]> andersk Git - openssh.git/blame - configure.ac
andersk / openssh.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
- (tim) [configure.ac] Add AC_REVISION. Add sys/time.h to lastlog.h test
[openssh.git] / configure.ac
CommitLineData
eb5d7ff6 1# $Id$
2b983b95 2#
3# Copyright (c) 1999-2004 Damien Miller
4#
5# Permission to use, copy, modify, and distribute this software for any
6# purpose with or without fee is hereby granted, provided that the above
7# copyright notice and this permission notice appear in all copies.
8#
9# THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
10# WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
11# MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR
12# ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
13# WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
14# ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
15# OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
0b202697 16
76e6410a 17AC_INIT(OpenSSH, Portable, openssh-unix-dev@mindrot.org)
823221b2 18AC_REVISION($Revision$)
98a7c37b 19AC_CONFIG_SRCDIR([ssh.c])
5881cd60 20
21AC_CONFIG_HEADER(config.h)
b14b2ae7 22AC_PROG_CC
a7effaac 23AC_CANONICAL_HOST
cf0c5df5 24AC_C_BIGENDIAN
5881cd60 25
a0391976 26# Checks for programs.
4bbf95fa 27AC_PROG_AWK
4cca272e 28AC_PROG_CPP
5881cd60 29AC_PROG_RANLIB
cf8dd513 30AC_PROG_INSTALL
c9ecc3c7 31AC_PROG_EGREP
bee0a37e 32AC_PATH_PROG(AR, ar)
ddd8c95b 33AC_PATH_PROG(CAT, cat)
34AC_PATH_PROG(KILL, kill)
13dd877b 35AC_PATH_PROGS(PERL, perl5 perl)
c3690df3 36AC_PATH_PROG(SED, sed)
a0f84251 37AC_SUBST(PERL)
ad85db64 38AC_PATH_PROG(ENT, ent)
39AC_SUBST(ENT)
6958bd37 40AC_PATH_PROG(TEST_MINUS_S_SH, bash)
41AC_PATH_PROG(TEST_MINUS_S_SH, ksh)
42AC_PATH_PROG(TEST_MINUS_S_SH, sh)
6193497b 43AC_PATH_PROG(SH, sh)
a3245b92 44AC_SUBST(TEST_SHELL,sh)
f498ed15 45
9cefe228 46dnl for buildpkg.sh
47AC_PATH_PROG(PATH_GROUPADD_PROG, groupadd, groupadd,
48 [/usr/sbin${PATH_SEPARATOR}/etc])
49AC_PATH_PROG(PATH_USERADD_PROG, useradd, useradd,
50 [/usr/sbin${PATH_SEPARATOR}/etc])
51AC_CHECK_PROG(MAKE_PACKAGE_SUPPORTED, pkgmk, yes, no)
eeb27c78 52if test -x /sbin/sh; then
53 AC_SUBST(STARTUP_SCRIPT_SHELL,/sbin/sh)
54else
55 AC_SUBST(STARTUP_SCRIPT_SHELL,/bin/sh)
56fi
9cefe228 57
948fd8b9 58# System features
59AC_SYS_LARGEFILE
60
c193d002 61if test -z "$AR" ; then
62 AC_MSG_ERROR([*** 'ar' missing, please install or fix your \$PATH ***])
63fi
64
2e73a022 65# Use LOGIN_PROGRAM from environment if possible
66if test ! -z "$LOGIN_PROGRAM" ; then
3466e002 67 AC_DEFINE_UNQUOTED(LOGIN_PROGRAM_FALLBACK, "$LOGIN_PROGRAM",
68 [If your header files don't define LOGIN_PROGRAM,
69 then use this (detected) from environment and PATH])
2e73a022 70else
71 # Search for login
72 AC_PATH_PROG(LOGIN_PROGRAM_FALLBACK, login)
73 if test ! -z "$LOGIN_PROGRAM_FALLBACK" ; then
74 AC_DEFINE_UNQUOTED(LOGIN_PROGRAM_FALLBACK, "$LOGIN_PROGRAM_FALLBACK")
75 fi
76fi
77
37656beb 78AC_PATH_PROG(PATH_PASSWD_PROG, passwd)
79if test ! -z "$PATH_PASSWD_PROG" ; then
3466e002 80 AC_DEFINE_UNQUOTED(_PATH_PASSWD_PROG, "$PATH_PASSWD_PROG",
81 [Full path of your "passwd" program])
37656beb 82fi
83
d423d822 84if test -z "$LD" ; then
85 LD=$CC
86fi
87AC_SUBST(LD)
82f4e93d 88
d423d822 89AC_C_INLINE
dfafb2e1 90
91AC_CHECK_DECL(LLONG_MAX, have_llong_max=1, , [#include <limits.h>])
92
aff51935 93if test "$GCC" = "yes" || test "$GCC" = "egcs"; then
af40ca44 94 CFLAGS="$CFLAGS -Wall -Wpointer-arith -Wuninitialized"
eeee8237 95 GCC_VER=`$CC -v 2>&1 | $AWK '/gcc version /{print $3}'`
5fdabf45 96 case $GCC_VER in
97 1.*) ;;
98 2.8* | 2.9*) CFLAGS="$CFLAGS -Wsign-compare" ;;
99 2.*) ;;
dbf07ba2 100 3.*) CFLAGS="$CFLAGS -Wsign-compare" ;;
cd595991 101 4.*) CFLAGS="$CFLAGS -Wsign-compare -Wno-pointer-sign" ;;
102 *) ;;
5fdabf45 103 esac
8a3ff1aa 104
dfafb2e1 105 if test -z "$have_llong_max"; then
106 # retry LLONG_MAX with -std=gnu99, needed on some Linuxes
107 unset ac_cv_have_decl_LLONG_MAX
108 saved_CFLAGS="$CFLAGS"
109 CFLAGS="$CFLAGS -std=gnu99"
110 AC_CHECK_DECL(LLONG_MAX,
111 [have_llong_max=1],
112 [CFLAGS="$saved_CFLAGS"],
113 [#include <limits.h>]
114 )
115 fi
d423d822 116fi
117
e6354014 118AC_ARG_WITH(rpath,
119 [ --without-rpath Disable auto-added -R linker paths],
120 [
82f4e93d 121 if test "x$withval" = "xno" ; then
e6354014 122 need_dash_r=""
123 fi
124 if test "x$withval" = "xyes" ; then
125 need_dash_r=1
126 fi
127 ]
128)
129
a0391976 130# Check for some target-specific stuff
a7effaac 131case "$host" in
9d6b1b96 132*-*-aix*)
aff51935 133 AC_MSG_CHECKING([how to specify blibpath for linker ($LD)])
68ece370 134 if (test -z "$blibpath"); then
0a15d73b 135 blibpath="/usr/lib:/lib"
68ece370 136 fi
137 saved_LDFLAGS="$LDFLAGS"
138 for tryflags in -blibpath: -Wl,-blibpath: -Wl,-rpath, ;do
139 if (test -z "$blibflags"); then
140 LDFLAGS="$saved_LDFLAGS $tryflags$blibpath"
141 AC_TRY_LINK([], [], [blibflags=$tryflags])
142 fi
143 done
144 if (test -z "$blibflags"); then
145 AC_MSG_RESULT(not found)
146 AC_MSG_ERROR([*** must be able to specify blibpath on AIX - check config.log])
147 else
148 AC_MSG_RESULT($blibflags)
bd499f9e 149 fi
68ece370 150 LDFLAGS="$saved_LDFLAGS"
e351e493 151 dnl Check for authenticate. Might be in libs.a on older AIXes
3466e002 152 AC_CHECK_FUNC(authenticate, [AC_DEFINE(WITH_AIXAUTHENTICATE, 1,
153 [Define if you want to enable AIX4's authenticate function])],
0764e748 154 [AC_CHECK_LIB(s,authenticate,
e351e493 155 [ AC_DEFINE(WITH_AIXAUTHENTICATE)
0764e748 156 LIBS="$LIBS -ls"
157 ])
158 ])
ba603e06 159 dnl Check for various auth function declarations in headers.
c85ed8e2 160 AC_CHECK_DECLS([authenticate, loginrestrictions, loginsuccess,
72ad335d 161 passwdexpired, setauthdb], , , [#include <usersec.h>])
e351e493 162 dnl Check if loginfailed is declared and takes 4 arguments (AIX >= 5.2)
ba603e06 163 AC_CHECK_DECLS(loginfailed,
e351e493 164 [AC_MSG_CHECKING(if loginfailed takes 4 arguments)
165 AC_TRY_COMPILE(
f58c0e01 166 [#include <usersec.h>],
e351e493 167 [(void)loginfailed("user","host","tty",0);],
168 [AC_MSG_RESULT(yes)
3466e002 169 AC_DEFINE(AIX_LOGINFAILED_4ARG, 1,
170 [Define if your AIX loginfailed() function
171 takes 4 arguments (AIX >= 5.2)])],
f58c0e01 172 [AC_MSG_RESULT(no)]
e351e493 173 )],
174 [],
175 [#include <usersec.h>]
176 )
2aa3a16c 177 AC_CHECK_FUNCS(setauthdb)
5ccf88cb 178 check_for_aix_broken_getaddrinfo=1
3466e002 179 AC_DEFINE(BROKEN_REALPATH, 1, [Define if you have a broken realpath.])
180 AC_DEFINE(SETEUID_BREAKS_SETUID, 1,
181 [Define if your platform breaks doing a seteuid before a setuid])
182 AC_DEFINE(BROKEN_SETREUID, 1, [Define if your setreuid() is broken])
183 AC_DEFINE(BROKEN_SETREGID, 1, [Define if your setregid() is broken])
a3cef3ca 184 dnl AIX handles lastlog as part of its login message
3466e002 185 AC_DEFINE(DISABLE_LASTLOG, 1, [Define if you don't want to use lastlog])
186 AC_DEFINE(LOGIN_NEEDS_UTMPX, 1,
187 [Some systems need a utmpx entry for /bin/login to work])
188 AC_DEFINE(SPT_TYPE,SPT_REUSEARGV,
189 [Define to a Set Process Title type if your system is
190 supported by bsd-setproctitle.c])
961c2997 191 AC_DEFINE(SSHPAM_CHAUTHTOK_NEEDS_RUID, 1,
192 [AIX 5.2 and 5.3 (and presumably newer) require this])
9d6b1b96 193 ;;
3c62e7eb 194*-*-cygwin*)
a52997bd 195 check_for_libcrypt_later=1
ffb8d130 196 LIBS="$LIBS /usr/lib/textmode.o"
3466e002 197 AC_DEFINE(HAVE_CYGWIN, 1, [Define if you are on Cygwin])
198 AC_DEFINE(USE_PIPES, 1, [Use PIPES instead of a socketpair()])
199 AC_DEFINE(DISABLE_SHADOW, 1,
200 [Define if you want to disable shadow passwords])
201 AC_DEFINE(IP_TOS_IS_BROKEN, 1,
202 [Define if your system choked on IP TOS setting])
203 AC_DEFINE(NO_X11_UNIX_SOCKETS, 1,
204 [Define if X11 doesn't support AF_UNIX sockets on that system])
205 AC_DEFINE(NO_IPPORT_RESERVED_CONCEPT, 1,
206 [Define if the concept of ports only accessible to
207 superusers isn't known])
208 AC_DEFINE(DISABLE_FD_PASSING, 1,
209 [Define if your platform needs to skip post auth
210 file descriptor passing])
3c62e7eb 211 ;;
d6fdb079 212*-*-dgux*)
213 AC_DEFINE(IP_TOS_IS_BROKEN)
0c6a72a5 214 AC_DEFINE(SETEUID_BREAKS_SETUID)
215 AC_DEFINE(BROKEN_SETREUID)
216 AC_DEFINE(BROKEN_SETREGID)
d6fdb079 217 ;;
39c98ef7 218*-*-darwin*)
33e2e066 219 AC_MSG_CHECKING(if we have working getaddrinfo)
220 AC_TRY_RUN([#include <mach-o/dyld.h>
221main() { if (NSVersionOfRunTimeLibrary("System") >= (60 << 16))
222 exit(0);
223 else
224 exit(1);
225}], [AC_MSG_RESULT(working)],
226 [AC_MSG_RESULT(buggy)
3466e002 227 AC_DEFINE(BROKEN_GETADDRINFO, 1, [getaddrinfo is broken (if present)])],
b27e573d 228 [AC_MSG_RESULT(assume it is working)])
635e0c42 229 AC_DEFINE(SETEUID_BREAKS_SETUID)
230 AC_DEFINE(BROKEN_SETREUID)
231 AC_DEFINE(BROKEN_SETREGID)
3466e002 232 AC_DEFINE_UNQUOTED(BIND_8_COMPAT, 1,
233 [Define if your resolver libs need this for getrrsetbyname])
39c98ef7 234 ;;
7d458c86 235*-*-hpux*)
236 # first we define all of the options common to all HP-UX releases
b8fea62d 237 CPPFLAGS="$CPPFLAGS -D_HPUX_SOURCE -D_XOPEN_SOURCE -D_XOPEN_SOURCE_EXTENDED=1"
44839801 238 IPADDR_IN_DISPLAY=yes
2b10f47a 239 AC_DEFINE(USE_PIPES)
3466e002 240 AC_DEFINE(LOGIN_NO_ENDOPT, 1,
241 [Define if your login program cannot handle end of options ("--")])
a2572aa7 242 AC_DEFINE(LOGIN_NEEDS_UTMPX)
3466e002 243 AC_DEFINE(LOCKED_PASSWD_STRING, "*",
244 [String used in /etc/passwd to denote locked account])
3a2b2b44 245 AC_DEFINE(SPT_TYPE,SPT_PSTAT)
83f987c3 246 MAIL="/var/mail/username"
f75ca46d 247 LIBS="$LIBS -lsec"
7d458c86 248 AC_CHECK_LIB(xnet, t_error, ,
249 AC_MSG_ERROR([*** -lxnet needed on HP-UX - check config.log ***]))
250
251 # next, we define all of the options specific to major releases
252 case "$host" in
253 *-*-hpux10*)
254 if test -z "$GCC"; then
255 CFLAGS="$CFLAGS -Ae"
256 fi
257 ;;
258 *-*-hpux11*)
3466e002 259 AC_DEFINE(PAM_SUN_CODEBASE, 1,
260 [Define if you are using Solaris-derived PAM which
261 passes pam_messages to the conversation function
262 with an extra level of indirection])
263 AC_DEFINE(DISABLE_UTMP, 1,
264 [Define if you don't want to use utmp])
7d458c86 265 AC_DEFINE(USE_BTMP, 1, [Use btmp to log bad logins])
266 check_for_hpux_broken_getaddrinfo=1
267 check_for_conflicting_getspnam=1
268 ;;
269 esac
270
271 # lastly, we define options specific to minor releases
272 case "$host" in
273 *-*-hpux10.26)
3466e002 274 AC_DEFINE(HAVE_SECUREWARE, 1,
275 [Define if you have SecureWare-based
276 protected password database])
7d458c86 277 disable_ptmx_check=yes
278 LIBS="$LIBS -lsecpw"
279 ;;
280 esac
2b763e31 281 ;;
d94aa2ae 282*-*-irix5*)
6ac7829a 283 PATH="$PATH:/usr/etc"
3466e002 284 AC_DEFINE(BROKEN_INET_NTOA, 1,
285 [Define if you system's inet_ntoa is busted
286 (e.g. Irix gcc issue)])
cb433561 287 AC_DEFINE(SETEUID_BREAKS_SETUID)
288 AC_DEFINE(BROKEN_SETREUID)
289 AC_DEFINE(BROKEN_SETREGID)
3466e002 290 AC_DEFINE(WITH_ABBREV_NO_TTY, 1,
291 [Define if you shouldn't strip 'tty' from your
292 ttyname in [uw]tmp])
3e6e3da0 293 AC_DEFINE(LOCKED_PASSWD_STRING, "*LK*")
b9795b89 294 ;;
295*-*-irix6*)
6ac7829a 296 PATH="$PATH:/usr/etc"
3466e002 297 AC_DEFINE(WITH_IRIX_ARRAY, 1,
298 [Define if you have/want arrays
299 (cluster-wide session managment, not C arrays)])
300 AC_DEFINE(WITH_IRIX_PROJECT, 1,
301 [Define if you want IRIX project management])
302 AC_DEFINE(WITH_IRIX_AUDIT, 1,
303 [Define if you want IRIX audit trails])
304 AC_CHECK_FUNC(jlimit_startjob, [AC_DEFINE(WITH_IRIX_JOBS, 1,
305 [Define if you want IRIX kernel jobs])])
416ed5a7 306 AC_DEFINE(BROKEN_INET_NTOA)
412c0eaa 307 AC_DEFINE(SETEUID_BREAKS_SETUID)
308 AC_DEFINE(BROKEN_SETREUID)
309 AC_DEFINE(BROKEN_SETREGID)
3466e002 310 AC_DEFINE(BROKEN_UPDWTMPX, 1, [updwtmpx is broken (if present)])
0e8f4eba 311 AC_DEFINE(WITH_ABBREV_NO_TTY)
3e6e3da0 312 AC_DEFINE(LOCKED_PASSWD_STRING, "*LK*")
d94aa2ae 313 ;;
5cdfe03f 314*-*-linux*)
315 no_dev_ptmx=1
717057b6 316 check_for_libcrypt_later=1
eacb954e 317 check_for_openpty_ctty_bug=1
3466e002 318 AC_DEFINE(DONT_TRY_OTHER_AF, 1, [Workaround more Linux IPv6 quirks])
319 AC_DEFINE(PAM_TTY_KLUDGE, 1,
320 [Work around problematic Linux PAM modules handling of PAM_TTY])
321 AC_DEFINE(LOCKED_PASSWD_PREFIX, "!",
322 [String used in /etc/passwd to denote locked account])
3a2b2b44 323 AC_DEFINE(SPT_TYPE,SPT_REUSEARGV)
3466e002 324 AC_DEFINE(LINK_OPNOTSUPP_ERRNO, EPERM,
325 [Define to whatever link() returns for "not supported"
326 if it doesn't return EOPNOTSUPP.])
b6610e8f 327 AC_DEFINE(_PATH_BTMP, "/var/log/btmp", [log for bad login attempts])
3466e002 328 AC_DEFINE(USE_BTMP)
80faa19f 329 inet6_default_4in6=yes
bf7c1e6c 330 case `uname -r` in
ad84c479 331 1.*|2.0.*)
3466e002 332 AC_DEFINE(BROKEN_CMSG_TYPE, 1,
333 [Define if cmsg_type is not passed correctly])
bf7c1e6c 334 ;;
bf7c1e6c 335 esac
c40f09ca 336 # tun(4) forwarding compat code
d91775e1 337 AC_CHECK_HEADERS(linux/if_tun.h)
b5081213 338 if test "x$ac_cv_header_linux_if_tun_h" = "xyes" ; then
c40f09ca 339 AC_DEFINE(SSH_TUN_LINUX, 1,
340 [Open tunnel devices the Linux tun/tap way])
341 AC_DEFINE(SSH_TUN_COMPAT_AF, 1,
342 [Use tunnel device compatibility to OpenBSD])
343 AC_DEFINE(SSH_TUN_PREPEND_AF, 1,
344 [Prepend the address family to IP tunnel traffic])
345 fi
5cdfe03f 346 ;;
66d6c27e 347mips-sony-bsd|mips-sony-newsos4)
3466e002 348 AC_DEFINE(NEED_SETPRGP, 1, [Need setpgrp to acquire controlling tty])
66d6c27e 349 SONY=1
66d6c27e 350 ;;
d468fc76 351*-*-netbsd*)
33e2e066 352 check_for_libcrypt_before=1
82f4e93d 353 if test "x$withval" != "xno" ; then
e6354014 354 need_dash_r=1
355 fi
0f6cb079 356 AC_DEFINE(SSH_TUN_FREEBSD, 1, [Open tunnel devices the FreeBSD way])
357 AC_CHECK_HEADER([net/if_tap.h], ,
358 AC_DEFINE(SSH_TUN_NO_L2, 1, [No layer 2 tunnel support]))
359 AC_DEFINE(SSH_TUN_PREPEND_AF, 1,
360 [Prepend the address family to IP tunnel traffic])
d468fc76 361 ;;
86b416a7 362*-*-freebsd*)
363 check_for_libcrypt_later=1
988c5031 364 AC_DEFINE(LOCKED_PASSWD_PREFIX, "*LOCKED*", [Account locked with pw(1)])
0f6cb079 365 AC_DEFINE(SSH_TUN_FREEBSD, 1, [Open tunnel devices the FreeBSD way])
366 AC_CHECK_HEADER([net/if_tap.h], ,
367 AC_DEFINE(SSH_TUN_NO_L2, 1, [No layer 2 tunnel support]))
86b416a7 368 ;;
8707b7eb 369*-*-bsdi*)
370 AC_DEFINE(SETEUID_BREAKS_SETUID)
371 AC_DEFINE(BROKEN_SETREUID)
372 AC_DEFINE(BROKEN_SETREGID)
373 ;;
729bfe59 374*-next-*)
729bfe59 375 conf_lastlog_location="/usr/adm/lastlog"
698d107e 376 conf_utmp_location=/etc/utmp
377 conf_wtmp_location=/usr/adm/wtmp
378 MAIL=/usr/spool/mail
3466e002 379 AC_DEFINE(HAVE_NEXT, 1, [Define if you are on NeXT])
443172c4 380 AC_DEFINE(BROKEN_REALPATH)
00937921 381 AC_DEFINE(USE_PIPES)
3466e002 382 AC_DEFINE(BROKEN_SAVED_UIDS, 1, [Needed for NeXT])
729bfe59 383 ;;
5b7b5e23 384*-*-openbsd*)
385 AC_DEFINE(HAVE_ATTRIBUTE__SENTINEL__, 1, [OpenBSD's gcc has sentinel])
8034a348 386 AC_DEFINE(HAVE_ATTRIBUTE__BOUNDED__, 1, [OpenBSD's gcc has bounded])
0f6cb079 387 AC_DEFINE(SSH_TUN_OPENBSD, 1, [Open tunnel devices the OpenBSD way])
5b7b5e23 388 ;;
9d6b1b96 389*-*-solaris*)
82f4e93d 390 if test "x$withval" != "xno" ; then
010e9d5b 391 need_dash_r=1
392 fi
adeebd37 393 AC_DEFINE(PAM_SUN_CODEBASE)
7e2d5fa4 394 AC_DEFINE(LOGIN_NEEDS_UTMPX)
3466e002 395 AC_DEFINE(LOGIN_NEEDS_TERM, 1,
396 [Some versions of /bin/login need the TERM supplied
397 on the commandline])
7f0a4ff1 398 AC_DEFINE(PAM_TTY_KLUDGE)
3466e002 399 AC_DEFINE(SSHPAM_CHAUTHTOK_NEEDS_RUID, 1,
400 [Define if pam_chauthtok wants real uid set
401 to the unpriv'ed user])
3e6e3da0 402 AC_DEFINE(LOCKED_PASSWD_STRING, "*LK*")
ad84c479 403 # Pushing STREAMS modules will cause sshd to acquire a controlling tty.
3466e002 404 AC_DEFINE(SSHD_ACQUIRES_CTTY, 1,
405 [Define if sshd somehow reacquires a controlling TTY
406 after setsid()])
95b99395 407 external_path_file=/etc/default/login
1d7b9b20 408 # hardwire lastlog location (can't detect it on some versions)
409 conf_lastlog_location="/var/adm/lastlog"
32c80420 410 AC_MSG_CHECKING(for obsolete utmp and wtmp in solaris2.x)
411 sol2ver=`echo "$host"| sed -e 's/.*[[0-9]]\.//'`
412 if test "$sol2ver" -ge 8; then
413 AC_MSG_RESULT(yes)
414 AC_DEFINE(DISABLE_UTMP)
3466e002 415 AC_DEFINE(DISABLE_WTMP, 1,
416 [Define if you don't want to use wtmp])
32c80420 417 else
418 AC_MSG_RESULT(no)
419 fi
9d6b1b96 420 ;;
a423beaf 421*-*-sunos4*)
0c2fb82f 422 CPPFLAGS="$CPPFLAGS -DSUNOS4"
a423beaf 423 AC_CHECK_FUNCS(getpwanam)
adeebd37 424 AC_DEFINE(PAM_SUN_CODEBASE)
32eec038 425 conf_utmp_location=/etc/utmp
426 conf_wtmp_location=/var/adm/wtmp
427 conf_lastlog_location=/var/adm/lastlog
137d7b6c 428 AC_DEFINE(USE_PIPES)
a423beaf 429 ;;
6f68f28a 430*-ncr-sysv*)
98a7c37b 431 LIBS="$LIBS -lc89"
29525240 432 AC_DEFINE(USE_PIPES)
eabb99c6 433 AC_DEFINE(SSHD_ACQUIRES_CTTY)
6fb3618d 434 AC_DEFINE(SETEUID_BREAKS_SETUID)
435 AC_DEFINE(BROKEN_SETREUID)
436 AC_DEFINE(BROKEN_SETREGID)
6f68f28a 437 ;;
132dd316 438*-sni-sysv*)
c8c15bcb 439 # /usr/ucblib MUST NOT be searched on ReliantUNIX
e2798e96 440 AC_CHECK_LIB(dl, dlsym, ,)
d08db6d1 441 # -lresolv needs to be at the end of LIBS or DNS lookups break
442 AC_CHECK_LIB(resolv, res_query, [ LIBS="$LIBS -lresolv" ])
9548d6c8 443 IPADDR_IN_DISPLAY=yes
444 AC_DEFINE(USE_PIPES)
132dd316 445 AC_DEFINE(IP_TOS_IS_BROKEN)
605369bb 446 AC_DEFINE(SETEUID_BREAKS_SETUID)
447 AC_DEFINE(BROKEN_SETREUID)
448 AC_DEFINE(BROKEN_SETREGID)
eabb99c6 449 AC_DEFINE(SSHD_ACQUIRES_CTTY)
95b99395 450 external_path_file=/etc/default/login
c8c15bcb 451 # /usr/ucblib/libucb.a no longer needed on ReliantUNIX
452 # Attention: always take care to bind libsocket and libnsl before libc,
453 # otherwise you will find lots of "SIOCGPGRP errno 22" on syslog
132dd316 454 ;;
79a7ba96 455# UnixWare 1.x, UnixWare 2.x, and others based on code from Univel.
77bb0bca 456*-*-sysv4.2*)
9a406e1e 457 CFLAGS="$CFLAGS -Dva_list=_VA_LIST"
ed6553e2 458 AC_DEFINE(USE_PIPES)
7ed101c0 459 AC_DEFINE(SETEUID_BREAKS_SETUID)
460 AC_DEFINE(BROKEN_SETREUID)
461 AC_DEFINE(BROKEN_SETREGID)
46f853b9 462 AC_DEFINE(PASSWD_NEEDS_USERNAME, 1, [must supply username to passwd])
e45da4d6 463 AC_DEFINE(LOCKED_PASSWD_STRING, "*LK*")
77bb0bca 464 ;;
79a7ba96 465# UnixWare 7.x, OpenUNIX 8
77bb0bca 466*-*-sysv5*)
d7d2cc6e 467 check_for_libcrypt_later=1
468 AC_DEFINE(UNIXWARE_LONG_PASSWORDS, 1, [Support passwords > 8 chars])
ed6553e2 469 AC_DEFINE(USE_PIPES)
7ed101c0 470 AC_DEFINE(SETEUID_BREAKS_SETUID)
471 AC_DEFINE(BROKEN_SETREUID)
472 AC_DEFINE(BROKEN_SETREGID)
3466e002 473 AC_DEFINE(PASSWD_NEEDS_USERNAME)
822015dd 474 case "$host" in
475 *-*-sysv5SCO_SV*) # SCO OpenServer 6.x
476 TEST_SHELL=/u95/bin/sh
3466e002 477 AC_DEFINE(BROKEN_LIBIAF, 1,
478 [ia_uinfo routines not supported by OS yet])
822015dd 479 ;;
e45da4d6 480 *) AC_DEFINE(LOCKED_PASSWD_STRING, "*LK*")
481 ;;
822015dd 482 esac
77bb0bca 483 ;;
9d6b1b96 484*-*-sysv*)
9d6b1b96 485 ;;
79a7ba96 486# SCO UNIX and OEM versions of SCO UNIX
77bb0bca 487*-*-sco3.2v4*)
11cf4f1f 488 AC_MSG_ERROR("This Platform is no longer supported.")
77bb0bca 489 ;;
79a7ba96 490# SCO OpenServer 5.x
77bb0bca 491*-*-sco3.2v5*)
21710e39 492 if test -z "$GCC"; then
493 CFLAGS="$CFLAGS -belf"
494 fi
ed6553e2 495 LIBS="$LIBS -lprot -lx -ltinfo -lm"
509b1f88 496 no_dev_ptmx=1
ed6553e2 497 AC_DEFINE(USE_PIPES)
6e879cb4 498 AC_DEFINE(HAVE_SECUREWARE)
d287c664 499 AC_DEFINE(DISABLE_SHADOW)
94d8258b 500 AC_DEFINE(DISABLE_FD_PASSING)
7ed101c0 501 AC_DEFINE(SETEUID_BREAKS_SETUID)
502 AC_DEFINE(BROKEN_SETREUID)
503 AC_DEFINE(BROKEN_SETREGID)
bcebad47 504 AC_DEFINE(WITH_ABBREV_NO_TTY)
34f2baf0 505 AC_DEFINE(BROKEN_UPDWTMPX)
3466e002 506 AC_DEFINE(PASSWD_NEEDS_USERNAME)
aca75d94 507 AC_CHECK_FUNCS(getluid setluid)
533875af 508 MANTYPE=man
a3245b92 509 TEST_SHELL=ksh
509b1f88 510 ;;
ccbb983c 511*-*-unicosmk*)
3466e002 512 AC_DEFINE(NO_SSH_LASTLOG, 1,
513 [Define if you don't want to use lastlog in session.c])
c1ad5966 514 AC_DEFINE(SETEUID_BREAKS_SETUID)
515 AC_DEFINE(BROKEN_SETREUID)
516 AC_DEFINE(BROKEN_SETREGID)
ccbb983c 517 AC_DEFINE(USE_PIPES)
518 AC_DEFINE(DISABLE_FD_PASSING)
519 LDFLAGS="$LDFLAGS"
520 LIBS="$LIBS -lgen -lrsc -lshare -luex -lacm"
521 MANTYPE=cat
d262b7f2 522 ;;
7b9a8c6e 523*-*-unicosmp*)
c1ad5966 524 AC_DEFINE(SETEUID_BREAKS_SETUID)
525 AC_DEFINE(BROKEN_SETREUID)
526 AC_DEFINE(BROKEN_SETREGID)
7b9a8c6e 527 AC_DEFINE(WITH_ABBREV_NO_TTY)
528 AC_DEFINE(USE_PIPES)
529 AC_DEFINE(DISABLE_FD_PASSING)
530 LDFLAGS="$LDFLAGS"
c1ad5966 531 LIBS="$LIBS -lgen -lacid -ldb"
7b9a8c6e 532 MANTYPE=cat
533 ;;
ca5c7d6a 534*-*-unicos*)
c1ad5966 535 AC_DEFINE(SETEUID_BREAKS_SETUID)
536 AC_DEFINE(BROKEN_SETREUID)
537 AC_DEFINE(BROKEN_SETREGID)
ca5c7d6a 538 AC_DEFINE(USE_PIPES)
94d8258b 539 AC_DEFINE(DISABLE_FD_PASSING)
ef51930f 540 AC_DEFINE(NO_SSH_LASTLOG)
ccbb983c 541 LDFLAGS="$LDFLAGS -Wl,-Dmsglevel=334:fatal"
542 LIBS="$LIBS -lgen -lrsc -lshare -luex -lacm"
543 MANTYPE=cat
a704dd54 544 ;;
4d33e531 545*-dec-osf*)
99c8ddac 546 AC_MSG_CHECKING(for Digital Unix SIA)
547 no_osfsia=""
548 AC_ARG_WITH(osfsia,
549 [ --with-osfsia Enable Digital Unix SIA],
550 [
551 if test "x$withval" = "xno" ; then
552 AC_MSG_RESULT(disabled)
553 no_osfsia=1
554 fi
555 ],
556 )
557 if test -z "$no_osfsia" ; then
4d33e531 558 if test -f /etc/sia/matrix.conf; then
559 AC_MSG_RESULT(yes)
3466e002 560 AC_DEFINE(HAVE_OSF_SIA, 1,
561 [Define if you have Digital Unix Security
562 Integration Architecture])
563 AC_DEFINE(DISABLE_LOGIN, 1,
564 [Define if you don't want to use your
565 system's login() call])
58d0df4e 566 AC_DEFINE(DISABLE_FD_PASSING)
4d33e531 567 LIBS="$LIBS -lsecurity -ldb -lm -laud"
568 else
569 AC_MSG_RESULT(no)
3466e002 570 AC_DEFINE(LOCKED_PASSWD_SUBSTR, "Nologin",
571 [String used in /etc/passwd to denote locked account])
4d33e531 572 fi
573 fi
a6e67b60 574 AC_DEFINE(BROKEN_GETADDRINFO)
f4f2ff4f 575 AC_DEFINE(SETEUID_BREAKS_SETUID)
08da2d08 576 AC_DEFINE(BROKEN_SETREUID)
577 AC_DEFINE(BROKEN_SETREGID)
4d33e531 578 ;;
41cb4569 579
580*-*-nto-qnx)
581 AC_DEFINE(USE_PIPES)
582 AC_DEFINE(NO_X11_UNIX_SOCKETS)
3466e002 583 AC_DEFINE(MISSING_NFDBITS, 1, [Define on *nto-qnx systems])
584 AC_DEFINE(MISSING_HOWMANY, 1, [Define on *nto-qnx systems])
585 AC_DEFINE(MISSING_FD_MASK, 1, [Define on *nto-qnx systems])
41cb4569 586 ;;
35fc74ed 587
588*-*-ultrix*)
3466e002 589 AC_DEFINE(BROKEN_GETGROUPS, 1, [getgroups(0,NULL) will return -1])
590 AC_DEFINE(BROKEN_MMAP, 1, [Ultrix mmap can't map files])
591 AC_DEFINE(NEED_SETPRGP)
b5765e1d 592 AC_DEFINE(HAVE_SYS_SYSLOG_H, 1, [Force use of sys/syslog.h on Ultrix])
593 ;;
157b6700 594
595*-*-lynxos)
596 CFLAGS="$CFLAGS -D__NO_INCLUDE_WARN__"
3466e002 597 AC_DEFINE(MISSING_HOWMANY)
157b6700 598 AC_DEFINE(BROKEN_SETVBUF, 1, [LynxOS has broken setvbuf() implementation])
599 ;;
a7effaac 600esac
601
8e7b16f8 602# Allow user to specify flags
603AC_ARG_WITH(cflags,
604 [ --with-cflags Specify additional flags to pass to compiler],
605 [
6cf0200f 606 if test -n "$withval" && test "x$withval" != "xno" && \
607 test "x${withval}" != "xyes"; then
8e7b16f8 608 CFLAGS="$CFLAGS $withval"
609 fi
82f4e93d 610 ]
8e7b16f8 611)
0c2fb82f 612AC_ARG_WITH(cppflags,
613 [ --with-cppflags Specify additional flags to pass to preprocessor] ,
614 [
6cf0200f 615 if test -n "$withval" && test "x$withval" != "xno" && \
616 test "x${withval}" != "xyes"; then
0c2fb82f 617 CPPFLAGS="$CPPFLAGS $withval"
618 fi
619 ]
620)
8e7b16f8 621AC_ARG_WITH(ldflags,
97b378bf 622 [ --with-ldflags Specify additional flags to pass to linker],
8e7b16f8 623 [
6cf0200f 624 if test -n "$withval" && test "x$withval" != "xno" && \
625 test "x${withval}" != "xyes"; then
8e7b16f8 626 LDFLAGS="$LDFLAGS $withval"
627 fi
82f4e93d 628 ]
8e7b16f8 629)
630AC_ARG_WITH(libs,
631 [ --with-libs Specify additional libraries to link with],
632 [
6cf0200f 633 if test -n "$withval" && test "x$withval" != "xno" && \
634 test "x${withval}" != "xyes"; then
8e7b16f8 635 LIBS="$LIBS $withval"
636 fi
82f4e93d 637 ]
8e7b16f8 638)
ed89c848 639AC_ARG_WITH(Werror,
640 [ --with-Werror Build main code with -Werror],
641 [
642 if test -n "$withval" && test "x$withval" != "xno"; then
643 werror_flags="-Werror"
1012885d 644 if test "x${withval}" != "xyes"; then
ed89c848 645 werror_flags="$withval"
646 fi
647 fi
648 ]
649)
8e7b16f8 650
c5829391 651AC_MSG_CHECKING(compiler and flags for sanity)
479cece8 652AC_RUN_IFELSE(
653 [AC_LANG_SOURCE([
c5829391 654#include <stdio.h>
655int main(){exit(0);}
479cece8 656 ])],
c5829391 657 [ AC_MSG_RESULT(yes) ],
658 [
659 AC_MSG_RESULT(no)
660 AC_MSG_ERROR([*** compiler cannot create working executables, check config.log ***])
1a01a50c 661 ],
662 [ AC_MSG_WARN([cross compiling: not checking compiler sanity]) ]
c5829391 663)
664
b04a9f8c 665dnl Checks for header files.
666AC_CHECK_HEADERS( \
667 bstring.h \
668 crypt.h \
669 dirent.h \
670 endian.h \
671 features.h \
672 floatingpoint.h \
673 getopt.h \
674 glob.h \
675 ia.h \
4c653d8e 676 iaf.h \
b04a9f8c 677 limits.h \
678 login.h \
679 login_cap.h \
680 maillock.h \
681 ndir.h \
a4f24bf8 682 net/if.h \
b04a9f8c 683 netdb.h \
684 netgroup.h \
685 netinet/in_systm.h \
686 pam/pam_appl.h \
687 paths.h \
688 pty.h \
689 readpassphrase.h \
690 rpc/types.h \
691 security/pam_appl.h \
692 shadow.h \
693 stddef.h \
694 stdint.h \
0957c2cf 695 string.h \
b04a9f8c 696 strings.h \
697 sys/audit.h \
698 sys/bitypes.h \
699 sys/bsdtty.h \
700 sys/cdefs.h \
701 sys/dir.h \
702 sys/mman.h \
703 sys/ndir.h \
704 sys/prctl.h \
705 sys/pstat.h \
706 sys/select.h \
707 sys/stat.h \
708 sys/stream.h \
709 sys/stropts.h \
710 sys/strtio.h \
711 sys/sysmacros.h \
712 sys/time.h \
713 sys/timers.h \
714 sys/un.h \
715 time.h \
716 tmpdir.h \
717 ttyent.h \
25dd2ce6 718 unistd.h \
b04a9f8c 719 usersec.h \
720 util.h \
721 utime.h \
722 utmp.h \
723 utmpx.h \
ea76f54c 724 vis.h \
b04a9f8c 725)
ddceb1c8 726
823221b2 727# lastlog.h requires sys/time.h to be included first on Solaris
728AC_CHECK_HEADERS(lastlog.h, [], [], [
729#ifdef HAVE_SYS_TIME_H
730# include <sys/time.h>
731#endif
732])
733
765a24cd 734# sys/ptms.h requires sys/stream.h to be included first on Solaris
735AC_CHECK_HEADERS(sys/ptms.h, [], [], [
736#ifdef HAVE_SYS_STREAM_H
737# include <sys/stream.h>
738#endif
739])
740
a0391976 741# Checks for libraries.
98a7c37b 742AC_CHECK_FUNC(yp_match, , AC_CHECK_LIB(nsl, yp_match))
743AC_CHECK_FUNC(setsockopt, , AC_CHECK_LIB(socket, setsockopt))
2c523de9 744
446227d6 745dnl IRIX and Solaris 2.5.1 have dirname() in libgen
746AC_CHECK_FUNCS(dirname, [AC_CHECK_HEADERS(libgen.h)] ,[
747 AC_CHECK_LIB(gen, dirname,[
748 AC_CACHE_CHECK([for broken dirname],
749 ac_cv_have_broken_dirname, [
750 save_LIBS="$LIBS"
751 LIBS="$LIBS -lgen"
b0e7249f 752 AC_RUN_IFELSE(
753 [AC_LANG_SOURCE([[
446227d6 754#include <libgen.h>
755#include <string.h>
756
757int main(int argc, char **argv) {
758 char *s, buf[32];
759
760 strncpy(buf,"/etc", 32);
761 s = dirname(buf);
762 if (!s || strncmp(s, "/", 32) != 0) {
763 exit(1);
764 } else {
765 exit(0);
766 }
767}
b0e7249f 768 ]])],
769 [ ac_cv_have_broken_dirname="no" ],
770 [ ac_cv_have_broken_dirname="yes" ],
446227d6 771 [ ac_cv_have_broken_dirname="no" ],
446227d6 772 )
773 LIBS="$save_LIBS"
774 ])
775 if test "x$ac_cv_have_broken_dirname" = "xno" ; then
776 LIBS="$LIBS -lgen"
777 AC_DEFINE(HAVE_DIRNAME)
778 AC_CHECK_HEADERS(libgen.h)
779 fi
780 ])
781])
782
783AC_CHECK_FUNC(getspnam, ,
784 AC_CHECK_LIB(gen, getspnam, LIBS="$LIBS -lgen"))
3466e002 785AC_SEARCH_LIBS(basename, gen, AC_DEFINE(HAVE_BASENAME, 1,
786 [Define if you have the basename function.]))
446227d6 787
98a7c37b 788dnl zlib is required
789AC_ARG_WITH(zlib,
790 [ --with-zlib=PATH Use zlib in PATH],
6dd05556 791 [ if test "x$withval" = "xno" ; then
792 AC_MSG_ERROR([*** zlib is required ***])
793 elif test "x$withval" != "xyes"; then
98a7c37b 794 if test -d "$withval/lib"; then
795 if test -n "${need_dash_r}"; then
5a162955 796 LDFLAGS="-L${withval}/lib -R${withval}/lib ${LDFLAGS}"
98a7c37b 797 else
5a162955 798 LDFLAGS="-L${withval}/lib ${LDFLAGS}"
98a7c37b 799 fi
800 else
801 if test -n "${need_dash_r}"; then
5a162955 802 LDFLAGS="-L${withval} -R${withval} ${LDFLAGS}"
98a7c37b 803 else
5a162955 804 LDFLAGS="-L${withval} ${LDFLAGS}"
98a7c37b 805 fi
806 fi
807 if test -d "$withval/include"; then
5a162955 808 CPPFLAGS="-I${withval}/include ${CPPFLAGS}"
98a7c37b 809 else
5a162955 810 CPPFLAGS="-I${withval} ${CPPFLAGS}"
98a7c37b 811 fi
6dd05556 812 fi ]
98a7c37b 813)
814
0a15d73b 815AC_CHECK_LIB(z, deflate, ,
816 [
817 saved_CPPFLAGS="$CPPFLAGS"
818 saved_LDFLAGS="$LDFLAGS"
819 save_LIBS="$LIBS"
820 dnl Check default zlib install dir
821 if test -n "${need_dash_r}"; then
822 LDFLAGS="-L/usr/local/lib -R/usr/local/lib ${saved_LDFLAGS}"
823 else
824 LDFLAGS="-L/usr/local/lib ${saved_LDFLAGS}"
825 fi
826 CPPFLAGS="-I/usr/local/include ${saved_CPPFLAGS}"
827 LIBS="$LIBS -lz"
828 AC_TRY_LINK_FUNC(deflate, AC_DEFINE(HAVE_LIBZ),
829 [
830 AC_MSG_ERROR([*** zlib missing - please install first or check config.log ***])
831 ]
832 )
833 ]
834)
4ad65809 835AC_CHECK_HEADER([zlib.h], ,AC_MSG_ERROR([*** zlib.h missing - please install first or check config.log ***]))
8068d564 836
837AC_ARG_WITH(zlib-version-check,
838 [ --without-zlib-version-check Disable zlib version check],
839 [ if test "x$withval" = "xno" ; then
840 zlib_check_nonfatal=1
841 fi
842 ]
843)
844
5c7fc85d 845AC_MSG_CHECKING(for possibly buggy zlib)
479cece8 846AC_RUN_IFELSE([AC_LANG_SOURCE([[
5c7fc85d 847#include <stdio.h>
4ad65809 848#include <zlib.h>
849int main()
850{
5c7fc85d 851 int a=0, b=0, c=0, d=0, n, v;
852 n = sscanf(ZLIB_VERSION, "%d.%d.%d.%d", &a, &b, &c, &d);
853 if (n != 3 && n != 4)
4ad65809 854 exit(1);
5c7fc85d 855 v = a*1000000 + b*10000 + c*100 + d;
856 fprintf(stderr, "found zlib version %s (%d)\n", ZLIB_VERSION, v);
857
858 /* 1.1.4 is OK */
859 if (a == 1 && b == 1 && c >= 4)
4ad65809 860 exit(0);
5c7fc85d 861
0072b59d 862 /* 1.2.3 and up are OK */
863 if (v >= 1020300)
5c7fc85d 864 exit(0);
865
4ad65809 866 exit(2);
867}
479cece8 868 ]])],
5c7fc85d 869 AC_MSG_RESULT(no),
870 [ AC_MSG_RESULT(yes)
8068d564 871 if test -z "$zlib_check_nonfatal" ; then
872 AC_MSG_ERROR([*** zlib too old - check config.log ***
873Your reported zlib version has known security problems. It's possible your
874vendor has fixed these problems without changing the version number. If you
875are sure this is the case, you can disable the check by running
876"./configure --without-zlib-version-check".
6090bcfe 877If you are in doubt, upgrade zlib to version 1.2.3 or greater.
5c7fc85d 878See http://www.gzip.org/zlib/ for details.])
8068d564 879 else
880 AC_MSG_WARN([zlib version may have security problems])
881 fi
1a01a50c 882 ],
883 [ AC_MSG_WARN([cross compiling: not checking zlib version]) ]
4ad65809 884)
48e7916f 885
2c523de9 886dnl UnixWare 2.x
aff51935 887AC_CHECK_FUNC(strcasecmp,
2c523de9 888 [], [ AC_CHECK_LIB(resolv, strcasecmp, LIBS="$LIBS -lresolv") ]
889)
23361281 890AC_CHECK_FUNCS(utimes,
cda1ebcb 891 [], [ AC_CHECK_LIB(c89, utimes, [AC_DEFINE(HAVE_UTIMES)
892 LIBS="$LIBS -lc89"]) ]
2c523de9 893)
4cca272e 894
7c6d759d 895dnl Checks for libutil functions
896AC_CHECK_HEADERS(libutil.h)
3466e002 897AC_SEARCH_LIBS(login, util bsd, [AC_DEFINE(HAVE_LOGIN, 1,
898 [Define if your libraries define login()])])
7c6d759d 899AC_CHECK_FUNCS(logout updwtmp logwtmp)
900
a738c3b0 901AC_FUNC_STRFTIME
902
84ceda19 903# Check for ALTDIRFUNC glob() extension
904AC_MSG_CHECKING(for GLOB_ALTDIRFUNC support)
905AC_EGREP_CPP(FOUNDIT,
906 [
907 #include <glob.h>
908 #ifdef GLOB_ALTDIRFUNC
909 FOUNDIT
910 #endif
aff51935 911 ],
84ceda19 912 [
3466e002 913 AC_DEFINE(GLOB_HAS_ALTDIRFUNC, 1,
914 [Define if your system glob() function has
915 the GLOB_ALTDIRFUNC extension])
84ceda19 916 AC_MSG_RESULT(yes)
917 ],
918 [
919 AC_MSG_RESULT(no)
920 ]
921)
4cca272e 922
40849fdb 923# Check for g.gl_matchc glob() extension
924AC_MSG_CHECKING(for gl_matchc field in glob_t)
925AC_EGREP_CPP(FOUNDIT,
aff51935 926 [
927 #include <glob.h>
40849fdb 928 int main(void){glob_t g; g.gl_matchc = 1;}
aff51935 929 ],
930 [
3466e002 931 AC_DEFINE(GLOB_HAS_GL_MATCHC, 1,
932 [Define if your system glob() function has
933 gl_matchc options in glob_t])
aff51935 934 AC_MSG_RESULT(yes)
935 ],
936 [
937 AC_MSG_RESULT(no)
938 ]
40849fdb 939)
940
edbe6722 941AC_MSG_CHECKING([whether struct dirent allocates space for d_name])
1a01a50c 942AC_RUN_IFELSE(
479cece8 943 [AC_LANG_SOURCE([[
edbe6722 944#include <sys/types.h>
945#include <dirent.h>
aec4cb4f 946int main(void){struct dirent d;exit(sizeof(d.d_name)<=sizeof(char));}
479cece8 947 ]])],
aff51935 948 [AC_MSG_RESULT(yes)],
edbe6722 949 [
950 AC_MSG_RESULT(no)
3466e002 951 AC_DEFINE(BROKEN_ONE_BYTE_DIRENT_D_NAME, 1,
d08db6d1 952 [Define if your struct dirent expects you to
3466e002 953 allocate extra space for d_name])
1a01a50c 954 ],
82f4e93d 955 [
1a01a50c 956 AC_MSG_WARN([cross compiling: assuming BROKEN_ONE_BYTE_DIRENT_D_NAME])
957 AC_DEFINE(BROKEN_ONE_BYTE_DIRENT_D_NAME)
edbe6722 958 ]
959)
960
419e26e7 961AC_MSG_CHECKING([for /proc/pid/fd directory])
962if test -d "/proc/$$/fd" ; then
3466e002 963 AC_DEFINE(HAVE_PROC_PID, 1, [Define if you have /proc/$pid/fd])
419e26e7 964 AC_MSG_RESULT(yes)
965else
966 AC_MSG_RESULT(no)
967fi
968
278588d8 969# Check whether user wants S/Key support
aff51935 970SKEY_MSG="no"
278588d8 971AC_ARG_WITH(skey,
6ff3d0dc 972 [ --with-skey[[=PATH]] Enable S/Key support (optionally in PATH)],
278588d8 973 [
974 if test "x$withval" != "xno" ; then
975
976 if test "x$withval" != "xyes" ; then
977 CPPFLAGS="$CPPFLAGS -I${withval}/include"
978 LDFLAGS="$LDFLAGS -L${withval}/lib"
979 fi
980
3466e002 981 AC_DEFINE(SKEY, 1, [Define if you want S/Key support])
278588d8 982 LIBS="-lskey $LIBS"
aff51935 983 SKEY_MSG="yes"
82f4e93d 984
ddceb1c8 985 AC_MSG_CHECKING([for s/key support])
b0e7249f 986 AC_LINK_IFELSE(
987 [AC_LANG_SOURCE([[
ddceb1c8 988#include <stdio.h>
989#include <skey.h>
aec4cb4f 990int main() { char *ff = skey_keyinfo(""); ff=""; exit(0); }
b0e7249f 991 ]])],
ddceb1c8 992 [AC_MSG_RESULT(yes)],
278588d8 993 [
ddceb1c8 994 AC_MSG_RESULT(no)
278588d8 995 AC_MSG_ERROR([** Incomplete or missing s/key libraries.])
996 ])
141fc639 997 AC_MSG_CHECKING(if skeychallenge takes 4 arguments)
998 AC_TRY_COMPILE(
999 [#include <stdio.h>
1000 #include <skey.h>],
1001 [(void)skeychallenge(NULL,"name","",0);],
1002 [AC_MSG_RESULT(yes)
3466e002 1003 AC_DEFINE(SKEYCHALLENGE_4ARG, 1,
1004 [Define if your skeychallenge()
1005 function takes 4 arguments (NetBSD)])],
141fc639 1006 [AC_MSG_RESULT(no)]
1007 )
278588d8 1008 fi
1009 ]
1010)
1011
1012# Check whether user wants TCP wrappers support
98a7c37b 1013TCPW_MSG="no"
278588d8 1014AC_ARG_WITH(tcp-wrappers,
6ff3d0dc 1015 [ --with-tcp-wrappers[[=PATH]] Enable tcpwrappers support (optionally in PATH)],
278588d8 1016 [
1017 if test "x$withval" != "xno" ; then
1018 saved_LIBS="$LIBS"
98a7c37b 1019 saved_LDFLAGS="$LDFLAGS"
1020 saved_CPPFLAGS="$CPPFLAGS"
4b492aab 1021 if test -n "${withval}" && \
6cf0200f 1022 test "x${withval}" != "xyes"; then
98a7c37b 1023 if test -d "${withval}/lib"; then
1024 if test -n "${need_dash_r}"; then
5a162955 1025 LDFLAGS="-L${withval}/lib -R${withval}/lib ${LDFLAGS}"
98a7c37b 1026 else
5a162955 1027 LDFLAGS="-L${withval}/lib ${LDFLAGS}"
98a7c37b 1028 fi
1029 else
1030 if test -n "${need_dash_r}"; then
5a162955 1031 LDFLAGS="-L${withval} -R${withval} ${LDFLAGS}"
98a7c37b 1032 else
5a162955 1033 LDFLAGS="-L${withval} ${LDFLAGS}"
98a7c37b 1034 fi
1035 fi
1036 if test -d "${withval}/include"; then
5a162955 1037 CPPFLAGS="-I${withval}/include ${CPPFLAGS}"
98a7c37b 1038 else
5a162955 1039 CPPFLAGS="-I${withval} ${CPPFLAGS}"
98a7c37b 1040 fi
98a7c37b 1041 fi
ddceb1c8 1042 LIBWRAP="-lwrap"
1043 LIBS="$LIBWRAP $LIBS"
278588d8 1044 AC_MSG_CHECKING(for libwrap)
1045 AC_TRY_LINK(
1046 [
77f09220 1047#include <sys/types.h>
1048#include <sys/socket.h>
1049#include <netinet/in.h>
278588d8 1050#include <tcpd.h>
1051 int deny_severity = 0, allow_severity = 0;
1052 ],
1053 [hosts_access(0);],
1054 [
1055 AC_MSG_RESULT(yes)
3466e002 1056 AC_DEFINE(LIBWRAP, 1,
1057 [Define if you want
1058 TCP Wrappers support])
ddceb1c8 1059 AC_SUBST(LIBWRAP)
98a7c37b 1060 TCPW_MSG="yes"
278588d8 1061 ],
1062 [
1063 AC_MSG_ERROR([*** libwrap missing])
1064 ]
1065 )
ddceb1c8 1066 LIBS="$saved_LIBS"
278588d8 1067 fi
1068 ]
1069)
1070
59031773 1071# Check whether user wants libedit support
1072LIBEDIT_MSG="no"
1073AC_ARG_WITH(libedit,
6ff3d0dc 1074 [ --with-libedit[[=PATH]] Enable libedit support for sftp],
59031773 1075 [ if test "x$withval" != "xno" ; then
737edf04 1076 if test "x$withval" != "xyes"; then
bb116c8e 1077 CPPFLAGS="$CPPFLAGS -I${withval}/include"
1078 if test -n "${need_dash_r}"; then
1079 LDFLAGS="-L${withval}/lib -R${withval}/lib ${LDFLAGS}"
1080 else
1081 LDFLAGS="-L${withval}/lib ${LDFLAGS}"
1082 fi
737edf04 1083 fi
59031773 1084 AC_CHECK_LIB(edit, el_init,
3466e002 1085 [ AC_DEFINE(USE_LIBEDIT, 1, [Use libedit for sftp])
59031773 1086 LIBEDIT="-ledit -lcurses"
1087 LIBEDIT_MSG="yes"
1088 AC_SUBST(LIBEDIT)
1089 ],
737edf04 1090 [ AC_MSG_ERROR(libedit not found) ],
1091 [ -lcurses ]
59031773 1092 )
f47ddccb 1093 AC_MSG_CHECKING(if libedit version is compatible)
d92622f9 1094 AC_COMPILE_IFELSE(
1095 [AC_LANG_SOURCE([[
1096#include <histedit.h>
f47ddccb 1097int main(void)
1098{
1099 int i = H_SETSIZE;
1100 el_init("", NULL, NULL, NULL);
1101 exit(0);
1102}
d92622f9 1103 ]])],
f47ddccb 1104 [ AC_MSG_RESULT(yes) ],
1105 [ AC_MSG_RESULT(no)
1106 AC_MSG_ERROR(libedit version is not compatible) ]
1107 )
59031773 1108 fi ]
1109)
1110
7b578f7d 1111AUDIT_MODULE=none
1112AC_ARG_WITH(audit,
1113 [ --with-audit=module Enable EXPERIMENTAL audit support (modules=debug,bsm)],
1114 [
1115 AC_MSG_CHECKING(for supported audit module)
1116 case "$withval" in
1117 bsm)
1118 AC_MSG_RESULT(bsm)
1119 AUDIT_MODULE=bsm
1120 dnl Checks for headers, libs and functions
1121 AC_CHECK_HEADERS(bsm/audit.h, [],
1122 [AC_MSG_ERROR(BSM enabled and bsm/audit.h not found)])
1123 AC_CHECK_LIB(bsm, getaudit, [],
1124 [AC_MSG_ERROR(BSM enabled and required library not found)])
1125 AC_CHECK_FUNCS(getaudit, [],
1126 [AC_MSG_ERROR(BSM enabled and required function not found)])
1127 # These are optional
7939c496 1128 AC_CHECK_FUNCS(getaudit_addr)
3466e002 1129 AC_DEFINE(USE_BSM_AUDIT, 1, [Use BSM audit module])
7b578f7d 1130 ;;
1131 debug)
1132 AUDIT_MODULE=debug
1133 AC_MSG_RESULT(debug)
3466e002 1134 AC_DEFINE(SSH_AUDIT_EVENTS, 1, Use audit debugging module)
7b578f7d 1135 ;;
a2b3321d 1136 no)
d92622f9 1137 AC_MSG_RESULT(no)
a2b3321d 1138 ;;
7b578f7d 1139 *)
1140 AC_MSG_ERROR([Unknown audit module $withval])
1141 ;;
1142 esac ]
1143)
1144
19160674 1145dnl Checks for library functions. Please keep in alphabetical order
b04a9f8c 1146AC_CHECK_FUNCS( \
1147 arc4random \
9a406e1e 1148 asprintf \
b04a9f8c 1149 b64_ntop \
1150 __b64_ntop \
1151 b64_pton \
1152 __b64_pton \
1153 bcopy \
1154 bindresvport_sa \
1155 clock \
1156 closefrom \
1157 dirfd \
b04a9f8c 1158 fchmod \
1159 fchown \
1160 freeaddrinfo \
1161 futimes \
1162 getaddrinfo \
1163 getcwd \
1164 getgrouplist \
1165 getnameinfo \
1166 getopt \
1167 getpeereid \
1168 _getpty \
1169 getrlimit \
1170 getttyent \
1171 glob \
1172 inet_aton \
1173 inet_ntoa \
1174 inet_ntop \
1175 innetgr \
1176 login_getcapbool \
1177 md5_crypt \
1178 memmove \
1179 mkdtemp \
1180 mmap \
1181 ngetaddrinfo \
1182 nsleep \
1183 ogetaddrinfo \
1184 openlog_r \
1185 openpty \
1186 prctl \
1187 pstat \
1188 readpassphrase \
1189 realpath \
1190 recvmsg \
1191 rresvport_af \
1192 sendmsg \
1193 setdtablesize \
1194 setegid \
1195 setenv \
1196 seteuid \
1197 setgroups \
1198 setlogin \
1199 setpcred \
1200 setproctitle \
1201 setregid \
1202 setreuid \
1203 setrlimit \
1204 setsid \
1205 setvbuf \
1206 sigaction \
1207 sigvec \
1208 snprintf \
1209 socketpair \
1210 strdup \
1211 strerror \
1212 strlcat \
1213 strlcpy \
1214 strmode \
1215 strnvis \
1216 strtonum \
1e29a0c8 1217 strtoll \
b04a9f8c 1218 strtoul \
1219 sysconf \
1220 tcgetpgrp \
1221 truncate \
1222 unsetenv \
1223 updwtmpx \
9a406e1e 1224 vasprintf \
b04a9f8c 1225 vhangup \
1226 vsnprintf \
1227 waitpid \
19160674 1228)
98a7c37b 1229
1a086f97 1230# IRIX has a const char return value for gai_strerror()
1231AC_CHECK_FUNCS(gai_strerror,[
1232 AC_DEFINE(HAVE_GAI_STRERROR)
1233 AC_TRY_COMPILE([
1234#include <sys/types.h>
1235#include <sys/socket.h>
1236#include <netdb.h>
1237
1238const char *gai_strerror(int);],[
1239char *str;
1240
1241str = gai_strerror(0);],[
1242 AC_DEFINE(HAVE_CONST_GAI_STRERROR_PROTO, 1,
1243 [Define if gai_strerror() returns const char *])])])
1244
3466e002 1245AC_SEARCH_LIBS(nanosleep, rt posix4, AC_DEFINE(HAVE_NANOSLEEP, 1,
1246 [Some systems put nanosleep outside of libc]))
92b1decf 1247
309709db 1248dnl Make sure prototypes are defined for these before using them.
309709db 1249AC_CHECK_DECL(getrusage, [AC_CHECK_FUNCS(getrusage)])
0957c2cf 1250AC_CHECK_DECL(strsep,
1251 [AC_CHECK_FUNCS(strsep)],
1252 [],
1253 [
1254#ifdef HAVE_STRING_H
1255# include <string.h>
1256#endif
1257 ])
08412d26 1258
3490699c 1259dnl tcsendbreak might be a macro
1260AC_CHECK_DECL(tcsendbreak,
1261 [AC_DEFINE(HAVE_TCSENDBREAK)],
aff51935 1262 [AC_CHECK_FUNCS(tcsendbreak)],
3490699c 1263 [#include <termios.h>]
1264)
1265
41e0e158 1266AC_CHECK_DECLS(h_errno, , ,[#include <netdb.h>])
1267
3f176010 1268AC_CHECK_FUNCS(setresuid, [
1269 dnl Some platorms have setresuid that isn't implemented, test for this
1270 AC_MSG_CHECKING(if setresuid seems to work)
479cece8 1271 AC_RUN_IFELSE(
1272 [AC_LANG_SOURCE([[
9a3fe0e2 1273#include <stdlib.h>
1274#include <errno.h>
1275int main(){errno=0; setresuid(0,0,0); if (errno==ENOSYS) exit(1); else exit(0);}
479cece8 1276 ]])],
3f176010 1277 [AC_MSG_RESULT(yes)],
3466e002 1278 [AC_DEFINE(BROKEN_SETRESUID, 1,
1279 [Define if your setresuid() is broken])
1a01a50c 1280 AC_MSG_RESULT(not implemented)],
1281 [AC_MSG_WARN([cross compiling: not checking setresuid])]
3f176010 1282 )
1283])
9a3fe0e2 1284
3f176010 1285AC_CHECK_FUNCS(setresgid, [
1286 dnl Some platorms have setresgid that isn't implemented, test for this
1287 AC_MSG_CHECKING(if setresgid seems to work)
479cece8 1288 AC_RUN_IFELSE(
1289 [AC_LANG_SOURCE([[
9a3fe0e2 1290#include <stdlib.h>
1291#include <errno.h>
1292int main(){errno=0; setresgid(0,0,0); if (errno==ENOSYS) exit(1); else exit(0);}
479cece8 1293 ]])],
3f176010 1294 [AC_MSG_RESULT(yes)],
3466e002 1295 [AC_DEFINE(BROKEN_SETRESGID, 1,
1296 [Define if your setresgid() is broken])
1a01a50c 1297 AC_MSG_RESULT(not implemented)],
1298 [AC_MSG_WARN([cross compiling: not checking setresuid])]
3f176010 1299 )
1300])
9a3fe0e2 1301
2e73a022 1302dnl Checks for time functions
1d7b9b20 1303AC_CHECK_FUNCS(gettimeofday time)
2e73a022 1304dnl Checks for utmp functions
b03bd394 1305AC_CHECK_FUNCS(endutent getutent getutid getutline pututline setutent)
1d7b9b20 1306AC_CHECK_FUNCS(utmpname)
2e73a022 1307dnl Checks for utmpx functions
b03bd394 1308AC_CHECK_FUNCS(endutxent getutxent getutxid getutxline pututxline )
1d7b9b20 1309AC_CHECK_FUNCS(setutxent utmpxname)
76cd7316 1310
aff51935 1311AC_CHECK_FUNC(daemon,
3466e002 1312 [AC_DEFINE(HAVE_DAEMON, 1, [Define if your libraries define daemon()])],
1313 [AC_CHECK_LIB(bsd, daemon,
1314 [LIBS="$LIBS -lbsd"; AC_DEFINE(HAVE_DAEMON)])]
beb43d31 1315)
1316
aff51935 1317AC_CHECK_FUNC(getpagesize,
3466e002 1318 [AC_DEFINE(HAVE_GETPAGESIZE, 1,
1319 [Define if your libraries define getpagesize()])],
1320 [AC_CHECK_LIB(ucb, getpagesize,
1321 [LIBS="$LIBS -lucb"; AC_DEFINE(HAVE_GETPAGESIZE)])]
aa6bd60a 1322)
1323
2647ae26 1324# Check for broken snprintf
1325if test "x$ac_cv_func_snprintf" = "xyes" ; then
1326 AC_MSG_CHECKING([whether snprintf correctly terminates long strings])
1a01a50c 1327 AC_RUN_IFELSE(
479cece8 1328 [AC_LANG_SOURCE([[
2647ae26 1329#include <stdio.h>
aec4cb4f 1330int main(void){char b[5];snprintf(b,5,"123456789");exit(b[4]!='\0');}
479cece8 1331 ]])],
aff51935 1332 [AC_MSG_RESULT(yes)],
2647ae26 1333 [
1334 AC_MSG_RESULT(no)
3466e002 1335 AC_DEFINE(BROKEN_SNPRINTF, 1,
1336 [Define if your snprintf is busted])
2647ae26 1337 AC_MSG_WARN([****** Your snprintf() function is broken, complain to your vendor])
1a01a50c 1338 ],
1339 [ AC_MSG_WARN([cross compiling: Assuming working snprintf()]) ]
2647ae26 1340 )
1341fi
1342
9a406e1e 1343# If we don't have a working asprintf, then we strongly depend on vsnprintf
1344# returning the right thing on overflow: the number of characters it tried to
1345# create (as per SUSv3)
1346if test "x$ac_cv_func_asprintf" != "xyes" && \
1347 test "x$ac_cv_func_vsnprintf" = "xyes" ; then
1348 AC_MSG_CHECKING([whether vsnprintf returns correct values on overflow])
1349 AC_RUN_IFELSE(
1350 [AC_LANG_SOURCE([[
1351#include <sys/types.h>
1352#include <stdio.h>
1353#include <stdarg.h>
1354
1355int x_snprintf(char *str,size_t count,const char *fmt,...)
1356{
1357 size_t ret; va_list ap;
1358 va_start(ap, fmt); ret = vsnprintf(str, count, fmt, ap); va_end(ap);
1359 return ret;
1360}
1361int main(void)
1362{
1363 char x[1];
1364 exit(x_snprintf(x, 1, "%s %d", "hello", 12345) == 11 ? 0 : 1);
1365} ]])],
1366 [AC_MSG_RESULT(yes)],
1367 [
1368 AC_MSG_RESULT(no)
1369 AC_DEFINE(BROKEN_SNPRINTF, 1,
1370 [Define if your snprintf is busted])
1371 AC_MSG_WARN([****** Your vsnprintf() function is broken, complain to your vendor])
1372 ],
1373 [ AC_MSG_WARN([cross compiling: Assuming working vsnprintf()]) ]
1374 )
1375fi
1376
31b0732a 1377# On systems where [v]snprintf is broken, but is declared in stdio,
1378# check that the fmt argument is const char * or just char *.
1379# This is only useful for when BROKEN_SNPRINTF
1380AC_MSG_CHECKING([whether snprintf can declare const char *fmt])
1381AC_COMPILE_IFELSE([AC_LANG_SOURCE([[#include <stdio.h>
1382 int snprintf(char *a, size_t b, const char *c, ...) { return 0; }
1383 int main(void) { snprintf(0, 0, 0); }
1384 ]])],
1385 [AC_MSG_RESULT(yes)
1386 AC_DEFINE(SNPRINTF_CONST, [const],
1387 [Define as const if snprintf() can declare const char *fmt])],
1388 [AC_MSG_RESULT(no)
1389 AC_DEFINE(SNPRINTF_CONST, [/* not const */])])
1390
2f6f9cff 1391# Check for missing getpeereid (or equiv) support
1392NO_PEERCHECK=""
1393if test "x$ac_cv_func_getpeereid" != "xyes" ; then
1394 AC_MSG_CHECKING([whether system supports SO_PEERCRED getsockopt])
1395 AC_TRY_COMPILE(
1396 [#include <sys/types.h>
1397 #include <sys/socket.h>],
1398 [int i = SO_PEERCRED;],
62eb7db4 1399 [ AC_MSG_RESULT(yes)
3466e002 1400 AC_DEFINE(HAVE_SO_PEERCRED, 1, [Have PEERCRED socket option])
62eb7db4 1401 ],
2f6f9cff 1402 [AC_MSG_RESULT(no)
1403 NO_PEERCHECK=1]
1404 )
1405fi
1406
70e7d0b0 1407dnl see whether mkstemp() requires XXXXXX
1408if test "x$ac_cv_func_mkdtemp" = "xyes" ; then
1409AC_MSG_CHECKING([for (overly) strict mkstemp])
b0e7249f 1410AC_RUN_IFELSE(
1411 [AC_LANG_SOURCE([[
70e7d0b0 1412#include <stdlib.h>
1413main() { char template[]="conftest.mkstemp-test";
1414if (mkstemp(template) == -1)
1415 exit(1);
1416unlink(template); exit(0);
1417}
b0e7249f 1418 ]])],
70e7d0b0 1419 [
1420 AC_MSG_RESULT(no)
1421 ],
aff51935 1422 [
70e7d0b0 1423 AC_MSG_RESULT(yes)
3466e002 1424 AC_DEFINE(HAVE_STRICT_MKSTEMP, 1, [Silly mkstemp()])
70e7d0b0 1425 ],
1426 [
1427 AC_MSG_RESULT(yes)
1428 AC_DEFINE(HAVE_STRICT_MKSTEMP)
aff51935 1429 ]
70e7d0b0 1430)
1431fi
1432
eacb954e 1433dnl make sure that openpty does not reacquire controlling terminal
1434if test ! -z "$check_for_openpty_ctty_bug"; then
1435 AC_MSG_CHECKING(if openpty correctly handles controlling tty)
b0e7249f 1436 AC_RUN_IFELSE(
1437 [AC_LANG_SOURCE([[
eacb954e 1438#include <stdio.h>
1439#include <sys/fcntl.h>
1440#include <sys/types.h>
1441#include <sys/wait.h>
1442
1443int
1444main()
1445{
1446 pid_t pid;
1447 int fd, ptyfd, ttyfd, status;
1448
1449 pid = fork();
1450 if (pid < 0) { /* failed */
1451 exit(1);
1452 } else if (pid > 0) { /* parent */
1453 waitpid(pid, &status, 0);
aff51935 1454 if (WIFEXITED(status))
eacb954e 1455 exit(WEXITSTATUS(status));
1456 else
1457 exit(2);
1458 } else { /* child */
1459 close(0); close(1); close(2);
1460 setsid();
1461 openpty(&ptyfd, &ttyfd, NULL, NULL, NULL);
1462 fd = open("/dev/tty", O_RDWR | O_NOCTTY);
1463 if (fd >= 0)
1464 exit(3); /* Acquired ctty: broken */
1465 else
1466 exit(0); /* Did not acquire ctty: OK */
1467 }
1468}
b0e7249f 1469 ]])],
eacb954e 1470 [
1471 AC_MSG_RESULT(yes)
1472 ],
1473 [
1474 AC_MSG_RESULT(no)
1475 AC_DEFINE(SSHD_ACQUIRES_CTTY)
b0e7249f 1476 ],
1477 [
1478 AC_MSG_RESULT(cross-compiling, assuming yes)
eacb954e 1479 ]
1480 )
1481fi
1482
4b492aab 1483if test "x$ac_cv_func_getaddrinfo" = "xyes" && \
1484 test "x$check_for_hpux_broken_getaddrinfo" = "x1"; then
2fe51906 1485 AC_MSG_CHECKING(if getaddrinfo seems to work)
b0e7249f 1486 AC_RUN_IFELSE(
1487 [AC_LANG_SOURCE([[
2fe51906 1488#include <stdio.h>
1489#include <sys/socket.h>
1490#include <netdb.h>
1491#include <errno.h>
1492#include <netinet/in.h>
1493
1494#define TEST_PORT "2222"
1495
1496int
1497main(void)
1498{
1499 int err, sock;
1500 struct addrinfo *gai_ai, *ai, hints;
1501 char ntop[NI_MAXHOST], strport[NI_MAXSERV], *name = NULL;
1502
1503 memset(&hints, 0, sizeof(hints));
1504 hints.ai_family = PF_UNSPEC;
1505 hints.ai_socktype = SOCK_STREAM;
1506 hints.ai_flags = AI_PASSIVE;
1507
1508 err = getaddrinfo(name, TEST_PORT, &hints, &gai_ai);
1509 if (err != 0) {
1510 fprintf(stderr, "getaddrinfo failed (%s)", gai_strerror(err));
1511 exit(1);
1512 }
1513
1514 for (ai = gai_ai; ai != NULL; ai = ai->ai_next) {
1515 if (ai->ai_family != AF_INET6)
1516 continue;
1517
1518 err = getnameinfo(ai->ai_addr, ai->ai_addrlen, ntop,
1519 sizeof(ntop), strport, sizeof(strport),
1520 NI_NUMERICHOST|NI_NUMERICSERV);
1521
1522 if (err != 0) {
1523 if (err == EAI_SYSTEM)
1524 perror("getnameinfo EAI_SYSTEM");
1525 else
1526 fprintf(stderr, "getnameinfo failed: %s\n",
1527 gai_strerror(err));
1528 exit(2);
1529 }
1530
1531 sock = socket(ai->ai_family, ai->ai_socktype, ai->ai_protocol);
1532 if (sock < 0)
1533 perror("socket");
1534 if (bind(sock, ai->ai_addr, ai->ai_addrlen) < 0) {
1535 if (errno == EBADF)
1536 exit(3);
1537 }
1538 }
1539 exit(0);
1540}
b0e7249f 1541 ]])],
2fe51906 1542 [
1543 AC_MSG_RESULT(yes)
1544 ],
1545 [
1546 AC_MSG_RESULT(no)
1547 AC_DEFINE(BROKEN_GETADDRINFO)
b0e7249f 1548 ],
1549 [
1550 AC_MSG_RESULT(cross-compiling, assuming yes)
2fe51906 1551 ]
1552 )
1553fi
1554
4b492aab 1555if test "x$ac_cv_func_getaddrinfo" = "xyes" && \
1556 test "x$check_for_aix_broken_getaddrinfo" = "x1"; then
5ccf88cb 1557 AC_MSG_CHECKING(if getaddrinfo seems to work)
b0e7249f 1558 AC_RUN_IFELSE(
1559 [AC_LANG_SOURCE([[
5ccf88cb 1560#include <stdio.h>
1561#include <sys/socket.h>
1562#include <netdb.h>
1563#include <errno.h>
1564#include <netinet/in.h>
1565
1566#define TEST_PORT "2222"
1567
1568int
1569main(void)
1570{
1571 int err, sock;
1572 struct addrinfo *gai_ai, *ai, hints;
1573 char ntop[NI_MAXHOST], strport[NI_MAXSERV], *name = NULL;
1574
1575 memset(&hints, 0, sizeof(hints));
1576 hints.ai_family = PF_UNSPEC;
1577 hints.ai_socktype = SOCK_STREAM;
1578 hints.ai_flags = AI_PASSIVE;
1579
1580 err = getaddrinfo(name, TEST_PORT, &hints, &gai_ai);
1581 if (err != 0) {
1582 fprintf(stderr, "getaddrinfo failed (%s)", gai_strerror(err));
1583 exit(1);
1584 }
1585
1586 for (ai = gai_ai; ai != NULL; ai = ai->ai_next) {
1587 if (ai->ai_family != AF_INET && ai->ai_family != AF_INET6)
1588 continue;
1589
1590 err = getnameinfo(ai->ai_addr, ai->ai_addrlen, ntop,
1591 sizeof(ntop), strport, sizeof(strport),
1592 NI_NUMERICHOST|NI_NUMERICSERV);
1593
1594 if (ai->ai_family == AF_INET && err != 0) {
1595 perror("getnameinfo");
1596 exit(2);
1597 }
1598 }
1599 exit(0);
1600}
b0e7249f 1601 ]])],
5ccf88cb 1602 [
1603 AC_MSG_RESULT(yes)
3466e002 1604 AC_DEFINE(AIX_GETNAMEINFO_HACK, 1,
1605 [Define if you have a getaddrinfo that fails
1606 for the all-zeros IPv6 address])
5ccf88cb 1607 ],
1608 [
1609 AC_MSG_RESULT(no)
1610 AC_DEFINE(BROKEN_GETADDRINFO)
b0e7249f 1611 ],
1612 AC_MSG_RESULT(cross-compiling, assuming no)
5ccf88cb 1613 ]
1614 )
1615fi
1616
b29fd59f 1617if test "x$check_for_conflicting_getspnam" = "x1"; then
1618 AC_MSG_CHECKING(for conflicting getspnam in shadow.h)
1619 AC_COMPILE_IFELSE(
1620 [
1621#include <shadow.h>
1622int main(void) {exit(0);}
1623 ],
1624 [
1625 AC_MSG_RESULT(no)
1626 ],
1627 [
1628 AC_MSG_RESULT(yes)
1629 AC_DEFINE(GETSPNAM_CONFLICTING_DEFS, 1,
1630 [Conflicting defs for getspnam])
1631 ]
1632 )
1633fi
1634
7f8f5e00 1635AC_FUNC_GETPGRP
1636
717057b6 1637# Check for PAM libs
cbd7492e 1638PAM_MSG="no"
a0391976 1639AC_ARG_WITH(pam,
717057b6 1640 [ --with-pam Enable PAM support ],
a0391976 1641 [
717057b6 1642 if test "x$withval" != "xno" ; then
2511d104 1643 if test "x$ac_cv_header_security_pam_appl_h" != "xyes" && \
1644 test "x$ac_cv_header_pam_pam_appl_h" != "xyes" ; then
717057b6 1645 AC_MSG_ERROR([PAM headers not found])
1646 fi
a0391976 1647
717057b6 1648 AC_CHECK_LIB(dl, dlopen, , )
1649 AC_CHECK_LIB(pam, pam_set_item, , AC_MSG_ERROR([*** libpam missing]))
1650 AC_CHECK_FUNCS(pam_getenvlist)
749560dd 1651 AC_CHECK_FUNCS(pam_putenv)
2b763e31 1652
717057b6 1653 PAM_MSG="yes"
4cb5ffa0 1654
3466e002 1655 AC_DEFINE(USE_PAM, 1,
1656 [Define if you want to enable PAM support])
98f2d9d5 1657 if test $ac_cv_lib_dl_dlopen = yes; then
1658 LIBPAM="-lpam -ldl"
1659 else
1660 LIBPAM="-lpam"
1661 fi
1662 AC_SUBST(LIBPAM)
717057b6 1663 fi
1664 ]
1665)
cbd7492e 1666
717057b6 1667# Check for older PAM
1668if test "x$PAM_MSG" = "xyes" ; then
a0391976 1669 # Check PAM strerror arguments (old PAM)
1670 AC_MSG_CHECKING([whether pam_strerror takes only one argument])
1671 AC_TRY_COMPILE(
1672 [
18ba2aab 1673#include <stdlib.h>
2511d104 1674#if defined(HAVE_SECURITY_PAM_APPL_H)
18ba2aab 1675#include <security/pam_appl.h>
2511d104 1676#elif defined (HAVE_PAM_PAM_APPL_H)
1677#include <pam/pam_appl.h>
1678#endif
aff51935 1679 ],
1680 [(void)pam_strerror((pam_handle_t *)NULL, -1);],
a0391976 1681 [AC_MSG_RESULT(no)],
1682 [
3466e002 1683 AC_DEFINE(HAVE_OLD_PAM, 1,
1684 [Define if you have an old version of PAM
1685 which takes only one argument to pam_strerror])
a0391976 1686 AC_MSG_RESULT(yes)
cbd7492e 1687 PAM_MSG="yes (old library)"
a0391976 1688 ]
717057b6 1689 )
a0391976 1690fi
1691
5b991353 1692# Search for OpenSSL
1693saved_CPPFLAGS="$CPPFLAGS"
1694saved_LDFLAGS="$LDFLAGS"
a0391976 1695AC_ARG_WITH(ssl-dir,
1696 [ --with-ssl-dir=PATH Specify path to OpenSSL installation ],
1697 [
e9e4a1c7 1698 if test "x$withval" != "xno" ; then
99eb0f64 1699 case "$withval" in
1700 # Relative paths
1701 ./*|../*) withval="`pwd`/$withval"
1702 esac
5b991353 1703 if test -d "$withval/lib"; then
1704 if test -n "${need_dash_r}"; then
1705 LDFLAGS="-L${withval}/lib -R${withval}/lib ${LDFLAGS}"
1706 else
1707 LDFLAGS="-L${withval}/lib ${LDFLAGS}"
d6f13fbb 1708 fi
1709 else
5b991353 1710 if test -n "${need_dash_r}"; then
1711 LDFLAGS="-L${withval} -R${withval} ${LDFLAGS}"
1712 else
1713 LDFLAGS="-L${withval} ${LDFLAGS}"
d6f13fbb 1714 fi
1715 fi
5b991353 1716 if test -d "$withval/include"; then
1717 CPPFLAGS="-I${withval}/include ${CPPFLAGS}"
d6f13fbb 1718 else
5b991353 1719 CPPFLAGS="-I${withval} ${CPPFLAGS}"
58d100bf 1720 fi
a0391976 1721 fi
5b991353 1722 ]
1723)
5486a457 1724LIBS="-lcrypto $LIBS"
3466e002 1725AC_TRY_LINK_FUNC(RAND_add, AC_DEFINE(HAVE_OPENSSL, 1,
1726 [Define if your ssl headers are included
1727 with #include <openssl/header.h>]),
d45e3d76 1728 [
5b991353 1729 dnl Check default openssl install dir
1730 if test -n "${need_dash_r}"; then
1731 LDFLAGS="-L/usr/local/ssl/lib -R/usr/local/ssl/lib ${saved_LDFLAGS}"
d45e3d76 1732 else
5b991353 1733 LDFLAGS="-L/usr/local/ssl/lib ${saved_LDFLAGS}"
d45e3d76 1734 fi
5b991353 1735 CPPFLAGS="-I/usr/local/ssl/include ${saved_CPPFLAGS}"
1736 AC_TRY_LINK_FUNC(RAND_add, AC_DEFINE(HAVE_OPENSSL),
1737 [
1738 AC_MSG_ERROR([*** Can't find recent OpenSSL libcrypto (see config.log for details) ***])
1739 ]
1740 )
1741 ]
1742)
1743
cd018561 1744# Determine OpenSSL header version
1745AC_MSG_CHECKING([OpenSSL header version])
1a01a50c 1746AC_RUN_IFELSE(
479cece8 1747 [AC_LANG_SOURCE([[
cd018561 1748#include <stdio.h>
1749#include <string.h>
1750#include <openssl/opensslv.h>
1751#define DATA "conftest.sslincver"
1752int main(void) {
aff51935 1753 FILE *fd;
1754 int rc;
cd018561 1755
aff51935 1756 fd = fopen(DATA,"w");
1757 if(fd == NULL)
1758 exit(1);
cd018561 1759
1760 if ((rc = fprintf(fd ,"%x (%s)\n", OPENSSL_VERSION_NUMBER, OPENSSL_VERSION_TEXT)) <0)
1761 exit(1);
1762
1763 exit(0);
1764}
479cece8 1765 ]])],
cd018561 1766 [
1767 ssl_header_ver=`cat conftest.sslincver`
1768 AC_MSG_RESULT($ssl_header_ver)
1769 ],
1770 [
1771 AC_MSG_RESULT(not found)
1772 AC_MSG_ERROR(OpenSSL version header not found.)
1a01a50c 1773 ],
1774 [
1775 AC_MSG_WARN([cross compiling: not checking])
cd018561 1776 ]
1777)
1778
1779# Determine OpenSSL library version
1780AC_MSG_CHECKING([OpenSSL library version])
1a01a50c 1781AC_RUN_IFELSE(
479cece8 1782 [AC_LANG_SOURCE([[
cd018561 1783#include <stdio.h>
1784#include <string.h>
1785#include <openssl/opensslv.h>
1786#include <openssl/crypto.h>
1787#define DATA "conftest.ssllibver"
1788int main(void) {
aff51935 1789 FILE *fd;
1790 int rc;
cd018561 1791
aff51935 1792 fd = fopen(DATA,"w");
1793 if(fd == NULL)
1794 exit(1);
cd018561 1795
1796 if ((rc = fprintf(fd ,"%x (%s)\n", SSLeay(), SSLeay_version(SSLEAY_VERSION))) <0)
1797 exit(1);
1798
1799 exit(0);
1800}
479cece8 1801 ]])],
cd018561 1802 [
1803 ssl_library_ver=`cat conftest.ssllibver`
1804 AC_MSG_RESULT($ssl_library_ver)
1805 ],
1806 [
1807 AC_MSG_RESULT(not found)
1808 AC_MSG_ERROR(OpenSSL library not found.)
1a01a50c 1809 ],
1810 [
1811 AC_MSG_WARN([cross compiling: not checking])
cd018561 1812 ]
1813)
58d100bf 1814
9780116c 1815# Sanity check OpenSSL headers
1816AC_MSG_CHECKING([whether OpenSSL's headers match the library])
1a01a50c 1817AC_RUN_IFELSE(
479cece8 1818 [AC_LANG_SOURCE([[
9780116c 1819#include <string.h>
1820#include <openssl/opensslv.h>
aec4cb4f 1821int main(void) { exit(SSLeay() == OPENSSL_VERSION_NUMBER ? 0 : 1); }
479cece8 1822 ]])],
9780116c 1823 [
1824 AC_MSG_RESULT(yes)
1825 ],
1826 [
1827 AC_MSG_RESULT(no)
e15ba28b 1828 AC_MSG_ERROR([Your OpenSSL headers do not match your library.
1829Check config.log for details.
1830Also see contrib/findssl.sh for help identifying header/library mismatches.])
1a01a50c 1831 ],
1832 [
1833 AC_MSG_WARN([cross compiling: not checking])
9780116c 1834 ]
1835)
1836
e5146707 1837# Check for OpenSSL without EVP_aes_{192,256}_cbc
1838AC_MSG_CHECKING([whether OpenSSL has crippled AES support])
1839AC_COMPILE_IFELSE(
1840 [AC_LANG_SOURCE([[
1841#include <string.h>
1842#include <openssl/evp.h>
300ea548 1843int main(void) { exit(EVP_aes_192_cbc() == NULL || EVP_aes_256_cbc() == NULL);}
e5146707 1844 ]])],
1845 [
1846 AC_MSG_RESULT(no)
1847 ],
1848 [
1849 AC_MSG_RESULT(yes)
1850 AC_DEFINE(OPENSSL_LOBOTOMISED_AES, 1,
1851 [libcrypto is missing AES 192 and 256 bit functions])
1852 ]
1853)
1854
5486a457 1855# Some systems want crypt() from libcrypt, *not* the version in OpenSSL,
1856# because the system crypt() is more featureful.
1857if test "x$check_for_libcrypt_before" = "x1"; then
1858 AC_CHECK_LIB(crypt, crypt)
1859fi
1860
aff51935 1861# Some Linux systems (Slackware) need crypt() from libcrypt, *not* the
8087c5ee 1862# version in OpenSSL.
05114c74 1863if test "x$check_for_libcrypt_later" = "x1"; then
20cad736 1864 AC_CHECK_LIB(crypt, crypt, LIBS="$LIBS -lcrypt")
717057b6 1865fi
1866
4c653d8e 1867AC_CHECK_LIB(iaf, ia_openinfo)
f1b0ecc3 1868
1869### Configure cryptographic random number support
1870
1871# Check wheter OpenSSL seeds itself
1872AC_MSG_CHECKING([whether OpenSSL's PRNG is internally seeded])
1a01a50c 1873AC_RUN_IFELSE(
479cece8 1874 [AC_LANG_SOURCE([[
f1b0ecc3 1875#include <string.h>
1876#include <openssl/rand.h>
aec4cb4f 1877int main(void) { exit(RAND_status() == 1 ? 0 : 1); }
479cece8 1878 ]])],
f1b0ecc3 1879 [
1880 OPENSSL_SEEDS_ITSELF=yes
1881 AC_MSG_RESULT(yes)
1882 ],
1883 [
1884 AC_MSG_RESULT(no)
1885 # Default to use of the rand helper if OpenSSL doesn't
1886 # seed itself
1887 USE_RAND_HELPER=yes
1a01a50c 1888 ],
1889 [
1890 AC_MSG_WARN([cross compiling: assuming yes])
1891 # This is safe, since all recent OpenSSL versions will
82f4e93d 1892 # complain at runtime if not seeded correctly.
1a01a50c 1893 OPENSSL_SEEDS_ITSELF=yes
f1b0ecc3 1894 ]
1895)
1896
1897
1898# Do we want to force the use of the rand helper?
1899AC_ARG_WITH(rand-helper,
1900 [ --with-rand-helper Use subprocess to gather strong randomness ],
1901 [
1902 if test "x$withval" = "xno" ; then
aff51935 1903 # Force use of OpenSSL's internal RNG, even if
f1b0ecc3 1904 # the previous test showed it to be unseeded.
1905 if test -z "$OPENSSL_SEEDS_ITSELF" ; then
1906 AC_MSG_WARN([*** Forcing use of OpenSSL's non-self-seeding PRNG])
1907 OPENSSL_SEEDS_ITSELF=yes
1908 USE_RAND_HELPER=""
1909 fi
1910 else
1911 USE_RAND_HELPER=yes
1912 fi
1913 ],
82f4e93d 1914)
f1b0ecc3 1915
1916# Which randomness source do we use?
4b492aab 1917if test ! -z "$OPENSSL_SEEDS_ITSELF" && test -z "$USE_RAND_HELPER" ; then
f1b0ecc3 1918 # OpenSSL only
3466e002 1919 AC_DEFINE(OPENSSL_PRNG_ONLY, 1,
1920 [Define if you want OpenSSL's internally seeded PRNG only])
f1b0ecc3 1921 RAND_MSG="OpenSSL internal ONLY"
1922 INSTALL_SSH_RAND_HELPER=""
70e2f2f3 1923elif test ! -z "$USE_RAND_HELPER" ; then
1924 # install rand helper
f1b0ecc3 1925 RAND_MSG="ssh-rand-helper"
1926 INSTALL_SSH_RAND_HELPER="yes"
1927fi
1928AC_SUBST(INSTALL_SSH_RAND_HELPER)
1929
1930### Configuration of ssh-rand-helper
1931
1932# PRNGD TCP socket
1933AC_ARG_WITH(prngd-port,
1934 [ --with-prngd-port=PORT read entropy from PRNGD/EGD TCP localhost:PORT],
1935 [
eb5d7ff6 1936 case "$withval" in
1937 no)
1938 withval=""
1939 ;;
1940 [[0-9]]*)
1941 ;;
1942 *)
1943 AC_MSG_ERROR(You must specify a numeric port number for --with-prngd-port)
1944 ;;
1945 esac
1946 if test ! -z "$withval" ; then
f1b0ecc3 1947 PRNGD_PORT="$withval"
3466e002 1948 AC_DEFINE_UNQUOTED(PRNGD_PORT, $PRNGD_PORT,
1949 [Port number of PRNGD/EGD random number socket])
f1b0ecc3 1950 fi
1951 ]
1952)
1953
1954# PRNGD Unix domain socket
1955AC_ARG_WITH(prngd-socket,
1956 [ --with-prngd-socket=FILE read entropy from PRNGD/EGD socket FILE (default=/var/run/egd-pool)],
1957 [
eb5d7ff6 1958 case "$withval" in
1959 yes)
f1b0ecc3 1960 withval="/var/run/egd-pool"
eb5d7ff6 1961 ;;
1962 no)
1963 withval=""
1964 ;;
1965 /*)
1966 ;;
1967 *)
1968 AC_MSG_ERROR(You must specify an absolute path to the entropy socket)
1969 ;;
1970 esac
1971
1972 if test ! -z "$withval" ; then
f1b0ecc3 1973 if test ! -z "$PRNGD_PORT" ; then
1974 AC_MSG_ERROR(You may not specify both a PRNGD/EGD port and socket)
1975 fi
906e811b 1976 if test ! -r "$withval" ; then
f1b0ecc3 1977 AC_MSG_WARN(Entropy socket is not readable)
1978 fi
1979 PRNGD_SOCKET="$withval"
3466e002 1980 AC_DEFINE_UNQUOTED(PRNGD_SOCKET, "$PRNGD_SOCKET",
1981 [Location of PRNGD/EGD random number socket])
f1b0ecc3 1982 fi
ddceb1c8 1983 ],
1984 [
1985 # Check for existing socket only if we don't have a random device already
1986 if test "$USE_RAND_HELPER" = yes ; then
1987 AC_MSG_CHECKING(for PRNGD/EGD socket)
1988 # Insert other locations here
1989 for sock in /var/run/egd-pool /dev/egd-pool /etc/entropy; do
1990 if test -r $sock && $TEST_MINUS_S_SH -c "test -S $sock -o -p $sock" ; then
1991 PRNGD_SOCKET="$sock"
1992 AC_DEFINE_UNQUOTED(PRNGD_SOCKET, "$PRNGD_SOCKET")
1993 break;
1994 fi
1995 done
1996 if test ! -z "$PRNGD_SOCKET" ; then
1997 AC_MSG_RESULT($PRNGD_SOCKET)
1998 else
1999 AC_MSG_RESULT(not found)
2000 fi
2001 fi
f1b0ecc3 2002 ]
2003)
2004
2005# Change default command timeout for hashing entropy source
2006entropy_timeout=200
2007AC_ARG_WITH(entropy-timeout,
2008 [ --with-entropy-timeout Specify entropy gathering command timeout (msec)],
2009 [
6cf0200f 2010 if test -n "$withval" && test "x$withval" != "xno" && \
2011 test "x${withval}" != "xyes"; then
f1b0ecc3 2012 entropy_timeout=$withval
2013 fi
82f4e93d 2014 ]
f1b0ecc3 2015)
3466e002 2016AC_DEFINE_UNQUOTED(ENTROPY_TIMEOUT_MSEC, $entropy_timeout,
2017 [Builtin PRNG command timeout])
f1b0ecc3 2018
fd3cbf67 2019SSH_PRIVSEP_USER=sshd
9a0fbcb3 2020AC_ARG_WITH(privsep-user,
5222e7ef 2021 [ --with-privsep-user=user Specify non-privileged user for privilege separation],
9a0fbcb3 2022 [
6cf0200f 2023 if test -n "$withval" && test "x$withval" != "xno" && \
2024 test "x${withval}" != "xyes"; then
fd3cbf67 2025 SSH_PRIVSEP_USER=$withval
9a0fbcb3 2026 fi
82f4e93d 2027 ]
9a0fbcb3 2028)
3466e002 2029AC_DEFINE_UNQUOTED(SSH_PRIVSEP_USER, "$SSH_PRIVSEP_USER",
2030 [non-privileged user for privilege separation])
fd3cbf67 2031AC_SUBST(SSH_PRIVSEP_USER)
9a0fbcb3 2032
81dadca3 2033# We do this little dance with the search path to insure
2034# that programs that we select for use by installed programs
2035# (which may be run by the super-user) come from trusted
2036# locations before they come from the user's private area.
2037# This should help avoid accidentally configuring some
2038# random version of a program in someone's personal bin.
2039
2040OPATH=$PATH
2041PATH=/bin:/usr/bin
f95c8ce8 2042test -h /bin 2> /dev/null && PATH=/usr/bin
81dadca3 2043test -d /sbin && PATH=$PATH:/sbin
2044test -d /usr/sbin && PATH=$PATH:/usr/sbin
2045PATH=$PATH:/etc:$OPATH
2046
aff51935 2047# These programs are used by the command hashing source to gather entropy
f1b0ecc3 2048OSSH_PATH_ENTROPY_PROG(PROG_LS, ls)
2049OSSH_PATH_ENTROPY_PROG(PROG_NETSTAT, netstat)
2050OSSH_PATH_ENTROPY_PROG(PROG_ARP, arp)
2051OSSH_PATH_ENTROPY_PROG(PROG_IFCONFIG, ifconfig)
2052OSSH_PATH_ENTROPY_PROG(PROG_JSTAT, jstat)
2053OSSH_PATH_ENTROPY_PROG(PROG_PS, ps)
2054OSSH_PATH_ENTROPY_PROG(PROG_SAR, sar)
2055OSSH_PATH_ENTROPY_PROG(PROG_W, w)
2056OSSH_PATH_ENTROPY_PROG(PROG_WHO, who)
2057OSSH_PATH_ENTROPY_PROG(PROG_LAST, last)
2058OSSH_PATH_ENTROPY_PROG(PROG_LASTLOG, lastlog)
2059OSSH_PATH_ENTROPY_PROG(PROG_DF, df)
2060OSSH_PATH_ENTROPY_PROG(PROG_VMSTAT, vmstat)
2061OSSH_PATH_ENTROPY_PROG(PROG_UPTIME, uptime)
2062OSSH_PATH_ENTROPY_PROG(PROG_IPCS, ipcs)
2063OSSH_PATH_ENTROPY_PROG(PROG_TAIL, tail)
81dadca3 2064# restore PATH
2065PATH=$OPATH
f1b0ecc3 2066
2067# Where does ssh-rand-helper get its randomness from?
2068INSTALL_SSH_PRNG_CMDS=""
2069if test ! -z "$INSTALL_SSH_RAND_HELPER" ; then
2070 if test ! -z "$PRNGD_PORT" ; then
2071 RAND_HELPER_MSG="TCP localhost:$PRNGD_PORT"
2072 elif test ! -z "$PRNGD_SOCKET" ; then
2073 RAND_HELPER_MSG="Unix domain socket \"$PRNGD_SOCKET\""
2074 else
2075 RAND_HELPER_MSG="Command hashing (timeout $entropy_timeout)"
2076 RAND_HELPER_CMDHASH=yes
2077 INSTALL_SSH_PRNG_CMDS="yes"
2078 fi
2079fi
2080AC_SUBST(INSTALL_SSH_PRNG_CMDS)
2081
2082
66d6c27e 2083# Cheap hack to ensure NEWS-OS libraries are arranged right.
2084if test ! -z "$SONY" ; then
2085 LIBS="$LIBS -liberty";
2086fi
2087
9a406e1e 2088# Check for long long datatypes
2089AC_CHECK_TYPES([long long, unsigned long long, long double])
2090
2091# Check datatype sizes
976f7e19 2092AC_CHECK_SIZEOF(char, 1)
2b942fe0 2093AC_CHECK_SIZEOF(short int, 2)
2094AC_CHECK_SIZEOF(int, 4)
2095AC_CHECK_SIZEOF(long int, 4)
2096AC_CHECK_SIZEOF(long long int, 8)
2097
52f1ccb2 2098# Sanity check long long for some platforms (AIX)
2099if test "x$ac_cv_sizeof_long_long_int" = "x4" ; then
2100 ac_cv_sizeof_long_long_int=0
2101fi
2102
90f15776 2103# compute LLONG_MIN and LLONG_MAX if we don't know them.
2104if test -z "$have_llong_max"; then
2105 AC_MSG_CHECKING([for max value of long long])
2106 AC_RUN_IFELSE(
2107 [AC_LANG_SOURCE([[
2108#include <stdio.h>
2109/* Why is this so damn hard? */
2110#ifdef __GNUC__
2111# undef __GNUC__
2112#endif
2113#define __USE_ISOC99
2114#include <limits.h>
2115#define DATA "conftest.llminmax"
2116int main(void) {
2117 FILE *f;
2118 long long i, llmin, llmax = 0;
2119
2120 if((f = fopen(DATA,"w")) == NULL)
2121 exit(1);
2122
2123#if defined(LLONG_MIN) && defined(LLONG_MAX)
2124 fprintf(stderr, "Using system header for LLONG_MIN and LLONG_MAX\n");
2125 llmin = LLONG_MIN;
2126 llmax = LLONG_MAX;
2127#else
2128 fprintf(stderr, "Calculating LLONG_MIN and LLONG_MAX\n");
2129 /* This will work on one's complement and two's complement */
2130 for (i = 1; i > llmax; i <<= 1, i++)
2131 llmax = i;
2132 llmin = llmax + 1LL; /* wrap */
2133#endif
2134
2135 /* Sanity check */
2136 if (llmin + 1 < llmin || llmin - 1 < llmin || llmax + 1 > llmax
2137 || llmax - 1 > llmax) {
2138 fprintf(f, "unknown unknown\n");
2139 exit(2);
2140 }
2141
2142 if (fprintf(f ,"%lld %lld", llmin, llmax) < 0)
2143 exit(3);
2144
2145 exit(0);
2146}
2147 ]])],
2148 [
2149 llong_min=`$AWK '{print $1}' conftest.llminmax`
2150 llong_max=`$AWK '{print $2}' conftest.llminmax`
2151
2152 # snprintf on some Tru64s doesn't understand "%lld"
2153 case "$host" in
2154 alpha-dec-osf*)
2155 if test "x$ac_cv_sizeof_long_long_int" = "x8" &&
2156 test "x$llong_max" = "xld"; then
2157 llong_min="-9223372036854775808"
2158 llong_max="9223372036854775807"
2159 fi
2160 ;;
2161 esac
2162
2163 AC_MSG_RESULT($llong_max)
2164 AC_DEFINE_UNQUOTED(LLONG_MAX, [${llong_max}LL],
2165 [max value of long long calculated by configure])
2166 AC_MSG_CHECKING([for min value of long long])
2167 AC_MSG_RESULT($llong_min)
2168 AC_DEFINE_UNQUOTED(LLONG_MIN, [${llong_min}LL],
2169 [min value of long long calculated by configure])
2170 ],
2171 [
2172 AC_MSG_RESULT(not found)
2173 ],
2174 [
2175 AC_MSG_WARN([cross compiling: not checking])
2176 ]
2177 )
2178fi
2179
2180
a0391976 2181# More checks for data types
14a9a859 2182AC_CACHE_CHECK([for u_int type], ac_cv_have_u_int, [
2183 AC_TRY_COMPILE(
aff51935 2184 [ #include <sys/types.h> ],
2185 [ u_int a; a = 1;],
14a9a859 2186 [ ac_cv_have_u_int="yes" ],
2187 [ ac_cv_have_u_int="no" ]
2188 )
2189])
2190if test "x$ac_cv_have_u_int" = "xyes" ; then
3466e002 2191 AC_DEFINE(HAVE_U_INT, 1, [define if you have u_int data type])
14a9a859 2192 have_u_int=1
2193fi
2194
58d100bf 2195AC_CACHE_CHECK([for intXX_t types], ac_cv_have_intxx_t, [
2196 AC_TRY_COMPILE(
aff51935 2197 [ #include <sys/types.h> ],
2198 [ int8_t a; int16_t b; int32_t c; a = b = c = 1;],
58d100bf 2199 [ ac_cv_have_intxx_t="yes" ],
2200 [ ac_cv_have_intxx_t="no" ]
2201 )
2202])
2203if test "x$ac_cv_have_intxx_t" = "xyes" ; then
3466e002 2204 AC_DEFINE(HAVE_INTXX_T, 1, [define if you have intxx_t data type])
58d100bf 2205 have_intxx_t=1
2206fi
41cb4569 2207
2208if (test -z "$have_intxx_t" && \
aff51935 2209 test "x$ac_cv_header_stdint_h" = "xyes")
41cb4569 2210then
2211 AC_MSG_CHECKING([for intXX_t types in stdint.h])
2212 AC_TRY_COMPILE(
aff51935 2213 [ #include <stdint.h> ],
2214 [ int8_t a; int16_t b; int32_t c; a = b = c = 1;],
41cb4569 2215 [
2216 AC_DEFINE(HAVE_INTXX_T)
2217 AC_MSG_RESULT(yes)
2218 ],
2219 [ AC_MSG_RESULT(no) ]
2220 )
2221fi
2222
bd590612 2223AC_CACHE_CHECK([for int64_t type], ac_cv_have_int64_t, [
2224 AC_TRY_COMPILE(
1cbbe6c8 2225 [
2226#include <sys/types.h>
2227#ifdef HAVE_STDINT_H
2228# include <stdint.h>
2229#endif
2230#include <sys/socket.h>
2231#ifdef HAVE_SYS_BITYPES_H
2232# include <sys/bitypes.h>
2233#endif
aff51935 2234 ],
2235 [ int64_t a; a = 1;],
bd590612 2236 [ ac_cv_have_int64_t="yes" ],
2237 [ ac_cv_have_int64_t="no" ]
2238 )
2239])
2240if test "x$ac_cv_have_int64_t" = "xyes" ; then
3466e002 2241 AC_DEFINE(HAVE_INT64_T, 1, [define if you have int64_t data type])
ddceb1c8 2242fi
2243
58d100bf 2244AC_CACHE_CHECK([for u_intXX_t types], ac_cv_have_u_intxx_t, [
2245 AC_TRY_COMPILE(
aff51935 2246 [ #include <sys/types.h> ],
2247 [ u_int8_t a; u_int16_t b; u_int32_t c; a = b = c = 1;],
58d100bf 2248 [ ac_cv_have_u_intxx_t="yes" ],
2249 [ ac_cv_have_u_intxx_t="no" ]
2250 )
2251])
2252if test "x$ac_cv_have_u_intxx_t" = "xyes" ; then
3466e002 2253 AC_DEFINE(HAVE_U_INTXX_T, 1, [define if you have u_intxx_t data type])
58d100bf 2254 have_u_intxx_t=1
2255fi
2b942fe0 2256
41cb4569 2257if test -z "$have_u_intxx_t" ; then
2258 AC_MSG_CHECKING([for u_intXX_t types in sys/socket.h])
2259 AC_TRY_COMPILE(
aff51935 2260 [ #include <sys/socket.h> ],
2261 [ u_int8_t a; u_int16_t b; u_int32_t c; a = b = c = 1;],
41cb4569 2262 [
2263 AC_DEFINE(HAVE_U_INTXX_T)
2264 AC_MSG_RESULT(yes)
2265 ],
2266 [ AC_MSG_RESULT(no) ]
2267 )
2268fi
2269
bd590612 2270AC_CACHE_CHECK([for u_int64_t types], ac_cv_have_u_int64_t, [
2271 AC_TRY_COMPILE(
aff51935 2272 [ #include <sys/types.h> ],
2273 [ u_int64_t a; a = 1;],
bd590612 2274 [ ac_cv_have_u_int64_t="yes" ],
2275 [ ac_cv_have_u_int64_t="no" ]
2276 )
2277])
2278if test "x$ac_cv_have_u_int64_t" = "xyes" ; then
3466e002 2279 AC_DEFINE(HAVE_U_INT64_T, 1, [define if you have u_int64_t data type])
bd590612 2280 have_u_int64_t=1
2281fi
2282
ddceb1c8 2283if test -z "$have_u_int64_t" ; then
2284 AC_MSG_CHECKING([for u_int64_t type in sys/bitypes.h])
2285 AC_TRY_COMPILE(
aff51935 2286 [ #include <sys/bitypes.h> ],
ddceb1c8 2287 [ u_int64_t a; a = 1],
2288 [
2289 AC_DEFINE(HAVE_U_INT64_T)
2290 AC_MSG_RESULT(yes)
2291 ],
2292 [ AC_MSG_RESULT(no) ]
2293 )
2294fi
2295
41cb4569 2296if test -z "$have_u_intxx_t" ; then
2297 AC_CACHE_CHECK([for uintXX_t types], ac_cv_have_uintxx_t, [
2298 AC_TRY_COMPILE(
2299 [
2300#include <sys/types.h>
aff51935 2301 ],
2302 [ uint8_t a; uint16_t b; uint32_t c; a = b = c = 1; ],
41cb4569 2303 [ ac_cv_have_uintxx_t="yes" ],
2304 [ ac_cv_have_uintxx_t="no" ]
2305 )
2306 ])
2307 if test "x$ac_cv_have_uintxx_t" = "xyes" ; then
3466e002 2308 AC_DEFINE(HAVE_UINTXX_T, 1,
2309 [define if you have uintxx_t data type])
41cb4569 2310 fi
2311fi
2312
2313if test -z "$have_uintxx_t" ; then
2314 AC_MSG_CHECKING([for uintXX_t types in stdint.h])
2315 AC_TRY_COMPILE(
aff51935 2316 [ #include <stdint.h> ],
2317 [ uint8_t a; uint16_t b; uint32_t c; a = b = c = 1;],
41cb4569 2318 [
2319 AC_DEFINE(HAVE_UINTXX_T)
2320 AC_MSG_RESULT(yes)
2321 ],
2322 [ AC_MSG_RESULT(no) ]
2323 )
2324fi
2325
e5fe9a1f 2326if (test -z "$have_u_intxx_t" || test -z "$have_intxx_t" && \
aff51935 2327 test "x$ac_cv_header_sys_bitypes_h" = "xyes")
5cdfe03f 2328then
2329 AC_MSG_CHECKING([for intXX_t and u_intXX_t types in sys/bitypes.h])
2330 AC_TRY_COMPILE(
58d100bf 2331 [
2332#include <sys/bitypes.h>
aff51935 2333 ],
5cdfe03f 2334 [
837c30b8 2335 int8_t a; int16_t b; int32_t c;
2336 u_int8_t e; u_int16_t f; u_int32_t g;
2337 a = b = c = e = f = g = 1;
aff51935 2338 ],
5cdfe03f 2339 [
2340 AC_DEFINE(HAVE_U_INTXX_T)
2341 AC_DEFINE(HAVE_INTXX_T)
2342 AC_MSG_RESULT(yes)
2343 ],
2344 [AC_MSG_RESULT(no)]
aff51935 2345 )
5cdfe03f 2346fi
2347
0362750e 2348
2349AC_CACHE_CHECK([for u_char], ac_cv_have_u_char, [
2350 AC_TRY_COMPILE(
2351 [
2352#include <sys/types.h>
2353 ],
2354 [ u_char foo; foo = 125; ],
2355 [ ac_cv_have_u_char="yes" ],
2356 [ ac_cv_have_u_char="no" ]
2357 )
2358])
2359if test "x$ac_cv_have_u_char" = "xyes" ; then
3466e002 2360 AC_DEFINE(HAVE_U_CHAR, 1, [define if you have u_char data type])
0362750e 2361fi
2362
98a7c37b 2363TYPE_SOCKLEN_T
2b942fe0 2364
2d16d9a3 2365AC_CHECK_TYPES(sig_atomic_t,,,[#include <signal.h>])
ddceb1c8 2366
777ece68 2367AC_CHECK_TYPES(in_addr_t,,,
2368[#include <sys/types.h>
2369#include <netinet/in.h>])
7b578f7d 2370
58d100bf 2371AC_CACHE_CHECK([for size_t], ac_cv_have_size_t, [
2372 AC_TRY_COMPILE(
2373 [
18ba2aab 2374#include <sys/types.h>
58d100bf 2375 ],
2376 [ size_t foo; foo = 1235; ],
2377 [ ac_cv_have_size_t="yes" ],
2378 [ ac_cv_have_size_t="no" ]
2379 )
2380])
2381if test "x$ac_cv_have_size_t" = "xyes" ; then
3466e002 2382 AC_DEFINE(HAVE_SIZE_T, 1, [define if you have size_t data type])
58d100bf 2383fi
ea1970a3 2384
c04f75f1 2385AC_CACHE_CHECK([for ssize_t], ac_cv_have_ssize_t, [
2386 AC_TRY_COMPILE(
2387 [
2388#include <sys/types.h>
2389 ],
2390 [ ssize_t foo; foo = 1235; ],
2391 [ ac_cv_have_ssize_t="yes" ],
2392 [ ac_cv_have_ssize_t="no" ]
2393 )
2394])
2395if test "x$ac_cv_have_ssize_t" = "xyes" ; then
3466e002 2396 AC_DEFINE(HAVE_SSIZE_T, 1, [define if you have ssize_t data type])
c04f75f1 2397fi
2398
f1c4659d 2399AC_CACHE_CHECK([for clock_t], ac_cv_have_clock_t, [
2400 AC_TRY_COMPILE(
2401 [
2402#include <time.h>
2403 ],
2404 [ clock_t foo; foo = 1235; ],
2405 [ ac_cv_have_clock_t="yes" ],
2406 [ ac_cv_have_clock_t="no" ]
2407 )
2408])
2409if test "x$ac_cv_have_clock_t" = "xyes" ; then
3466e002 2410 AC_DEFINE(HAVE_CLOCK_T, 1, [define if you have clock_t data type])
f1c4659d 2411fi
2412
1c04b088 2413AC_CACHE_CHECK([for sa_family_t], ac_cv_have_sa_family_t, [
2414 AC_TRY_COMPILE(
2415 [
2416#include <sys/types.h>
2417#include <sys/socket.h>
2418 ],
2419 [ sa_family_t foo; foo = 1235; ],
2420 [ ac_cv_have_sa_family_t="yes" ],
77bb0bca 2421 [ AC_TRY_COMPILE(
2422 [
2423#include <sys/types.h>
2424#include <sys/socket.h>
2425#include <netinet/in.h>
2426 ],
2427 [ sa_family_t foo; foo = 1235; ],
2428 [ ac_cv_have_sa_family_t="yes" ],
2429
1c04b088 2430 [ ac_cv_have_sa_family_t="no" ]
77bb0bca 2431 )]
1c04b088 2432 )
2433])
2434if test "x$ac_cv_have_sa_family_t" = "xyes" ; then
3466e002 2435 AC_DEFINE(HAVE_SA_FAMILY_T, 1,
2436 [define if you have sa_family_t data type])
1c04b088 2437fi
2438
729bfe59 2439AC_CACHE_CHECK([for pid_t], ac_cv_have_pid_t, [
2440 AC_TRY_COMPILE(
2441 [
2442#include <sys/types.h>
2443 ],
2444 [ pid_t foo; foo = 1235; ],
2445 [ ac_cv_have_pid_t="yes" ],
2446 [ ac_cv_have_pid_t="no" ]
2447 )
2448])
2449if test "x$ac_cv_have_pid_t" = "xyes" ; then
3466e002 2450 AC_DEFINE(HAVE_PID_T, 1, [define if you have pid_t data type])
729bfe59 2451fi
2452
2453AC_CACHE_CHECK([for mode_t], ac_cv_have_mode_t, [
2454 AC_TRY_COMPILE(
2455 [
2456#include <sys/types.h>
2457 ],
2458 [ mode_t foo; foo = 1235; ],
2459 [ ac_cv_have_mode_t="yes" ],
2460 [ ac_cv_have_mode_t="no" ]
2461 )
2462])
2463if test "x$ac_cv_have_mode_t" = "xyes" ; then
3466e002 2464 AC_DEFINE(HAVE_MODE_T, 1, [define if you have mode_t data type])
729bfe59 2465fi
2466
e3a93db0 2467
58d100bf 2468AC_CACHE_CHECK([for struct sockaddr_storage], ac_cv_have_struct_sockaddr_storage, [
2469 AC_TRY_COMPILE(
2470 [
18ba2aab 2471#include <sys/types.h>
2472#include <sys/socket.h>
58d100bf 2473 ],
2474 [ struct sockaddr_storage s; ],
2475 [ ac_cv_have_struct_sockaddr_storage="yes" ],
2476 [ ac_cv_have_struct_sockaddr_storage="no" ]
2477 )
2478])
2479if test "x$ac_cv_have_struct_sockaddr_storage" = "xyes" ; then
3466e002 2480 AC_DEFINE(HAVE_STRUCT_SOCKADDR_STORAGE, 1,
2481 [define if you have struct sockaddr_storage data type])
58d100bf 2482fi
48e671d5 2483
58d100bf 2484AC_CACHE_CHECK([for struct sockaddr_in6], ac_cv_have_struct_sockaddr_in6, [
2485 AC_TRY_COMPILE(
2486 [
cbd7492e 2487#include <sys/types.h>
58d100bf 2488#include <netinet/in.h>
2489 ],
2490 [ struct sockaddr_in6 s; s.sin6_family = 0; ],
2491 [ ac_cv_have_struct_sockaddr_in6="yes" ],
2492 [ ac_cv_have_struct_sockaddr_in6="no" ]
2493 )
2494])
2495if test "x$ac_cv_have_struct_sockaddr_in6" = "xyes" ; then
3466e002 2496 AC_DEFINE(HAVE_STRUCT_SOCKADDR_IN6, 1,
2497 [define if you have struct sockaddr_in6 data type])
58d100bf 2498fi
48e671d5 2499
58d100bf 2500AC_CACHE_CHECK([for struct in6_addr], ac_cv_have_struct_in6_addr, [
2501 AC_TRY_COMPILE(
2502 [
cbd7492e 2503#include <sys/types.h>
58d100bf 2504#include <netinet/in.h>
2505 ],
2506 [ struct in6_addr s; s.s6_addr[0] = 0; ],
2507 [ ac_cv_have_struct_in6_addr="yes" ],
2508 [ ac_cv_have_struct_in6_addr="no" ]
2509 )
2510])
2511if test "x$ac_cv_have_struct_in6_addr" = "xyes" ; then
3466e002 2512 AC_DEFINE(HAVE_STRUCT_IN6_ADDR, 1,
2513 [define if you have struct in6_addr data type])
58d100bf 2514fi
48e671d5 2515
58d100bf 2516AC_CACHE_CHECK([for struct addrinfo], ac_cv_have_struct_addrinfo, [
2517 AC_TRY_COMPILE(
2518 [
18ba2aab 2519#include <sys/types.h>
2520#include <sys/socket.h>
2521#include <netdb.h>
58d100bf 2522 ],
2523 [ struct addrinfo s; s.ai_flags = AI_PASSIVE; ],
2524 [ ac_cv_have_struct_addrinfo="yes" ],
2525 [ ac_cv_have_struct_addrinfo="no" ]
2526 )
2527])
2528if test "x$ac_cv_have_struct_addrinfo" = "xyes" ; then
3466e002 2529 AC_DEFINE(HAVE_STRUCT_ADDRINFO, 1,
2530 [define if you have struct addrinfo data type])
58d100bf 2531fi
2532
89c7e31c 2533AC_CACHE_CHECK([for struct timeval], ac_cv_have_struct_timeval, [
2534 AC_TRY_COMPILE(
aff51935 2535 [ #include <sys/time.h> ],
2536 [ struct timeval tv; tv.tv_sec = 1;],
89c7e31c 2537 [ ac_cv_have_struct_timeval="yes" ],
2538 [ ac_cv_have_struct_timeval="no" ]
2539 )
2540])
2541if test "x$ac_cv_have_struct_timeval" = "xyes" ; then
3466e002 2542 AC_DEFINE(HAVE_STRUCT_TIMEVAL, 1, [define if you have struct timeval])
89c7e31c 2543 have_struct_timeval=1
2544fi
2545
5271b55c 2546AC_CHECK_TYPES(struct timespec)
2547
85abc74b 2548# We need int64_t or else certian parts of the compile will fail.
4b492aab 2549if test "x$ac_cv_have_int64_t" = "xno" && \
2550 test "x$ac_cv_sizeof_long_int" != "x8" && \
2551 test "x$ac_cv_sizeof_long_long_int" = "x0" ; then
85abc74b 2552 echo "OpenSSH requires int64_t support. Contact your vendor or install"
2553 echo "an alternative compiler (I.E., GCC) before continuing."
2554 echo ""
2555 exit 1;
733cf7f4 2556else
2557dnl test snprintf (broken on SCO w/gcc)
1a01a50c 2558 AC_RUN_IFELSE(
479cece8 2559 [AC_LANG_SOURCE([[
733cf7f4 2560#include <stdio.h>
2561#include <string.h>
2562#ifdef HAVE_SNPRINTF
2563main()
2564{
2565 char buf[50];
2566 char expected_out[50];
2567 int mazsize = 50 ;
2568#if (SIZEOF_LONG_INT == 8)
2569 long int num = 0x7fffffffffffffff;
2570#else
763a1a18 2571 long long num = 0x7fffffffffffffffll;
733cf7f4 2572#endif
2573 strcpy(expected_out, "9223372036854775807");
2574 snprintf(buf, mazsize, "%lld", num);
2575 if(strcmp(buf, expected_out) != 0)
aff51935 2576 exit(1);
733cf7f4 2577 exit(0);
2578}
2579#else
2580main() { exit(0); }
2581#endif
479cece8 2582 ]])], [ true ], [ AC_DEFINE(BROKEN_SNPRINTF) ],
1a01a50c 2583 AC_MSG_WARN([cross compiling: Assuming working snprintf()])
733cf7f4 2584 )
2c523de9 2585fi
2586
77bb0bca 2587dnl Checks for structure members
58d100bf 2588OSSH_CHECK_HEADER_FOR_FIELD(ut_host, utmp.h, HAVE_HOST_IN_UTMP)
2589OSSH_CHECK_HEADER_FOR_FIELD(ut_host, utmpx.h, HAVE_HOST_IN_UTMPX)
2590OSSH_CHECK_HEADER_FOR_FIELD(syslen, utmpx.h, HAVE_SYSLEN_IN_UTMPX)
2591OSSH_CHECK_HEADER_FOR_FIELD(ut_pid, utmp.h, HAVE_PID_IN_UTMP)
2592OSSH_CHECK_HEADER_FOR_FIELD(ut_type, utmp.h, HAVE_TYPE_IN_UTMP)
25422c70 2593OSSH_CHECK_HEADER_FOR_FIELD(ut_type, utmpx.h, HAVE_TYPE_IN_UTMPX)
58d100bf 2594OSSH_CHECK_HEADER_FOR_FIELD(ut_tv, utmp.h, HAVE_TV_IN_UTMP)
2595OSSH_CHECK_HEADER_FOR_FIELD(ut_id, utmp.h, HAVE_ID_IN_UTMP)
daaff4d5 2596OSSH_CHECK_HEADER_FOR_FIELD(ut_id, utmpx.h, HAVE_ID_IN_UTMPX)
58d100bf 2597OSSH_CHECK_HEADER_FOR_FIELD(ut_addr, utmp.h, HAVE_ADDR_IN_UTMP)
2598OSSH_CHECK_HEADER_FOR_FIELD(ut_addr, utmpx.h, HAVE_ADDR_IN_UTMPX)
2599OSSH_CHECK_HEADER_FOR_FIELD(ut_addr_v6, utmp.h, HAVE_ADDR_V6_IN_UTMP)
2600OSSH_CHECK_HEADER_FOR_FIELD(ut_addr_v6, utmpx.h, HAVE_ADDR_V6_IN_UTMPX)
1d7b9b20 2601OSSH_CHECK_HEADER_FOR_FIELD(ut_exit, utmp.h, HAVE_EXIT_IN_UTMP)
2602OSSH_CHECK_HEADER_FOR_FIELD(ut_time, utmp.h, HAVE_TIME_IN_UTMP)
2603OSSH_CHECK_HEADER_FOR_FIELD(ut_time, utmpx.h, HAVE_TIME_IN_UTMPX)
2604OSSH_CHECK_HEADER_FOR_FIELD(ut_tv, utmpx.h, HAVE_TV_IN_UTMPX)
98a7c37b 2605
2606AC_CHECK_MEMBERS([struct stat.st_blksize])
ccc45ee0 2607AC_CHECK_MEMBER([struct __res_state.retrans], [], [AC_DEFINE(__res_state, state,
2608 [Define if we don't have struct __res_state in resolv.h])],
2609[
2610#include <stdio.h>
2611#if HAVE_SYS_TYPES_H
2612# include <sys/types.h>
2613#endif
2614#include <netinet/in.h>
2615#include <arpa/nameser.h>
2616#include <resolv.h>
2617])
1d7b9b20 2618
58d100bf 2619AC_CACHE_CHECK([for ss_family field in struct sockaddr_storage],
2620 ac_cv_have_ss_family_in_struct_ss, [
2621 AC_TRY_COMPILE(
2622 [
18ba2aab 2623#include <sys/types.h>
2624#include <sys/socket.h>
58d100bf 2625 ],
2626 [ struct sockaddr_storage s; s.ss_family = 1; ],
2627 [ ac_cv_have_ss_family_in_struct_ss="yes" ],
2628 [ ac_cv_have_ss_family_in_struct_ss="no" ],
2629 )
2630])
2631if test "x$ac_cv_have_ss_family_in_struct_ss" = "xyes" ; then
3466e002 2632 AC_DEFINE(HAVE_SS_FAMILY_IN_SS, 1, [Fields in struct sockaddr_storage])
58d100bf 2633fi
2634
58d100bf 2635AC_CACHE_CHECK([for __ss_family field in struct sockaddr_storage],
2636 ac_cv_have___ss_family_in_struct_ss, [
2637 AC_TRY_COMPILE(
2638 [
18ba2aab 2639#include <sys/types.h>
2640#include <sys/socket.h>
58d100bf 2641 ],
2642 [ struct sockaddr_storage s; s.__ss_family = 1; ],
2643 [ ac_cv_have___ss_family_in_struct_ss="yes" ],
2644 [ ac_cv_have___ss_family_in_struct_ss="no" ]
2645 )
2646])
2647if test "x$ac_cv_have___ss_family_in_struct_ss" = "xyes" ; then
3466e002 2648 AC_DEFINE(HAVE___SS_FAMILY_IN_SS, 1,
2649 [Fields in struct sockaddr_storage])
58d100bf 2650fi
2651
2e73a022 2652AC_CACHE_CHECK([for pw_class field in struct passwd],
2653 ac_cv_have_pw_class_in_struct_passwd, [
2654 AC_TRY_COMPILE(
2655 [
2e73a022 2656#include <pwd.h>
2657 ],
97994d32 2658 [ struct passwd p; p.pw_class = 0; ],
2e73a022 2659 [ ac_cv_have_pw_class_in_struct_passwd="yes" ],
2660 [ ac_cv_have_pw_class_in_struct_passwd="no" ]
2661 )
2662])
2663if test "x$ac_cv_have_pw_class_in_struct_passwd" = "xyes" ; then
3466e002 2664 AC_DEFINE(HAVE_PW_CLASS_IN_PASSWD, 1,
2665 [Define if your password has a pw_class field])
2e73a022 2666fi
2667
7751d4eb 2668AC_CACHE_CHECK([for pw_expire field in struct passwd],
2669 ac_cv_have_pw_expire_in_struct_passwd, [
2670 AC_TRY_COMPILE(
2671 [
2672#include <pwd.h>
2673 ],
2674 [ struct passwd p; p.pw_expire = 0; ],
2675 [ ac_cv_have_pw_expire_in_struct_passwd="yes" ],
2676 [ ac_cv_have_pw_expire_in_struct_passwd="no" ]
2677 )
2678])
2679if test "x$ac_cv_have_pw_expire_in_struct_passwd" = "xyes" ; then
3466e002 2680 AC_DEFINE(HAVE_PW_EXPIRE_IN_PASSWD, 1,
2681 [Define if your password has a pw_expire field])
7751d4eb 2682fi
2683
2684AC_CACHE_CHECK([for pw_change field in struct passwd],
2685 ac_cv_have_pw_change_in_struct_passwd, [
2686 AC_TRY_COMPILE(
2687 [
2688#include <pwd.h>
2689 ],
2690 [ struct passwd p; p.pw_change = 0; ],
2691 [ ac_cv_have_pw_change_in_struct_passwd="yes" ],
2692 [ ac_cv_have_pw_change_in_struct_passwd="no" ]
2693 )
2694])
2695if test "x$ac_cv_have_pw_change_in_struct_passwd" = "xyes" ; then
3466e002 2696 AC_DEFINE(HAVE_PW_CHANGE_IN_PASSWD, 1,
2697 [Define if your password has a pw_change field])
7751d4eb 2698fi
58d100bf 2699
637f9177 2700dnl make sure we're using the real structure members and not defines
6f34652e 2701AC_CACHE_CHECK([for msg_accrights field in struct msghdr],
2702 ac_cv_have_accrights_in_msghdr, [
1a01a50c 2703 AC_COMPILE_IFELSE(
6f34652e 2704 [
f95c8ce8 2705#include <sys/types.h>
6f34652e 2706#include <sys/socket.h>
2707#include <sys/uio.h>
637f9177 2708int main() {
2709#ifdef msg_accrights
1a01a50c 2710#error "msg_accrights is a macro"
637f9177 2711exit(1);
2712#endif
2713struct msghdr m;
2714m.msg_accrights = 0;
2715exit(0);
2716}
6f34652e 2717 ],
6f34652e 2718 [ ac_cv_have_accrights_in_msghdr="yes" ],
2719 [ ac_cv_have_accrights_in_msghdr="no" ]
2720 )
2721])
2722if test "x$ac_cv_have_accrights_in_msghdr" = "xyes" ; then
3466e002 2723 AC_DEFINE(HAVE_ACCRIGHTS_IN_MSGHDR, 1,
2724 [Define if your system uses access rights style
2725 file descriptor passing])
6f34652e 2726fi
2727
7176df4f 2728AC_CACHE_CHECK([for msg_control field in struct msghdr],
2729 ac_cv_have_control_in_msghdr, [
1a01a50c 2730 AC_COMPILE_IFELSE(
7176df4f 2731 [
f95c8ce8 2732#include <sys/types.h>
7176df4f 2733#include <sys/socket.h>
2734#include <sys/uio.h>
637f9177 2735int main() {
2736#ifdef msg_control
1a01a50c 2737#error "msg_control is a macro"
637f9177 2738exit(1);
2739#endif
2740struct msghdr m;
2741m.msg_control = 0;
2742exit(0);
2743}
7176df4f 2744 ],
7176df4f 2745 [ ac_cv_have_control_in_msghdr="yes" ],
2746 [ ac_cv_have_control_in_msghdr="no" ]
2747 )
2748])
2749if test "x$ac_cv_have_control_in_msghdr" = "xyes" ; then
3466e002 2750 AC_DEFINE(HAVE_CONTROL_IN_MSGHDR, 1,
2751 [Define if your system uses ancillary data style
2752 file descriptor passing])
7176df4f 2753fi
2754
58d100bf 2755AC_CACHE_CHECK([if libc defines __progname], ac_cv_libc_defines___progname, [
aff51935 2756 AC_TRY_LINK([],
2757 [ extern char *__progname; printf("%s", __progname); ],
58d100bf 2758 [ ac_cv_libc_defines___progname="yes" ],
2759 [ ac_cv_libc_defines___progname="no" ]
2760 )
2761])
2762if test "x$ac_cv_libc_defines___progname" = "xyes" ; then
3466e002 2763 AC_DEFINE(HAVE___PROGNAME, 1, [Define if libc defines __progname])
58d100bf 2764fi
8946db53 2765
c921ee00 2766AC_CACHE_CHECK([whether $CC implements __FUNCTION__], ac_cv_cc_implements___FUNCTION__, [
2767 AC_TRY_LINK([
2768#include <stdio.h>
aff51935 2769],
2770 [ printf("%s", __FUNCTION__); ],
c921ee00 2771 [ ac_cv_cc_implements___FUNCTION__="yes" ],
2772 [ ac_cv_cc_implements___FUNCTION__="no" ]
2773 )
2774])
2775if test "x$ac_cv_cc_implements___FUNCTION__" = "xyes" ; then
3466e002 2776 AC_DEFINE(HAVE___FUNCTION__, 1,
2777 [Define if compiler implements __FUNCTION__])
c921ee00 2778fi
2779
2780AC_CACHE_CHECK([whether $CC implements __func__], ac_cv_cc_implements___func__, [
2781 AC_TRY_LINK([
2782#include <stdio.h>
aff51935 2783],
2784 [ printf("%s", __func__); ],
c921ee00 2785 [ ac_cv_cc_implements___func__="yes" ],
2786 [ ac_cv_cc_implements___func__="no" ]
2787 )
2788])
2789if test "x$ac_cv_cc_implements___func__" = "xyes" ; then
3466e002 2790 AC_DEFINE(HAVE___func__, 1, [Define if compiler implements __func__])
c921ee00 2791fi
2792
9a406e1e 2793AC_CACHE_CHECK([whether va_copy exists], ac_cv_have_va_copy, [
2794 AC_TRY_LINK(
2795 [#include <stdarg.h>
2796 va_list x,y;],
2797 [va_copy(x,y);],
2798 [ ac_cv_have_va_copy="yes" ],
2799 [ ac_cv_have_va_copy="no" ]
2800 )
2801])
2802if test "x$ac_cv_have_va_copy" = "xyes" ; then
2803 AC_DEFINE(HAVE_VA_COPY, 1, [Define if va_copy exists])
2804fi
2805
2806AC_CACHE_CHECK([whether __va_copy exists], ac_cv_have___va_copy, [
2807 AC_TRY_LINK(
2808 [#include <stdarg.h>
2809 va_list x,y;],
2810 [__va_copy(x,y);],
2811 [ ac_cv_have___va_copy="yes" ],
2812 [ ac_cv_have___va_copy="no" ]
2813 )
2814])
2815if test "x$ac_cv_have___va_copy" = "xyes" ; then
2816 AC_DEFINE(HAVE___VA_COPY, 1, [Define if __va_copy exists])
2817fi
2818
1812a662 2819AC_CACHE_CHECK([whether getopt has optreset support],
2820 ac_cv_have_getopt_optreset, [
2821 AC_TRY_LINK(
2822 [
2823#include <getopt.h>
2824 ],
2825 [ extern int optreset; optreset = 0; ],
2826 [ ac_cv_have_getopt_optreset="yes" ],
2827 [ ac_cv_have_getopt_optreset="no" ]
2828 )
2829])
2830if test "x$ac_cv_have_getopt_optreset" = "xyes" ; then
3466e002 2831 AC_DEFINE(HAVE_GETOPT_OPTRESET, 1,
2832 [Define if your getopt(3) defines and uses optreset])
1812a662 2833fi
a0391976 2834
819b676f 2835AC_CACHE_CHECK([if libc defines sys_errlist], ac_cv_libc_defines_sys_errlist, [
aff51935 2836 AC_TRY_LINK([],
2837 [ extern const char *const sys_errlist[]; printf("%s", sys_errlist[0]);],
819b676f 2838 [ ac_cv_libc_defines_sys_errlist="yes" ],
2839 [ ac_cv_libc_defines_sys_errlist="no" ]
2840 )
2841])
2842if test "x$ac_cv_libc_defines_sys_errlist" = "xyes" ; then
3466e002 2843 AC_DEFINE(HAVE_SYS_ERRLIST, 1,
2844 [Define if your system defines sys_errlist[]])
819b676f 2845fi
2846
2847
416ed5a7 2848AC_CACHE_CHECK([if libc defines sys_nerr], ac_cv_libc_defines_sys_nerr, [
aff51935 2849 AC_TRY_LINK([],
2850 [ extern int sys_nerr; printf("%i", sys_nerr);],
416ed5a7 2851 [ ac_cv_libc_defines_sys_nerr="yes" ],
2852 [ ac_cv_libc_defines_sys_nerr="no" ]
2853 )
2854])
2855if test "x$ac_cv_libc_defines_sys_nerr" = "xyes" ; then
3466e002 2856 AC_DEFINE(HAVE_SYS_NERR, 1, [Define if your system defines sys_nerr])
416ed5a7 2857fi
2858
aff51935 2859SCARD_MSG="no"
295c8801 2860# Check whether user wants sectok support
2861AC_ARG_WITH(sectok,
2862 [ --with-sectok Enable smartcard support using libsectok],
d0b19c95 2863 [
2864 if test "x$withval" != "xno" ; then
2865 if test "x$withval" != "xyes" ; then
2866 CPPFLAGS="$CPPFLAGS -I${withval}"
2867 LDFLAGS="$LDFLAGS -L${withval}"
2868 if test ! -z "$need_dash_r" ; then
2869 LDFLAGS="$LDFLAGS -R${withval}"
2870 fi
2871 if test ! -z "$blibpath" ; then
2872 blibpath="$blibpath:${withval}"
2873 fi
2874 fi
2875 AC_CHECK_HEADERS(sectok.h)
2876 if test "$ac_cv_header_sectok_h" != yes; then
2877 AC_MSG_ERROR(Can't find sectok.h)
2878 fi
2879 AC_CHECK_LIB(sectok, sectok_open)
2880 if test "$ac_cv_lib_sectok_sectok_open" != yes; then
2881 AC_MSG_ERROR(Can't find libsectok)
2882 fi
3466e002 2883 AC_DEFINE(SMARTCARD, 1,
2884 [Define if you want smartcard support])
2885 AC_DEFINE(USE_SECTOK, 1,
2886 [Define if you want smartcard support
2887 using sectok])
aff51935 2888 SCARD_MSG="yes, using sectok"
295c8801 2889 fi
2890 ]
2891)
2892
2893# Check whether user wants OpenSC support
987b458f 2894OPENSC_CONFIG="no"
295c8801 2895AC_ARG_WITH(opensc,
e47fb473 2896 [ --with-opensc[[=PFX]] Enable smartcard support using OpenSC (optionally in PATH)],
987b458f 2897 [
2898 if test "x$withval" != "xno" ; then
2899 if test "x$withval" != "xyes" ; then
2900 OPENSC_CONFIG=$withval/bin/opensc-config
2901 else
2902 AC_PATH_PROG(OPENSC_CONFIG, opensc-config, no)
2903 fi
2904 if test "$OPENSC_CONFIG" != "no"; then
2905 LIBOPENSC_CFLAGS=`$OPENSC_CONFIG --cflags`
2906 LIBOPENSC_LIBS=`$OPENSC_CONFIG --libs`
2907 CPPFLAGS="$CPPFLAGS $LIBOPENSC_CFLAGS"
2908 LDFLAGS="$LDFLAGS $LIBOPENSC_LIBS"
2909 AC_DEFINE(SMARTCARD)
3466e002 2910 AC_DEFINE(USE_OPENSC, 1,
2911 [Define if you want smartcard support
2912 using OpenSC])
987b458f 2913 SCARD_MSG="yes, using OpenSC"
2914 fi
2915 fi
2916 ]
2917)
d0b19c95 2918
c31dc31c 2919# Check libraries needed by DNS fingerprint support
aff51935 2920AC_SEARCH_LIBS(getrrsetbyname, resolv,
3466e002 2921 [AC_DEFINE(HAVE_GETRRSETBYNAME, 1,
2922 [Define if getrrsetbyname() exists])],
3e05e934 2923 [
c31dc31c 2924 # Needed by our getrrsetbyname()
2925 AC_SEARCH_LIBS(res_query, resolv)
2926 AC_SEARCH_LIBS(dn_expand, resolv)
dabb524a 2927 AC_MSG_CHECKING(if res_query will link)
2928 AC_TRY_LINK_FUNC(res_query, AC_MSG_RESULT(yes),
2929 [AC_MSG_RESULT(no)
2930 saved_LIBS="$LIBS"
2931 LIBS="$LIBS -lresolv"
2932 AC_MSG_CHECKING(for res_query in -lresolv)
2933 AC_LINK_IFELSE([
2934#include <resolv.h>
2935int main()
2936{
2937 res_query (0, 0, 0, 0, 0);
2938 return 0;
2939}
2940 ],
2941 [LIBS="$LIBS -lresolv"
2942 AC_MSG_RESULT(yes)],
2943 [LIBS="$saved_LIBS"
2944 AC_MSG_RESULT(no)])
2945 ])
c31dc31c 2946 AC_CHECK_FUNCS(_getshort _getlong)
1c829da5 2947 AC_CHECK_DECLS([_getshort, _getlong], , ,
b5765e1d 2948 [#include <sys/types.h>
2949 #include <arpa/nameser.h>])
c31dc31c 2950 AC_CHECK_MEMBER(HEADER.ad,
3466e002 2951 [AC_DEFINE(HAVE_HEADER_AD, 1,
2952 [Define if HEADER.ad exists in arpa/nameser.h])],,
c31dc31c 2953 [#include <arpa/nameser.h>])
2954 ])
3e05e934 2955
12928e80 2956# Check whether user wants Kerberos 5 support
aff51935 2957KRB5_MSG="no"
12928e80 2958AC_ARG_WITH(kerberos5,
aff51935 2959 [ --with-kerberos5=PATH Enable Kerberos 5 support],
5585c441 2960 [ if test "x$withval" != "xno" ; then
2961 if test "x$withval" = "xyes" ; then
2962 KRB5ROOT="/usr/local"
2963 else
2964 KRB5ROOT=${withval}
2965 fi
2966
3466e002 2967 AC_DEFINE(KRB5, 1, [Define if you want Kerberos 5 support])
5585c441 2968 KRB5_MSG="yes"
2969
2970 AC_MSG_CHECKING(for krb5-config)
2971 if test -x $KRB5ROOT/bin/krb5-config ; then
2972 KRB5CONF=$KRB5ROOT/bin/krb5-config
2973 AC_MSG_RESULT($KRB5CONF)
2974
2975 AC_MSG_CHECKING(for gssapi support)
2976 if $KRB5CONF | grep gssapi >/dev/null ; then
2977 AC_MSG_RESULT(yes)
3466e002 2978 AC_DEFINE(GSSAPI, 1,
2979 [Define this if you want GSSAPI
2980 support in the version 2 protocol])
071970fb 2981 k5confopts=gssapi
aff51935 2982 else
5585c441 2983 AC_MSG_RESULT(no)
071970fb 2984 k5confopts=""
aff51935 2985 fi
071970fb 2986 K5CFLAGS="`$KRB5CONF --cflags $k5confopts`"
2987 K5LIBS="`$KRB5CONF --libs $k5confopts`"
5585c441 2988 CPPFLAGS="$CPPFLAGS $K5CFLAGS"
5585c441 2989 AC_MSG_CHECKING(whether we are using Heimdal)
2990 AC_TRY_COMPILE([ #include <krb5.h> ],
2991 [ char *tmp = heimdal_version; ],
2992 [ AC_MSG_RESULT(yes)
3466e002 2993 AC_DEFINE(HEIMDAL, 1,
2994 [Define this if you are using the
2995 Heimdal version of Kerberos V5]) ],
5585c441 2996 AC_MSG_RESULT(no)
2997 )
2998 else
2999 AC_MSG_RESULT(no)
12928e80 3000 CPPFLAGS="$CPPFLAGS -I${KRB5ROOT}/include"
aff51935 3001 LDFLAGS="$LDFLAGS -L${KRB5ROOT}/lib"
aff51935 3002 AC_MSG_CHECKING(whether we are using Heimdal)
3003 AC_TRY_COMPILE([ #include <krb5.h> ],
3004 [ char *tmp = heimdal_version; ],
3005 [ AC_MSG_RESULT(yes)
3006 AC_DEFINE(HEIMDAL)
41707f74 3007 K5LIBS="-lkrb5 -ldes"
3008 K5LIBS="$K5LIBS -lcom_err -lasn1"
82f4e93d 3009 AC_CHECK_LIB(roken, net_write,
41707f74 3010 [K5LIBS="$K5LIBS -lroken"])
aff51935 3011 ],
3012 [ AC_MSG_RESULT(no)
3013 K5LIBS="-lkrb5 -lk5crypto -lcom_err"
3014 ]
3015 )
4e00038c 3016 AC_SEARCH_LIBS(dn_expand, resolv)
12928e80 3017
749560dd 3018 AC_CHECK_LIB(gssapi,gss_init_sec_context,
3019 [ AC_DEFINE(GSSAPI)
3020 K5LIBS="-lgssapi $K5LIBS" ],
3021 [ AC_CHECK_LIB(gssapi_krb5,gss_init_sec_context,
3022 [ AC_DEFINE(GSSAPI)
aff51935 3023 K5LIBS="-lgssapi_krb5 $K5LIBS" ],
749560dd 3024 AC_MSG_WARN([Cannot find any suitable gss-api library - build may fail]),
3025 $K5LIBS)
3026 ],
3027 $K5LIBS)
82f4e93d 3028
749560dd 3029 AC_CHECK_HEADER(gssapi.h, ,
3030 [ unset ac_cv_header_gssapi_h
aff51935 3031 CPPFLAGS="$CPPFLAGS -I${KRB5ROOT}/include/gssapi"
749560dd 3032 AC_CHECK_HEADERS(gssapi.h, ,
3033 AC_MSG_WARN([Cannot find any suitable gss-api header - build may fail])
aff51935 3034 )
749560dd 3035 ]
3036 )
3037
3038 oldCPP="$CPPFLAGS"
3039 CPPFLAGS="$CPPFLAGS -I${KRB5ROOT}/include/gssapi"
3040 AC_CHECK_HEADER(gssapi_krb5.h, ,
3041 [ CPPFLAGS="$oldCPP" ])
3042
aff51935 3043 fi
5585c441 3044 if test ! -z "$need_dash_r" ; then
3045 LDFLAGS="$LDFLAGS -R${KRB5ROOT}/lib"
3046 fi
3047 if test ! -z "$blibpath" ; then
3048 blibpath="$blibpath:${KRB5ROOT}/lib"
3049 fi
071970fb 3050
f5555364 3051 AC_CHECK_HEADERS(gssapi.h gssapi/gssapi.h)
3052 AC_CHECK_HEADERS(gssapi_krb5.h gssapi/gssapi_krb5.h)
3053 AC_CHECK_HEADERS(gssapi_generic.h gssapi/gssapi_generic.h)
071970fb 3054
f5555364 3055 LIBS="$LIBS $K5LIBS"
3466e002 3056 AC_SEARCH_LIBS(k_hasafs, kafs, AC_DEFINE(USE_AFS, 1,
3057 [Define this if you want to use libkafs' AFS support]))
f5555364 3058 fi
071970fb 3059 ]
12928e80 3060)
b5b68128 3061
a0391976 3062# Looking for programs, paths and files
a0391976 3063
ecac8ee5 3064PRIVSEP_PATH=/var/empty
3065AC_ARG_WITH(privsep-path,
cda1ebcb 3066 [ --with-privsep-path=xxx Path for privilege separation chroot (default=/var/empty)],
ecac8ee5 3067 [
6cf0200f 3068 if test -n "$withval" && test "x$withval" != "xno" && \
3069 test "x${withval}" != "xyes"; then
ecac8ee5 3070 PRIVSEP_PATH=$withval
3071 fi
3072 ]
3073)
3074AC_SUBST(PRIVSEP_PATH)
3075
a0391976 3076AC_ARG_WITH(xauth,
3077 [ --with-xauth=PATH Specify path to xauth program ],
3078 [
6cf0200f 3079 if test -n "$withval" && test "x$withval" != "xno" && \
3080 test "x${withval}" != "xyes"; then
cbd7492e 3081 xauth_path=$withval
a0391976 3082 fi
3083 ],
3084 [
2bf42e4a 3085 TestPath="$PATH"
3086 TestPath="${TestPath}${PATH_SEPARATOR}/usr/X/bin"
3087 TestPath="${TestPath}${PATH_SEPARATOR}/usr/bin/X11"
3088 TestPath="${TestPath}${PATH_SEPARATOR}/usr/X11R6/bin"
3089 TestPath="${TestPath}${PATH_SEPARATOR}/usr/openwin/bin"
3090 AC_PATH_PROG(xauth_path, xauth, , $TestPath)
e5fe9a1f 3091 if (test ! -z "$xauth_path" && test -x "/usr/openwin/bin/xauth") ; then
a0391976 3092 xauth_path="/usr/openwin/bin/xauth"
3093 fi
3094 ]
3095)
3096
65a4b4af 3097STRIP_OPT=-s
3098AC_ARG_ENABLE(strip,
3099 [ --disable-strip Disable calling strip(1) on install],
3100 [
3101 if test "x$enableval" = "xno" ; then
3102 STRIP_OPT=
3103 fi
3104 ]
3105)
3106AC_SUBST(STRIP_OPT)
3107
b3ec54b4 3108if test -z "$xauth_path" ; then
3109 XAUTH_PATH="undefined"
3110 AC_SUBST(XAUTH_PATH)
3111else
3466e002 3112 AC_DEFINE_UNQUOTED(XAUTH_PATH, "$xauth_path",
3113 [Define if xauth is found in your path])
b3ec54b4 3114 XAUTH_PATH=$xauth_path
3115 AC_SUBST(XAUTH_PATH)
a0391976 3116fi
a0391976 3117
3118# Check for mail directory (last resort if we cannot get it from headers)
3119if test ! -z "$MAIL" ; then
3120 maildir=`dirname $MAIL`
3466e002 3121 AC_DEFINE_UNQUOTED(MAIL_DIRECTORY, "$maildir",
3122 [Set this to your mail directory if you don't have maillock.h])
a0391976 3123fi
3124
479cece8 3125if test ! -z "$cross_compiling" && test "x$cross_compiling" = "xyes"; then
1a01a50c 3126 AC_MSG_WARN([cross compiling: Disabling /dev/ptmx test])
3127 disable_ptmx_check=yes
3128fi
a0391976 3129if test -z "$no_dev_ptmx" ; then
6e879cb4 3130 if test "x$disable_ptmx_check" != "xyes" ; then
aff51935 3131 AC_CHECK_FILE("/dev/ptmx",
6e879cb4 3132 [
3466e002 3133 AC_DEFINE_UNQUOTED(HAVE_DEV_PTMX, 1,
3134 [Define if you have /dev/ptmx])
6e879cb4 3135 have_dev_ptmx=1
3136 ]
3137 )
3138 fi
3276571c 3139fi
1a01a50c 3140
479cece8 3141if test ! -z "$cross_compiling" && test "x$cross_compiling" != "xyes"; then
1a01a50c 3142 AC_CHECK_FILE("/dev/ptc",
3143 [
3466e002 3144 AC_DEFINE_UNQUOTED(HAVE_DEV_PTS_AND_PTC, 1,
3145 [Define if you have /dev/ptc])
1a01a50c 3146 have_dev_ptc=1
3147 ]
3148 )
3149else
3150 AC_MSG_WARN([cross compiling: Disabling /dev/ptc test])
3151fi
3276571c 3152
a0391976 3153# Options from here on. Some of these are preset by platform above
fdf6b7aa 3154AC_ARG_WITH(mantype,
5d97cfbf 3155 [ --with-mantype=man|cat|doc Set man page type],
c54a6257 3156 [
5d97cfbf 3157 case "$withval" in
3158 man|cat|doc)
3159 MANTYPE=$withval
3160 ;;
3161 *)
3162 AC_MSG_ERROR(invalid man type: $withval)
3163 ;;
3164 esac
c54a6257 3165 ]
3166)
e0c4d3ac 3167if test -z "$MANTYPE"; then
2bf42e4a 3168 TestPath="/usr/bin${PATH_SEPARATOR}/usr/ucb"
3169 AC_PATH_PROGS(NROFF, nroff awf, /bin/false, $TestPath)
e0c4d3ac 3170 if ${NROFF} -mdoc ${srcdir}/ssh.1 >/dev/null 2>&1; then
3171 MANTYPE=doc
3172 elif ${NROFF} -man ${srcdir}/ssh.1 >/dev/null 2>&1; then
3173 MANTYPE=man
3174 else
3175 MANTYPE=cat
3176 fi
3177fi
c54a6257 3178AC_SUBST(MANTYPE)
e0c4d3ac 3179if test "$MANTYPE" = "doc"; then
3180 mansubdir=man;
3181else
3182 mansubdir=$MANTYPE;
3183fi
3184AC_SUBST(mansubdir)
0bc5b6fb 3185
a0391976 3186# Check whether to enable MD5 passwords
aff51935 3187MD5_MSG="no"
2ddcfdf3 3188AC_ARG_WITH(md5-passwords,
caf3bc51 3189 [ --with-md5-passwords Enable use of MD5 passwords],
0bc5b6fb 3190 [
bcf36c78 3191 if test "x$withval" != "xno" ; then
3466e002 3192 AC_DEFINE(HAVE_MD5_PASSWORDS, 1,
3193 [Define if you want to allow MD5 passwords])
aff51935 3194 MD5_MSG="yes"
0bc5b6fb 3195 fi
3196 ]
caf3bc51 3197)
3198
a0391976 3199# Whether to disable shadow password support
a7effaac 3200AC_ARG_WITH(shadow,
3201 [ --without-shadow Disable shadow password support],
3202 [
82f4e93d 3203 if test "x$withval" = "xno" ; then
a7effaac 3204 AC_DEFINE(DISABLE_SHADOW)
4cb5ffa0 3205 disable_shadow=yes
a7effaac 3206 fi
3207 ]
3208)
3209
4cb5ffa0 3210if test -z "$disable_shadow" ; then
3211 AC_MSG_CHECKING([if the systems has expire shadow information])
3212 AC_TRY_COMPILE(
3213 [
3214#include <sys/types.h>
3215#include <shadow.h>
3216 struct spwd sp;
3217 ],[ sp.sp_expire = sp.sp_lstchg = sp.sp_inact = 0; ],
3218 [ sp_expire_available=yes ], []
3219 )
3220
3221 if test "x$sp_expire_available" = "xyes" ; then
3222 AC_MSG_RESULT(yes)
3466e002 3223 AC_DEFINE(HAS_SHADOW_EXPIRE, 1,
3224 [Define if you want to use shadow password expire field])
4cb5ffa0 3225 else
3226 AC_MSG_RESULT(no)
3227 fi
3228fi
3229
a0391976 3230# Use ip address instead of hostname in $DISPLAY
44839801 3231if test ! -z "$IPADDR_IN_DISPLAY" ; then
3232 DISPLAY_HACK_MSG="yes"
3466e002 3233 AC_DEFINE(IPADDR_IN_DISPLAY, 1,
3234 [Define if you need to use IP address
3235 instead of hostname in $DISPLAY])
44839801 3236else
aff51935 3237 DISPLAY_HACK_MSG="no"
44839801 3238 AC_ARG_WITH(ipaddr-display,
3239 [ --with-ipaddr-display Use ip address instead of hostname in \$DISPLAY],
3240 [
82f4e93d 3241 if test "x$withval" != "xno" ; then
44839801 3242 AC_DEFINE(IPADDR_IN_DISPLAY)
aff51935 3243 DISPLAY_HACK_MSG="yes"
44839801 3244 fi
3245 ]
3246 )
3247fi
a7effaac 3248
95b99395 3249# check for /etc/default/login and use it if present.
daa41e62 3250AC_ARG_ENABLE(etc-default-login,
6ff3d0dc 3251 [ --disable-etc-default-login Disable using PATH from /etc/default/login [no]],
694d0cef 3252 [ if test "x$enableval" = "xno"; then
3253 AC_MSG_NOTICE([/etc/default/login handling disabled])
3254 etc_default_login=no
3255 else
3256 etc_default_login=yes
3257 fi ],
b0e7249f 3258 [ if test ! -z "$cross_compiling" && test "x$cross_compiling" = "xyes";
3259 then
3260 AC_MSG_WARN([cross compiling: not checking /etc/default/login])
3261 etc_default_login=no
3262 else
3263 etc_default_login=yes
3264 fi ]
694d0cef 3265)
95b99395 3266
694d0cef 3267if test "x$etc_default_login" != "xno"; then
3268 AC_CHECK_FILE("/etc/default/login",
3269 [ external_path_file=/etc/default/login ])
b0e7249f 3270 if test "x$external_path_file" = "x/etc/default/login"; then
3466e002 3271 AC_DEFINE(HAVE_ETC_DEFAULT_LOGIN, 1,
3272 [Define if your system has /etc/default/login])
1a01a50c 3273 fi
694d0cef 3274fi
95b99395 3275
8d184c09 3276dnl BSD systems use /etc/login.conf so --with-default-path= has no effect
4b492aab 3277if test $ac_cv_func_login_getcapbool = "yes" && \
3278 test $ac_cv_header_login_cap_h = "yes" ; then
95b99395 3279 external_path_file=/etc/login.conf
8d184c09 3280fi
95b99395 3281
a0391976 3282# Whether to mess with the default path
aff51935 3283SERVER_PATH_MSG="(default)"
c43d69a9 3284AC_ARG_WITH(default-path,
75817f90 3285 [ --with-default-path= Specify default \$PATH environment for server],
cb807f40 3286 [
95b99395 3287 if test "x$external_path_file" = "x/etc/login.conf" ; then
8d184c09 3288 AC_MSG_WARN([
3289--with-default-path=PATH has no effect on this system.
3290Edit /etc/login.conf instead.])
82f4e93d 3291 elif test "x$withval" != "xno" ; then
89bbd457 3292 if test ! -z "$external_path_file" ; then
95b99395 3293 AC_MSG_WARN([
3294--with-default-path=PATH will only be used if PATH is not defined in
3295$external_path_file .])
3296 fi
b2d818e6 3297 user_path="$withval"
aff51935 3298 SERVER_PATH_MSG="$withval"
cb807f40 3299 fi
b2d818e6 3300 ],
95b99395 3301 [ if test "x$external_path_file" = "x/etc/login.conf" ; then
3302 AC_MSG_WARN([Make sure the path to scp is in /etc/login.conf])
8d184c09 3303 else
89bbd457 3304 if test ! -z "$external_path_file" ; then
95b99395 3305 AC_MSG_WARN([
3306If PATH is defined in $external_path_file, ensure the path to scp is included,
3307otherwise scp will not work.])
3308 fi
b0e7249f 3309 AC_RUN_IFELSE(
3310 [AC_LANG_SOURCE([[
b2d818e6 3311/* find out what STDPATH is */
3312#include <stdio.h>
b2d818e6 3313#ifdef HAVE_PATHS_H
3314# include <paths.h>
3315#endif
3316#ifndef _PATH_STDPATH
d9a4e55b 3317# ifdef _PATH_USERPATH /* Irix */
3318# define _PATH_STDPATH _PATH_USERPATH
3319# else
3320# define _PATH_STDPATH "/usr/bin:/bin:/usr/sbin:/sbin"
3321# endif
b2d818e6 3322#endif
3323#include <sys/types.h>
3324#include <sys/stat.h>
3325#include <fcntl.h>
3326#define DATA "conftest.stdpath"
3327
3328main()
3329{
3330 FILE *fd;
3331 int rc;
82f4e93d 3332
b2d818e6 3333 fd = fopen(DATA,"w");
3334 if(fd == NULL)
3335 exit(1);
82f4e93d 3336
b2d818e6 3337 if ((rc = fprintf(fd,"%s", _PATH_STDPATH)) < 0)
3338 exit(1);
3339
3340 exit(0);
3341}
b0e7249f 3342 ]])],
3343 [ user_path=`cat conftest.stdpath` ],
b2d818e6 3344 [ user_path="/usr/bin:/bin:/usr/sbin:/sbin" ],
3345 [ user_path="/usr/bin:/bin:/usr/sbin:/sbin" ]
3346 )
3347# make sure $bindir is in USER_PATH so scp will work
3348 t_bindir=`eval echo ${bindir}`
3349 case $t_bindir in
3350 NONE/*) t_bindir=`echo $t_bindir | sed "s~NONE~$prefix~"` ;;
3351 esac
3352 case $t_bindir in
3353 NONE/*) t_bindir=`echo $t_bindir | sed "s~NONE~$ac_default_prefix~"` ;;
3354 esac
3355 echo $user_path | grep ":$t_bindir" > /dev/null 2>&1
3356 if test $? -ne 0 ; then
3357 echo $user_path | grep "^$t_bindir" > /dev/null 2>&1
3358 if test $? -ne 0 ; then
3359 user_path=$user_path:$t_bindir
3360 AC_MSG_RESULT(Adding $t_bindir to USER_PATH so scp will work)
3361 fi
3362 fi
8d184c09 3363 fi ]
cb807f40 3364)
95b99395 3365if test "x$external_path_file" != "x/etc/login.conf" ; then
3466e002 3366 AC_DEFINE_UNQUOTED(USER_PATH, "$user_path", [Specify default $PATH])
8d184c09 3367 AC_SUBST(user_path)
3368fi
cb807f40 3369
06617857 3370# Set superuser path separately to user path
06617857 3371AC_ARG_WITH(superuser-path,
3372 [ --with-superuser-path= Specify different path for super-user],
3373 [
6cf0200f 3374 if test -n "$withval" && test "x$withval" != "xno" && \
3375 test "x${withval}" != "xyes"; then
3466e002 3376 AC_DEFINE_UNQUOTED(SUPERUSER_PATH, "$withval",
3377 [Define if you want a different $PATH
3378 for the superuser])
06617857 3379 superuser_path=$withval
3380 fi
3381 ]
3382)
3383
3384
58d100bf 3385AC_MSG_CHECKING([if we need to convert IPv4 in IPv6-mapped addresses])
aff51935 3386IPV4_IN6_HACK_MSG="no"
80faa19f 3387AC_ARG_WITH(4in6,
3388 [ --with-4in6 Check for and convert IPv4 in IPv6 mapped addresses],
3389 [
3390 if test "x$withval" != "xno" ; then
3391 AC_MSG_RESULT(yes)
3466e002 3392 AC_DEFINE(IPV4_IN_IPV6, 1,
3393 [Detect IPv4 in IPv6 mapped addresses
3394 and treat as IPv4])
aff51935 3395 IPV4_IN6_HACK_MSG="yes"
80faa19f 3396 else
3397 AC_MSG_RESULT(no)
3398 fi
3399 ],[
3400 if test "x$inet6_default_4in6" = "xyes"; then
3401 AC_MSG_RESULT([yes (default)])
3402 AC_DEFINE(IPV4_IN_IPV6)
aff51935 3403 IPV4_IN6_HACK_MSG="yes"
80faa19f 3404 else
3405 AC_MSG_RESULT([no (default)])
3406 fi
3407 ]
3408)
3409
af774732 3410# Whether to enable BSD auth support
f1b0ecc3 3411BSD_AUTH_MSG=no
af774732 3412AC_ARG_WITH(bsd-auth,
3413 [ --with-bsd-auth Enable BSD auth support],
3414 [
82f4e93d 3415 if test "x$withval" != "xno" ; then
3466e002 3416 AC_DEFINE(BSD_AUTH, 1,
3417 [Define if you have BSD auth support])
f1b0ecc3 3418 BSD_AUTH_MSG=yes
af774732 3419 fi
3420 ]
3421)
3422
a0391976 3423# Where to place sshd.pid
19d9ac2a 3424piddir=/var/run
81dadca3 3425# make sure the directory exists
82f4e93d 3426if test ! -d $piddir ; then
81dadca3 3427 piddir=`eval echo ${sysconfdir}`
3428 case $piddir in
aff51935 3429 NONE/*) piddir=`echo $piddir | sed "s~NONE~$ac_default_prefix~"` ;;
81dadca3 3430 esac
3431fi
3432
47e45e44 3433AC_ARG_WITH(pid-dir,
3434 [ --with-pid-dir=PATH Specify location of ssh.pid file],
3435 [
6cf0200f 3436 if test -n "$withval" && test "x$withval" != "xno" && \
3437 test "x${withval}" != "xyes"; then
19d9ac2a 3438 piddir=$withval
82f4e93d 3439 if test ! -d $piddir ; then
81dadca3 3440 AC_MSG_WARN([** no $piddir directory on this system **])
3441 fi
47e45e44 3442 fi
3443 ]
3444)
b7a87eea 3445
3466e002 3446AC_DEFINE_UNQUOTED(_PATH_SSH_PIDDIR, "$piddir", [Specify location of ssh.pid])
19d9ac2a 3447AC_SUBST(piddir)
47e45e44 3448
1d7b9b20 3449dnl allow user to disable some login recording features
3450AC_ARG_ENABLE(lastlog,
bfd550a2 3451 [ --disable-lastlog disable use of lastlog even if detected [no]],
ddb154b3 3452 [
3453 if test "x$enableval" = "xno" ; then
3454 AC_DEFINE(DISABLE_LASTLOG)
3455 fi
3456 ]
1d7b9b20 3457)
3458AC_ARG_ENABLE(utmp,
bfd550a2 3459 [ --disable-utmp disable use of utmp even if detected [no]],
ddb154b3 3460 [
3461 if test "x$enableval" = "xno" ; then
3462 AC_DEFINE(DISABLE_UTMP)
3463 fi
3464 ]
1d7b9b20 3465)
3466AC_ARG_ENABLE(utmpx,
bfd550a2 3467 [ --disable-utmpx disable use of utmpx even if detected [no]],
ddb154b3 3468 [
3469 if test "x$enableval" = "xno" ; then
3466e002 3470 AC_DEFINE(DISABLE_UTMPX, 1,
3471 [Define if you don't want to use utmpx])
ddb154b3 3472 fi
3473 ]
1d7b9b20 3474)
3475AC_ARG_ENABLE(wtmp,
bfd550a2 3476 [ --disable-wtmp disable use of wtmp even if detected [no]],
ddb154b3 3477 [
3478 if test "x$enableval" = "xno" ; then
3479 AC_DEFINE(DISABLE_WTMP)
3480 fi
3481 ]
1d7b9b20 3482)
3483AC_ARG_ENABLE(wtmpx,
bfd550a2 3484 [ --disable-wtmpx disable use of wtmpx even if detected [no]],
ddb154b3 3485 [
3486 if test "x$enableval" = "xno" ; then
3466e002 3487 AC_DEFINE(DISABLE_WTMPX, 1,
3488 [Define if you don't want to use wtmpx])
ddb154b3 3489 fi
3490 ]
1d7b9b20 3491)
3492AC_ARG_ENABLE(libutil,
bfd550a2 3493 [ --disable-libutil disable use of libutil (login() etc.) [no]],
ddb154b3 3494 [
3495 if test "x$enableval" = "xno" ; then
3496 AC_DEFINE(DISABLE_LOGIN)
3497 fi
3498 ]
1d7b9b20 3499)
3500AC_ARG_ENABLE(pututline,
bfd550a2 3501 [ --disable-pututline disable use of pututline() etc. ([uw]tmp) [no]],
ddb154b3 3502 [
3503 if test "x$enableval" = "xno" ; then
3466e002 3504 AC_DEFINE(DISABLE_PUTUTLINE, 1,
3505 [Define if you don't want to use pututline()
3506 etc. to write [uw]tmp])
ddb154b3 3507 fi
3508 ]
1d7b9b20 3509)
3510AC_ARG_ENABLE(pututxline,
bfd550a2 3511 [ --disable-pututxline disable use of pututxline() etc. ([uw]tmpx) [no]],
ddb154b3 3512 [
3513 if test "x$enableval" = "xno" ; then
3466e002 3514 AC_DEFINE(DISABLE_PUTUTXLINE, 1,
3515 [Define if you don't want to use pututxline()
3516 etc. to write [uw]tmpx])
ddb154b3 3517 fi
3518 ]
1d7b9b20 3519)
3520AC_ARG_WITH(lastlog,
bfd550a2 3521 [ --with-lastlog=FILE|DIR specify lastlog location [common locations]],
8c89dd2b 3522 [
82f4e93d 3523 if test "x$withval" = "xno" ; then
8c89dd2b 3524 AC_DEFINE(DISABLE_LASTLOG)
6cf0200f 3525 elif test -n "$withval" && test "x${withval}" != "xyes"; then
8c89dd2b 3526 conf_lastlog_location=$withval
3527 fi
3528 ]
3529)
1d7b9b20 3530
3531dnl lastlog, [uw]tmpx? detection
3532dnl NOTE: set the paths in the platform section to avoid the
3533dnl need for command-line parameters
3534dnl lastlog and [uw]tmp are subject to a file search if all else fails
3535
3536dnl lastlog detection
3537dnl NOTE: the code itself will detect if lastlog is a directory
3538AC_MSG_CHECKING([if your system defines LASTLOG_FILE])
3539AC_TRY_COMPILE([
3540#include <sys/types.h>
3541#include <utmp.h>
3542#ifdef HAVE_LASTLOG_H
3543# include <lastlog.h>
3544#endif
d7c0f3d5 3545#ifdef HAVE_PATHS_H
1d7b9b20 3546# include <paths.h>
41cb4569 3547#endif
3548#ifdef HAVE_LOGIN_H
3549# include <login.h>
1d7b9b20 3550#endif
3551 ],
3552 [ char *lastlog = LASTLOG_FILE; ],
3553 [ AC_MSG_RESULT(yes) ],
d7c0f3d5 3554 [
3555 AC_MSG_RESULT(no)
3556 AC_MSG_CHECKING([if your system defines _PATH_LASTLOG])
3557 AC_TRY_COMPILE([
3558#include <sys/types.h>
3559#include <utmp.h>
3560#ifdef HAVE_LASTLOG_H
3561# include <lastlog.h>
3562#endif
3563#ifdef HAVE_PATHS_H
3564# include <paths.h>
3565#endif
3566 ],
3567 [ char *lastlog = _PATH_LASTLOG; ],
3568 [ AC_MSG_RESULT(yes) ],
3569 [
f282b668 3570 AC_MSG_RESULT(no)
d7c0f3d5 3571 system_lastlog_path=no
3572 ])
3573 ]
1d7b9b20 3574)
d7c0f3d5 3575
1d7b9b20 3576if test -z "$conf_lastlog_location"; then
3577 if test x"$system_lastlog_path" = x"no" ; then
3578 for f in /var/log/lastlog /usr/adm/lastlog /var/adm/lastlog /etc/security/lastlog ; do
e5fe9a1f 3579 if (test -d "$f" || test -f "$f") ; then
1d7b9b20 3580 conf_lastlog_location=$f
3581 fi
3582 done
3583 if test -z "$conf_lastlog_location"; then
f8119cef 3584 AC_MSG_WARN([** Cannot find lastlog **])
3585 dnl Don't define DISABLE_LASTLOG - that means we don't try wtmp/wtmpx
1d7b9b20 3586 fi
3587 fi
3588fi
3589
3590if test -n "$conf_lastlog_location"; then
3466e002 3591 AC_DEFINE_UNQUOTED(CONF_LASTLOG_FILE, "$conf_lastlog_location",
3592 [Define if you want to specify the path to your lastlog file])
82f4e93d 3593fi
1d7b9b20 3594
3595dnl utmp detection
3596AC_MSG_CHECKING([if your system defines UTMP_FILE])
3597AC_TRY_COMPILE([
3598#include <sys/types.h>
3599#include <utmp.h>
d7c0f3d5 3600#ifdef HAVE_PATHS_H
1d7b9b20 3601# include <paths.h>
3602#endif
3603 ],
3604 [ char *utmp = UTMP_FILE; ],
3605 [ AC_MSG_RESULT(yes) ],
3606 [ AC_MSG_RESULT(no)
3607 system_utmp_path=no ]
3608)
3609if test -z "$conf_utmp_location"; then
3610 if test x"$system_utmp_path" = x"no" ; then
3611 for f in /etc/utmp /usr/adm/utmp /var/run/utmp; do
3612 if test -f $f ; then
3613 conf_utmp_location=$f
3614 fi
3615 done
3616 if test -z "$conf_utmp_location"; then
3617 AC_DEFINE(DISABLE_UTMP)
3618 fi
3619 fi
3620fi
3621if test -n "$conf_utmp_location"; then
3466e002 3622 AC_DEFINE_UNQUOTED(CONF_UTMP_FILE, "$conf_utmp_location",
3623 [Define if you want to specify the path to your utmp file])
82f4e93d 3624fi
1d7b9b20 3625
3626dnl wtmp detection
3627AC_MSG_CHECKING([if your system defines WTMP_FILE])
3628AC_TRY_COMPILE([
3629#include <sys/types.h>
3630#include <utmp.h>
d7c0f3d5 3631#ifdef HAVE_PATHS_H
1d7b9b20 3632# include <paths.h>
3633#endif
3634 ],
3635 [ char *wtmp = WTMP_FILE; ],
3636 [ AC_MSG_RESULT(yes) ],
3637 [ AC_MSG_RESULT(no)
3638 system_wtmp_path=no ]
3639)
3640if test -z "$conf_wtmp_location"; then
3641 if test x"$system_wtmp_path" = x"no" ; then
3642 for f in /usr/adm/wtmp /var/log/wtmp; do
3643 if test -f $f ; then
3644 conf_wtmp_location=$f
3645 fi
3646 done
3647 if test -z "$conf_wtmp_location"; then
3648 AC_DEFINE(DISABLE_WTMP)
3649 fi
3650 fi
3651fi
3652if test -n "$conf_wtmp_location"; then
3466e002 3653 AC_DEFINE_UNQUOTED(CONF_WTMP_FILE, "$conf_wtmp_location",
3654 [Define if you want to specify the path to your wtmp file])
82f4e93d 3655fi
1d7b9b20 3656
3657
3658dnl utmpx detection - I don't know any system so perverse as to require
3659dnl utmpx, but not define UTMPX_FILE (ditto wtmpx.) No doubt it's out
3660dnl there, though.
3661AC_MSG_CHECKING([if your system defines UTMPX_FILE])
3662AC_TRY_COMPILE([
3663#include <sys/types.h>
3664#include <utmp.h>
3665#ifdef HAVE_UTMPX_H
3666#include <utmpx.h>
3667#endif
d7c0f3d5 3668#ifdef HAVE_PATHS_H
1d7b9b20 3669# include <paths.h>
3670#endif
3671 ],
3672 [ char *utmpx = UTMPX_FILE; ],
3673 [ AC_MSG_RESULT(yes) ],
3674 [ AC_MSG_RESULT(no)
3675 system_utmpx_path=no ]
3676)
3677if test -z "$conf_utmpx_location"; then
3678 if test x"$system_utmpx_path" = x"no" ; then
3679 AC_DEFINE(DISABLE_UTMPX)
3680 fi
3681else
3466e002 3682 AC_DEFINE_UNQUOTED(CONF_UTMPX_FILE, "$conf_utmpx_location",
3683 [Define if you want to specify the path to your utmpx file])
82f4e93d 3684fi
1d7b9b20 3685
3686dnl wtmpx detection
3687AC_MSG_CHECKING([if your system defines WTMPX_FILE])
3688AC_TRY_COMPILE([
3689#include <sys/types.h>
3690#include <utmp.h>
3691#ifdef HAVE_UTMPX_H
3692#include <utmpx.h>
3693#endif
d7c0f3d5 3694#ifdef HAVE_PATHS_H
1d7b9b20 3695# include <paths.h>
3696#endif
3697 ],
3698 [ char *wtmpx = WTMPX_FILE; ],
3699 [ AC_MSG_RESULT(yes) ],
3700 [ AC_MSG_RESULT(no)
3701 system_wtmpx_path=no ]
3702)
3703if test -z "$conf_wtmpx_location"; then
3704 if test x"$system_wtmpx_path" = x"no" ; then
3705 AC_DEFINE(DISABLE_WTMPX)
3706 fi
3707else
3466e002 3708 AC_DEFINE_UNQUOTED(CONF_WTMPX_FILE, "$conf_wtmpx_location",
3709 [Define if you want to specify the path to your wtmpx file])
82f4e93d 3710fi
1d7b9b20 3711
b7a87eea 3712
bd499f9e 3713if test ! -z "$blibpath" ; then
68ece370 3714 LDFLAGS="$LDFLAGS $blibflags$blibpath"
3715 AC_MSG_WARN([Please check and edit blibpath in LDFLAGS in Makefile])
bd499f9e 3716fi
3717
ddceb1c8 3718dnl remove pam and dl because they are in $LIBPAM
3719if test "$PAM_MSG" = yes ; then
98f2d9d5 3720 LIBS=`echo $LIBS | sed 's/-lpam //'`
3721fi
3722if test "$ac_cv_lib_pam_pam_set_item" = yes ; then
3723 LIBS=`echo $LIBS | sed 's/-ldl //'`
ddceb1c8 3724fi
3725
ed89c848 3726dnl Adding -Werror to CFLAGS early prevents configure tests from running.
3727dnl Add now.
3728CFLAGS="$CFLAGS $werror_flags"
3729
3c62e7eb 3730AC_EXEEXT
d7cfdd7c 3731AC_CONFIG_FILES([Makefile buildpkg.sh opensshd.init openbsd-compat/Makefile \
3732 scard/Makefile ssh_prng_cmds survey.sh])
98a7c37b 3733AC_OUTPUT
d3083fbd 3734
cbd7492e 3735# Print summary of options
3736
cbd7492e 3737# Someone please show me a better way :)
3738A=`eval echo ${prefix}` ; A=`eval echo ${A}`
3739B=`eval echo ${bindir}` ; B=`eval echo ${B}`
3740C=`eval echo ${sbindir}` ; C=`eval echo ${C}`
3741D=`eval echo ${sysconfdir}` ; D=`eval echo ${D}`
f5665f6f 3742E=`eval echo ${libexecdir}/ssh-askpass` ; E=`eval echo ${E}`
e0c4d3ac 3743F=`eval echo ${mandir}/${mansubdir}X` ; F=`eval echo ${F}`
cbd7492e 3744G=`eval echo ${piddir}` ; G=`eval echo ${G}`
ecac8ee5 3745H=`eval echo ${PRIVSEP_PATH}` ; H=`eval echo ${H}`
3746I=`eval echo ${user_path}` ; I=`eval echo ${I}`
3747J=`eval echo ${superuser_path}` ; J=`eval echo ${J}`
cbd7492e 3748
3749echo ""
26de7942 3750echo "OpenSSH has been configured with the following options:"
ecac8ee5 3751echo " User binaries: $B"
3752echo " System binaries: $C"
3753echo " Configuration files: $D"
3754echo " Askpass program: $E"
3755echo " Manual pages: $F"
3756echo " PID file: $G"
3757echo " Privilege separation chroot path: $H"
95b99395 3758if test "x$external_path_file" = "x/etc/login.conf" ; then
3759echo " At runtime, sshd will use the path defined in $external_path_file"
3760echo " Make sure the path to scp is present, otherwise scp will not work"
8d184c09 3761else
ecac8ee5 3762echo " sshd default user PATH: $I"
89bbd457 3763 if test ! -z "$external_path_file"; then
95b99395 3764echo " (If PATH is set in $external_path_file it will be used instead. If"
3765echo " used, ensure the path to scp is present, otherwise scp will not work.)"
3766 fi
8d184c09 3767fi
06617857 3768if test ! -z "$superuser_path" ; then
ecac8ee5 3769echo " sshd superuser user PATH: $J"
3770fi
3771echo " Manpage format: $MANTYPE"
3e05e934 3772echo " PAM support: $PAM_MSG"
ecac8ee5 3773echo " KerberosV support: $KRB5_MSG"
3774echo " Smartcard support: $SCARD_MSG"
ecac8ee5 3775echo " S/KEY support: $SKEY_MSG"
3776echo " TCP Wrappers support: $TCPW_MSG"
3777echo " MD5 password support: $MD5_MSG"
59031773 3778echo " libedit support: $LIBEDIT_MSG"
3deb1408 3779echo " IP address in \$DISPLAY hack: $DISPLAY_HACK_MSG"
ecac8ee5 3780echo " Translate v4 in v6 hack: $IPV4_IN6_HACK_MSG"
3781echo " BSD Auth support: $BSD_AUTH_MSG"
3782echo " Random number source: $RAND_MSG"
f1b0ecc3 3783if test ! -z "$USE_RAND_HELPER" ; then
ecac8ee5 3784echo " ssh-rand-helper collects from: $RAND_HELPER_MSG"
af774732 3785fi
3786
cbd7492e 3787echo ""
3788
0c2fb82f 3789echo " Host: ${host}"
3790echo " Compiler: ${CC}"
3791echo " Compiler flags: ${CFLAGS}"
3792echo "Preprocessor flags: ${CPPFLAGS}"
3793echo " Linker flags: ${LDFLAGS}"
ddceb1c8 3794echo " Libraries: ${LIBWRAP} ${LIBPAM} ${LIBS}"
cbd7492e 3795
3796echo ""
3797
9cefe228 3798if test "x$MAKE_PACKAGE_SUPPORTED" = "xyes" ; then
b3146b5f 3799 echo "SVR4 style packages are supported with \"make package\""
3800 echo ""
9cefe228 3801fi
3802
adeebd37 3803if test "x$PAM_MSG" = "xyes" ; then
f1b0ecc3 3804 echo "PAM is enabled. You may need to install a PAM control file "
3805 echo "for sshd, otherwise password authentication may fail. "
aff51935 3806 echo "Example PAM control files can be found in the contrib/ "
f1b0ecc3 3807 echo "subdirectory"
adeebd37 3808 echo ""
3809fi
3810
f1b0ecc3 3811if test ! -z "$RAND_HELPER_CMDHASH" ; then
3812 echo "WARNING: you are using the builtin random number collection "
3813 echo "service. Please read WARNING.RNG and request that your OS "
3814 echo "vendor includes kernel-based random number collection in "
3815 echo "future versions of your OS."
2c523de9 3816 echo ""
3817fi
af774732 3818
2f6f9cff 3819if test ! -z "$NO_PEERCHECK" ; then
3820 echo "WARNING: the operating system that you are using does not "
3821 echo "appear to support either the getpeereid() API nor the "
3822 echo "SO_PEERCRED getsockopt() option. These facilities are used to "
3823 echo "enforce security checks to prevent unauthorised connections to "
3824 echo "ssh-agent. Their absence increases the risk that a malicious "
3825 echo "user can connect to your agent. "
3826 echo ""
3827fi
3828
7b578f7d 3829if test "$AUDIT_MODULE" = "bsm" ; then
3830 echo "WARNING: BSM audit support is currently considered EXPERIMENTAL."
3831 echo "See the Solaris section in README.platform for details."
3832fi
git-cvsimport mirror of OpenSSH
This page took 1.68247 seconds and 5 git commands to generate.