea1970a3 2403
c04f75f1 2404AC_CACHE_CHECK([for ssize_t], ac_cv_have_ssize_t, [
2405 AC_TRY_COMPILE(
2406 [
2407#include <sys/types.h>
2408 ],
2409 [ ssize_t foo; foo = 1235; ],
2410 [ ac_cv_have_ssize_t="yes" ],
2411 [ ac_cv_have_ssize_t="no" ]
2412 )
2413])
2414if test "x$ac_cv_have_ssize_t" = "xyes" ; then
3466e002 2415 AC_DEFINE(HAVE_SSIZE_T, 1, [define if you have ssize_t data type])
c04f75f1 2416fi
2417
f1c4659d 2418AC_CACHE_CHECK([for clock_t], ac_cv_have_clock_t, [
2419 AC_TRY_COMPILE(
2420 [
2421#include <time.h>
2422 ],
2423 [ clock_t foo; foo = 1235; ],
2424 [ ac_cv_have_clock_t="yes" ],
2425 [ ac_cv_have_clock_t="no" ]
2426 )
2427])
2428if test "x$ac_cv_have_clock_t" = "xyes" ; then
3466e002 2429 AC_DEFINE(HAVE_CLOCK_T, 1, [define if you have clock_t data type])
f1c4659d 2430fi
2431
1c04b088 2432AC_CACHE_CHECK([for sa_family_t], ac_cv_have_sa_family_t, [
2433 AC_TRY_COMPILE(
2434 [
2435#include <sys/types.h>
2436#include <sys/socket.h>
2437 ],
2438 [ sa_family_t foo; foo = 1235; ],
2439 [ ac_cv_have_sa_family_t="yes" ],
77bb0bca 2440 [ AC_TRY_COMPILE(
2441 [
2442#include <sys/types.h>
2443#include <sys/socket.h>
2444#include <netinet/in.h>
2445 ],
2446 [ sa_family_t foo; foo = 1235; ],
2447 [ ac_cv_have_sa_family_t="yes" ],
2448
1c04b088 2449 [ ac_cv_have_sa_family_t="no" ]
77bb0bca 2450 )]
1c04b088 2451 )
2452])
2453if test "x$ac_cv_have_sa_family_t" = "xyes" ; then
3466e002 2454 AC_DEFINE(HAVE_SA_FAMILY_T, 1,
2455 [define if you have sa_family_t data type])
1c04b088 2456fi
2457
729bfe59 2458AC_CACHE_CHECK([for pid_t], ac_cv_have_pid_t, [
2459 AC_TRY_COMPILE(
2460 [
2461#include <sys/types.h>
2462 ],
2463 [ pid_t foo; foo = 1235; ],
2464 [ ac_cv_have_pid_t="yes" ],
2465 [ ac_cv_have_pid_t="no" ]
2466 )
2467])
2468if test "x$ac_cv_have_pid_t" = "xyes" ; then
3466e002 2469 AC_DEFINE(HAVE_PID_T, 1, [define if you have pid_t data type])
729bfe59 2470fi
2471
2472AC_CACHE_CHECK([for mode_t], ac_cv_have_mode_t, [
2473 AC_TRY_COMPILE(
2474 [
2475#include <sys/types.h>
2476 ],
2477 [ mode_t foo; foo = 1235; ],
2478 [ ac_cv_have_mode_t="yes" ],
2479 [ ac_cv_have_mode_t="no" ]
2480 )
2481])
2482if test "x$ac_cv_have_mode_t" = "xyes" ; then
3466e002 2483 AC_DEFINE(HAVE_MODE_T, 1, [define if you have mode_t data type])
729bfe59 2484fi
2485
e3a93db0 2486
58d100bf 2487AC_CACHE_CHECK([for struct sockaddr_storage], ac_cv_have_struct_sockaddr_storage, [
2488 AC_TRY_COMPILE(
2489 [
18ba2aab 2490#include <sys/types.h>
2491#include <sys/socket.h>
58d100bf 2492 ],
2493 [ struct sockaddr_storage s; ],
2494 [ ac_cv_have_struct_sockaddr_storage="yes" ],
2495 [ ac_cv_have_struct_sockaddr_storage="no" ]
2496 )
2497])
2498if test "x$ac_cv_have_struct_sockaddr_storage" = "xyes" ; then
3466e002 2499 AC_DEFINE(HAVE_STRUCT_SOCKADDR_STORAGE, 1,
2500 [define if you have struct sockaddr_storage data type])
58d100bf 2501fi
48e671d5 2502
58d100bf 2503AC_CACHE_CHECK([for struct sockaddr_in6], ac_cv_have_struct_sockaddr_in6, [
2504 AC_TRY_COMPILE(
2505 [
cbd7492e 2506#include <sys/types.h>
58d100bf 2507#include <netinet/in.h>
2508 ],
2509 [ struct sockaddr_in6 s; s.sin6_family = 0; ],
2510 [ ac_cv_have_struct_sockaddr_in6="yes" ],
2511 [ ac_cv_have_struct_sockaddr_in6="no" ]
2512 )
2513])
2514if test "x$ac_cv_have_struct_sockaddr_in6" = "xyes" ; then
3466e002 2515 AC_DEFINE(HAVE_STRUCT_SOCKADDR_IN6, 1,
2516 [define if you have struct sockaddr_in6 data type])
58d100bf 2517fi
48e671d5 2518
58d100bf 2519AC_CACHE_CHECK([for struct in6_addr], ac_cv_have_struct_in6_addr, [
2520 AC_TRY_COMPILE(
2521 [
cbd7492e 2522#include <sys/types.h>
58d100bf 2523#include <netinet/in.h>
2524 ],
2525 [ struct in6_addr s; s.s6_addr[0] = 0; ],
2526 [ ac_cv_have_struct_in6_addr="yes" ],
2527 [ ac_cv_have_struct_in6_addr="no" ]
2528 )
2529])
2530if test "x$ac_cv_have_struct_in6_addr" = "xyes" ; then
3466e002 2531 AC_DEFINE(HAVE_STRUCT_IN6_ADDR, 1,
2532 [define if you have struct in6_addr data type])
58d100bf 2533fi
48e671d5 2534
58d100bf 2535AC_CACHE_CHECK([for struct addrinfo], ac_cv_have_struct_addrinfo, [
2536 AC_TRY_COMPILE(
2537 [
18ba2aab 2538#include <sys/types.h>
2539#include <sys/socket.h>
2540#include <netdb.h>
58d100bf 2541 ],
2542 [ struct addrinfo s; s.ai_flags = AI_PASSIVE; ],
2543 [ ac_cv_have_struct_addrinfo="yes" ],
2544 [ ac_cv_have_struct_addrinfo="no" ]
2545 )
2546])
2547if test "x$ac_cv_have_struct_addrinfo" = "xyes" ; then
3466e002 2548 AC_DEFINE(HAVE_STRUCT_ADDRINFO, 1,
2549 [define if you have struct addrinfo data type])
58d100bf 2550fi
2551
89c7e31c 2552AC_CACHE_CHECK([for struct timeval], ac_cv_have_struct_timeval, [
2553 AC_TRY_COMPILE(
aff51935 2554 [ #include <sys/time.h> ],
2555 [ struct timeval tv; tv.tv_sec = 1;],
89c7e31c 2556 [ ac_cv_have_struct_timeval="yes" ],
2557 [ ac_cv_have_struct_timeval="no" ]
2558 )
2559])
2560if test "x$ac_cv_have_struct_timeval" = "xyes" ; then
3466e002 2561 AC_DEFINE(HAVE_STRUCT_TIMEVAL, 1, [define if you have struct timeval])
89c7e31c 2562 have_struct_timeval=1
2563fi
2564
5271b55c 2565AC_CHECK_TYPES(struct timespec)
2566
85abc74b 2567# We need int64_t or else certian parts of the compile will fail.
4b492aab 2568if test "x$ac_cv_have_int64_t" = "xno" && \
2569 test "x$ac_cv_sizeof_long_int" != "x8" && \
2570 test "x$ac_cv_sizeof_long_long_int" = "x0" ; then
85abc74b 2571 echo "OpenSSH requires int64_t support. Contact your vendor or install"
2572 echo "an alternative compiler (I.E., GCC) before continuing."
2573 echo ""
2574 exit 1;
733cf7f4 2575else
2576dnl test snprintf (broken on SCO w/gcc)
1a01a50c 2577 AC_RUN_IFELSE(
479cece8 2578 [AC_LANG_SOURCE([[
733cf7f4 2579#include <stdio.h>
2580#include <string.h>
2581#ifdef HAVE_SNPRINTF
2582main()
2583{
2584 char buf[50];
2585 char expected_out[50];
2586 int mazsize = 50 ;
2587#if (SIZEOF_LONG_INT == 8)
2588 long int num = 0x7fffffffffffffff;
2589#else
763a1a18 2590 long long num = 0x7fffffffffffffffll;
733cf7f4 2591#endif
2592 strcpy(expected_out, "9223372036854775807");
2593 snprintf(buf, mazsize, "%lld", num);
2594 if(strcmp(buf, expected_out) != 0)
aff51935 2595 exit(1);
733cf7f4 2596 exit(0);
2597}
2598#else
2599main() { exit(0); }
2600#endif
479cece8 2601 ]])], [ true ], [ AC_DEFINE(BROKEN_SNPRINTF) ],
1a01a50c 2602 AC_MSG_WARN([cross compiling: Assuming working snprintf()])
733cf7f4 2603 )
2c523de9 2604fi
2605
77bb0bca 2606dnl Checks for structure members
58d100bf 2607OSSH_CHECK_HEADER_FOR_FIELD(ut_host, utmp.h, HAVE_HOST_IN_UTMP)
2608OSSH_CHECK_HEADER_FOR_FIELD(ut_host, utmpx.h, HAVE_HOST_IN_UTMPX)
2609OSSH_CHECK_HEADER_FOR_FIELD(syslen, utmpx.h, HAVE_SYSLEN_IN_UTMPX)
2610OSSH_CHECK_HEADER_FOR_FIELD(ut_pid, utmp.h, HAVE_PID_IN_UTMP)
2611OSSH_CHECK_HEADER_FOR_FIELD(ut_type, utmp.h, HAVE_TYPE_IN_UTMP)
25422c70 2612OSSH_CHECK_HEADER_FOR_FIELD(ut_type, utmpx.h, HAVE_TYPE_IN_UTMPX)
58d100bf 2613OSSH_CHECK_HEADER_FOR_FIELD(ut_tv, utmp.h, HAVE_TV_IN_UTMP)
2614OSSH_CHECK_HEADER_FOR_FIELD(ut_id, utmp.h, HAVE_ID_IN_UTMP)
daaff4d5 2615OSSH_CHECK_HEADER_FOR_FIELD(ut_id, utmpx.h, HAVE_ID_IN_UTMPX)
58d100bf 2616OSSH_CHECK_HEADER_FOR_FIELD(ut_addr, utmp.h, HAVE_ADDR_IN_UTMP)
2617OSSH_CHECK_HEADER_FOR_FIELD(ut_addr, utmpx.h, HAVE_ADDR_IN_UTMPX)
2618OSSH_CHECK_HEADER_FOR_FIELD(ut_addr_v6, utmp.h, HAVE_ADDR_V6_IN_UTMP)
2619OSSH_CHECK_HEADER_FOR_FIELD(ut_addr_v6, utmpx.h, HAVE_ADDR_V6_IN_UTMPX)
1d7b9b20 2620OSSH_CHECK_HEADER_FOR_FIELD(ut_exit, utmp.h, HAVE_EXIT_IN_UTMP)
2621OSSH_CHECK_HEADER_FOR_FIELD(ut_time, utmp.h, HAVE_TIME_IN_UTMP)
2622OSSH_CHECK_HEADER_FOR_FIELD(ut_time, utmpx.h, HAVE_TIME_IN_UTMPX)
2623OSSH_CHECK_HEADER_FOR_FIELD(ut_tv, utmpx.h, HAVE_TV_IN_UTMPX)
98a7c37b 2624
2625AC_CHECK_MEMBERS([struct stat.st_blksize])
ccc45ee0 2626AC_CHECK_MEMBER([struct __res_state.retrans], [], [AC_DEFINE(__res_state, state,
2627 [Define if we don't have struct __res_state in resolv.h])],
2628[
2629#include <stdio.h>
2630#if HAVE_SYS_TYPES_H
2631# include <sys/types.h>
2632#endif
2633#include <netinet/in.h>
2634#include <arpa/nameser.h>
2635#include <resolv.h>
2636])
1d7b9b20 2637
58d100bf 2638AC_CACHE_CHECK([for ss_family field in struct sockaddr_storage],
2639 ac_cv_have_ss_family_in_struct_ss, [
2640 AC_TRY_COMPILE(
2641 [
18ba2aab 2642#include <sys/types.h>
2643#include <sys/socket.h>
58d100bf 2644 ],
2645 [ struct sockaddr_storage s; s.ss_family = 1; ],
2646 [ ac_cv_have_ss_family_in_struct_ss="yes" ],
2647 [ ac_cv_have_ss_family_in_struct_ss="no" ],
2648 )
2649])
2650if test "x$ac_cv_have_ss_family_in_struct_ss" = "xyes" ; then
3466e002 2651 AC_DEFINE(HAVE_SS_FAMILY_IN_SS, 1, [Fields in struct sockaddr_storage])
58d100bf 2652fi
2653
58d100bf 2654AC_CACHE_CHECK([for __ss_family field in struct sockaddr_storage],
2655 ac_cv_have___ss_family_in_struct_ss, [
2656 AC_TRY_COMPILE(
2657 [
18ba2aab 2658#include <sys/types.h>
2659#include <sys/socket.h>
58d100bf 2660 ],
2661 [ struct sockaddr_storage s; s.__ss_family = 1; ],
2662 [ ac_cv_have___ss_family_in_struct_ss="yes" ],
2663 [ ac_cv_have___ss_family_in_struct_ss="no" ]
2664 )
2665])
2666if test "x$ac_cv_have___ss_family_in_struct_ss" = "xyes" ; then
3466e002 2667 AC_DEFINE(HAVE___SS_FAMILY_IN_SS, 1,
2668 [Fields in struct sockaddr_storage])
58d100bf 2669fi
2670
2e73a022 2671AC_CACHE_CHECK([for pw_class field in struct passwd],
2672 ac_cv_have_pw_class_in_struct_passwd, [
2673 AC_TRY_COMPILE(
2674 [
2e73a022 2675#include <pwd.h>
2676 ],
97994d32 2677 [ struct passwd p; p.pw_class = 0; ],
2e73a022 2678 [ ac_cv_have_pw_class_in_struct_passwd="yes" ],
2679 [ ac_cv_have_pw_class_in_struct_passwd="no" ]
2680 )
2681])
2682if test "x$ac_cv_have_pw_class_in_struct_passwd" = "xyes" ; then
3466e002 2683 AC_DEFINE(HAVE_PW_CLASS_IN_PASSWD, 1,
2684 [Define if your password has a pw_class field])
2e73a022 2685fi
2686
7751d4eb 2687AC_CACHE_CHECK([for pw_expire field in struct passwd],
2688 ac_cv_have_pw_expire_in_struct_passwd, [
2689 AC_TRY_COMPILE(
2690 [
2691#include <pwd.h>
2692 ],
2693 [ struct passwd p; p.pw_expire = 0; ],
2694 [ ac_cv_have_pw_expire_in_struct_passwd="yes" ],
2695 [ ac_cv_have_pw_expire_in_struct_passwd="no" ]
2696 )
2697])
2698if test "x$ac_cv_have_pw_expire_in_struct_passwd" = "xyes" ; then
3466e002 2699 AC_DEFINE(HAVE_PW_EXPIRE_IN_PASSWD, 1,
2700 [Define if your password has a pw_expire field])
7751d4eb 2701fi
2702
2703AC_CACHE_CHECK([for pw_change field in struct passwd],
2704 ac_cv_have_pw_change_in_struct_passwd, [
2705 AC_TRY_COMPILE(
2706 [
2707#include <pwd.h>
2708 ],
2709 [ struct passwd p; p.pw_change = 0; ],
2710 [ ac_cv_have_pw_change_in_struct_passwd="yes" ],
2711 [ ac_cv_have_pw_change_in_struct_passwd="no" ]
2712 )
2713])
2714if test "x$ac_cv_have_pw_change_in_struct_passwd" = "xyes" ; then
3466e002 2715 AC_DEFINE(HAVE_PW_CHANGE_IN_PASSWD, 1,
2716 [Define if your password has a pw_change field])
7751d4eb 2717fi
58d100bf 2718
637f9177 2719dnl make sure we're using the real structure members and not defines
6f34652e 2720AC_CACHE_CHECK([for msg_accrights field in struct msghdr],
2721 ac_cv_have_accrights_in_msghdr, [
1a01a50c 2722 AC_COMPILE_IFELSE(
6f34652e 2723 [
f95c8ce8 2724#include <sys/types.h>
6f34652e 2725#include <sys/socket.h>
2726#include <sys/uio.h>
637f9177 2727int main() {
2728#ifdef msg_accrights
1a01a50c 2729#error "msg_accrights is a macro"
637f9177 2730exit(1);
2731#endif
2732struct msghdr m;
2733m.msg_accrights = 0;
2734exit(0);
2735}
6f34652e 2736 ],
6f34652e 2737 [ ac_cv_have_accrights_in_msghdr="yes" ],
2738 [ ac_cv_have_accrights_in_msghdr="no" ]
2739 )
2740])
2741if test "x$ac_cv_have_accrights_in_msghdr" = "xyes" ; then
3466e002 2742 AC_DEFINE(HAVE_ACCRIGHTS_IN_MSGHDR, 1,
2743 [Define if your system uses access rights style
2744 file descriptor passing])
6f34652e 2745fi
2746
7176df4f 2747AC_CACHE_CHECK([for msg_control field in struct msghdr],
2748 ac_cv_have_control_in_msghdr, [
1a01a50c 2749 AC_COMPILE_IFELSE(
7176df4f 2750 [
f95c8ce8 2751#include <sys/types.h>
7176df4f 2752#include <sys/socket.h>
2753#include <sys/uio.h>
637f9177 2754int main() {
2755#ifdef msg_control
1a01a50c 2756#error "msg_control is a macro"
637f9177 2757exit(1);
2758#endif
2759struct msghdr m;
2760m.msg_control = 0;
2761exit(0);
2762}
7176df4f 2763 ],
7176df4f 2764 [ ac_cv_have_control_in_msghdr="yes" ],
2765 [ ac_cv_have_control_in_msghdr="no" ]
2766 )
2767])
2768if test "x$ac_cv_have_control_in_msghdr" = "xyes" ; then
3466e002 2769 AC_DEFINE(HAVE_CONTROL_IN_MSGHDR, 1,
2770 [Define if your system uses ancillary data style
2771 file descriptor passing])
7176df4f 2772fi
2773
58d100bf 2774AC_CACHE_CHECK([if libc defines __progname], ac_cv_libc_defines___progname, [
aff51935 2775 AC_TRY_LINK([],
2776 [ extern char *__progname; printf("%s", __progname); ],
58d100bf 2777 [ ac_cv_libc_defines___progname="yes" ],
2778 [ ac_cv_libc_defines___progname="no" ]
2779 )
2780])
2781if test "x$ac_cv_libc_defines___progname" = "xyes" ; then
3466e002 2782 AC_DEFINE(HAVE___PROGNAME, 1, [Define if libc defines __progname])
58d100bf 2783fi
8946db53 2784
c921ee00 2785AC_CACHE_CHECK([whether $CC implements __FUNCTION__], ac_cv_cc_implements___FUNCTION__, [
2786 AC_TRY_LINK([
2787#include <stdio.h>
aff51935 2788],
2789 [ printf("%s", __FUNCTION__); ],
c921ee00 2790 [ ac_cv_cc_implements___FUNCTION__="yes" ],
2791 [ ac_cv_cc_implements___FUNCTION__="no" ]
2792 )
2793])
2794if test "x$ac_cv_cc_implements___FUNCTION__" = "xyes" ; then
3466e002 2795 AC_DEFINE(HAVE___FUNCTION__, 1,
2796 [Define if compiler implements __FUNCTION__])
c921ee00 2797fi
2798
2799AC_CACHE_CHECK([whether $CC implements __func__], ac_cv_cc_implements___func__, [
2800 AC_TRY_LINK([
2801#include <stdio.h>
aff51935 2802],
2803 [ printf("%s", __func__); ],
c921ee00 2804 [ ac_cv_cc_implements___func__="yes" ],
2805 [ ac_cv_cc_implements___func__="no" ]
2806 )
2807])
2808if test "x$ac_cv_cc_implements___func__" = "xyes" ; then
3466e002 2809 AC_DEFINE(HAVE___func__, 1, [Define if compiler implements __func__])
c921ee00 2810fi
2811
9a406e1e 2812AC_CACHE_CHECK([whether va_copy exists], ac_cv_have_va_copy, [
2813 AC_TRY_LINK(
2814 [#include <stdarg.h>
2815 va_list x,y;],
2816 [va_copy(x,y);],
2817 [ ac_cv_have_va_copy="yes" ],
2818 [ ac_cv_have_va_copy="no" ]
2819 )
2820])
2821if test "x$ac_cv_have_va_copy" = "xyes" ; then
2822 AC_DEFINE(HAVE_VA_COPY, 1, [Define if va_copy exists])
2823fi
2824
2825AC_CACHE_CHECK([whether __va_copy exists], ac_cv_have___va_copy, [
2826 AC_TRY_LINK(
2827 [#include <stdarg.h>
2828 va_list x,y;],
2829 [__va_copy(x,y);],
2830 [ ac_cv_have___va_copy="yes" ],
2831 [ ac_cv_have___va_copy="no" ]
2832 )
2833])
2834if test "x$ac_cv_have___va_copy" = "xyes" ; then
2835 AC_DEFINE(HAVE___VA_COPY, 1, [Define if __va_copy exists])
2836fi
2837
1812a662 2838AC_CACHE_CHECK([whether getopt has optreset support],
2839 ac_cv_have_getopt_optreset, [
2840 AC_TRY_LINK(
2841 [
2842#include <getopt.h>
2843 ],
2844 [ extern int optreset; optreset = 0; ],
2845 [ ac_cv_have_getopt_optreset="yes" ],
2846 [ ac_cv_have_getopt_optreset="no" ]
2847 )
2848])
2849if test "x$ac_cv_have_getopt_optreset" = "xyes" ; then
3466e002 2850 AC_DEFINE(HAVE_GETOPT_OPTRESET, 1,
2851 [Define if your getopt(3) defines and uses optreset])
1812a662 2852fi
a0391976 2853
819b676f 2854AC_CACHE_CHECK([if libc defines sys_errlist], ac_cv_libc_defines_sys_errlist, [
aff51935 2855 AC_TRY_LINK([],
2856 [ extern const char *const sys_errlist[]; printf("%s", sys_errlist[0]);],
819b676f 2857 [ ac_cv_libc_defines_sys_errlist="yes" ],
2858 [ ac_cv_libc_defines_sys_errlist="no" ]
2859 )
2860])
2861if test "x$ac_cv_libc_defines_sys_errlist" = "xyes" ; then
3466e002 2862 AC_DEFINE(HAVE_SYS_ERRLIST, 1,
2863 [Define if your system defines sys_errlist[]])
819b676f 2864fi
2865
2866
416ed5a7 2867AC_CACHE_CHECK([if libc defines sys_nerr], ac_cv_libc_defines_sys_nerr, [
aff51935 2868 AC_TRY_LINK([],
2869 [ extern int sys_nerr; printf("%i", sys_nerr);],
416ed5a7 2870 [ ac_cv_libc_defines_sys_nerr="yes" ],
2871 [ ac_cv_libc_defines_sys_nerr="no" ]
2872 )
2873])
2874if test "x$ac_cv_libc_defines_sys_nerr" = "xyes" ; then
3466e002 2875 AC_DEFINE(HAVE_SYS_NERR, 1, [Define if your system defines sys_nerr])
416ed5a7 2876fi
2877
aff51935 2878SCARD_MSG="no"
295c8801 2879# Check whether user wants sectok support
2880AC_ARG_WITH(sectok,
2881 [ --with-sectok Enable smartcard support using libsectok],
d0b19c95 2882 [
2883 if test "x$withval" != "xno" ; then
2884 if test "x$withval" != "xyes" ; then
2885 CPPFLAGS="$CPPFLAGS -I${withval}"
2886 LDFLAGS="$LDFLAGS -L${withval}"
2887 if test ! -z "$need_dash_r" ; then
2888 LDFLAGS="$LDFLAGS -R${withval}"
2889 fi
2890 if test ! -z "$blibpath" ; then
2891 blibpath="$blibpath:${withval}"
2892 fi
2893 fi
2894 AC_CHECK_HEADERS(sectok.h)
2895 if test "$ac_cv_header_sectok_h" != yes; then
2896 AC_MSG_ERROR(Can't find sectok.h)
2897 fi
2898 AC_CHECK_LIB(sectok, sectok_open)
2899 if test "$ac_cv_lib_sectok_sectok_open" != yes; then
2900 AC_MSG_ERROR(Can't find libsectok)
2901 fi
3466e002 2902 AC_DEFINE(SMARTCARD, 1,
2903 [Define if you want smartcard support])
2904 AC_DEFINE(USE_SECTOK, 1,
2905 [Define if you want smartcard support
2906 using sectok])
aff51935 2907 SCARD_MSG="yes, using sectok"
295c8801 2908 fi
2909 ]
2910)
2911
2912# Check whether user wants OpenSC support
987b458f 2913OPENSC_CONFIG="no"
295c8801 2914AC_ARG_WITH(opensc,
e47fb473 2915 [ --with-opensc[[=PFX]] Enable smartcard support using OpenSC (optionally in PATH)],
987b458f 2916 [
2917 if test "x$withval" != "xno" ; then
2918 if test "x$withval" != "xyes" ; then
2919 OPENSC_CONFIG=$withval/bin/opensc-config
2920 else
2921 AC_PATH_PROG(OPENSC_CONFIG, opensc-config, no)
2922 fi
2923 if test "$OPENSC_CONFIG" != "no"; then
2924 LIBOPENSC_CFLAGS=`$OPENSC_CONFIG --cflags`
2925 LIBOPENSC_LIBS=`$OPENSC_CONFIG --libs`
2926 CPPFLAGS="$CPPFLAGS $LIBOPENSC_CFLAGS"
2927 LDFLAGS="$LDFLAGS $LIBOPENSC_LIBS"
2928 AC_DEFINE(SMARTCARD)
3466e002 2929 AC_DEFINE(USE_OPENSC, 1,
2930 [Define if you want smartcard support
2931 using OpenSC])
987b458f 2932 SCARD_MSG="yes, using OpenSC"
2933 fi
2934 fi
2935 ]
2936)
d0b19c95 2937
c31dc31c 2938# Check libraries needed by DNS fingerprint support
aff51935 2939AC_SEARCH_LIBS(getrrsetbyname, resolv,
3466e002 2940 [AC_DEFINE(HAVE_GETRRSETBYNAME, 1,
2941 [Define if getrrsetbyname() exists])],
3e05e934 2942 [
c31dc31c 2943 # Needed by our getrrsetbyname()
2944 AC_SEARCH_LIBS(res_query, resolv)
2945 AC_SEARCH_LIBS(dn_expand, resolv)
dabb524a 2946 AC_MSG_CHECKING(if res_query will link)
2947 AC_TRY_LINK_FUNC(res_query, AC_MSG_RESULT(yes),
2948 [AC_MSG_RESULT(no)
2949 saved_LIBS="$LIBS"
2950 LIBS="$LIBS -lresolv"
2951 AC_MSG_CHECKING(for res_query in -lresolv)
2952 AC_LINK_IFELSE([
2953#include <resolv.h>
2954int main()
2955{
2956 res_query (0, 0, 0, 0, 0);
2957 return 0;
2958}
2959 ],
2960 [LIBS="$LIBS -lresolv"
2961 AC_MSG_RESULT(yes)],
2962 [LIBS="$saved_LIBS"
2963 AC_MSG_RESULT(no)])
2964 ])
c31dc31c 2965 AC_CHECK_FUNCS(_getshort _getlong)
1c829da5 2966 AC_CHECK_DECLS([_getshort, _getlong], , ,
b5765e1d 2967 [#include <sys/types.h>
2968 #include <arpa/nameser.h>])
c31dc31c 2969 AC_CHECK_MEMBER(HEADER.ad,
3466e002 2970 [AC_DEFINE(HAVE_HEADER_AD, 1,
2971 [Define if HEADER.ad exists in arpa/nameser.h])],,
c31dc31c 2972 [#include <arpa/nameser.h>])
2973 ])
3e05e934 2974
12928e80 2975# Check whether user wants Kerberos 5 support
aff51935 2976KRB5_MSG="no"
12928e80 2977AC_ARG_WITH(kerberos5,
aff51935 2978 [ --with-kerberos5=PATH Enable Kerberos 5 support],
5585c441 2979 [ if test "x$withval" != "xno" ; then
2980 if test "x$withval" = "xyes" ; then
2981 KRB5ROOT="/usr/local"
2982 else
2983 KRB5ROOT=${withval}
2984 fi
2985
3466e002 2986 AC_DEFINE(KRB5, 1, [Define if you want Kerberos 5 support])
5585c441 2987 KRB5_MSG="yes"
2988
2989 AC_MSG_CHECKING(for krb5-config)
2990 if test -x $KRB5ROOT/bin/krb5-config ; then
2991 KRB5CONF=$KRB5ROOT/bin/krb5-config
2992 AC_MSG_RESULT($KRB5CONF)
2993
2994 AC_MSG_CHECKING(for gssapi support)
2995 if $KRB5CONF | grep gssapi >/dev/null ; then
2996 AC_MSG_RESULT(yes)
3466e002 2997 AC_DEFINE(GSSAPI, 1,
2998 [Define this if you want GSSAPI
2999 support in the version 2 protocol])
071970fb 3000 k5confopts=gssapi
aff51935 3001 else
5585c441 3002 AC_MSG_RESULT(no)
071970fb 3003 k5confopts=""
aff51935 3004 fi
071970fb 3005 K5CFLAGS="`$KRB5CONF --cflags $k5confopts`"
3006 K5LIBS="`$KRB5CONF --libs $k5confopts`"
5585c441 3007 CPPFLAGS="$CPPFLAGS $K5CFLAGS"
5585c441 3008 AC_MSG_CHECKING(whether we are using Heimdal)
3009 AC_TRY_COMPILE([ #include <krb5.h> ],
3010 [ char *tmp = heimdal_version; ],
3011 [ AC_MSG_RESULT(yes)
3466e002 3012 AC_DEFINE(HEIMDAL, 1,
3013 [Define this if you are using the
3014 Heimdal version of Kerberos V5]) ],
5585c441 3015 AC_MSG_RESULT(no)
3016 )
3017 else
3018 AC_MSG_RESULT(no)
12928e80 3019 CPPFLAGS="$CPPFLAGS -I${KRB5ROOT}/include"
aff51935 3020 LDFLAGS="$LDFLAGS -L${KRB5ROOT}/lib"
aff51935 3021 AC_MSG_CHECKING(whether we are using Heimdal)
3022 AC_TRY_COMPILE([ #include <krb5.h> ],
3023 [ char *tmp = heimdal_version; ],
3024 [ AC_MSG_RESULT(yes)
3025 AC_DEFINE(HEIMDAL)
41707f74 3026 K5LIBS="-lkrb5 -ldes"
3027 K5LIBS="$K5LIBS -lcom_err -lasn1"
82f4e93d 3028 AC_CHECK_LIB(roken, net_write,
41707f74 3029 [K5LIBS="$K5LIBS -lroken"])
aff51935 3030 ],
3031 [ AC_MSG_RESULT(no)
3032 K5LIBS="-lkrb5 -lk5crypto -lcom_err"
3033 ]
3034 )
4e00038c 3035 AC_SEARCH_LIBS(dn_expand, resolv)
12928e80 3036
749560dd 3037 AC_CHECK_LIB(gssapi,gss_init_sec_context,
3038 [ AC_DEFINE(GSSAPI)
3039 K5LIBS="-lgssapi $K5LIBS" ],
3040 [ AC_CHECK_LIB(gssapi_krb5,gss_init_sec_context,
3041 [ AC_DEFINE(GSSAPI)
aff51935 3042 K5LIBS="-lgssapi_krb5 $K5LIBS" ],
749560dd 3043 AC_MSG_WARN([Cannot find any suitable gss-api library - build may fail]),
3044 $K5LIBS)
3045 ],
3046 $K5LIBS)
82f4e93d 3047
749560dd 3048 AC_CHECK_HEADER(gssapi.h, ,
3049 [ unset ac_cv_header_gssapi_h
aff51935 3050 CPPFLAGS="$CPPFLAGS -I${KRB5ROOT}/include/gssapi"
749560dd 3051 AC_CHECK_HEADERS(gssapi.h, ,
3052 AC_MSG_WARN([Cannot find any suitable gss-api header - build may fail])
aff51935 3053 )
749560dd 3054 ]
3055 )
3056
3057 oldCPP="$CPPFLAGS"
3058 CPPFLAGS="$CPPFLAGS -I${KRB5ROOT}/include/gssapi"
3059 AC_CHECK_HEADER(gssapi_krb5.h, ,
3060 [ CPPFLAGS="$oldCPP" ])
3061
aff51935 3062 fi
5585c441 3063 if test ! -z "$need_dash_r" ; then
3064 LDFLAGS="$LDFLAGS -R${KRB5ROOT}/lib"
3065 fi
3066 if test ! -z "$blibpath" ; then
3067 blibpath="$blibpath:${KRB5ROOT}/lib"
3068 fi
071970fb 3069
f5555364 3070 AC_CHECK_HEADERS(gssapi.h gssapi/gssapi.h)
3071 AC_CHECK_HEADERS(gssapi_krb5.h gssapi/gssapi_krb5.h)
3072 AC_CHECK_HEADERS(gssapi_generic.h gssapi/gssapi_generic.h)
071970fb 3073
f5555364 3074 LIBS="$LIBS $K5LIBS"
3466e002 3075 AC_SEARCH_LIBS(k_hasafs, kafs, AC_DEFINE(USE_AFS, 1,
3076 [Define this if you want to use libkafs' AFS support]))
f5555364 3077 fi
071970fb 3078 ]
12928e80 3079)
b5b68128 3080
a0391976 3081# Looking for programs, paths and files
a0391976 3082
ecac8ee5 3083PRIVSEP_PATH=/var/empty
3084AC_ARG_WITH(privsep-path,
cda1ebcb 3085 [ --with-privsep-path=xxx Path for privilege separation chroot (default=/var/empty)],
ecac8ee5 3086 [
6cf0200f 3087 if test -n "$withval" && test "x$withval" != "xno" && \
3088 test "x${withval}" != "xyes"; then
ecac8ee5 3089 PRIVSEP_PATH=$withval
3090 fi
3091 ]
3092)
3093AC_SUBST(PRIVSEP_PATH)
3094
a0391976 3095AC_ARG_WITH(xauth,
3096 [ --with-xauth=PATH Specify path to xauth program ],
3097 [
6cf0200f 3098 if test -n "$withval" && test "x$withval" != "xno" && \
3099 test "x${withval}" != "xyes"; then
cbd7492e 3100 xauth_path=$withval
a0391976 3101 fi
3102 ],
3103 [
2bf42e4a 3104 TestPath="$PATH"
3105 TestPath="${TestPath}${PATH_SEPARATOR}/usr/X/bin"
3106 TestPath="${TestPath}${PATH_SEPARATOR}/usr/bin/X11"
3107 TestPath="${TestPath}${PATH_SEPARATOR}/usr/X11R6/bin"
3108 TestPath="${TestPath}${PATH_SEPARATOR}/usr/openwin/bin"
3109 AC_PATH_PROG(xauth_path, xauth, , $TestPath)
e5fe9a1f 3110 if (test ! -z "$xauth_path" && test -x "/usr/openwin/bin/xauth") ; then
a0391976 3111 xauth_path="/usr/openwin/bin/xauth"
3112 fi
3113 ]
3114)
3115
65a4b4af 3116STRIP_OPT=-s
3117AC_ARG_ENABLE(strip,
3118 [ --disable-strip Disable calling strip(1) on install],
3119 [
3120 if test "x$enableval" = "xno" ; then
3121 STRIP_OPT=
3122 fi
3123 ]
3124)
3125AC_SUBST(STRIP_OPT)
3126
b3ec54b4 3127if test -z "$xauth_path" ; then
3128 XAUTH_PATH="undefined"
3129 AC_SUBST(XAUTH_PATH)
3130else
3466e002 3131 AC_DEFINE_UNQUOTED(XAUTH_PATH, "$xauth_path",
3132 [Define if xauth is found in your path])
b3ec54b4 3133 XAUTH_PATH=$xauth_path
3134 AC_SUBST(XAUTH_PATH)
a0391976 3135fi
a0391976 3136
3137# Check for mail directory (last resort if we cannot get it from headers)
3138if test ! -z "$MAIL" ; then
3139 maildir=`dirname $MAIL`
3466e002 3140 AC_DEFINE_UNQUOTED(MAIL_DIRECTORY, "$maildir",
3141 [Set this to your mail directory if you don't have maillock.h])
a0391976 3142fi
3143
479cece8 3144if test ! -z "$cross_compiling" && test "x$cross_compiling" = "xyes"; then
1a01a50c 3145 AC_MSG_WARN([cross compiling: Disabling /dev/ptmx test])
3146 disable_ptmx_check=yes
3147fi
a0391976 3148if test -z "$no_dev_ptmx" ; then
6e879cb4 3149 if test "x$disable_ptmx_check" != "xyes" ; then
aff51935 3150 AC_CHECK_FILE("/dev/ptmx",
6e879cb4 3151 [
3466e002 3152 AC_DEFINE_UNQUOTED(HAVE_DEV_PTMX, 1,
3153 [Define if you have /dev/ptmx])
6e879cb4 3154 have_dev_ptmx=1
3155 ]
3156 )
3157 fi
3276571c 3158fi
1a01a50c 3159
479cece8 3160if test ! -z "$cross_compiling" && test "x$cross_compiling" != "xyes"; then
1a01a50c 3161 AC_CHECK_FILE("/dev/ptc",
3162 [
3466e002 3163 AC_DEFINE_UNQUOTED(HAVE_DEV_PTS_AND_PTC, 1,
3164 [Define if you have /dev/ptc])
1a01a50c 3165 have_dev_ptc=1
3166 ]
3167 )
3168else
3169 AC_MSG_WARN([cross compiling: Disabling /dev/ptc test])
3170fi
3276571c 3171
a0391976 3172# Options from here on. Some of these are preset by platform above
fdf6b7aa 3173AC_ARG_WITH(mantype,
5d97cfbf 3174 [ --with-mantype=man|cat|doc Set man page type],
c54a6257 3175 [
5d97cfbf 3176 case "$withval" in
3177 man|cat|doc)
3178 MANTYPE=$withval
3179 ;;
3180 *)
3181 AC_MSG_ERROR(invalid man type: $withval)
3182 ;;
3183 esac
c54a6257 3184 ]
3185)
e0c4d3ac 3186if test -z "$MANTYPE"; then
2bf42e4a 3187 TestPath="/usr/bin${PATH_SEPARATOR}/usr/ucb"
3188 AC_PATH_PROGS(NROFF, nroff awf, /bin/false, $TestPath)
e0c4d3ac 3189 if ${NROFF} -mdoc ${srcdir}/ssh.1 >/dev/null 2>&1; then
3190 MANTYPE=doc
3191 elif ${NROFF} -man ${srcdir}/ssh.1 >/dev/null 2>&1; then
3192 MANTYPE=man
3193 else
3194 MANTYPE=cat
3195 fi
3196fi
c54a6257 3197AC_SUBST(MANTYPE)
e0c4d3ac 3198if test "$MANTYPE" = "doc"; then
3199 mansubdir=man;
3200else
3201 mansubdir=$MANTYPE;
3202fi
3203AC_SUBST(mansubdir)
0bc5b6fb 3204
a0391976 3205# Check whether to enable MD5 passwords
aff51935 3206MD5_MSG="no"
2ddcfdf3 3207AC_ARG_WITH(md5-passwords,
caf3bc51 3208 [ --with-md5-passwords Enable use of MD5 passwords],
0bc5b6fb 3209 [
bcf36c78 3210 if test "x$withval" != "xno" ; then
3466e002 3211 AC_DEFINE(HAVE_MD5_PASSWORDS, 1,
3212 [Define if you want to allow MD5 passwords])
aff51935 3213 MD5_MSG="yes"
0bc5b6fb 3214 fi
3215 ]
caf3bc51 3216)
3217
a0391976 3218# Whether to disable shadow password support
a7effaac 3219AC_ARG_WITH(shadow,
3220 [ --without-shadow Disable shadow password support],
3221 [
82f4e93d 3222 if test "x$withval" = "xno" ; then
a7effaac 3223 AC_DEFINE(DISABLE_SHADOW)
4cb5ffa0 3224 disable_shadow=yes
a7effaac 3225 fi
3226 ]
3227)
3228
4cb5ffa0 3229if test -z "$disable_shadow" ; then
3230 AC_MSG_CHECKING([if the systems has expire shadow information])
3231 AC_TRY_COMPILE(
3232 [
3233#include <sys/types.h>
3234#include <shadow.h>
3235 struct spwd sp;
3236 ],[ sp.sp_expire = sp.sp_lstchg = sp.sp_inact = 0; ],
3237 [ sp_expire_available=yes ], []
3238 )
3239
3240 if test "x$sp_expire_available" = "xyes" ; then
3241 AC_MSG_RESULT(yes)
3466e002 3242 AC_DEFINE(HAS_SHADOW_EXPIRE, 1,
3243 [Define if you want to use shadow password expire field])
4cb5ffa0 3244 else
3245 AC_MSG_RESULT(no)
3246 fi
3247fi
3248
a0391976 3249# Use ip address instead of hostname in $DISPLAY
44839801 3250if test ! -z "$IPADDR_IN_DISPLAY" ; then
3251 DISPLAY_HACK_MSG="yes"
3466e002 3252 AC_DEFINE(IPADDR_IN_DISPLAY, 1,
3253 [Define if you need to use IP address
3254 instead of hostname in $DISPLAY])
44839801 3255else
aff51935 3256 DISPLAY_HACK_MSG="no"
44839801 3257 AC_ARG_WITH(ipaddr-display,
3258 [ --with-ipaddr-display Use ip address instead of hostname in \$DISPLAY],
3259 [
82f4e93d 3260 if test "x$withval" != "xno" ; then
44839801 3261 AC_DEFINE(IPADDR_IN_DISPLAY)
aff51935 3262 DISPLAY_HACK_MSG="yes"
44839801 3263 fi
3264 ]
3265 )
3266fi
a7effaac 3267
95b99395 3268# check for /etc/default/login and use it if present.
daa41e62 3269AC_ARG_ENABLE(etc-default-login,
6ff3d0dc 3270 [ --disable-etc-default-login Disable using PATH from /etc/default/login [no]],
694d0cef 3271 [ if test "x$enableval" = "xno"; then
3272 AC_MSG_NOTICE([/etc/default/login handling disabled])
3273 etc_default_login=no
3274 else
3275 etc_default_login=yes
3276 fi ],
b0e7249f 3277 [ if test ! -z "$cross_compiling" && test "x$cross_compiling" = "xyes";
3278 then
3279 AC_MSG_WARN([cross compiling: not checking /etc/default/login])
3280 etc_default_login=no
3281 else
3282 etc_default_login=yes
3283 fi ]
694d0cef 3284)
95b99395 3285
694d0cef 3286if test "x$etc_default_login" != "xno"; then
3287 AC_CHECK_FILE("/etc/default/login",
3288 [ external_path_file=/etc/default/login ])
b0e7249f 3289 if test "x$external_path_file" = "x/etc/default/login"; then
3466e002 3290 AC_DEFINE(HAVE_ETC_DEFAULT_LOGIN, 1,
3291 [Define if your system has /etc/default/login])
1a01a50c 3292 fi
694d0cef 3293fi
95b99395 3294
8d184c09 3295dnl BSD systems use /etc/login.conf so --with-default-path= has no effect
4b492aab 3296if test $ac_cv_func_login_getcapbool = "yes" && \
3297 test $ac_cv_header_login_cap_h = "yes" ; then
95b99395 3298 external_path_file=/etc/login.conf
8d184c09 3299fi
95b99395 3300
a0391976 3301# Whether to mess with the default path
aff51935 3302SERVER_PATH_MSG="(default)"
c43d69a9 3303AC_ARG_WITH(default-path,
75817f90 3304 [ --with-default-path= Specify default \$PATH environment for server],
cb807f40 3305 [
95b99395 3306 if test "x$external_path_file" = "x/etc/login.conf" ; then
8d184c09 3307 AC_MSG_WARN([
3308--with-default-path=PATH has no effect on this system.
3309Edit /etc/login.conf instead.])
82f4e93d 3310 elif test "x$withval" != "xno" ; then
89bbd457 3311 if test ! -z "$external_path_file" ; then
95b99395 3312 AC_MSG_WARN([
3313--with-default-path=PATH will only be used if PATH is not defined in
3314$external_path_file .])
3315 fi
b2d818e6 3316 user_path="$withval"
aff51935 3317 SERVER_PATH_MSG="$withval"
cb807f40 3318 fi
b2d818e6 3319 ],
95b99395 3320 [ if test "x$external_path_file" = "x/etc/login.conf" ; then
3321 AC_MSG_WARN([Make sure the path to scp is in /etc/login.conf])
8d184c09 3322 else
89bbd457 3323 if test ! -z "$external_path_file" ; then
95b99395 3324 AC_MSG_WARN([
3325If PATH is defined in $external_path_file, ensure the path to scp is included,
3326otherwise scp will not work.])
3327 fi
b0e7249f 3328 AC_RUN_IFELSE(
3329 [AC_LANG_SOURCE([[
b2d818e6 3330/* find out what STDPATH is */
3331#include <stdio.h>
b2d818e6 3332#ifdef HAVE_PATHS_H
3333# include <paths.h>
3334#endif
3335#ifndef _PATH_STDPATH
d9a4e55b 3336# ifdef _PATH_USERPATH /* Irix */
3337# define _PATH_STDPATH _PATH_USERPATH
3338# else
3339# define _PATH_STDPATH "/usr/bin:/bin:/usr/sbin:/sbin"
3340# endif
b2d818e6 3341#endif
3342#include <sys/types.h>
3343#include <sys/stat.h>
3344#include <fcntl.h>
3345#define DATA "conftest.stdpath"
3346
3347main()
3348{
3349 FILE *fd;
3350 int rc;
82f4e93d 3351
b2d818e6 3352 fd = fopen(DATA,"w");
3353 if(fd == NULL)
3354 exit(1);
82f4e93d 3355
b2d818e6 3356 if ((rc = fprintf(fd,"%s", _PATH_STDPATH)) < 0)
3357 exit(1);
3358
3359 exit(0);
3360}
b0e7249f 3361 ]])],
3362 [ user_path=`cat conftest.stdpath` ],
b2d818e6 3363 [ user_path="/usr/bin:/bin:/usr/sbin:/sbin" ],
3364 [ user_path="/usr/bin:/bin:/usr/sbin:/sbin" ]
3365 )
3366# make sure $bindir is in USER_PATH so scp will work
3367 t_bindir=`eval echo ${bindir}`
3368 case $t_bindir in
3369 NONE/*) t_bindir=`echo $t_bindir | sed "s~NONE~$prefix~"` ;;
3370 esac
3371 case $t_bindir in
3372 NONE/*) t_bindir=`echo $t_bindir | sed "s~NONE~$ac_default_prefix~"` ;;
3373 esac
3374 echo $user_path | grep ":$t_bindir" > /dev/null 2>&1
3375 if test $? -ne 0 ; then
3376 echo $user_path | grep "^$t_bindir" > /dev/null 2>&1
3377 if test $? -ne 0 ; then
3378 user_path=$user_path:$t_bindir
3379 AC_MSG_RESULT(Adding $t_bindir to USER_PATH so scp will work)
3380 fi
3381 fi
8d184c09 3382 fi ]
cb807f40 3383)
95b99395 3384if test "x$external_path_file" != "x/etc/login.conf" ; then
3466e002 3385 AC_DEFINE_UNQUOTED(USER_PATH, "$user_path", [Specify default $PATH])
8d184c09 3386 AC_SUBST(user_path)
3387fi
cb807f40 3388
06617857 3389# Set superuser path separately to user path
06617857 3390AC_ARG_WITH(superuser-path,
3391 [ --with-superuser-path= Specify different path for super-user],
3392 [
6cf0200f 3393 if test -n "$withval" && test "x$withval" != "xno" && \
3394 test "x${withval}" != "xyes"; then
3466e002 3395 AC_DEFINE_UNQUOTED(SUPERUSER_PATH, "$withval",
3396 [Define if you want a different $PATH
3397 for the superuser])
06617857 3398 superuser_path=$withval
3399 fi
3400 ]
3401)
3402
3403
58d100bf 3404AC_MSG_CHECKING([if we need to convert IPv4 in IPv6-mapped addresses])
aff51935 3405IPV4_IN6_HACK_MSG="no"
80faa19f 3406AC_ARG_WITH(4in6,
3407 [ --with-4in6 Check for and convert IPv4 in IPv6 mapped addresses],
3408 [
3409 if test "x$withval" != "xno" ; then
3410 AC_MSG_RESULT(yes)
3466e002 3411 AC_DEFINE(IPV4_IN_IPV6, 1,
3412 [Detect IPv4 in IPv6 mapped addresses
3413 and treat as IPv4])
aff51935 3414 IPV4_IN6_HACK_MSG="yes"
80faa19f 3415 else
3416 AC_MSG_RESULT(no)
3417 fi
3418 ],[
3419 if test "x$inet6_default_4in6" = "xyes"; then
3420 AC_MSG_RESULT([yes (default)])
3421 AC_DEFINE(IPV4_IN_IPV6)
aff51935 3422 IPV4_IN6_HACK_MSG="yes"
80faa19f 3423 else
3424 AC_MSG_RESULT([no (default)])
3425 fi
3426 ]
3427)
3428
af774732 3429# Whether to enable BSD auth support
f1b0ecc3 3430BSD_AUTH_MSG=no
af774732 3431AC_ARG_WITH(bsd-auth,
3432 [ --with-bsd-auth Enable BSD auth support],
3433 [
82f4e93d 3434 if test "x$withval" != "xno" ; then
3466e002 3435 AC_DEFINE(BSD_AUTH, 1,
3436 [Define if you have BSD auth support])
f1b0ecc3 3437 BSD_AUTH_MSG=yes
af774732 3438 fi
3439 ]
3440)
3441
a0391976 3442# Where to place sshd.pid
19d9ac2a 3443piddir=/var/run
81dadca3 3444# make sure the directory exists
82f4e93d 3445if test ! -d $piddir ; then
81dadca3 3446 piddir=`eval echo ${sysconfdir}`
3447 case $piddir in
aff51935 3448 NONE/*) piddir=`echo $piddir | sed "s~NONE~$ac_default_prefix~"` ;;
81dadca3 3449 esac
3450fi
3451
47e45e44 3452AC_ARG_WITH(pid-dir,
3453 [ --with-pid-dir=PATH Specify location of ssh.pid file],
3454 [
6cf0200f 3455 if test -n "$withval" && test "x$withval" != "xno" && \
3456 test "x${withval}" != "xyes"; then
19d9ac2a 3457 piddir=$withval
82f4e93d 3458 if test ! -d $piddir ; then
81dadca3 3459 AC_MSG_WARN([** no $piddir directory on this system **])
3460 fi
47e45e44 3461 fi
3462 ]
3463)
b7a87eea 3464
3466e002 3465AC_DEFINE_UNQUOTED(_PATH_SSH_PIDDIR, "$piddir", [Specify location of ssh.pid])
19d9ac2a 3466AC_SUBST(piddir)
47e45e44 3467
1d7b9b20 3468dnl allow user to disable some login recording features
3469AC_ARG_ENABLE(lastlog,
bfd550a2 3470 [ --disable-lastlog disable use of lastlog even if detected [no]],
ddb154b3 3471 [
3472 if test "x$enableval" = "xno" ; then
3473 AC_DEFINE(DISABLE_LASTLOG)
3474 fi
3475 ]
1d7b9b20 3476)
3477AC_ARG_ENABLE(utmp,
bfd550a2 3478 [ --disable-utmp disable use of utmp even if detected [no]],
ddb154b3 3479 [
3480 if test "x$enableval" = "xno" ; then
3481 AC_DEFINE(DISABLE_UTMP)
3482 fi
3483 ]
1d7b9b20 3484)
3485AC_ARG_ENABLE(utmpx,
bfd550a2 3486 [ --disable-utmpx disable use of utmpx even if detected [no]],
ddb154b3 3487 [
3488 if test "x$enableval" = "xno" ; then
3466e002 3489 AC_DEFINE(DISABLE_UTMPX, 1,
3490 [Define if you don't want to use utmpx])
ddb154b3 3491 fi
3492 ]
1d7b9b20 3493)
3494AC_ARG_ENABLE(wtmp,
bfd550a2 3495 [ --disable-wtmp disable use of wtmp even if detected [no]],
ddb154b3 3496 [
3497 if test "x$enableval" = "xno" ; then
3498 AC_DEFINE(DISABLE_WTMP)
3499 fi
3500 ]
1d7b9b20 3501)
3502AC_ARG_ENABLE(wtmpx,
bfd550a2 3503 [ --disable-wtmpx disable use of wtmpx even if detected [no]],
ddb154b3 3504 [
3505 if test "x$enableval" = "xno" ; then
3466e002 3506 AC_DEFINE(DISABLE_WTMPX, 1,
3507 [Define if you don't want to use wtmpx])
ddb154b3 3508 fi
3509 ]
1d7b9b20 3510)
3511AC_ARG_ENABLE(libutil,
bfd550a2 3512 [ --disable-libutil disable use of libutil (login() etc.) [no]],
ddb154b3 3513 [
3514 if test "x$enableval" = "xno" ; then
3515 AC_DEFINE(DISABLE_LOGIN)
3516 fi
3517 ]
1d7b9b20 3518)
3519AC_ARG_ENABLE(pututline,
bfd550a2 3520 [ --disable-pututline disable use of pututline() etc. ([uw]tmp) [no]],
ddb154b3 3521 [
3522 if test "x$enableval" = "xno" ; then
3466e002 3523 AC_DEFINE(DISABLE_PUTUTLINE, 1,
3524 [Define if you don't want to use pututline()
3525 etc. to write [uw]tmp])
ddb154b3 3526 fi
3527 ]
1d7b9b20 3528)
3529AC_ARG_ENABLE(pututxline,
bfd550a2 3530 [ --disable-pututxline disable use of pututxline() etc. ([uw]tmpx) [no]],
ddb154b3 3531 [
3532 if test "x$enableval" = "xno" ; then
3466e002 3533 AC_DEFINE(DISABLE_PUTUTXLINE, 1,
3534 [Define if you don't want to use pututxline()
3535 etc. to write [uw]tmpx])
ddb154b3 3536 fi
3537 ]
1d7b9b20 3538)
3539AC_ARG_WITH(lastlog,
bfd550a2 3540 [ --with-lastlog=FILE|DIR specify lastlog location [common locations]],
8c89dd2b 3541 [
82f4e93d 3542 if test "x$withval" = "xno" ; then
8c89dd2b 3543 AC_DEFINE(DISABLE_LASTLOG)
6cf0200f 3544 elif test -n "$withval" && test "x${withval}" != "xyes"; then
8c89dd2b 3545 conf_lastlog_location=$withval
3546 fi
3547 ]
3548)
1d7b9b20 3549
3550dnl lastlog, [uw]tmpx? detection
3551dnl NOTE: set the paths in the platform section to avoid the
3552dnl need for command-line parameters
3553dnl lastlog and [uw]tmp are subject to a file search if all else fails
3554
3555dnl lastlog detection
3556dnl NOTE: the code itself will detect if lastlog is a directory
3557AC_MSG_CHECKING([if your system defines LASTLOG_FILE])
3558AC_TRY_COMPILE([
3559#include <sys/types.h>
3560#include <utmp.h>
3561#ifdef HAVE_LASTLOG_H
3562# include <lastlog.h>
3563#endif
d7c0f3d5 3564#ifdef HAVE_PATHS_H
1d7b9b20 3565# include <paths.h>
41cb4569 3566#endif
3567#ifdef HAVE_LOGIN_H
3568# include <login.h>
1d7b9b20 3569#endif
3570 ],
3571 [ char *lastlog = LASTLOG_FILE; ],
3572 [ AC_MSG_RESULT(yes) ],
d7c0f3d5 3573 [
3574 AC_MSG_RESULT(no)
3575 AC_MSG_CHECKING([if your system defines _PATH_LASTLOG])
3576 AC_TRY_COMPILE([
3577#include <sys/types.h>
3578#include <utmp.h>
3579#ifdef HAVE_LASTLOG_H
3580# include <lastlog.h>
3581#endif
3582#ifdef HAVE_PATHS_H
3583# include <paths.h>
3584#endif
3585 ],
3586 [ char *lastlog = _PATH_LASTLOG; ],
3587 [ AC_MSG_RESULT(yes) ],
3588 [
f282b668 3589 AC_MSG_RESULT(no)
d7c0f3d5 3590 system_lastlog_path=no
3591 ])
3592 ]
1d7b9b20 3593)
d7c0f3d5 3594
1d7b9b20 3595if test -z "$conf_lastlog_location"; then
3596 if test x"$system_lastlog_path" = x"no" ; then
3597 for f in /var/log/lastlog /usr/adm/lastlog /var/adm/lastlog /etc/security/lastlog ; do
e5fe9a1f 3598 if (test -d "$f" || test -f "$f") ; then
1d7b9b20 3599 conf_lastlog_location=$f
3600 fi
3601 done
3602 if test -z "$conf_lastlog_location"; then
f8119cef 3603 AC_MSG_WARN([** Cannot find lastlog **])
3604 dnl Don't define DISABLE_LASTLOG - that means we don't try wtmp/wtmpx
1d7b9b20 3605 fi
3606 fi
3607fi
3608
3609if test -n "$conf_lastlog_location"; then
3466e002 3610 AC_DEFINE_UNQUOTED(CONF_LASTLOG_FILE, "$conf_lastlog_location",
3611 [Define if you want to specify the path to your lastlog file])
82f4e93d 3612fi
1d7b9b20 3613
3614dnl utmp detection
3615AC_MSG_CHECKING([if your system defines UTMP_FILE])
3616AC_TRY_COMPILE([
3617#include <sys/types.h>
3618#include <utmp.h>
d7c0f3d5 3619#ifdef HAVE_PATHS_H
1d7b9b20 3620# include <paths.h>
3621#endif
3622 ],
3623 [ char *utmp = UTMP_FILE; ],
3624 [ AC_MSG_RESULT(yes) ],
3625 [ AC_MSG_RESULT(no)
3626 system_utmp_path=no ]
3627)
3628if test -z "$conf_utmp_location"; then
3629 if test x"$system_utmp_path" = x"no" ; then
3630 for f in /etc/utmp /usr/adm/utmp /var/run/utmp; do
3631 if test -f $f ; then
3632 conf_utmp_location=$f
3633 fi
3634 done
3635 if test -z "$conf_utmp_location"; then
3636 AC_DEFINE(DISABLE_UTMP)
3637 fi
3638 fi
3639fi
3640if test -n "$conf_utmp_location"; then
3466e002 3641 AC_DEFINE_UNQUOTED(CONF_UTMP_FILE, "$conf_utmp_location",
3642 [Define if you want to specify the path to your utmp file])
82f4e93d 3643fi
1d7b9b20 3644
3645dnl wtmp detection
3646AC_MSG_CHECKING([if your system defines WTMP_FILE])
3647AC_TRY_COMPILE([
3648#include <sys/types.h>
3649#include <utmp.h>
d7c0f3d5 3650#ifdef HAVE_PATHS_H
1d7b9b20 3651# include <paths.h>
3652#endif
3653 ],
3654 [ char *wtmp = WTMP_FILE; ],
3655 [ AC_MSG_RESULT(yes) ],
3656 [ AC_MSG_RESULT(no)
3657 system_wtmp_path=no ]
3658)
3659if test -z "$conf_wtmp_location"; then
3660 if test x"$system_wtmp_path" = x"no" ; then
3661 for f in /usr/adm/wtmp /var/log/wtmp; do
3662 if test -f $f ; then
3663 conf_wtmp_location=$f
3664 fi
3665 done
3666 if test -z "$conf_wtmp_location"; then
3667 AC_DEFINE(DISABLE_WTMP)
3668 fi
3669 fi
3670fi
3671if test -n "$conf_wtmp_location"; then
3466e002 3672 AC_DEFINE_UNQUOTED(CONF_WTMP_FILE, "$conf_wtmp_location",
3673 [Define if you want to specify the path to your wtmp file])
82f4e93d 3674fi
1d7b9b20 3675
3676
3677dnl utmpx detection - I don't know any system so perverse as to require
3678dnl utmpx, but not define UTMPX_FILE (ditto wtmpx.) No doubt it's out
3679dnl there, though.
3680AC_MSG_CHECKING([if your system defines UTMPX_FILE])
3681AC_TRY_COMPILE([
3682#include <sys/types.h>
3683#include <utmp.h>
3684#ifdef HAVE_UTMPX_H
3685#include <utmpx.h>
3686#endif
d7c0f3d5 3687#ifdef HAVE_PATHS_H
1d7b9b20 3688# include <paths.h>
3689#endif
3690 ],
3691 [ char *utmpx = UTMPX_FILE; ],
3692 [ AC_MSG_RESULT(yes) ],
3693 [ AC_MSG_RESULT(no)
3694 system_utmpx_path=no ]
3695)
3696if test -z "$conf_utmpx_location"; then
3697 if test x"$system_utmpx_path" = x"no" ; then
3698 AC_DEFINE(DISABLE_UTMPX)
3699 fi
3700else
3466e002 3701 AC_DEFINE_UNQUOTED(CONF_UTMPX_FILE, "$conf_utmpx_location",
3702 [Define if you want to specify the path to your utmpx file])
82f4e93d 3703fi
1d7b9b20 3704
3705dnl wtmpx detection
3706AC_MSG_CHECKING([if your system defines WTMPX_FILE])
3707AC_TRY_COMPILE([
3708#include <sys/types.h>
3709#include <utmp.h>
3710#ifdef HAVE_UTMPX_H
3711#include <utmpx.h>
3712#endif
d7c0f3d5 3713#ifdef HAVE_PATHS_H
1d7b9b20 3714# include <paths.h>
3715#endif
3716 ],
3717 [ char *wtmpx = WTMPX_FILE; ],
3718 [ AC_MSG_RESULT(yes) ],
3719 [ AC_MSG_RESULT(no)
3720 system_wtmpx_path=no ]
3721)
3722if test -z "$conf_wtmpx_location"; then
3723 if test x"$system_wtmpx_path" = x"no" ; then
3724 AC_DEFINE(DISABLE_WTMPX)
3725 fi
3726else
3466e002 3727 AC_DEFINE_UNQUOTED(CONF_WTMPX_FILE, "$conf_wtmpx_location",
3728 [Define if you want to specify the path to your wtmpx file])
82f4e93d 3729fi
1d7b9b20 3730
b7a87eea 3731
bd499f9e 3732if test ! -z "$blibpath" ; then
68ece370 3733 LDFLAGS="$LDFLAGS $blibflags$blibpath"
3734 AC_MSG_WARN([Please check and edit blibpath in LDFLAGS in Makefile])
bd499f9e 3735fi
3736
ddceb1c8 3737dnl remove pam and dl because they are in $LIBPAM
3738if test "$PAM_MSG" = yes ; then
98f2d9d5 3739 LIBS=`echo $LIBS | sed 's/-lpam //'`
3740fi
3741if test "$ac_cv_lib_pam_pam_set_item" = yes ; then
3742 LIBS=`echo $LIBS | sed 's/-ldl //'`
ddceb1c8 3743fi
3744
ed89c848 3745dnl Adding -Werror to CFLAGS early prevents configure tests from running.
3746dnl Add now.
3747CFLAGS="$CFLAGS $werror_flags"
3748
3c62e7eb 3749AC_EXEEXT
d7cfdd7c 3750AC_CONFIG_FILES([Makefile buildpkg.sh opensshd.init openbsd-compat/Makefile \
46096a5b 3751 openbsd-compat/regress/Makefile scard/Makefile ssh_prng_cmds survey.sh])
98a7c37b 3752AC_OUTPUT
d3083fbd 3753
cbd7492e 3754# Print summary of options
3755
cbd7492e 3756# Someone please show me a better way :)
3757A=`eval echo ${prefix}` ; A=`eval echo ${A}`
3758B=`eval echo ${bindir}` ; B=`eval echo ${B}`
3759C=`eval echo ${sbindir}` ; C=`eval echo ${C}`
3760D=`eval echo ${sysconfdir}` ; D=`eval echo ${D}`
f5665f6f 3761E=`eval echo ${libexecdir}/ssh-askpass` ; E=`eval echo ${E}`
e0c4d3ac 3762F=`eval echo ${mandir}/${mansubdir}X` ; F=`eval echo ${F}`
cbd7492e 3763G=`eval echo ${piddir}` ; G=`eval echo ${G}`
ecac8ee5 3764H=`eval echo ${PRIVSEP_PATH}` ; H=`eval echo ${H}`
3765I=`eval echo ${user_path}` ; I=`eval echo ${I}`
3766J=`eval echo ${superuser_path}` ; J=`eval echo ${J}`
cbd7492e 3767
3768echo ""
26de7942 3769echo "OpenSSH has been configured with the following options:"
ecac8ee5 3770echo " User binaries: $B"
3771echo " System binaries: $C"
3772echo " Configuration files: $D"
3773echo " Askpass program: $E"
3774echo " Manual pages: $F"
3775echo " PID file: $G"
3776echo " Privilege separation chroot path: $H"
95b99395 3777if test "x$external_path_file" = "x/etc/login.conf" ; then
3778echo " At runtime, sshd will use the path defined in $external_path_file"
3779echo " Make sure the path to scp is present, otherwise scp will not work"
8d184c09 3780else
ecac8ee5 3781echo " sshd default user PATH: $I"
89bbd457 3782 if test ! -z "$external_path_file"; then
95b99395 3783echo " (If PATH is set in $external_path_file it will be used instead. If"
3784echo " used, ensure the path to scp is present, otherwise scp will not work.)"
3785 fi
8d184c09 3786fi
06617857 3787if test ! -z "$superuser_path" ; then
ecac8ee5 3788echo " sshd superuser user PATH: $J"
3789fi
3790echo " Manpage format: $MANTYPE"
3e05e934 3791echo " PAM support: $PAM_MSG"
ecac8ee5 3792echo " KerberosV support: $KRB5_MSG"
3793echo " Smartcard support: $SCARD_MSG"
ecac8ee5 3794echo " S/KEY support: $SKEY_MSG"
3795echo " TCP Wrappers support: $TCPW_MSG"
3796echo " MD5 password support: $MD5_MSG"
59031773 3797echo " libedit support: $LIBEDIT_MSG"
3deb1408 3798echo " IP address in \$DISPLAY hack: $DISPLAY_HACK_MSG"
ecac8ee5 3799echo " Translate v4 in v6 hack: $IPV4_IN6_HACK_MSG"
3800echo " BSD Auth support: $BSD_AUTH_MSG"
3801echo " Random number source: $RAND_MSG"
f1b0ecc3 3802if test ! -z "$USE_RAND_HELPER" ; then
ecac8ee5 3803echo " ssh-rand-helper collects from: $RAND_HELPER_MSG"
af774732 3804fi
3805
cbd7492e 3806echo ""
3807
0c2fb82f 3808echo " Host: ${host}"
3809echo " Compiler: ${CC}"
3810echo " Compiler flags: ${CFLAGS}"
3811echo "Preprocessor flags: ${CPPFLAGS}"
3812echo " Linker flags: ${LDFLAGS}"
ddceb1c8 3813echo " Libraries: ${LIBWRAP} ${LIBPAM} ${LIBS}"
cbd7492e 3814
3815echo ""
3816
9cefe228 3817if test "x$MAKE_PACKAGE_SUPPORTED" = "xyes" ; then
b3146b5f 3818 echo "SVR4 style packages are supported with \"make package\""
3819 echo ""
9cefe228 3820fi
3821
adeebd37 3822if test "x$PAM_MSG" = "xyes" ; then
f1b0ecc3 3823 echo "PAM is enabled. You may need to install a PAM control file "
3824 echo "for sshd, otherwise password authentication may fail. "
aff51935 3825 echo "Example PAM control files can be found in the contrib/ "
f1b0ecc3 3826 echo "subdirectory"
adeebd37 3827 echo ""
3828fi
3829
f1b0ecc3 3830if test ! -z "$RAND_HELPER_CMDHASH" ; then
3831 echo "WARNING: you are using the builtin random number collection "
3832 echo "service. Please read WARNING.RNG and request that your OS "
3833 echo "vendor includes kernel-based random number collection in "
3834 echo "future versions of your OS."
2c523de9 3835 echo ""
3836fi
af774732 3837
2f6f9cff 3838if test ! -z "$NO_PEERCHECK" ; then
3839 echo "WARNING: the operating system that you are using does not "
3840 echo "appear to support either the getpeereid() API nor the "
3841 echo "SO_PEERCRED getsockopt() option. These facilities are used to "
3842 echo "enforce security checks to prevent unauthorised connections to "
3843 echo "ssh-agent. Their absence increases the risk that a malicious "
3844 echo "user can connect to your agent. "
3845 echo ""
3846fi
3847
7b578f7d 3848if test "$AUDIT_MODULE" = "bsm" ; then
3849 echo "WARNING: BSM audit support is currently considered EXPERIMENTAL."
3850 echo "See the Solaris section in README.platform for details."
3851fi
git-cvsimport mirror of OpenSSH
This page took 1.068124 seconds and 5 git commands to generate.