]> andersk Git - openssh.git/blame - configure.ac
andersk / openssh.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
- (djm) Reorder IP options check so that it isn't broken by
[openssh.git] / configure.ac
CommitLineData
eb5d7ff6 1# $Id$
2b983b95 2#
3# Copyright (c) 1999-2004 Damien Miller
4#
5# Permission to use, copy, modify, and distribute this software for any
6# purpose with or without fee is hereby granted, provided that the above
7# copyright notice and this permission notice appear in all copies.
8#
9# THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
10# WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
11# MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR
12# ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
13# WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
14# ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
15# OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
0b202697 16
76e6410a 17AC_INIT(OpenSSH, Portable, openssh-unix-dev@mindrot.org)
823221b2 18AC_REVISION($Revision$)
98a7c37b 19AC_CONFIG_SRCDIR([ssh.c])
5881cd60 20
21AC_CONFIG_HEADER(config.h)
b14b2ae7 22AC_PROG_CC
a7effaac 23AC_CANONICAL_HOST
cf0c5df5 24AC_C_BIGENDIAN
5881cd60 25
a0391976 26# Checks for programs.
4bbf95fa 27AC_PROG_AWK
4cca272e 28AC_PROG_CPP
5881cd60 29AC_PROG_RANLIB
cf8dd513 30AC_PROG_INSTALL
c9ecc3c7 31AC_PROG_EGREP
bee0a37e 32AC_PATH_PROG(AR, ar)
ddd8c95b 33AC_PATH_PROG(CAT, cat)
34AC_PATH_PROG(KILL, kill)
13dd877b 35AC_PATH_PROGS(PERL, perl5 perl)
c3690df3 36AC_PATH_PROG(SED, sed)
a0f84251 37AC_SUBST(PERL)
ad85db64 38AC_PATH_PROG(ENT, ent)
39AC_SUBST(ENT)
6958bd37 40AC_PATH_PROG(TEST_MINUS_S_SH, bash)
41AC_PATH_PROG(TEST_MINUS_S_SH, ksh)
42AC_PATH_PROG(TEST_MINUS_S_SH, sh)
6193497b 43AC_PATH_PROG(SH, sh)
a3245b92 44AC_SUBST(TEST_SHELL,sh)
f498ed15 45
9cefe228 46dnl for buildpkg.sh
47AC_PATH_PROG(PATH_GROUPADD_PROG, groupadd, groupadd,
48 [/usr/sbin${PATH_SEPARATOR}/etc])
49AC_PATH_PROG(PATH_USERADD_PROG, useradd, useradd,
50 [/usr/sbin${PATH_SEPARATOR}/etc])
51AC_CHECK_PROG(MAKE_PACKAGE_SUPPORTED, pkgmk, yes, no)
eeb27c78 52if test -x /sbin/sh; then
53 AC_SUBST(STARTUP_SCRIPT_SHELL,/sbin/sh)
54else
55 AC_SUBST(STARTUP_SCRIPT_SHELL,/bin/sh)
56fi
9cefe228 57
948fd8b9 58# System features
59AC_SYS_LARGEFILE
60
c193d002 61if test -z "$AR" ; then
62 AC_MSG_ERROR([*** 'ar' missing, please install or fix your \$PATH ***])
63fi
64
2e73a022 65# Use LOGIN_PROGRAM from environment if possible
66if test ! -z "$LOGIN_PROGRAM" ; then
3466e002 67 AC_DEFINE_UNQUOTED(LOGIN_PROGRAM_FALLBACK, "$LOGIN_PROGRAM",
68 [If your header files don't define LOGIN_PROGRAM,
69 then use this (detected) from environment and PATH])
2e73a022 70else
71 # Search for login
72 AC_PATH_PROG(LOGIN_PROGRAM_FALLBACK, login)
73 if test ! -z "$LOGIN_PROGRAM_FALLBACK" ; then
74 AC_DEFINE_UNQUOTED(LOGIN_PROGRAM_FALLBACK, "$LOGIN_PROGRAM_FALLBACK")
75 fi
76fi
77
37656beb 78AC_PATH_PROG(PATH_PASSWD_PROG, passwd)
79if test ! -z "$PATH_PASSWD_PROG" ; then
3466e002 80 AC_DEFINE_UNQUOTED(_PATH_PASSWD_PROG, "$PATH_PASSWD_PROG",
81 [Full path of your "passwd" program])
37656beb 82fi
83
d423d822 84if test -z "$LD" ; then
85 LD=$CC
86fi
87AC_SUBST(LD)
82f4e93d 88
d423d822 89AC_C_INLINE
dfafb2e1 90
91AC_CHECK_DECL(LLONG_MAX, have_llong_max=1, , [#include <limits.h>])
92
aff51935 93if test "$GCC" = "yes" || test "$GCC" = "egcs"; then
af40ca44 94 CFLAGS="$CFLAGS -Wall -Wpointer-arith -Wuninitialized"
eeee8237 95 GCC_VER=`$CC -v 2>&1 | $AWK '/gcc version /{print $3}'`
5fdabf45 96 case $GCC_VER in
97 1.*) ;;
98 2.8* | 2.9*) CFLAGS="$CFLAGS -Wsign-compare" ;;
99 2.*) ;;
dbf07ba2 100 3.*) CFLAGS="$CFLAGS -Wsign-compare" ;;
cd595991 101 4.*) CFLAGS="$CFLAGS -Wsign-compare -Wno-pointer-sign" ;;
102 *) ;;
5fdabf45 103 esac
8a3ff1aa 104
dfafb2e1 105 if test -z "$have_llong_max"; then
106 # retry LLONG_MAX with -std=gnu99, needed on some Linuxes
107 unset ac_cv_have_decl_LLONG_MAX
108 saved_CFLAGS="$CFLAGS"
109 CFLAGS="$CFLAGS -std=gnu99"
110 AC_CHECK_DECL(LLONG_MAX,
111 [have_llong_max=1],
112 [CFLAGS="$saved_CFLAGS"],
113 [#include <limits.h>]
114 )
115 fi
d423d822 116fi
117
e6354014 118AC_ARG_WITH(rpath,
119 [ --without-rpath Disable auto-added -R linker paths],
120 [
82f4e93d 121 if test "x$withval" = "xno" ; then
e6354014 122 need_dash_r=""
123 fi
124 if test "x$withval" = "xyes" ; then
125 need_dash_r=1
126 fi
127 ]
128)
129
a0391976 130# Check for some target-specific stuff
a7effaac 131case "$host" in
9d6b1b96 132*-*-aix*)
aff51935 133 AC_MSG_CHECKING([how to specify blibpath for linker ($LD)])
68ece370 134 if (test -z "$blibpath"); then
0a15d73b 135 blibpath="/usr/lib:/lib"
68ece370 136 fi
137 saved_LDFLAGS="$LDFLAGS"
138 for tryflags in -blibpath: -Wl,-blibpath: -Wl,-rpath, ;do
139 if (test -z "$blibflags"); then
140 LDFLAGS="$saved_LDFLAGS $tryflags$blibpath"
141 AC_TRY_LINK([], [], [blibflags=$tryflags])
142 fi
143 done
144 if (test -z "$blibflags"); then
145 AC_MSG_RESULT(not found)
146 AC_MSG_ERROR([*** must be able to specify blibpath on AIX - check config.log])
147 else
148 AC_MSG_RESULT($blibflags)
bd499f9e 149 fi
68ece370 150 LDFLAGS="$saved_LDFLAGS"
e351e493 151 dnl Check for authenticate. Might be in libs.a on older AIXes
3466e002 152 AC_CHECK_FUNC(authenticate, [AC_DEFINE(WITH_AIXAUTHENTICATE, 1,
153 [Define if you want to enable AIX4's authenticate function])],
0764e748 154 [AC_CHECK_LIB(s,authenticate,
e351e493 155 [ AC_DEFINE(WITH_AIXAUTHENTICATE)
0764e748 156 LIBS="$LIBS -ls"
157 ])
158 ])
ba603e06 159 dnl Check for various auth function declarations in headers.
c85ed8e2 160 AC_CHECK_DECLS([authenticate, loginrestrictions, loginsuccess,
72ad335d 161 passwdexpired, setauthdb], , , [#include <usersec.h>])
e351e493 162 dnl Check if loginfailed is declared and takes 4 arguments (AIX >= 5.2)
ba603e06 163 AC_CHECK_DECLS(loginfailed,
e351e493 164 [AC_MSG_CHECKING(if loginfailed takes 4 arguments)
165 AC_TRY_COMPILE(
f58c0e01 166 [#include <usersec.h>],
e351e493 167 [(void)loginfailed("user","host","tty",0);],
168 [AC_MSG_RESULT(yes)
3466e002 169 AC_DEFINE(AIX_LOGINFAILED_4ARG, 1,
170 [Define if your AIX loginfailed() function
171 takes 4 arguments (AIX >= 5.2)])],
f58c0e01 172 [AC_MSG_RESULT(no)]
e351e493 173 )],
174 [],
175 [#include <usersec.h>]
176 )
2aa3a16c 177 AC_CHECK_FUNCS(setauthdb)
5ccf88cb 178 check_for_aix_broken_getaddrinfo=1
3466e002 179 AC_DEFINE(BROKEN_REALPATH, 1, [Define if you have a broken realpath.])
180 AC_DEFINE(SETEUID_BREAKS_SETUID, 1,
181 [Define if your platform breaks doing a seteuid before a setuid])
182 AC_DEFINE(BROKEN_SETREUID, 1, [Define if your setreuid() is broken])
183 AC_DEFINE(BROKEN_SETREGID, 1, [Define if your setregid() is broken])
a3cef3ca 184 dnl AIX handles lastlog as part of its login message
3466e002 185 AC_DEFINE(DISABLE_LASTLOG, 1, [Define if you don't want to use lastlog])
186 AC_DEFINE(LOGIN_NEEDS_UTMPX, 1,
187 [Some systems need a utmpx entry for /bin/login to work])
188 AC_DEFINE(SPT_TYPE,SPT_REUSEARGV,
189 [Define to a Set Process Title type if your system is
190 supported by bsd-setproctitle.c])
961c2997 191 AC_DEFINE(SSHPAM_CHAUTHTOK_NEEDS_RUID, 1,
192 [AIX 5.2 and 5.3 (and presumably newer) require this])
9d6b1b96 193 ;;
3c62e7eb 194*-*-cygwin*)
a52997bd 195 check_for_libcrypt_later=1
ffb8d130 196 LIBS="$LIBS /usr/lib/textmode.o"
3466e002 197 AC_DEFINE(HAVE_CYGWIN, 1, [Define if you are on Cygwin])
198 AC_DEFINE(USE_PIPES, 1, [Use PIPES instead of a socketpair()])
199 AC_DEFINE(DISABLE_SHADOW, 1,
200 [Define if you want to disable shadow passwords])
201 AC_DEFINE(IP_TOS_IS_BROKEN, 1,
202 [Define if your system choked on IP TOS setting])
203 AC_DEFINE(NO_X11_UNIX_SOCKETS, 1,
204 [Define if X11 doesn't support AF_UNIX sockets on that system])
205 AC_DEFINE(NO_IPPORT_RESERVED_CONCEPT, 1,
206 [Define if the concept of ports only accessible to
207 superusers isn't known])
208 AC_DEFINE(DISABLE_FD_PASSING, 1,
209 [Define if your platform needs to skip post auth
210 file descriptor passing])
3c62e7eb 211 ;;
d6fdb079 212*-*-dgux*)
213 AC_DEFINE(IP_TOS_IS_BROKEN)
0c6a72a5 214 AC_DEFINE(SETEUID_BREAKS_SETUID)
215 AC_DEFINE(BROKEN_SETREUID)
216 AC_DEFINE(BROKEN_SETREGID)
d6fdb079 217 ;;
39c98ef7 218*-*-darwin*)
33e2e066 219 AC_MSG_CHECKING(if we have working getaddrinfo)
220 AC_TRY_RUN([#include <mach-o/dyld.h>
221main() { if (NSVersionOfRunTimeLibrary("System") >= (60 << 16))
222 exit(0);
223 else
224 exit(1);
225}], [AC_MSG_RESULT(working)],
226 [AC_MSG_RESULT(buggy)
3466e002 227 AC_DEFINE(BROKEN_GETADDRINFO, 1, [getaddrinfo is broken (if present)])],
b27e573d 228 [AC_MSG_RESULT(assume it is working)])
635e0c42 229 AC_DEFINE(SETEUID_BREAKS_SETUID)
230 AC_DEFINE(BROKEN_SETREUID)
231 AC_DEFINE(BROKEN_SETREGID)
3466e002 232 AC_DEFINE_UNQUOTED(BIND_8_COMPAT, 1,
233 [Define if your resolver libs need this for getrrsetbyname])
39c98ef7 234 ;;
7d458c86 235*-*-hpux*)
236 # first we define all of the options common to all HP-UX releases
b8fea62d 237 CPPFLAGS="$CPPFLAGS -D_HPUX_SOURCE -D_XOPEN_SOURCE -D_XOPEN_SOURCE_EXTENDED=1"
44839801 238 IPADDR_IN_DISPLAY=yes
2b10f47a 239 AC_DEFINE(USE_PIPES)
3466e002 240 AC_DEFINE(LOGIN_NO_ENDOPT, 1,
241 [Define if your login program cannot handle end of options ("--")])
a2572aa7 242 AC_DEFINE(LOGIN_NEEDS_UTMPX)
3466e002 243 AC_DEFINE(LOCKED_PASSWD_STRING, "*",
244 [String used in /etc/passwd to denote locked account])
3a2b2b44 245 AC_DEFINE(SPT_TYPE,SPT_PSTAT)
83f987c3 246 MAIL="/var/mail/username"
f75ca46d 247 LIBS="$LIBS -lsec"
7d458c86 248 AC_CHECK_LIB(xnet, t_error, ,
249 AC_MSG_ERROR([*** -lxnet needed on HP-UX - check config.log ***]))
250
251 # next, we define all of the options specific to major releases
252 case "$host" in
253 *-*-hpux10*)
254 if test -z "$GCC"; then
255 CFLAGS="$CFLAGS -Ae"
256 fi
257 ;;
258 *-*-hpux11*)
3466e002 259 AC_DEFINE(PAM_SUN_CODEBASE, 1,
260 [Define if you are using Solaris-derived PAM which
261 passes pam_messages to the conversation function
262 with an extra level of indirection])
263 AC_DEFINE(DISABLE_UTMP, 1,
264 [Define if you don't want to use utmp])
7d458c86 265 AC_DEFINE(USE_BTMP, 1, [Use btmp to log bad logins])
266 check_for_hpux_broken_getaddrinfo=1
267 check_for_conflicting_getspnam=1
268 ;;
269 esac
270
271 # lastly, we define options specific to minor releases
272 case "$host" in
273 *-*-hpux10.26)
3466e002 274 AC_DEFINE(HAVE_SECUREWARE, 1,
275 [Define if you have SecureWare-based
276 protected password database])
7d458c86 277 disable_ptmx_check=yes
278 LIBS="$LIBS -lsecpw"
279 ;;
280 esac
2b763e31 281 ;;
d94aa2ae 282*-*-irix5*)
6ac7829a 283 PATH="$PATH:/usr/etc"
3466e002 284 AC_DEFINE(BROKEN_INET_NTOA, 1,
285 [Define if you system's inet_ntoa is busted
286 (e.g. Irix gcc issue)])
cb433561 287 AC_DEFINE(SETEUID_BREAKS_SETUID)
288 AC_DEFINE(BROKEN_SETREUID)
289 AC_DEFINE(BROKEN_SETREGID)
3466e002 290 AC_DEFINE(WITH_ABBREV_NO_TTY, 1,
291 [Define if you shouldn't strip 'tty' from your
292 ttyname in [uw]tmp])
3e6e3da0 293 AC_DEFINE(LOCKED_PASSWD_STRING, "*LK*")
b9795b89 294 ;;
295*-*-irix6*)
6ac7829a 296 PATH="$PATH:/usr/etc"
3466e002 297 AC_DEFINE(WITH_IRIX_ARRAY, 1,
298 [Define if you have/want arrays
299 (cluster-wide session managment, not C arrays)])
300 AC_DEFINE(WITH_IRIX_PROJECT, 1,
301 [Define if you want IRIX project management])
302 AC_DEFINE(WITH_IRIX_AUDIT, 1,
303 [Define if you want IRIX audit trails])
304 AC_CHECK_FUNC(jlimit_startjob, [AC_DEFINE(WITH_IRIX_JOBS, 1,
305 [Define if you want IRIX kernel jobs])])
416ed5a7 306 AC_DEFINE(BROKEN_INET_NTOA)
412c0eaa 307 AC_DEFINE(SETEUID_BREAKS_SETUID)
308 AC_DEFINE(BROKEN_SETREUID)
309 AC_DEFINE(BROKEN_SETREGID)
3466e002 310 AC_DEFINE(BROKEN_UPDWTMPX, 1, [updwtmpx is broken (if present)])
0e8f4eba 311 AC_DEFINE(WITH_ABBREV_NO_TTY)
3e6e3da0 312 AC_DEFINE(LOCKED_PASSWD_STRING, "*LK*")
d94aa2ae 313 ;;
5cdfe03f 314*-*-linux*)
315 no_dev_ptmx=1
717057b6 316 check_for_libcrypt_later=1
eacb954e 317 check_for_openpty_ctty_bug=1
3466e002 318 AC_DEFINE(DONT_TRY_OTHER_AF, 1, [Workaround more Linux IPv6 quirks])
319 AC_DEFINE(PAM_TTY_KLUDGE, 1,
320 [Work around problematic Linux PAM modules handling of PAM_TTY])
321 AC_DEFINE(LOCKED_PASSWD_PREFIX, "!",
322 [String used in /etc/passwd to denote locked account])
3a2b2b44 323 AC_DEFINE(SPT_TYPE,SPT_REUSEARGV)
3466e002 324 AC_DEFINE(LINK_OPNOTSUPP_ERRNO, EPERM,
325 [Define to whatever link() returns for "not supported"
326 if it doesn't return EOPNOTSUPP.])
b6610e8f 327 AC_DEFINE(_PATH_BTMP, "/var/log/btmp", [log for bad login attempts])
3466e002 328 AC_DEFINE(USE_BTMP)
80faa19f 329 inet6_default_4in6=yes
bf7c1e6c 330 case `uname -r` in
ad84c479 331 1.*|2.0.*)
3466e002 332 AC_DEFINE(BROKEN_CMSG_TYPE, 1,
333 [Define if cmsg_type is not passed correctly])
bf7c1e6c 334 ;;
bf7c1e6c 335 esac
c40f09ca 336 # tun(4) forwarding compat code
d91775e1 337 AC_CHECK_HEADERS(linux/if_tun.h)
b5081213 338 if test "x$ac_cv_header_linux_if_tun_h" = "xyes" ; then
c40f09ca 339 AC_DEFINE(SSH_TUN_LINUX, 1,
340 [Open tunnel devices the Linux tun/tap way])
341 AC_DEFINE(SSH_TUN_COMPAT_AF, 1,
342 [Use tunnel device compatibility to OpenBSD])
343 AC_DEFINE(SSH_TUN_PREPEND_AF, 1,
344 [Prepend the address family to IP tunnel traffic])
345 fi
5cdfe03f 346 ;;
66d6c27e 347mips-sony-bsd|mips-sony-newsos4)
4b2cf3f1 348 AC_DEFINE(NEED_SETPGRP, 1, [Need setpgrp to acquire controlling tty])
66d6c27e 349 SONY=1
66d6c27e 350 ;;
d468fc76 351*-*-netbsd*)
33e2e066 352 check_for_libcrypt_before=1
82f4e93d 353 if test "x$withval" != "xno" ; then
e6354014 354 need_dash_r=1
355 fi
0f6cb079 356 AC_DEFINE(SSH_TUN_FREEBSD, 1, [Open tunnel devices the FreeBSD way])
357 AC_CHECK_HEADER([net/if_tap.h], ,
358 AC_DEFINE(SSH_TUN_NO_L2, 1, [No layer 2 tunnel support]))
359 AC_DEFINE(SSH_TUN_PREPEND_AF, 1,
360 [Prepend the address family to IP tunnel traffic])
d468fc76 361 ;;
86b416a7 362*-*-freebsd*)
363 check_for_libcrypt_later=1
988c5031 364 AC_DEFINE(LOCKED_PASSWD_PREFIX, "*LOCKED*", [Account locked with pw(1)])
0f6cb079 365 AC_DEFINE(SSH_TUN_FREEBSD, 1, [Open tunnel devices the FreeBSD way])
366 AC_CHECK_HEADER([net/if_tap.h], ,
367 AC_DEFINE(SSH_TUN_NO_L2, 1, [No layer 2 tunnel support]))
86b416a7 368 ;;
8707b7eb 369*-*-bsdi*)
370 AC_DEFINE(SETEUID_BREAKS_SETUID)
371 AC_DEFINE(BROKEN_SETREUID)
372 AC_DEFINE(BROKEN_SETREGID)
373 ;;
729bfe59 374*-next-*)
729bfe59 375 conf_lastlog_location="/usr/adm/lastlog"
698d107e 376 conf_utmp_location=/etc/utmp
377 conf_wtmp_location=/usr/adm/wtmp
378 MAIL=/usr/spool/mail
3466e002 379 AC_DEFINE(HAVE_NEXT, 1, [Define if you are on NeXT])
443172c4 380 AC_DEFINE(BROKEN_REALPATH)
00937921 381 AC_DEFINE(USE_PIPES)
3466e002 382 AC_DEFINE(BROKEN_SAVED_UIDS, 1, [Needed for NeXT])
729bfe59 383 ;;
5b7b5e23 384*-*-openbsd*)
385 AC_DEFINE(HAVE_ATTRIBUTE__SENTINEL__, 1, [OpenBSD's gcc has sentinel])
8034a348 386 AC_DEFINE(HAVE_ATTRIBUTE__BOUNDED__, 1, [OpenBSD's gcc has bounded])
0f6cb079 387 AC_DEFINE(SSH_TUN_OPENBSD, 1, [Open tunnel devices the OpenBSD way])
5b7b5e23 388 ;;
9d6b1b96 389*-*-solaris*)
82f4e93d 390 if test "x$withval" != "xno" ; then
010e9d5b 391 need_dash_r=1
392 fi
adeebd37 393 AC_DEFINE(PAM_SUN_CODEBASE)
7e2d5fa4 394 AC_DEFINE(LOGIN_NEEDS_UTMPX)
3466e002 395 AC_DEFINE(LOGIN_NEEDS_TERM, 1,
396 [Some versions of /bin/login need the TERM supplied
397 on the commandline])
7f0a4ff1 398 AC_DEFINE(PAM_TTY_KLUDGE)
3466e002 399 AC_DEFINE(SSHPAM_CHAUTHTOK_NEEDS_RUID, 1,
400 [Define if pam_chauthtok wants real uid set
401 to the unpriv'ed user])
3e6e3da0 402 AC_DEFINE(LOCKED_PASSWD_STRING, "*LK*")
ad84c479 403 # Pushing STREAMS modules will cause sshd to acquire a controlling tty.
3466e002 404 AC_DEFINE(SSHD_ACQUIRES_CTTY, 1,
405 [Define if sshd somehow reacquires a controlling TTY
406 after setsid()])
95b99395 407 external_path_file=/etc/default/login
1d7b9b20 408 # hardwire lastlog location (can't detect it on some versions)
409 conf_lastlog_location="/var/adm/lastlog"
32c80420 410 AC_MSG_CHECKING(for obsolete utmp and wtmp in solaris2.x)
411 sol2ver=`echo "$host"| sed -e 's/.*[[0-9]]\.//'`
412 if test "$sol2ver" -ge 8; then
413 AC_MSG_RESULT(yes)
414 AC_DEFINE(DISABLE_UTMP)
3466e002 415 AC_DEFINE(DISABLE_WTMP, 1,
416 [Define if you don't want to use wtmp])
32c80420 417 else
418 AC_MSG_RESULT(no)
419 fi
9d6b1b96 420 ;;
a423beaf 421*-*-sunos4*)
0c2fb82f 422 CPPFLAGS="$CPPFLAGS -DSUNOS4"
a423beaf 423 AC_CHECK_FUNCS(getpwanam)
adeebd37 424 AC_DEFINE(PAM_SUN_CODEBASE)
32eec038 425 conf_utmp_location=/etc/utmp
426 conf_wtmp_location=/var/adm/wtmp
427 conf_lastlog_location=/var/adm/lastlog
137d7b6c 428 AC_DEFINE(USE_PIPES)
a423beaf 429 ;;
6f68f28a 430*-ncr-sysv*)
98a7c37b 431 LIBS="$LIBS -lc89"
29525240 432 AC_DEFINE(USE_PIPES)
eabb99c6 433 AC_DEFINE(SSHD_ACQUIRES_CTTY)
6fb3618d 434 AC_DEFINE(SETEUID_BREAKS_SETUID)
435 AC_DEFINE(BROKEN_SETREUID)
436 AC_DEFINE(BROKEN_SETREGID)
6f68f28a 437 ;;
132dd316 438*-sni-sysv*)
c8c15bcb 439 # /usr/ucblib MUST NOT be searched on ReliantUNIX
e2798e96 440 AC_CHECK_LIB(dl, dlsym, ,)
d08db6d1 441 # -lresolv needs to be at the end of LIBS or DNS lookups break
442 AC_CHECK_LIB(resolv, res_query, [ LIBS="$LIBS -lresolv" ])
9548d6c8 443 IPADDR_IN_DISPLAY=yes
444 AC_DEFINE(USE_PIPES)
132dd316 445 AC_DEFINE(IP_TOS_IS_BROKEN)
605369bb 446 AC_DEFINE(SETEUID_BREAKS_SETUID)
447 AC_DEFINE(BROKEN_SETREUID)
448 AC_DEFINE(BROKEN_SETREGID)
eabb99c6 449 AC_DEFINE(SSHD_ACQUIRES_CTTY)
95b99395 450 external_path_file=/etc/default/login
c8c15bcb 451 # /usr/ucblib/libucb.a no longer needed on ReliantUNIX
452 # Attention: always take care to bind libsocket and libnsl before libc,
453 # otherwise you will find lots of "SIOCGPGRP errno 22" on syslog
132dd316 454 ;;
79a7ba96 455# UnixWare 1.x, UnixWare 2.x, and others based on code from Univel.
77bb0bca 456*-*-sysv4.2*)
9a406e1e 457 CFLAGS="$CFLAGS -Dva_list=_VA_LIST"
ed6553e2 458 AC_DEFINE(USE_PIPES)
7ed101c0 459 AC_DEFINE(SETEUID_BREAKS_SETUID)
460 AC_DEFINE(BROKEN_SETREUID)
461 AC_DEFINE(BROKEN_SETREGID)
46f853b9 462 AC_DEFINE(PASSWD_NEEDS_USERNAME, 1, [must supply username to passwd])
e45da4d6 463 AC_DEFINE(LOCKED_PASSWD_STRING, "*LK*")
77bb0bca 464 ;;
79a7ba96 465# UnixWare 7.x, OpenUNIX 8
77bb0bca 466*-*-sysv5*)
d7d2cc6e 467 check_for_libcrypt_later=1
468 AC_DEFINE(UNIXWARE_LONG_PASSWORDS, 1, [Support passwords > 8 chars])
ed6553e2 469 AC_DEFINE(USE_PIPES)
7ed101c0 470 AC_DEFINE(SETEUID_BREAKS_SETUID)
471 AC_DEFINE(BROKEN_SETREUID)
472 AC_DEFINE(BROKEN_SETREGID)
3466e002 473 AC_DEFINE(PASSWD_NEEDS_USERNAME)
822015dd 474 case "$host" in
475 *-*-sysv5SCO_SV*) # SCO OpenServer 6.x
476 TEST_SHELL=/u95/bin/sh
3466e002 477 AC_DEFINE(BROKEN_LIBIAF, 1,
478 [ia_uinfo routines not supported by OS yet])
822015dd 479 ;;
e45da4d6 480 *) AC_DEFINE(LOCKED_PASSWD_STRING, "*LK*")
481 ;;
822015dd 482 esac
77bb0bca 483 ;;
9d6b1b96 484*-*-sysv*)
9d6b1b96 485 ;;
79a7ba96 486# SCO UNIX and OEM versions of SCO UNIX
77bb0bca 487*-*-sco3.2v4*)
11cf4f1f 488 AC_MSG_ERROR("This Platform is no longer supported.")
77bb0bca 489 ;;
79a7ba96 490# SCO OpenServer 5.x
77bb0bca 491*-*-sco3.2v5*)
21710e39 492 if test -z "$GCC"; then
493 CFLAGS="$CFLAGS -belf"
494 fi
ed6553e2 495 LIBS="$LIBS -lprot -lx -ltinfo -lm"
509b1f88 496 no_dev_ptmx=1
ed6553e2 497 AC_DEFINE(USE_PIPES)
6e879cb4 498 AC_DEFINE(HAVE_SECUREWARE)
d287c664 499 AC_DEFINE(DISABLE_SHADOW)
94d8258b 500 AC_DEFINE(DISABLE_FD_PASSING)
7ed101c0 501 AC_DEFINE(SETEUID_BREAKS_SETUID)
502 AC_DEFINE(BROKEN_SETREUID)
503 AC_DEFINE(BROKEN_SETREGID)
bcebad47 504 AC_DEFINE(WITH_ABBREV_NO_TTY)
34f2baf0 505 AC_DEFINE(BROKEN_UPDWTMPX)
3466e002 506 AC_DEFINE(PASSWD_NEEDS_USERNAME)
aca75d94 507 AC_CHECK_FUNCS(getluid setluid)
533875af 508 MANTYPE=man
a3245b92 509 TEST_SHELL=ksh
509b1f88 510 ;;
ccbb983c 511*-*-unicosmk*)
3466e002 512 AC_DEFINE(NO_SSH_LASTLOG, 1,
513 [Define if you don't want to use lastlog in session.c])
c1ad5966 514 AC_DEFINE(SETEUID_BREAKS_SETUID)
515 AC_DEFINE(BROKEN_SETREUID)
516 AC_DEFINE(BROKEN_SETREGID)
ccbb983c 517 AC_DEFINE(USE_PIPES)
518 AC_DEFINE(DISABLE_FD_PASSING)
519 LDFLAGS="$LDFLAGS"
520 LIBS="$LIBS -lgen -lrsc -lshare -luex -lacm"
521 MANTYPE=cat
d262b7f2 522 ;;
7b9a8c6e 523*-*-unicosmp*)
c1ad5966 524 AC_DEFINE(SETEUID_BREAKS_SETUID)
525 AC_DEFINE(BROKEN_SETREUID)
526 AC_DEFINE(BROKEN_SETREGID)
7b9a8c6e 527 AC_DEFINE(WITH_ABBREV_NO_TTY)
528 AC_DEFINE(USE_PIPES)
529 AC_DEFINE(DISABLE_FD_PASSING)
530 LDFLAGS="$LDFLAGS"
c1ad5966 531 LIBS="$LIBS -lgen -lacid -ldb"
7b9a8c6e 532 MANTYPE=cat
533 ;;
ca5c7d6a 534*-*-unicos*)
c1ad5966 535 AC_DEFINE(SETEUID_BREAKS_SETUID)
536 AC_DEFINE(BROKEN_SETREUID)
537 AC_DEFINE(BROKEN_SETREGID)
ca5c7d6a 538 AC_DEFINE(USE_PIPES)
94d8258b 539 AC_DEFINE(DISABLE_FD_PASSING)
ef51930f 540 AC_DEFINE(NO_SSH_LASTLOG)
ccbb983c 541 LDFLAGS="$LDFLAGS -Wl,-Dmsglevel=334:fatal"
542 LIBS="$LIBS -lgen -lrsc -lshare -luex -lacm"
543 MANTYPE=cat
a704dd54 544 ;;
4d33e531 545*-dec-osf*)
99c8ddac 546 AC_MSG_CHECKING(for Digital Unix SIA)
547 no_osfsia=""
548 AC_ARG_WITH(osfsia,
549 [ --with-osfsia Enable Digital Unix SIA],
550 [
551 if test "x$withval" = "xno" ; then
552 AC_MSG_RESULT(disabled)
553 no_osfsia=1
554 fi
555 ],
556 )
557 if test -z "$no_osfsia" ; then
4d33e531 558 if test -f /etc/sia/matrix.conf; then
559 AC_MSG_RESULT(yes)
3466e002 560 AC_DEFINE(HAVE_OSF_SIA, 1,
561 [Define if you have Digital Unix Security
562 Integration Architecture])
563 AC_DEFINE(DISABLE_LOGIN, 1,
564 [Define if you don't want to use your
565 system's login() call])
58d0df4e 566 AC_DEFINE(DISABLE_FD_PASSING)
4d33e531 567 LIBS="$LIBS -lsecurity -ldb -lm -laud"
568 else
569 AC_MSG_RESULT(no)
3466e002 570 AC_DEFINE(LOCKED_PASSWD_SUBSTR, "Nologin",
571 [String used in /etc/passwd to denote locked account])
4d33e531 572 fi
573 fi
a6e67b60 574 AC_DEFINE(BROKEN_GETADDRINFO)
f4f2ff4f 575 AC_DEFINE(SETEUID_BREAKS_SETUID)
08da2d08 576 AC_DEFINE(BROKEN_SETREUID)
577 AC_DEFINE(BROKEN_SETREGID)
4d33e531 578 ;;
41cb4569 579
9c54c067 580*-*-nto-qnx*)
41cb4569 581 AC_DEFINE(USE_PIPES)
582 AC_DEFINE(NO_X11_UNIX_SOCKETS)
3466e002 583 AC_DEFINE(MISSING_NFDBITS, 1, [Define on *nto-qnx systems])
584 AC_DEFINE(MISSING_HOWMANY, 1, [Define on *nto-qnx systems])
585 AC_DEFINE(MISSING_FD_MASK, 1, [Define on *nto-qnx systems])
9c54c067 586 AC_DEFINE(DISABLE_LASTLOG)
49c64dd6 587 AC_DEFINE(SSHD_ACQUIRES_CTTY)
0c7e8877 588 enable_etc_default_login=no # has incompatible /etc/default/login
41cb4569 589 ;;
35fc74ed 590
591*-*-ultrix*)
3466e002 592 AC_DEFINE(BROKEN_GETGROUPS, 1, [getgroups(0,NULL) will return -1])
593 AC_DEFINE(BROKEN_MMAP, 1, [Ultrix mmap can't map files])
4b2cf3f1 594 AC_DEFINE(NEED_SETPGRP)
b5765e1d 595 AC_DEFINE(HAVE_SYS_SYSLOG_H, 1, [Force use of sys/syslog.h on Ultrix])
596 ;;
157b6700 597
598*-*-lynxos)
599 CFLAGS="$CFLAGS -D__NO_INCLUDE_WARN__"
3466e002 600 AC_DEFINE(MISSING_HOWMANY)
157b6700 601 AC_DEFINE(BROKEN_SETVBUF, 1, [LynxOS has broken setvbuf() implementation])
602 ;;
a7effaac 603esac
604
8e7b16f8 605# Allow user to specify flags
606AC_ARG_WITH(cflags,
607 [ --with-cflags Specify additional flags to pass to compiler],
608 [
6cf0200f 609 if test -n "$withval" && test "x$withval" != "xno" && \
610 test "x${withval}" != "xyes"; then
8e7b16f8 611 CFLAGS="$CFLAGS $withval"
612 fi
82f4e93d 613 ]
8e7b16f8 614)
0c2fb82f 615AC_ARG_WITH(cppflags,
616 [ --with-cppflags Specify additional flags to pass to preprocessor] ,
617 [
6cf0200f 618 if test -n "$withval" && test "x$withval" != "xno" && \
619 test "x${withval}" != "xyes"; then
0c2fb82f 620 CPPFLAGS="$CPPFLAGS $withval"
621 fi
622 ]
623)
8e7b16f8 624AC_ARG_WITH(ldflags,
97b378bf 625 [ --with-ldflags Specify additional flags to pass to linker],
8e7b16f8 626 [
6cf0200f 627 if test -n "$withval" && test "x$withval" != "xno" && \
628 test "x${withval}" != "xyes"; then
8e7b16f8 629 LDFLAGS="$LDFLAGS $withval"
630 fi
82f4e93d 631 ]
8e7b16f8 632)
633AC_ARG_WITH(libs,
634 [ --with-libs Specify additional libraries to link with],
635 [
6cf0200f 636 if test -n "$withval" && test "x$withval" != "xno" && \
637 test "x${withval}" != "xyes"; then
8e7b16f8 638 LIBS="$LIBS $withval"
639 fi
82f4e93d 640 ]
8e7b16f8 641)
ed89c848 642AC_ARG_WITH(Werror,
643 [ --with-Werror Build main code with -Werror],
644 [
645 if test -n "$withval" && test "x$withval" != "xno"; then
646 werror_flags="-Werror"
1012885d 647 if test "x${withval}" != "xyes"; then
ed89c848 648 werror_flags="$withval"
649 fi
650 fi
651 ]
652)
8e7b16f8 653
c5829391 654AC_MSG_CHECKING(compiler and flags for sanity)
479cece8 655AC_RUN_IFELSE(
656 [AC_LANG_SOURCE([
c5829391 657#include <stdio.h>
658int main(){exit(0);}
479cece8 659 ])],
c5829391 660 [ AC_MSG_RESULT(yes) ],
661 [
662 AC_MSG_RESULT(no)
663 AC_MSG_ERROR([*** compiler cannot create working executables, check config.log ***])
1a01a50c 664 ],
665 [ AC_MSG_WARN([cross compiling: not checking compiler sanity]) ]
c5829391 666)
667
b04a9f8c 668dnl Checks for header files.
669AC_CHECK_HEADERS( \
670 bstring.h \
671 crypt.h \
2f360c89 672 crypto/sha2.h \
b04a9f8c 673 dirent.h \
674 endian.h \
675 features.h \
676 floatingpoint.h \
677 getopt.h \
678 glob.h \
679 ia.h \
4c653d8e 680 iaf.h \
b04a9f8c 681 limits.h \
682 login.h \
b04a9f8c 683 maillock.h \
684 ndir.h \
685 netdb.h \
686 netgroup.h \
b04a9f8c 687 pam/pam_appl.h \
688 paths.h \
689 pty.h \
690 readpassphrase.h \
691 rpc/types.h \
692 security/pam_appl.h \
f73e2ad7 693 sha2.h \
b04a9f8c 694 shadow.h \
695 stddef.h \
696 stdint.h \
0957c2cf 697 string.h \
b04a9f8c 698 strings.h \
699 sys/audit.h \
700 sys/bitypes.h \
701 sys/bsdtty.h \
702 sys/cdefs.h \
703 sys/dir.h \
704 sys/mman.h \
705 sys/ndir.h \
706 sys/prctl.h \
707 sys/pstat.h \
708 sys/select.h \
709 sys/stat.h \
710 sys/stream.h \
711 sys/stropts.h \
712 sys/strtio.h \
713 sys/sysmacros.h \
714 sys/time.h \
715 sys/timers.h \
716 sys/un.h \
717 time.h \
718 tmpdir.h \
719 ttyent.h \
25dd2ce6 720 unistd.h \
b04a9f8c 721 usersec.h \
722 util.h \
723 utime.h \
724 utmp.h \
725 utmpx.h \
ea76f54c 726 vis.h \
b04a9f8c 727)
ddceb1c8 728
823221b2 729# lastlog.h requires sys/time.h to be included first on Solaris
730AC_CHECK_HEADERS(lastlog.h, [], [], [
731#ifdef HAVE_SYS_TIME_H
732# include <sys/time.h>
733#endif
734])
735
765a24cd 736# sys/ptms.h requires sys/stream.h to be included first on Solaris
737AC_CHECK_HEADERS(sys/ptms.h, [], [], [
738#ifdef HAVE_SYS_STREAM_H
739# include <sys/stream.h>
740#endif
741])
742
3919d576 743# login_cap.h requires sys/types.h on NetBSD
744AC_CHECK_HEADERS(login_cap.h, [], [], [
745#include <sys/types.h>
746])
747
a0391976 748# Checks for libraries.
98a7c37b 749AC_CHECK_FUNC(yp_match, , AC_CHECK_LIB(nsl, yp_match))
750AC_CHECK_FUNC(setsockopt, , AC_CHECK_LIB(socket, setsockopt))
2c523de9 751
446227d6 752dnl IRIX and Solaris 2.5.1 have dirname() in libgen
753AC_CHECK_FUNCS(dirname, [AC_CHECK_HEADERS(libgen.h)] ,[
754 AC_CHECK_LIB(gen, dirname,[
755 AC_CACHE_CHECK([for broken dirname],
756 ac_cv_have_broken_dirname, [
757 save_LIBS="$LIBS"
758 LIBS="$LIBS -lgen"
b0e7249f 759 AC_RUN_IFELSE(
760 [AC_LANG_SOURCE([[
446227d6 761#include <libgen.h>
762#include <string.h>
763
764int main(int argc, char **argv) {
765 char *s, buf[32];
766
767 strncpy(buf,"/etc", 32);
768 s = dirname(buf);
769 if (!s || strncmp(s, "/", 32) != 0) {
770 exit(1);
771 } else {
772 exit(0);
773 }
774}
b0e7249f 775 ]])],
776 [ ac_cv_have_broken_dirname="no" ],
777 [ ac_cv_have_broken_dirname="yes" ],
446227d6 778 [ ac_cv_have_broken_dirname="no" ],
446227d6 779 )
780 LIBS="$save_LIBS"
781 ])
782 if test "x$ac_cv_have_broken_dirname" = "xno" ; then
783 LIBS="$LIBS -lgen"
784 AC_DEFINE(HAVE_DIRNAME)
785 AC_CHECK_HEADERS(libgen.h)
786 fi
787 ])
788])
789
790AC_CHECK_FUNC(getspnam, ,
791 AC_CHECK_LIB(gen, getspnam, LIBS="$LIBS -lgen"))
3466e002 792AC_SEARCH_LIBS(basename, gen, AC_DEFINE(HAVE_BASENAME, 1,
793 [Define if you have the basename function.]))
446227d6 794
98a7c37b 795dnl zlib is required
796AC_ARG_WITH(zlib,
797 [ --with-zlib=PATH Use zlib in PATH],
6dd05556 798 [ if test "x$withval" = "xno" ; then
799 AC_MSG_ERROR([*** zlib is required ***])
800 elif test "x$withval" != "xyes"; then
98a7c37b 801 if test -d "$withval/lib"; then
802 if test -n "${need_dash_r}"; then
5a162955 803 LDFLAGS="-L${withval}/lib -R${withval}/lib ${LDFLAGS}"
98a7c37b 804 else
5a162955 805 LDFLAGS="-L${withval}/lib ${LDFLAGS}"
98a7c37b 806 fi
807 else
808 if test -n "${need_dash_r}"; then
5a162955 809 LDFLAGS="-L${withval} -R${withval} ${LDFLAGS}"
98a7c37b 810 else
5a162955 811 LDFLAGS="-L${withval} ${LDFLAGS}"
98a7c37b 812 fi
813 fi
814 if test -d "$withval/include"; then
5a162955 815 CPPFLAGS="-I${withval}/include ${CPPFLAGS}"
98a7c37b 816 else
5a162955 817 CPPFLAGS="-I${withval} ${CPPFLAGS}"
98a7c37b 818 fi
6dd05556 819 fi ]
98a7c37b 820)
821
0a15d73b 822AC_CHECK_LIB(z, deflate, ,
823 [
824 saved_CPPFLAGS="$CPPFLAGS"
825 saved_LDFLAGS="$LDFLAGS"
826 save_LIBS="$LIBS"
827 dnl Check default zlib install dir
828 if test -n "${need_dash_r}"; then
829 LDFLAGS="-L/usr/local/lib -R/usr/local/lib ${saved_LDFLAGS}"
830 else
831 LDFLAGS="-L/usr/local/lib ${saved_LDFLAGS}"
832 fi
833 CPPFLAGS="-I/usr/local/include ${saved_CPPFLAGS}"
834 LIBS="$LIBS -lz"
835 AC_TRY_LINK_FUNC(deflate, AC_DEFINE(HAVE_LIBZ),
836 [
837 AC_MSG_ERROR([*** zlib missing - please install first or check config.log ***])
838 ]
839 )
840 ]
841)
4ad65809 842AC_CHECK_HEADER([zlib.h], ,AC_MSG_ERROR([*** zlib.h missing - please install first or check config.log ***]))
8068d564 843
844AC_ARG_WITH(zlib-version-check,
845 [ --without-zlib-version-check Disable zlib version check],
846 [ if test "x$withval" = "xno" ; then
847 zlib_check_nonfatal=1
848 fi
849 ]
850)
851
5c7fc85d 852AC_MSG_CHECKING(for possibly buggy zlib)
479cece8 853AC_RUN_IFELSE([AC_LANG_SOURCE([[
5c7fc85d 854#include <stdio.h>
4ad65809 855#include <zlib.h>
856int main()
857{
5c7fc85d 858 int a=0, b=0, c=0, d=0, n, v;
859 n = sscanf(ZLIB_VERSION, "%d.%d.%d.%d", &a, &b, &c, &d);
860 if (n != 3 && n != 4)
4ad65809 861 exit(1);
5c7fc85d 862 v = a*1000000 + b*10000 + c*100 + d;
863 fprintf(stderr, "found zlib version %s (%d)\n", ZLIB_VERSION, v);
864
865 /* 1.1.4 is OK */
866 if (a == 1 && b == 1 && c >= 4)
4ad65809 867 exit(0);
5c7fc85d 868
0072b59d 869 /* 1.2.3 and up are OK */
870 if (v >= 1020300)
5c7fc85d 871 exit(0);
872
4ad65809 873 exit(2);
874}
479cece8 875 ]])],
5c7fc85d 876 AC_MSG_RESULT(no),
877 [ AC_MSG_RESULT(yes)
8068d564 878 if test -z "$zlib_check_nonfatal" ; then
879 AC_MSG_ERROR([*** zlib too old - check config.log ***
880Your reported zlib version has known security problems. It's possible your
881vendor has fixed these problems without changing the version number. If you
882are sure this is the case, you can disable the check by running
883"./configure --without-zlib-version-check".
6090bcfe 884If you are in doubt, upgrade zlib to version 1.2.3 or greater.
5c7fc85d 885See http://www.gzip.org/zlib/ for details.])
8068d564 886 else
887 AC_MSG_WARN([zlib version may have security problems])
888 fi
1a01a50c 889 ],
890 [ AC_MSG_WARN([cross compiling: not checking zlib version]) ]
4ad65809 891)
48e7916f 892
2c523de9 893dnl UnixWare 2.x
aff51935 894AC_CHECK_FUNC(strcasecmp,
2c523de9 895 [], [ AC_CHECK_LIB(resolv, strcasecmp, LIBS="$LIBS -lresolv") ]
896)
23361281 897AC_CHECK_FUNCS(utimes,
cda1ebcb 898 [], [ AC_CHECK_LIB(c89, utimes, [AC_DEFINE(HAVE_UTIMES)
899 LIBS="$LIBS -lc89"]) ]
2c523de9 900)
4cca272e 901
7c6d759d 902dnl Checks for libutil functions
903AC_CHECK_HEADERS(libutil.h)
3466e002 904AC_SEARCH_LIBS(login, util bsd, [AC_DEFINE(HAVE_LOGIN, 1,
905 [Define if your libraries define login()])])
7c6d759d 906AC_CHECK_FUNCS(logout updwtmp logwtmp)
907
a738c3b0 908AC_FUNC_STRFTIME
909
84ceda19 910# Check for ALTDIRFUNC glob() extension
911AC_MSG_CHECKING(for GLOB_ALTDIRFUNC support)
912AC_EGREP_CPP(FOUNDIT,
913 [
914 #include <glob.h>
915 #ifdef GLOB_ALTDIRFUNC
916 FOUNDIT
917 #endif
aff51935 918 ],
84ceda19 919 [
3466e002 920 AC_DEFINE(GLOB_HAS_ALTDIRFUNC, 1,
921 [Define if your system glob() function has
922 the GLOB_ALTDIRFUNC extension])
84ceda19 923 AC_MSG_RESULT(yes)
924 ],
925 [
926 AC_MSG_RESULT(no)
927 ]
928)
4cca272e 929
40849fdb 930# Check for g.gl_matchc glob() extension
931AC_MSG_CHECKING(for gl_matchc field in glob_t)
d90b9f9a 932AC_TRY_COMPILE(
13ff27b7 933 [ #include <glob.h> ],
934 [glob_t g; g.gl_matchc = 1;],
aff51935 935 [
3466e002 936 AC_DEFINE(GLOB_HAS_GL_MATCHC, 1,
937 [Define if your system glob() function has
938 gl_matchc options in glob_t])
aff51935 939 AC_MSG_RESULT(yes)
940 ],
941 [
942 AC_MSG_RESULT(no)
943 ]
40849fdb 944)
945
edbe6722 946AC_MSG_CHECKING([whether struct dirent allocates space for d_name])
1a01a50c 947AC_RUN_IFELSE(
479cece8 948 [AC_LANG_SOURCE([[
edbe6722 949#include <sys/types.h>
950#include <dirent.h>
aec4cb4f 951int main(void){struct dirent d;exit(sizeof(d.d_name)<=sizeof(char));}
479cece8 952 ]])],
aff51935 953 [AC_MSG_RESULT(yes)],
edbe6722 954 [
955 AC_MSG_RESULT(no)
3466e002 956 AC_DEFINE(BROKEN_ONE_BYTE_DIRENT_D_NAME, 1,
d08db6d1 957 [Define if your struct dirent expects you to
3466e002 958 allocate extra space for d_name])
1a01a50c 959 ],
82f4e93d 960 [
1a01a50c 961 AC_MSG_WARN([cross compiling: assuming BROKEN_ONE_BYTE_DIRENT_D_NAME])
962 AC_DEFINE(BROKEN_ONE_BYTE_DIRENT_D_NAME)
edbe6722 963 ]
964)
965
419e26e7 966AC_MSG_CHECKING([for /proc/pid/fd directory])
967if test -d "/proc/$$/fd" ; then
3466e002 968 AC_DEFINE(HAVE_PROC_PID, 1, [Define if you have /proc/$pid/fd])
419e26e7 969 AC_MSG_RESULT(yes)
970else
971 AC_MSG_RESULT(no)
972fi
973
278588d8 974# Check whether user wants S/Key support
aff51935 975SKEY_MSG="no"
278588d8 976AC_ARG_WITH(skey,
6ff3d0dc 977 [ --with-skey[[=PATH]] Enable S/Key support (optionally in PATH)],
278588d8 978 [
979 if test "x$withval" != "xno" ; then
980
981 if test "x$withval" != "xyes" ; then
982 CPPFLAGS="$CPPFLAGS -I${withval}/include"
983 LDFLAGS="$LDFLAGS -L${withval}/lib"
984 fi
985
3466e002 986 AC_DEFINE(SKEY, 1, [Define if you want S/Key support])
278588d8 987 LIBS="-lskey $LIBS"
aff51935 988 SKEY_MSG="yes"
82f4e93d 989
ddceb1c8 990 AC_MSG_CHECKING([for s/key support])
b0e7249f 991 AC_LINK_IFELSE(
992 [AC_LANG_SOURCE([[
ddceb1c8 993#include <stdio.h>
994#include <skey.h>
aec4cb4f 995int main() { char *ff = skey_keyinfo(""); ff=""; exit(0); }
b0e7249f 996 ]])],
ddceb1c8 997 [AC_MSG_RESULT(yes)],
278588d8 998 [
ddceb1c8 999 AC_MSG_RESULT(no)
278588d8 1000 AC_MSG_ERROR([** Incomplete or missing s/key libraries.])
1001 ])
141fc639 1002 AC_MSG_CHECKING(if skeychallenge takes 4 arguments)
1003 AC_TRY_COMPILE(
1004 [#include <stdio.h>
1005 #include <skey.h>],
1006 [(void)skeychallenge(NULL,"name","",0);],
1007 [AC_MSG_RESULT(yes)
3466e002 1008 AC_DEFINE(SKEYCHALLENGE_4ARG, 1,
1009 [Define if your skeychallenge()
1010 function takes 4 arguments (NetBSD)])],
141fc639 1011 [AC_MSG_RESULT(no)]
1012 )
278588d8 1013 fi
1014 ]
1015)
1016
1017# Check whether user wants TCP wrappers support
98a7c37b 1018TCPW_MSG="no"
278588d8 1019AC_ARG_WITH(tcp-wrappers,
6ff3d0dc 1020 [ --with-tcp-wrappers[[=PATH]] Enable tcpwrappers support (optionally in PATH)],
278588d8 1021 [
1022 if test "x$withval" != "xno" ; then
1023 saved_LIBS="$LIBS"
98a7c37b 1024 saved_LDFLAGS="$LDFLAGS"
1025 saved_CPPFLAGS="$CPPFLAGS"
4b492aab 1026 if test -n "${withval}" && \
6cf0200f 1027 test "x${withval}" != "xyes"; then
98a7c37b 1028 if test -d "${withval}/lib"; then
1029 if test -n "${need_dash_r}"; then
5a162955 1030 LDFLAGS="-L${withval}/lib -R${withval}/lib ${LDFLAGS}"
98a7c37b 1031 else
5a162955 1032 LDFLAGS="-L${withval}/lib ${LDFLAGS}"
98a7c37b 1033 fi
1034 else
1035 if test -n "${need_dash_r}"; then
5a162955 1036 LDFLAGS="-L${withval} -R${withval} ${LDFLAGS}"
98a7c37b 1037 else
5a162955 1038 LDFLAGS="-L${withval} ${LDFLAGS}"
98a7c37b 1039 fi
1040 fi
1041 if test -d "${withval}/include"; then
5a162955 1042 CPPFLAGS="-I${withval}/include ${CPPFLAGS}"
98a7c37b 1043 else
5a162955 1044 CPPFLAGS="-I${withval} ${CPPFLAGS}"
98a7c37b 1045 fi
98a7c37b 1046 fi
ddceb1c8 1047 LIBWRAP="-lwrap"
1048 LIBS="$LIBWRAP $LIBS"
278588d8 1049 AC_MSG_CHECKING(for libwrap)
1050 AC_TRY_LINK(
1051 [
77f09220 1052#include <sys/types.h>
1053#include <sys/socket.h>
1054#include <netinet/in.h>
278588d8 1055#include <tcpd.h>
1056 int deny_severity = 0, allow_severity = 0;
1057 ],
1058 [hosts_access(0);],
1059 [
1060 AC_MSG_RESULT(yes)
3466e002 1061 AC_DEFINE(LIBWRAP, 1,
1062 [Define if you want
1063 TCP Wrappers support])
ddceb1c8 1064 AC_SUBST(LIBWRAP)
98a7c37b 1065 TCPW_MSG="yes"
278588d8 1066 ],
1067 [
1068 AC_MSG_ERROR([*** libwrap missing])
1069 ]
1070 )
ddceb1c8 1071 LIBS="$saved_LIBS"
278588d8 1072 fi
1073 ]
1074)
1075
59031773 1076# Check whether user wants libedit support
1077LIBEDIT_MSG="no"
1078AC_ARG_WITH(libedit,
6ff3d0dc 1079 [ --with-libedit[[=PATH]] Enable libedit support for sftp],
59031773 1080 [ if test "x$withval" != "xno" ; then
737edf04 1081 if test "x$withval" != "xyes"; then
bb116c8e 1082 CPPFLAGS="$CPPFLAGS -I${withval}/include"
1083 if test -n "${need_dash_r}"; then
1084 LDFLAGS="-L${withval}/lib -R${withval}/lib ${LDFLAGS}"
1085 else
1086 LDFLAGS="-L${withval}/lib ${LDFLAGS}"
1087 fi
737edf04 1088 fi
59031773 1089 AC_CHECK_LIB(edit, el_init,
3466e002 1090 [ AC_DEFINE(USE_LIBEDIT, 1, [Use libedit for sftp])
59031773 1091 LIBEDIT="-ledit -lcurses"
1092 LIBEDIT_MSG="yes"
1093 AC_SUBST(LIBEDIT)
1094 ],
737edf04 1095 [ AC_MSG_ERROR(libedit not found) ],
1096 [ -lcurses ]
59031773 1097 )
f47ddccb 1098 AC_MSG_CHECKING(if libedit version is compatible)
d92622f9 1099 AC_COMPILE_IFELSE(
1100 [AC_LANG_SOURCE([[
1101#include <histedit.h>
f47ddccb 1102int main(void)
1103{
1104 int i = H_SETSIZE;
1105 el_init("", NULL, NULL, NULL);
1106 exit(0);
1107}
d92622f9 1108 ]])],
f47ddccb 1109 [ AC_MSG_RESULT(yes) ],
1110 [ AC_MSG_RESULT(no)
1111 AC_MSG_ERROR(libedit version is not compatible) ]
1112 )
59031773 1113 fi ]
1114)
1115
7b578f7d 1116AUDIT_MODULE=none
1117AC_ARG_WITH(audit,
1118 [ --with-audit=module Enable EXPERIMENTAL audit support (modules=debug,bsm)],
1119 [
1120 AC_MSG_CHECKING(for supported audit module)
1121 case "$withval" in
1122 bsm)
1123 AC_MSG_RESULT(bsm)
1124 AUDIT_MODULE=bsm
1125 dnl Checks for headers, libs and functions
1126 AC_CHECK_HEADERS(bsm/audit.h, [],
1127 [AC_MSG_ERROR(BSM enabled and bsm/audit.h not found)])
1128 AC_CHECK_LIB(bsm, getaudit, [],
1129 [AC_MSG_ERROR(BSM enabled and required library not found)])
1130 AC_CHECK_FUNCS(getaudit, [],
1131 [AC_MSG_ERROR(BSM enabled and required function not found)])
1132 # These are optional
7939c496 1133 AC_CHECK_FUNCS(getaudit_addr)
3466e002 1134 AC_DEFINE(USE_BSM_AUDIT, 1, [Use BSM audit module])
7b578f7d 1135 ;;
1136 debug)
1137 AUDIT_MODULE=debug
1138 AC_MSG_RESULT(debug)
3466e002 1139 AC_DEFINE(SSH_AUDIT_EVENTS, 1, Use audit debugging module)
7b578f7d 1140 ;;
a2b3321d 1141 no)
d92622f9 1142 AC_MSG_RESULT(no)
a2b3321d 1143 ;;
7b578f7d 1144 *)
1145 AC_MSG_ERROR([Unknown audit module $withval])
1146 ;;
1147 esac ]
1148)
1149
19160674 1150dnl Checks for library functions. Please keep in alphabetical order
b04a9f8c 1151AC_CHECK_FUNCS( \
1152 arc4random \
9a406e1e 1153 asprintf \
b04a9f8c 1154 b64_ntop \
1155 __b64_ntop \
1156 b64_pton \
1157 __b64_pton \
1158 bcopy \
1159 bindresvport_sa \
1160 clock \
1161 closefrom \
1162 dirfd \
b04a9f8c 1163 fchmod \
1164 fchown \
1165 freeaddrinfo \
1166 futimes \
1167 getaddrinfo \
1168 getcwd \
1169 getgrouplist \
1170 getnameinfo \
1171 getopt \
1172 getpeereid \
1173 _getpty \
1174 getrlimit \
1175 getttyent \
1176 glob \
1177 inet_aton \
1178 inet_ntoa \
1179 inet_ntop \
1180 innetgr \
1181 login_getcapbool \
1182 md5_crypt \
1183 memmove \
1184 mkdtemp \
1185 mmap \
1186 ngetaddrinfo \
1187 nsleep \
1188 ogetaddrinfo \
1189 openlog_r \
1190 openpty \
1191 prctl \
1192 pstat \
1193 readpassphrase \
1194 realpath \
1195 recvmsg \
1196 rresvport_af \
1197 sendmsg \
1198 setdtablesize \
1199 setegid \
1200 setenv \
1201 seteuid \
1202 setgroups \
1203 setlogin \
1204 setpcred \
1205 setproctitle \
1206 setregid \
1207 setreuid \
1208 setrlimit \
1209 setsid \
1210 setvbuf \
1211 sigaction \
1212 sigvec \
1213 snprintf \
1214 socketpair \
1215 strdup \
1216 strerror \
1217 strlcat \
1218 strlcpy \
1219 strmode \
1220 strnvis \
1221 strtonum \
1e29a0c8 1222 strtoll \
b04a9f8c 1223 strtoul \
1224 sysconf \
1225 tcgetpgrp \
1226 truncate \
1227 unsetenv \
1228 updwtmpx \
9a406e1e 1229 vasprintf \
b04a9f8c 1230 vhangup \
1231 vsnprintf \
1232 waitpid \
19160674 1233)
98a7c37b 1234
1a086f97 1235# IRIX has a const char return value for gai_strerror()
1236AC_CHECK_FUNCS(gai_strerror,[
1237 AC_DEFINE(HAVE_GAI_STRERROR)
1238 AC_TRY_COMPILE([
1239#include <sys/types.h>
1240#include <sys/socket.h>
1241#include <netdb.h>
1242
1243const char *gai_strerror(int);],[
1244char *str;
1245
1246str = gai_strerror(0);],[
1247 AC_DEFINE(HAVE_CONST_GAI_STRERROR_PROTO, 1,
1248 [Define if gai_strerror() returns const char *])])])
1249
3466e002 1250AC_SEARCH_LIBS(nanosleep, rt posix4, AC_DEFINE(HAVE_NANOSLEEP, 1,
1251 [Some systems put nanosleep outside of libc]))
92b1decf 1252
309709db 1253dnl Make sure prototypes are defined for these before using them.
309709db 1254AC_CHECK_DECL(getrusage, [AC_CHECK_FUNCS(getrusage)])
0957c2cf 1255AC_CHECK_DECL(strsep,
1256 [AC_CHECK_FUNCS(strsep)],
1257 [],
1258 [
1259#ifdef HAVE_STRING_H
1260# include <string.h>
1261#endif
1262 ])
08412d26 1263
3490699c 1264dnl tcsendbreak might be a macro
1265AC_CHECK_DECL(tcsendbreak,
1266 [AC_DEFINE(HAVE_TCSENDBREAK)],
aff51935 1267 [AC_CHECK_FUNCS(tcsendbreak)],
3490699c 1268 [#include <termios.h>]
1269)
1270
41e0e158 1271AC_CHECK_DECLS(h_errno, , ,[#include <netdb.h>])
1272
3f176010 1273AC_CHECK_FUNCS(setresuid, [
1274 dnl Some platorms have setresuid that isn't implemented, test for this
1275 AC_MSG_CHECKING(if setresuid seems to work)
479cece8 1276 AC_RUN_IFELSE(
1277 [AC_LANG_SOURCE([[
9a3fe0e2 1278#include <stdlib.h>
1279#include <errno.h>
1280int main(){errno=0; setresuid(0,0,0); if (errno==ENOSYS) exit(1); else exit(0);}
479cece8 1281 ]])],
3f176010 1282 [AC_MSG_RESULT(yes)],
3466e002 1283 [AC_DEFINE(BROKEN_SETRESUID, 1,
1284 [Define if your setresuid() is broken])
1a01a50c 1285 AC_MSG_RESULT(not implemented)],
1286 [AC_MSG_WARN([cross compiling: not checking setresuid])]
3f176010 1287 )
1288])
9a3fe0e2 1289
3f176010 1290AC_CHECK_FUNCS(setresgid, [
1291 dnl Some platorms have setresgid that isn't implemented, test for this
1292 AC_MSG_CHECKING(if setresgid seems to work)
479cece8 1293 AC_RUN_IFELSE(
1294 [AC_LANG_SOURCE([[
9a3fe0e2 1295#include <stdlib.h>
1296#include <errno.h>
1297int main(){errno=0; setresgid(0,0,0); if (errno==ENOSYS) exit(1); else exit(0);}
479cece8 1298 ]])],
3f176010 1299 [AC_MSG_RESULT(yes)],
3466e002 1300 [AC_DEFINE(BROKEN_SETRESGID, 1,
1301 [Define if your setresgid() is broken])
1a01a50c 1302 AC_MSG_RESULT(not implemented)],
1303 [AC_MSG_WARN([cross compiling: not checking setresuid])]
3f176010 1304 )
1305])
9a3fe0e2 1306
2e73a022 1307dnl Checks for time functions
1d7b9b20 1308AC_CHECK_FUNCS(gettimeofday time)
2e73a022 1309dnl Checks for utmp functions
b03bd394 1310AC_CHECK_FUNCS(endutent getutent getutid getutline pututline setutent)
1d7b9b20 1311AC_CHECK_FUNCS(utmpname)
2e73a022 1312dnl Checks for utmpx functions
b03bd394 1313AC_CHECK_FUNCS(endutxent getutxent getutxid getutxline pututxline )
1d7b9b20 1314AC_CHECK_FUNCS(setutxent utmpxname)
76cd7316 1315
aff51935 1316AC_CHECK_FUNC(daemon,
3466e002 1317 [AC_DEFINE(HAVE_DAEMON, 1, [Define if your libraries define daemon()])],
1318 [AC_CHECK_LIB(bsd, daemon,
1319 [LIBS="$LIBS -lbsd"; AC_DEFINE(HAVE_DAEMON)])]
beb43d31 1320)
1321
aff51935 1322AC_CHECK_FUNC(getpagesize,
3466e002 1323 [AC_DEFINE(HAVE_GETPAGESIZE, 1,
1324 [Define if your libraries define getpagesize()])],
1325 [AC_CHECK_LIB(ucb, getpagesize,
1326 [LIBS="$LIBS -lucb"; AC_DEFINE(HAVE_GETPAGESIZE)])]
aa6bd60a 1327)
1328
2647ae26 1329# Check for broken snprintf
1330if test "x$ac_cv_func_snprintf" = "xyes" ; then
1331 AC_MSG_CHECKING([whether snprintf correctly terminates long strings])
1a01a50c 1332 AC_RUN_IFELSE(
479cece8 1333 [AC_LANG_SOURCE([[
2647ae26 1334#include <stdio.h>
aec4cb4f 1335int main(void){char b[5];snprintf(b,5,"123456789");exit(b[4]!='\0');}
479cece8 1336 ]])],
aff51935 1337 [AC_MSG_RESULT(yes)],
2647ae26 1338 [
1339 AC_MSG_RESULT(no)
3466e002 1340 AC_DEFINE(BROKEN_SNPRINTF, 1,
1341 [Define if your snprintf is busted])
2647ae26 1342 AC_MSG_WARN([****** Your snprintf() function is broken, complain to your vendor])
1a01a50c 1343 ],
1344 [ AC_MSG_WARN([cross compiling: Assuming working snprintf()]) ]
2647ae26 1345 )
1346fi
1347
9a406e1e 1348# If we don't have a working asprintf, then we strongly depend on vsnprintf
1349# returning the right thing on overflow: the number of characters it tried to
1350# create (as per SUSv3)
1351if test "x$ac_cv_func_asprintf" != "xyes" && \
1352 test "x$ac_cv_func_vsnprintf" = "xyes" ; then
1353 AC_MSG_CHECKING([whether vsnprintf returns correct values on overflow])
1354 AC_RUN_IFELSE(
1355 [AC_LANG_SOURCE([[
1356#include <sys/types.h>
1357#include <stdio.h>
1358#include <stdarg.h>
1359
1360int x_snprintf(char *str,size_t count,const char *fmt,...)
1361{
1362 size_t ret; va_list ap;
1363 va_start(ap, fmt); ret = vsnprintf(str, count, fmt, ap); va_end(ap);
1364 return ret;
1365}
1366int main(void)
1367{
1368 char x[1];
1369 exit(x_snprintf(x, 1, "%s %d", "hello", 12345) == 11 ? 0 : 1);
1370} ]])],
1371 [AC_MSG_RESULT(yes)],
1372 [
1373 AC_MSG_RESULT(no)
1374 AC_DEFINE(BROKEN_SNPRINTF, 1,
1375 [Define if your snprintf is busted])
1376 AC_MSG_WARN([****** Your vsnprintf() function is broken, complain to your vendor])
1377 ],
1378 [ AC_MSG_WARN([cross compiling: Assuming working vsnprintf()]) ]
1379 )
1380fi
1381
31b0732a 1382# On systems where [v]snprintf is broken, but is declared in stdio,
1383# check that the fmt argument is const char * or just char *.
1384# This is only useful for when BROKEN_SNPRINTF
1385AC_MSG_CHECKING([whether snprintf can declare const char *fmt])
1386AC_COMPILE_IFELSE([AC_LANG_SOURCE([[#include <stdio.h>
1387 int snprintf(char *a, size_t b, const char *c, ...) { return 0; }
1388 int main(void) { snprintf(0, 0, 0); }
1389 ]])],
1390 [AC_MSG_RESULT(yes)
1391 AC_DEFINE(SNPRINTF_CONST, [const],
1392 [Define as const if snprintf() can declare const char *fmt])],
1393 [AC_MSG_RESULT(no)
1394 AC_DEFINE(SNPRINTF_CONST, [/* not const */])])
1395
2f6f9cff 1396# Check for missing getpeereid (or equiv) support
1397NO_PEERCHECK=""
1398if test "x$ac_cv_func_getpeereid" != "xyes" ; then
1399 AC_MSG_CHECKING([whether system supports SO_PEERCRED getsockopt])
1400 AC_TRY_COMPILE(
1401 [#include <sys/types.h>
1402 #include <sys/socket.h>],
1403 [int i = SO_PEERCRED;],
62eb7db4 1404 [ AC_MSG_RESULT(yes)
3466e002 1405 AC_DEFINE(HAVE_SO_PEERCRED, 1, [Have PEERCRED socket option])
62eb7db4 1406 ],
2f6f9cff 1407 [AC_MSG_RESULT(no)
1408 NO_PEERCHECK=1]
1409 )
1410fi
1411
70e7d0b0 1412dnl see whether mkstemp() requires XXXXXX
1413if test "x$ac_cv_func_mkdtemp" = "xyes" ; then
1414AC_MSG_CHECKING([for (overly) strict mkstemp])
b0e7249f 1415AC_RUN_IFELSE(
1416 [AC_LANG_SOURCE([[
70e7d0b0 1417#include <stdlib.h>
1418main() { char template[]="conftest.mkstemp-test";
1419if (mkstemp(template) == -1)
1420 exit(1);
1421unlink(template); exit(0);
1422}
b0e7249f 1423 ]])],
70e7d0b0 1424 [
1425 AC_MSG_RESULT(no)
1426 ],
aff51935 1427 [
70e7d0b0 1428 AC_MSG_RESULT(yes)
3466e002 1429 AC_DEFINE(HAVE_STRICT_MKSTEMP, 1, [Silly mkstemp()])
70e7d0b0 1430 ],
1431 [
1432 AC_MSG_RESULT(yes)
1433 AC_DEFINE(HAVE_STRICT_MKSTEMP)
aff51935 1434 ]
70e7d0b0 1435)
1436fi
1437
eacb954e 1438dnl make sure that openpty does not reacquire controlling terminal
1439if test ! -z "$check_for_openpty_ctty_bug"; then
1440 AC_MSG_CHECKING(if openpty correctly handles controlling tty)
b0e7249f 1441 AC_RUN_IFELSE(
1442 [AC_LANG_SOURCE([[
eacb954e 1443#include <stdio.h>
1444#include <sys/fcntl.h>
1445#include <sys/types.h>
1446#include <sys/wait.h>
1447
1448int
1449main()
1450{
1451 pid_t pid;
1452 int fd, ptyfd, ttyfd, status;
1453
1454 pid = fork();
1455 if (pid < 0) { /* failed */
1456 exit(1);
1457 } else if (pid > 0) { /* parent */
1458 waitpid(pid, &status, 0);
aff51935 1459 if (WIFEXITED(status))
eacb954e 1460 exit(WEXITSTATUS(status));
1461 else
1462 exit(2);
1463 } else { /* child */
1464 close(0); close(1); close(2);
1465 setsid();
1466 openpty(&ptyfd, &ttyfd, NULL, NULL, NULL);
1467 fd = open("/dev/tty", O_RDWR | O_NOCTTY);
1468 if (fd >= 0)
1469 exit(3); /* Acquired ctty: broken */
1470 else
1471 exit(0); /* Did not acquire ctty: OK */
1472 }
1473}
b0e7249f 1474 ]])],
eacb954e 1475 [
1476 AC_MSG_RESULT(yes)
1477 ],
1478 [
1479 AC_MSG_RESULT(no)
1480 AC_DEFINE(SSHD_ACQUIRES_CTTY)
b0e7249f 1481 ],
1482 [
1483 AC_MSG_RESULT(cross-compiling, assuming yes)
eacb954e 1484 ]
1485 )
1486fi
1487
4b492aab 1488if test "x$ac_cv_func_getaddrinfo" = "xyes" && \
1489 test "x$check_for_hpux_broken_getaddrinfo" = "x1"; then
2fe51906 1490 AC_MSG_CHECKING(if getaddrinfo seems to work)
b0e7249f 1491 AC_RUN_IFELSE(
1492 [AC_LANG_SOURCE([[
2fe51906 1493#include <stdio.h>
1494#include <sys/socket.h>
1495#include <netdb.h>
1496#include <errno.h>
1497#include <netinet/in.h>
1498
1499#define TEST_PORT "2222"
1500
1501int
1502main(void)
1503{
1504 int err, sock;
1505 struct addrinfo *gai_ai, *ai, hints;
1506 char ntop[NI_MAXHOST], strport[NI_MAXSERV], *name = NULL;
1507
1508 memset(&hints, 0, sizeof(hints));
1509 hints.ai_family = PF_UNSPEC;
1510 hints.ai_socktype = SOCK_STREAM;
1511 hints.ai_flags = AI_PASSIVE;
1512
1513 err = getaddrinfo(name, TEST_PORT, &hints, &gai_ai);
1514 if (err != 0) {
1515 fprintf(stderr, "getaddrinfo failed (%s)", gai_strerror(err));
1516 exit(1);
1517 }
1518
1519 for (ai = gai_ai; ai != NULL; ai = ai->ai_next) {
1520 if (ai->ai_family != AF_INET6)
1521 continue;
1522
1523 err = getnameinfo(ai->ai_addr, ai->ai_addrlen, ntop,
1524 sizeof(ntop), strport, sizeof(strport),
1525 NI_NUMERICHOST|NI_NUMERICSERV);
1526
1527 if (err != 0) {
1528 if (err == EAI_SYSTEM)
1529 perror("getnameinfo EAI_SYSTEM");
1530 else
1531 fprintf(stderr, "getnameinfo failed: %s\n",
1532 gai_strerror(err));
1533 exit(2);
1534 }
1535
1536 sock = socket(ai->ai_family, ai->ai_socktype, ai->ai_protocol);
1537 if (sock < 0)
1538 perror("socket");
1539 if (bind(sock, ai->ai_addr, ai->ai_addrlen) < 0) {
1540 if (errno == EBADF)
1541 exit(3);
1542 }
1543 }
1544 exit(0);
1545}
b0e7249f 1546 ]])],
2fe51906 1547 [
1548 AC_MSG_RESULT(yes)
1549 ],
1550 [
1551 AC_MSG_RESULT(no)
1552 AC_DEFINE(BROKEN_GETADDRINFO)
b0e7249f 1553 ],
1554 [
1555 AC_MSG_RESULT(cross-compiling, assuming yes)
2fe51906 1556 ]
1557 )
1558fi
1559
4b492aab 1560if test "x$ac_cv_func_getaddrinfo" = "xyes" && \
1561 test "x$check_for_aix_broken_getaddrinfo" = "x1"; then
5ccf88cb 1562 AC_MSG_CHECKING(if getaddrinfo seems to work)
b0e7249f 1563 AC_RUN_IFELSE(
1564 [AC_LANG_SOURCE([[
5ccf88cb 1565#include <stdio.h>
1566#include <sys/socket.h>
1567#include <netdb.h>
1568#include <errno.h>
1569#include <netinet/in.h>
1570
1571#define TEST_PORT "2222"
1572
1573int
1574main(void)
1575{
1576 int err, sock;
1577 struct addrinfo *gai_ai, *ai, hints;
1578 char ntop[NI_MAXHOST], strport[NI_MAXSERV], *name = NULL;
1579
1580 memset(&hints, 0, sizeof(hints));
1581 hints.ai_family = PF_UNSPEC;
1582 hints.ai_socktype = SOCK_STREAM;
1583 hints.ai_flags = AI_PASSIVE;
1584
1585 err = getaddrinfo(name, TEST_PORT, &hints, &gai_ai);
1586 if (err != 0) {
1587 fprintf(stderr, "getaddrinfo failed (%s)", gai_strerror(err));
1588 exit(1);
1589 }
1590
1591 for (ai = gai_ai; ai != NULL; ai = ai->ai_next) {
1592 if (ai->ai_family != AF_INET && ai->ai_family != AF_INET6)
1593 continue;
1594
1595 err = getnameinfo(ai->ai_addr, ai->ai_addrlen, ntop,
1596 sizeof(ntop), strport, sizeof(strport),
1597 NI_NUMERICHOST|NI_NUMERICSERV);
1598
1599 if (ai->ai_family == AF_INET && err != 0) {
1600 perror("getnameinfo");
1601 exit(2);
1602 }
1603 }
1604 exit(0);
1605}
b0e7249f 1606 ]])],
5ccf88cb 1607 [
1608 AC_MSG_RESULT(yes)
3466e002 1609 AC_DEFINE(AIX_GETNAMEINFO_HACK, 1,
1610 [Define if you have a getaddrinfo that fails
1611 for the all-zeros IPv6 address])
5ccf88cb 1612 ],
1613 [
1614 AC_MSG_RESULT(no)
1615 AC_DEFINE(BROKEN_GETADDRINFO)
b0e7249f 1616 ],
1617 AC_MSG_RESULT(cross-compiling, assuming no)
5ccf88cb 1618 ]
1619 )
1620fi
1621
b29fd59f 1622if test "x$check_for_conflicting_getspnam" = "x1"; then
1623 AC_MSG_CHECKING(for conflicting getspnam in shadow.h)
1624 AC_COMPILE_IFELSE(
1625 [
1626#include <shadow.h>
1627int main(void) {exit(0);}
1628 ],
1629 [
1630 AC_MSG_RESULT(no)
1631 ],
1632 [
1633 AC_MSG_RESULT(yes)
1634 AC_DEFINE(GETSPNAM_CONFLICTING_DEFS, 1,
1635 [Conflicting defs for getspnam])
1636 ]
1637 )
1638fi
1639
7f8f5e00 1640AC_FUNC_GETPGRP
1641
717057b6 1642# Check for PAM libs
cbd7492e 1643PAM_MSG="no"
a0391976 1644AC_ARG_WITH(pam,
717057b6 1645 [ --with-pam Enable PAM support ],
a0391976 1646 [
717057b6 1647 if test "x$withval" != "xno" ; then
2511d104 1648 if test "x$ac_cv_header_security_pam_appl_h" != "xyes" && \
1649 test "x$ac_cv_header_pam_pam_appl_h" != "xyes" ; then
717057b6 1650 AC_MSG_ERROR([PAM headers not found])
1651 fi
a0391976 1652
717057b6 1653 AC_CHECK_LIB(dl, dlopen, , )
1654 AC_CHECK_LIB(pam, pam_set_item, , AC_MSG_ERROR([*** libpam missing]))
1655 AC_CHECK_FUNCS(pam_getenvlist)
749560dd 1656 AC_CHECK_FUNCS(pam_putenv)
2b763e31 1657
717057b6 1658 PAM_MSG="yes"
4cb5ffa0 1659
3466e002 1660 AC_DEFINE(USE_PAM, 1,
1661 [Define if you want to enable PAM support])
98f2d9d5 1662 if test $ac_cv_lib_dl_dlopen = yes; then
1663 LIBPAM="-lpam -ldl"
1664 else
1665 LIBPAM="-lpam"
1666 fi
1667 AC_SUBST(LIBPAM)
717057b6 1668 fi
1669 ]
1670)
cbd7492e 1671
717057b6 1672# Check for older PAM
1673if test "x$PAM_MSG" = "xyes" ; then
a0391976 1674 # Check PAM strerror arguments (old PAM)
1675 AC_MSG_CHECKING([whether pam_strerror takes only one argument])
1676 AC_TRY_COMPILE(
1677 [
18ba2aab 1678#include <stdlib.h>
2511d104 1679#if defined(HAVE_SECURITY_PAM_APPL_H)
18ba2aab 1680#include <security/pam_appl.h>
2511d104 1681#elif defined (HAVE_PAM_PAM_APPL_H)
1682#include <pam/pam_appl.h>
1683#endif
aff51935 1684 ],
1685 [(void)pam_strerror((pam_handle_t *)NULL, -1);],
a0391976 1686 [AC_MSG_RESULT(no)],
1687 [
3466e002 1688 AC_DEFINE(HAVE_OLD_PAM, 1,
1689 [Define if you have an old version of PAM
1690 which takes only one argument to pam_strerror])
a0391976 1691 AC_MSG_RESULT(yes)
cbd7492e 1692 PAM_MSG="yes (old library)"
a0391976 1693 ]
717057b6 1694 )
a0391976 1695fi
1696
5b991353 1697# Search for OpenSSL
1698saved_CPPFLAGS="$CPPFLAGS"
1699saved_LDFLAGS="$LDFLAGS"
a0391976 1700AC_ARG_WITH(ssl-dir,
1701 [ --with-ssl-dir=PATH Specify path to OpenSSL installation ],
1702 [
e9e4a1c7 1703 if test "x$withval" != "xno" ; then
99eb0f64 1704 case "$withval" in
1705 # Relative paths
1706 ./*|../*) withval="`pwd`/$withval"
1707 esac
5b991353 1708 if test -d "$withval/lib"; then
1709 if test -n "${need_dash_r}"; then
1710 LDFLAGS="-L${withval}/lib -R${withval}/lib ${LDFLAGS}"
1711 else
1712 LDFLAGS="-L${withval}/lib ${LDFLAGS}"
d6f13fbb 1713 fi
1714 else
5b991353 1715 if test -n "${need_dash_r}"; then
1716 LDFLAGS="-L${withval} -R${withval} ${LDFLAGS}"
1717 else
1718 LDFLAGS="-L${withval} ${LDFLAGS}"
d6f13fbb 1719 fi
1720 fi
5b991353 1721 if test -d "$withval/include"; then
1722 CPPFLAGS="-I${withval}/include ${CPPFLAGS}"
d6f13fbb 1723 else
5b991353 1724 CPPFLAGS="-I${withval} ${CPPFLAGS}"
58d100bf 1725 fi
a0391976 1726 fi
5b991353 1727 ]
1728)
5486a457 1729LIBS="-lcrypto $LIBS"
3466e002 1730AC_TRY_LINK_FUNC(RAND_add, AC_DEFINE(HAVE_OPENSSL, 1,
1731 [Define if your ssl headers are included
1732 with #include <openssl/header.h>]),
d45e3d76 1733 [
5b991353 1734 dnl Check default openssl install dir
1735 if test -n "${need_dash_r}"; then
1736 LDFLAGS="-L/usr/local/ssl/lib -R/usr/local/ssl/lib ${saved_LDFLAGS}"
d45e3d76 1737 else
5b991353 1738 LDFLAGS="-L/usr/local/ssl/lib ${saved_LDFLAGS}"
d45e3d76 1739 fi
5b991353 1740 CPPFLAGS="-I/usr/local/ssl/include ${saved_CPPFLAGS}"
1741 AC_TRY_LINK_FUNC(RAND_add, AC_DEFINE(HAVE_OPENSSL),
1742 [
1743 AC_MSG_ERROR([*** Can't find recent OpenSSL libcrypto (see config.log for details) ***])
1744 ]
1745 )
1746 ]
1747)
1748
cd018561 1749# Determine OpenSSL header version
1750AC_MSG_CHECKING([OpenSSL header version])
1a01a50c 1751AC_RUN_IFELSE(
479cece8 1752 [AC_LANG_SOURCE([[
cd018561 1753#include <stdio.h>
1754#include <string.h>
1755#include <openssl/opensslv.h>
1756#define DATA "conftest.sslincver"
1757int main(void) {
aff51935 1758 FILE *fd;
1759 int rc;
cd018561 1760
aff51935 1761 fd = fopen(DATA,"w");
1762 if(fd == NULL)
1763 exit(1);
cd018561 1764
1765 if ((rc = fprintf(fd ,"%x (%s)\n", OPENSSL_VERSION_NUMBER, OPENSSL_VERSION_TEXT)) <0)
1766 exit(1);
1767
1768 exit(0);
1769}
479cece8 1770 ]])],
cd018561 1771 [
1772 ssl_header_ver=`cat conftest.sslincver`
1773 AC_MSG_RESULT($ssl_header_ver)
1774 ],
1775 [
1776 AC_MSG_RESULT(not found)
1777 AC_MSG_ERROR(OpenSSL version header not found.)
1a01a50c 1778 ],
1779 [
1780 AC_MSG_WARN([cross compiling: not checking])
cd018561 1781 ]
1782)
1783
1784# Determine OpenSSL library version
1785AC_MSG_CHECKING([OpenSSL library version])
1a01a50c 1786AC_RUN_IFELSE(
479cece8 1787 [AC_LANG_SOURCE([[
cd018561 1788#include <stdio.h>
1789#include <string.h>
1790#include <openssl/opensslv.h>
1791#include <openssl/crypto.h>
1792#define DATA "conftest.ssllibver"
1793int main(void) {
aff51935 1794 FILE *fd;
1795 int rc;
cd018561 1796
aff51935 1797 fd = fopen(DATA,"w");
1798 if(fd == NULL)
1799 exit(1);
cd018561 1800
1801 if ((rc = fprintf(fd ,"%x (%s)\n", SSLeay(), SSLeay_version(SSLEAY_VERSION))) <0)
1802 exit(1);
1803
1804 exit(0);
1805}
479cece8 1806 ]])],
cd018561 1807 [
1808 ssl_library_ver=`cat conftest.ssllibver`
1809 AC_MSG_RESULT($ssl_library_ver)
1810 ],
1811 [
1812 AC_MSG_RESULT(not found)
1813 AC_MSG_ERROR(OpenSSL library not found.)
1a01a50c 1814 ],
1815 [
1816 AC_MSG_WARN([cross compiling: not checking])
cd018561 1817 ]
1818)
58d100bf 1819
9780116c 1820# Sanity check OpenSSL headers
1821AC_MSG_CHECKING([whether OpenSSL's headers match the library])
1a01a50c 1822AC_RUN_IFELSE(
479cece8 1823 [AC_LANG_SOURCE([[
9780116c 1824#include <string.h>
1825#include <openssl/opensslv.h>
aec4cb4f 1826int main(void) { exit(SSLeay() == OPENSSL_VERSION_NUMBER ? 0 : 1); }
479cece8 1827 ]])],
9780116c 1828 [
1829 AC_MSG_RESULT(yes)
1830 ],
1831 [
1832 AC_MSG_RESULT(no)
e15ba28b 1833 AC_MSG_ERROR([Your OpenSSL headers do not match your library.
1834Check config.log for details.
1835Also see contrib/findssl.sh for help identifying header/library mismatches.])
1a01a50c 1836 ],
1837 [
1838 AC_MSG_WARN([cross compiling: not checking])
9780116c 1839 ]
1840)
1841
c7ad0d99 1842AC_ARG_WITH(ssl-engine,
1843 [ --with-ssl-engine Enable OpenSSL (hardware) ENGINE support ],
1844 [ if test "x$withval" != "xno" ; then
1845 AC_MSG_CHECKING(for OpenSSL ENGINE support)
1846 AC_TRY_COMPILE(
1847 [ #include <openssl/engine.h>],
1848 [
1849int main(void){ENGINE_load_builtin_engines();ENGINE_register_all_complete();}
1850 ],
1851 [ AC_MSG_RESULT(yes)
1852 AC_DEFINE(USE_OPENSSL_ENGINE, 1,
1853 [Enable OpenSSL engine support])
1854 ],
1855 [ AC_MSG_ERROR(OpenSSL ENGINE support not found)]
1856 )
1857 fi ]
1858)
1859
e5146707 1860# Check for OpenSSL without EVP_aes_{192,256}_cbc
1861AC_MSG_CHECKING([whether OpenSSL has crippled AES support])
1862AC_COMPILE_IFELSE(
1863 [AC_LANG_SOURCE([[
1864#include <string.h>
1865#include <openssl/evp.h>
300ea548 1866int main(void) { exit(EVP_aes_192_cbc() == NULL || EVP_aes_256_cbc() == NULL);}
e5146707 1867 ]])],
1868 [
1869 AC_MSG_RESULT(no)
1870 ],
1871 [
1872 AC_MSG_RESULT(yes)
1873 AC_DEFINE(OPENSSL_LOBOTOMISED_AES, 1,
1874 [libcrypto is missing AES 192 and 256 bit functions])
1875 ]
1876)
1877
5486a457 1878# Some systems want crypt() from libcrypt, *not* the version in OpenSSL,
1879# because the system crypt() is more featureful.
1880if test "x$check_for_libcrypt_before" = "x1"; then
1881 AC_CHECK_LIB(crypt, crypt)
1882fi
1883
aff51935 1884# Some Linux systems (Slackware) need crypt() from libcrypt, *not* the
8087c5ee 1885# version in OpenSSL.
05114c74 1886if test "x$check_for_libcrypt_later" = "x1"; then
20cad736 1887 AC_CHECK_LIB(crypt, crypt, LIBS="$LIBS -lcrypt")
717057b6 1888fi
1889
13ff27b7 1890# Search for SHA256 support in libc and/or OpenSSL
1891AC_CHECK_FUNCS(SHA256_Update EVP_sha256)
1892
4c653d8e 1893AC_CHECK_LIB(iaf, ia_openinfo)
f1b0ecc3 1894
1895### Configure cryptographic random number support
1896
1897# Check wheter OpenSSL seeds itself
1898AC_MSG_CHECKING([whether OpenSSL's PRNG is internally seeded])
1a01a50c 1899AC_RUN_IFELSE(
479cece8 1900 [AC_LANG_SOURCE([[
f1b0ecc3 1901#include <string.h>
1902#include <openssl/rand.h>
aec4cb4f 1903int main(void) { exit(RAND_status() == 1 ? 0 : 1); }
479cece8 1904 ]])],
f1b0ecc3 1905 [
1906 OPENSSL_SEEDS_ITSELF=yes
1907 AC_MSG_RESULT(yes)
1908 ],
1909 [
1910 AC_MSG_RESULT(no)
1911 # Default to use of the rand helper if OpenSSL doesn't
1912 # seed itself
1913 USE_RAND_HELPER=yes
1a01a50c 1914 ],
1915 [
1916 AC_MSG_WARN([cross compiling: assuming yes])
1917 # This is safe, since all recent OpenSSL versions will
82f4e93d 1918 # complain at runtime if not seeded correctly.
1a01a50c 1919 OPENSSL_SEEDS_ITSELF=yes
f1b0ecc3 1920 ]
1921)
1922
1923
1924# Do we want to force the use of the rand helper?
1925AC_ARG_WITH(rand-helper,
1926 [ --with-rand-helper Use subprocess to gather strong randomness ],
1927 [
1928 if test "x$withval" = "xno" ; then
aff51935 1929 # Force use of OpenSSL's internal RNG, even if
f1b0ecc3 1930 # the previous test showed it to be unseeded.
1931 if test -z "$OPENSSL_SEEDS_ITSELF" ; then
1932 AC_MSG_WARN([*** Forcing use of OpenSSL's non-self-seeding PRNG])
1933 OPENSSL_SEEDS_ITSELF=yes
1934 USE_RAND_HELPER=""
1935 fi
1936 else
1937 USE_RAND_HELPER=yes
1938 fi
1939 ],
82f4e93d 1940)
f1b0ecc3 1941
1942# Which randomness source do we use?
4b492aab 1943if test ! -z "$OPENSSL_SEEDS_ITSELF" && test -z "$USE_RAND_HELPER" ; then
f1b0ecc3 1944 # OpenSSL only
3466e002 1945 AC_DEFINE(OPENSSL_PRNG_ONLY, 1,
1946 [Define if you want OpenSSL's internally seeded PRNG only])
f1b0ecc3 1947 RAND_MSG="OpenSSL internal ONLY"
1948 INSTALL_SSH_RAND_HELPER=""
70e2f2f3 1949elif test ! -z "$USE_RAND_HELPER" ; then
1950 # install rand helper
f1b0ecc3 1951 RAND_MSG="ssh-rand-helper"
1952 INSTALL_SSH_RAND_HELPER="yes"
1953fi
1954AC_SUBST(INSTALL_SSH_RAND_HELPER)
1955
1956### Configuration of ssh-rand-helper
1957
1958# PRNGD TCP socket
1959AC_ARG_WITH(prngd-port,
1960 [ --with-prngd-port=PORT read entropy from PRNGD/EGD TCP localhost:PORT],
1961 [
eb5d7ff6 1962 case "$withval" in
1963 no)
1964 withval=""
1965 ;;
1966 [[0-9]]*)
1967 ;;
1968 *)
1969 AC_MSG_ERROR(You must specify a numeric port number for --with-prngd-port)
1970 ;;
1971 esac
1972 if test ! -z "$withval" ; then
f1b0ecc3 1973 PRNGD_PORT="$withval"
3466e002 1974 AC_DEFINE_UNQUOTED(PRNGD_PORT, $PRNGD_PORT,
1975 [Port number of PRNGD/EGD random number socket])
f1b0ecc3 1976 fi
1977 ]
1978)
1979
1980# PRNGD Unix domain socket
1981AC_ARG_WITH(prngd-socket,
1982 [ --with-prngd-socket=FILE read entropy from PRNGD/EGD socket FILE (default=/var/run/egd-pool)],
1983 [
eb5d7ff6 1984 case "$withval" in
1985 yes)
f1b0ecc3 1986 withval="/var/run/egd-pool"
eb5d7ff6 1987 ;;
1988 no)
1989 withval=""
1990 ;;
1991 /*)
1992 ;;
1993 *)
1994 AC_MSG_ERROR(You must specify an absolute path to the entropy socket)
1995 ;;
1996 esac
1997
1998 if test ! -z "$withval" ; then
f1b0ecc3 1999 if test ! -z "$PRNGD_PORT" ; then
2000 AC_MSG_ERROR(You may not specify both a PRNGD/EGD port and socket)
2001 fi
906e811b 2002 if test ! -r "$withval" ; then
f1b0ecc3 2003 AC_MSG_WARN(Entropy socket is not readable)
2004 fi
2005 PRNGD_SOCKET="$withval"
3466e002 2006 AC_DEFINE_UNQUOTED(PRNGD_SOCKET, "$PRNGD_SOCKET",
2007 [Location of PRNGD/EGD random number socket])
f1b0ecc3 2008 fi
ddceb1c8 2009 ],
2010 [
2011 # Check for existing socket only if we don't have a random device already
2012 if test "$USE_RAND_HELPER" = yes ; then
2013 AC_MSG_CHECKING(for PRNGD/EGD socket)
2014 # Insert other locations here
2015 for sock in /var/run/egd-pool /dev/egd-pool /etc/entropy; do
2016 if test -r $sock && $TEST_MINUS_S_SH -c "test -S $sock -o -p $sock" ; then
2017 PRNGD_SOCKET="$sock"
2018 AC_DEFINE_UNQUOTED(PRNGD_SOCKET, "$PRNGD_SOCKET")
2019 break;
2020 fi
2021 done
2022 if test ! -z "$PRNGD_SOCKET" ; then
2023 AC_MSG_RESULT($PRNGD_SOCKET)
2024 else
2025 AC_MSG_RESULT(not found)
2026 fi
2027 fi
f1b0ecc3 2028 ]
2029)
2030
2031# Change default command timeout for hashing entropy source
2032entropy_timeout=200
2033AC_ARG_WITH(entropy-timeout,
2034 [ --with-entropy-timeout Specify entropy gathering command timeout (msec)],
2035 [
6cf0200f 2036 if test -n "$withval" && test "x$withval" != "xno" && \
2037 test "x${withval}" != "xyes"; then
f1b0ecc3 2038 entropy_timeout=$withval
2039 fi
82f4e93d 2040 ]
f1b0ecc3 2041)
3466e002 2042AC_DEFINE_UNQUOTED(ENTROPY_TIMEOUT_MSEC, $entropy_timeout,
2043 [Builtin PRNG command timeout])
f1b0ecc3 2044
fd3cbf67 2045SSH_PRIVSEP_USER=sshd
9a0fbcb3 2046AC_ARG_WITH(privsep-user,
5222e7ef 2047 [ --with-privsep-user=user Specify non-privileged user for privilege separation],
9a0fbcb3 2048 [
6cf0200f 2049 if test -n "$withval" && test "x$withval" != "xno" && \
2050 test "x${withval}" != "xyes"; then
fd3cbf67 2051 SSH_PRIVSEP_USER=$withval
9a0fbcb3 2052 fi
82f4e93d 2053 ]
9a0fbcb3 2054)
3466e002 2055AC_DEFINE_UNQUOTED(SSH_PRIVSEP_USER, "$SSH_PRIVSEP_USER",
2056 [non-privileged user for privilege separation])
fd3cbf67 2057AC_SUBST(SSH_PRIVSEP_USER)
9a0fbcb3 2058
81dadca3 2059# We do this little dance with the search path to insure
2060# that programs that we select for use by installed programs
2061# (which may be run by the super-user) come from trusted
2062# locations before they come from the user's private area.
2063# This should help avoid accidentally configuring some
2064# random version of a program in someone's personal bin.
2065
2066OPATH=$PATH
2067PATH=/bin:/usr/bin
f95c8ce8 2068test -h /bin 2> /dev/null && PATH=/usr/bin
81dadca3 2069test -d /sbin && PATH=$PATH:/sbin
2070test -d /usr/sbin && PATH=$PATH:/usr/sbin
2071PATH=$PATH:/etc:$OPATH
2072
aff51935 2073# These programs are used by the command hashing source to gather entropy
f1b0ecc3 2074OSSH_PATH_ENTROPY_PROG(PROG_LS, ls)
2075OSSH_PATH_ENTROPY_PROG(PROG_NETSTAT, netstat)
2076OSSH_PATH_ENTROPY_PROG(PROG_ARP, arp)
2077OSSH_PATH_ENTROPY_PROG(PROG_IFCONFIG, ifconfig)
2078OSSH_PATH_ENTROPY_PROG(PROG_JSTAT, jstat)
2079OSSH_PATH_ENTROPY_PROG(PROG_PS, ps)
2080OSSH_PATH_ENTROPY_PROG(PROG_SAR, sar)
2081OSSH_PATH_ENTROPY_PROG(PROG_W, w)
2082OSSH_PATH_ENTROPY_PROG(PROG_WHO, who)
2083OSSH_PATH_ENTROPY_PROG(PROG_LAST, last)
2084OSSH_PATH_ENTROPY_PROG(PROG_LASTLOG, lastlog)
2085OSSH_PATH_ENTROPY_PROG(PROG_DF, df)
2086OSSH_PATH_ENTROPY_PROG(PROG_VMSTAT, vmstat)
2087OSSH_PATH_ENTROPY_PROG(PROG_UPTIME, uptime)
2088OSSH_PATH_ENTROPY_PROG(PROG_IPCS, ipcs)
2089OSSH_PATH_ENTROPY_PROG(PROG_TAIL, tail)
81dadca3 2090# restore PATH
2091PATH=$OPATH
f1b0ecc3 2092
2093# Where does ssh-rand-helper get its randomness from?
2094INSTALL_SSH_PRNG_CMDS=""
2095if test ! -z "$INSTALL_SSH_RAND_HELPER" ; then
2096 if test ! -z "$PRNGD_PORT" ; then
2097 RAND_HELPER_MSG="TCP localhost:$PRNGD_PORT"
2098 elif test ! -z "$PRNGD_SOCKET" ; then
2099 RAND_HELPER_MSG="Unix domain socket \"$PRNGD_SOCKET\""
2100 else
2101 RAND_HELPER_MSG="Command hashing (timeout $entropy_timeout)"
2102 RAND_HELPER_CMDHASH=yes
2103 INSTALL_SSH_PRNG_CMDS="yes"
2104 fi
2105fi
2106AC_SUBST(INSTALL_SSH_PRNG_CMDS)
2107
2108
66d6c27e 2109# Cheap hack to ensure NEWS-OS libraries are arranged right.
2110if test ! -z "$SONY" ; then
2111 LIBS="$LIBS -liberty";
2112fi
2113
9a406e1e 2114# Check for long long datatypes
2115AC_CHECK_TYPES([long long, unsigned long long, long double])
2116
2117# Check datatype sizes
976f7e19 2118AC_CHECK_SIZEOF(char, 1)
2b942fe0 2119AC_CHECK_SIZEOF(short int, 2)
2120AC_CHECK_SIZEOF(int, 4)
2121AC_CHECK_SIZEOF(long int, 4)
2122AC_CHECK_SIZEOF(long long int, 8)
2123
52f1ccb2 2124# Sanity check long long for some platforms (AIX)
2125if test "x$ac_cv_sizeof_long_long_int" = "x4" ; then
2126 ac_cv_sizeof_long_long_int=0
2127fi
2128
90f15776 2129# compute LLONG_MIN and LLONG_MAX if we don't know them.
2130if test -z "$have_llong_max"; then
2131 AC_MSG_CHECKING([for max value of long long])
2132 AC_RUN_IFELSE(
2133 [AC_LANG_SOURCE([[
2134#include <stdio.h>
2135/* Why is this so damn hard? */
2136#ifdef __GNUC__
2137# undef __GNUC__
2138#endif
2139#define __USE_ISOC99
2140#include <limits.h>
2141#define DATA "conftest.llminmax"
055252ed 2142#define my_abs(a) ((a) < 0 ? ((a) * -1) : (a))
2143
2144/*
2145 * printf in libc on some platforms (eg old Tru64) does not understand %lld so
2146 * we do this the hard way.
2147 */
2148static int
2149fprint_ll(FILE *f, long long n)
2150{
2151 unsigned int i;
2152 int l[sizeof(long long) * 8];
2153
2154 if (n < 0)
2155 if (fprintf(f, "-") < 0)
2156 return -1;
2157 for (i = 0; n != 0; i++) {
2158 l[i] = my_abs(n % 10);
2159 n /= 10;
2160 }
2161 do {
2162 if (fprintf(f, "%d", l[--i]) < 0)
2163 return -1;
2164 } while (i != 0);
2165 if (fprintf(f, " ") < 0)
2166 return -1;
2167 return 0;
2168}
2169
90f15776 2170int main(void) {
2171 FILE *f;
2172 long long i, llmin, llmax = 0;
2173
2174 if((f = fopen(DATA,"w")) == NULL)
2175 exit(1);
2176
2177#if defined(LLONG_MIN) && defined(LLONG_MAX)
2178 fprintf(stderr, "Using system header for LLONG_MIN and LLONG_MAX\n");
2179 llmin = LLONG_MIN;
2180 llmax = LLONG_MAX;
2181#else
2182 fprintf(stderr, "Calculating LLONG_MIN and LLONG_MAX\n");
2183 /* This will work on one's complement and two's complement */
2184 for (i = 1; i > llmax; i <<= 1, i++)
2185 llmax = i;
2186 llmin = llmax + 1LL; /* wrap */
2187#endif
2188
2189 /* Sanity check */
2190 if (llmin + 1 < llmin || llmin - 1 < llmin || llmax + 1 > llmax
055252ed 2191 || llmax - 1 > llmax || llmin == llmax || llmin == 0
2192 || llmax == 0 || llmax < LONG_MAX || llmin > LONG_MIN) {
90f15776 2193 fprintf(f, "unknown unknown\n");
2194 exit(2);
2195 }
2196
055252ed 2197 if (fprint_ll(f, llmin) < 0)
90f15776 2198 exit(3);
055252ed 2199 if (fprint_ll(f, llmax) < 0)
2200 exit(4);
2201 if (fclose(f) < 0)
2202 exit(5);
90f15776 2203 exit(0);
2204}
2205 ]])],
2206 [
2207 llong_min=`$AWK '{print $1}' conftest.llminmax`
2208 llong_max=`$AWK '{print $2}' conftest.llminmax`
2209
90f15776 2210 AC_MSG_RESULT($llong_max)
2211 AC_DEFINE_UNQUOTED(LLONG_MAX, [${llong_max}LL],
2212 [max value of long long calculated by configure])
2213 AC_MSG_CHECKING([for min value of long long])
2214 AC_MSG_RESULT($llong_min)
2215 AC_DEFINE_UNQUOTED(LLONG_MIN, [${llong_min}LL],
2216 [min value of long long calculated by configure])
2217 ],
2218 [
2219 AC_MSG_RESULT(not found)
2220 ],
2221 [
2222 AC_MSG_WARN([cross compiling: not checking])
2223 ]
2224 )
2225fi
2226
2227
a0391976 2228# More checks for data types
14a9a859 2229AC_CACHE_CHECK([for u_int type], ac_cv_have_u_int, [
2230 AC_TRY_COMPILE(
aff51935 2231 [ #include <sys/types.h> ],
2232 [ u_int a; a = 1;],
14a9a859 2233 [ ac_cv_have_u_int="yes" ],
2234 [ ac_cv_have_u_int="no" ]
2235 )
2236])
2237if test "x$ac_cv_have_u_int" = "xyes" ; then
3466e002 2238 AC_DEFINE(HAVE_U_INT, 1, [define if you have u_int data type])
14a9a859 2239 have_u_int=1
2240fi
2241
58d100bf 2242AC_CACHE_CHECK([for intXX_t types], ac_cv_have_intxx_t, [
2243 AC_TRY_COMPILE(
aff51935 2244 [ #include <sys/types.h> ],
2245 [ int8_t a; int16_t b; int32_t c; a = b = c = 1;],
58d100bf 2246 [ ac_cv_have_intxx_t="yes" ],
2247 [ ac_cv_have_intxx_t="no" ]
2248 )
2249])
2250if test "x$ac_cv_have_intxx_t" = "xyes" ; then
3466e002 2251 AC_DEFINE(HAVE_INTXX_T, 1, [define if you have intxx_t data type])
58d100bf 2252 have_intxx_t=1
2253fi
41cb4569 2254
2255if (test -z "$have_intxx_t" && \
aff51935 2256 test "x$ac_cv_header_stdint_h" = "xyes")
41cb4569 2257then
2258 AC_MSG_CHECKING([for intXX_t types in stdint.h])
2259 AC_TRY_COMPILE(
aff51935 2260 [ #include <stdint.h> ],
2261 [ int8_t a; int16_t b; int32_t c; a = b = c = 1;],
41cb4569 2262 [
2263 AC_DEFINE(HAVE_INTXX_T)
2264 AC_MSG_RESULT(yes)
2265 ],
2266 [ AC_MSG_RESULT(no) ]
2267 )
2268fi
2269
bd590612 2270AC_CACHE_CHECK([for int64_t type], ac_cv_have_int64_t, [
2271 AC_TRY_COMPILE(
1cbbe6c8 2272 [
2273#include <sys/types.h>
2274#ifdef HAVE_STDINT_H
2275# include <stdint.h>
2276#endif
2277#include <sys/socket.h>
2278#ifdef HAVE_SYS_BITYPES_H
2279# include <sys/bitypes.h>
2280#endif
aff51935 2281 ],
2282 [ int64_t a; a = 1;],
bd590612 2283 [ ac_cv_have_int64_t="yes" ],
2284 [ ac_cv_have_int64_t="no" ]
2285 )
2286])
2287if test "x$ac_cv_have_int64_t" = "xyes" ; then
3466e002 2288 AC_DEFINE(HAVE_INT64_T, 1, [define if you have int64_t data type])
ddceb1c8 2289fi
2290
58d100bf 2291AC_CACHE_CHECK([for u_intXX_t types], ac_cv_have_u_intxx_t, [
2292 AC_TRY_COMPILE(
aff51935 2293 [ #include <sys/types.h> ],
2294 [ u_int8_t a; u_int16_t b; u_int32_t c; a = b = c = 1;],
58d100bf 2295 [ ac_cv_have_u_intxx_t="yes" ],
2296 [ ac_cv_have_u_intxx_t="no" ]
2297 )
2298])
2299if test "x$ac_cv_have_u_intxx_t" = "xyes" ; then
3466e002 2300 AC_DEFINE(HAVE_U_INTXX_T, 1, [define if you have u_intxx_t data type])
58d100bf 2301 have_u_intxx_t=1
2302fi
2b942fe0 2303
41cb4569 2304if test -z "$have_u_intxx_t" ; then
2305 AC_MSG_CHECKING([for u_intXX_t types in sys/socket.h])
2306 AC_TRY_COMPILE(
aff51935 2307 [ #include <sys/socket.h> ],
2308 [ u_int8_t a; u_int16_t b; u_int32_t c; a = b = c = 1;],
41cb4569 2309 [
2310 AC_DEFINE(HAVE_U_INTXX_T)
2311 AC_MSG_RESULT(yes)
2312 ],
2313 [ AC_MSG_RESULT(no) ]
2314 )
2315fi
2316
bd590612 2317AC_CACHE_CHECK([for u_int64_t types], ac_cv_have_u_int64_t, [
2318 AC_TRY_COMPILE(
aff51935 2319 [ #include <sys/types.h> ],
2320 [ u_int64_t a; a = 1;],
bd590612 2321 [ ac_cv_have_u_int64_t="yes" ],
2322 [ ac_cv_have_u_int64_t="no" ]
2323 )
2324])
2325if test "x$ac_cv_have_u_int64_t" = "xyes" ; then
3466e002 2326 AC_DEFINE(HAVE_U_INT64_T, 1, [define if you have u_int64_t data type])
bd590612 2327 have_u_int64_t=1
2328fi
2329
ddceb1c8 2330if test -z "$have_u_int64_t" ; then
2331 AC_MSG_CHECKING([for u_int64_t type in sys/bitypes.h])
2332 AC_TRY_COMPILE(
aff51935 2333 [ #include <sys/bitypes.h> ],
ddceb1c8 2334 [ u_int64_t a; a = 1],
2335 [
2336 AC_DEFINE(HAVE_U_INT64_T)
2337 AC_MSG_RESULT(yes)
2338 ],
2339 [ AC_MSG_RESULT(no) ]
2340 )
2341fi
2342
41cb4569 2343if test -z "$have_u_intxx_t" ; then
2344 AC_CACHE_CHECK([for uintXX_t types], ac_cv_have_uintxx_t, [
2345 AC_TRY_COMPILE(
2346 [
2347#include <sys/types.h>
aff51935 2348 ],
2349 [ uint8_t a; uint16_t b; uint32_t c; a = b = c = 1; ],
41cb4569 2350 [ ac_cv_have_uintxx_t="yes" ],
2351 [ ac_cv_have_uintxx_t="no" ]
2352 )
2353 ])
2354 if test "x$ac_cv_have_uintxx_t" = "xyes" ; then
3466e002 2355 AC_DEFINE(HAVE_UINTXX_T, 1,
2356 [define if you have uintxx_t data type])
41cb4569 2357 fi
2358fi
2359
2360if test -z "$have_uintxx_t" ; then
2361 AC_MSG_CHECKING([for uintXX_t types in stdint.h])
2362 AC_TRY_COMPILE(
aff51935 2363 [ #include <stdint.h> ],
2364 [ uint8_t a; uint16_t b; uint32_t c; a = b = c = 1;],
41cb4569 2365 [
2366 AC_DEFINE(HAVE_UINTXX_T)
2367 AC_MSG_RESULT(yes)
2368 ],
2369 [ AC_MSG_RESULT(no) ]
2370 )
2371fi
2372
e5fe9a1f 2373if (test -z "$have_u_intxx_t" || test -z "$have_intxx_t" && \
aff51935 2374 test "x$ac_cv_header_sys_bitypes_h" = "xyes")
5cdfe03f 2375then
2376 AC_MSG_CHECKING([for intXX_t and u_intXX_t types in sys/bitypes.h])
2377 AC_TRY_COMPILE(
58d100bf 2378 [
2379#include <sys/bitypes.h>
aff51935 2380 ],
5cdfe03f 2381 [
837c30b8 2382 int8_t a; int16_t b; int32_t c;
2383 u_int8_t e; u_int16_t f; u_int32_t g;
2384 a = b = c = e = f = g = 1;
aff51935 2385 ],
5cdfe03f 2386 [
2387 AC_DEFINE(HAVE_U_INTXX_T)
2388 AC_DEFINE(HAVE_INTXX_T)
2389 AC_MSG_RESULT(yes)
2390 ],
2391 [AC_MSG_RESULT(no)]
aff51935 2392 )
5cdfe03f 2393fi
2394
0362750e 2395
2396AC_CACHE_CHECK([for u_char], ac_cv_have_u_char, [
2397 AC_TRY_COMPILE(
2398 [
2399#include <sys/types.h>
2400 ],
2401 [ u_char foo; foo = 125; ],
2402 [ ac_cv_have_u_char="yes" ],
2403 [ ac_cv_have_u_char="no" ]
2404 )
2405])
2406if test "x$ac_cv_have_u_char" = "xyes" ; then
3466e002 2407 AC_DEFINE(HAVE_U_CHAR, 1, [define if you have u_char data type])
0362750e 2408fi
2409
98a7c37b 2410TYPE_SOCKLEN_T
2b942fe0 2411
2d16d9a3 2412AC_CHECK_TYPES(sig_atomic_t,,,[#include <signal.h>])
ddceb1c8 2413
777ece68 2414AC_CHECK_TYPES(in_addr_t,,,
2415[#include <sys/types.h>
2416#include <netinet/in.h>])
7b578f7d 2417
58d100bf 2418AC_CACHE_CHECK([for size_t], ac_cv_have_size_t, [
2419 AC_TRY_COMPILE(
2420 [
18ba2aab 2421#include <sys/types.h>
58d100bf 2422 ],
2423 [ size_t foo; foo = 1235; ],
2424 [ ac_cv_have_size_t="yes" ],
2425 [ ac_cv_have_size_t="no" ]
2426 )
2427])
2428if test "x$ac_cv_have_size_t" = "xyes" ; then
3466e002 2429 AC_DEFINE(HAVE_SIZE_T, 1, [define if you have size_t data type])
58d100bf 2430fi
ea1970a3 2431
c04f75f1 2432AC_CACHE_CHECK([for ssize_t], ac_cv_have_ssize_t, [
2433 AC_TRY_COMPILE(
2434 [
2435#include <sys/types.h>
2436 ],
2437 [ ssize_t foo; foo = 1235; ],
2438 [ ac_cv_have_ssize_t="yes" ],
2439 [ ac_cv_have_ssize_t="no" ]
2440 )
2441])
2442if test "x$ac_cv_have_ssize_t" = "xyes" ; then
3466e002 2443 AC_DEFINE(HAVE_SSIZE_T, 1, [define if you have ssize_t data type])
c04f75f1 2444fi
2445
f1c4659d 2446AC_CACHE_CHECK([for clock_t], ac_cv_have_clock_t, [
2447 AC_TRY_COMPILE(
2448 [
2449#include <time.h>
2450 ],
2451 [ clock_t foo; foo = 1235; ],
2452 [ ac_cv_have_clock_t="yes" ],
2453 [ ac_cv_have_clock_t="no" ]
2454 )
2455])
2456if test "x$ac_cv_have_clock_t" = "xyes" ; then
3466e002 2457 AC_DEFINE(HAVE_CLOCK_T, 1, [define if you have clock_t data type])
f1c4659d 2458fi
2459
1c04b088 2460AC_CACHE_CHECK([for sa_family_t], ac_cv_have_sa_family_t, [
2461 AC_TRY_COMPILE(
2462 [
2463#include <sys/types.h>
2464#include <sys/socket.h>
2465 ],
2466 [ sa_family_t foo; foo = 1235; ],
2467 [ ac_cv_have_sa_family_t="yes" ],
77bb0bca 2468 [ AC_TRY_COMPILE(
2469 [
2470#include <sys/types.h>
2471#include <sys/socket.h>
2472#include <netinet/in.h>
2473 ],
2474 [ sa_family_t foo; foo = 1235; ],
2475 [ ac_cv_have_sa_family_t="yes" ],
2476
1c04b088 2477 [ ac_cv_have_sa_family_t="no" ]
77bb0bca 2478 )]
1c04b088 2479 )
2480])
2481if test "x$ac_cv_have_sa_family_t" = "xyes" ; then
3466e002 2482 AC_DEFINE(HAVE_SA_FAMILY_T, 1,
2483 [define if you have sa_family_t data type])
1c04b088 2484fi
2485
729bfe59 2486AC_CACHE_CHECK([for pid_t], ac_cv_have_pid_t, [
2487 AC_TRY_COMPILE(
2488 [
2489#include <sys/types.h>
2490 ],
2491 [ pid_t foo; foo = 1235; ],
2492 [ ac_cv_have_pid_t="yes" ],
2493 [ ac_cv_have_pid_t="no" ]
2494 )
2495])
2496if test "x$ac_cv_have_pid_t" = "xyes" ; then
3466e002 2497 AC_DEFINE(HAVE_PID_T, 1, [define if you have pid_t data type])
729bfe59 2498fi
2499
2500AC_CACHE_CHECK([for mode_t], ac_cv_have_mode_t, [
2501 AC_TRY_COMPILE(
2502 [
2503#include <sys/types.h>
2504 ],
2505 [ mode_t foo; foo = 1235; ],
2506 [ ac_cv_have_mode_t="yes" ],
2507 [ ac_cv_have_mode_t="no" ]
2508 )
2509])
2510if test "x$ac_cv_have_mode_t" = "xyes" ; then
3466e002 2511 AC_DEFINE(HAVE_MODE_T, 1, [define if you have mode_t data type])
729bfe59 2512fi
2513
e3a93db0 2514
58d100bf 2515AC_CACHE_CHECK([for struct sockaddr_storage], ac_cv_have_struct_sockaddr_storage, [
2516 AC_TRY_COMPILE(
2517 [
18ba2aab 2518#include <sys/types.h>
2519#include <sys/socket.h>
58d100bf 2520 ],
2521 [ struct sockaddr_storage s; ],
2522 [ ac_cv_have_struct_sockaddr_storage="yes" ],
2523 [ ac_cv_have_struct_sockaddr_storage="no" ]
2524 )
2525])
2526if test "x$ac_cv_have_struct_sockaddr_storage" = "xyes" ; then
3466e002 2527 AC_DEFINE(HAVE_STRUCT_SOCKADDR_STORAGE, 1,
2528 [define if you have struct sockaddr_storage data type])
58d100bf 2529fi
48e671d5 2530
58d100bf 2531AC_CACHE_CHECK([for struct sockaddr_in6], ac_cv_have_struct_sockaddr_in6, [
2532 AC_TRY_COMPILE(
2533 [
cbd7492e 2534#include <sys/types.h>
58d100bf 2535#include <netinet/in.h>
2536 ],
2537 [ struct sockaddr_in6 s; s.sin6_family = 0; ],
2538 [ ac_cv_have_struct_sockaddr_in6="yes" ],
2539 [ ac_cv_have_struct_sockaddr_in6="no" ]
2540 )
2541])
2542if test "x$ac_cv_have_struct_sockaddr_in6" = "xyes" ; then
3466e002 2543 AC_DEFINE(HAVE_STRUCT_SOCKADDR_IN6, 1,
2544 [define if you have struct sockaddr_in6 data type])
58d100bf 2545fi
48e671d5 2546
58d100bf 2547AC_CACHE_CHECK([for struct in6_addr], ac_cv_have_struct_in6_addr, [
2548 AC_TRY_COMPILE(
2549 [
cbd7492e 2550#include <sys/types.h>
58d100bf 2551#include <netinet/in.h>
2552 ],
2553 [ struct in6_addr s; s.s6_addr[0] = 0; ],
2554 [ ac_cv_have_struct_in6_addr="yes" ],
2555 [ ac_cv_have_struct_in6_addr="no" ]
2556 )
2557])
2558if test "x$ac_cv_have_struct_in6_addr" = "xyes" ; then
3466e002 2559 AC_DEFINE(HAVE_STRUCT_IN6_ADDR, 1,
2560 [define if you have struct in6_addr data type])
58d100bf 2561fi
48e671d5 2562
58d100bf 2563AC_CACHE_CHECK([for struct addrinfo], ac_cv_have_struct_addrinfo, [
2564 AC_TRY_COMPILE(
2565 [
18ba2aab 2566#include <sys/types.h>
2567#include <sys/socket.h>
2568#include <netdb.h>
58d100bf 2569 ],
2570 [ struct addrinfo s; s.ai_flags = AI_PASSIVE; ],
2571 [ ac_cv_have_struct_addrinfo="yes" ],
2572 [ ac_cv_have_struct_addrinfo="no" ]
2573 )
2574])
2575if test "x$ac_cv_have_struct_addrinfo" = "xyes" ; then
3466e002 2576 AC_DEFINE(HAVE_STRUCT_ADDRINFO, 1,
2577 [define if you have struct addrinfo data type])
58d100bf 2578fi
2579
89c7e31c 2580AC_CACHE_CHECK([for struct timeval], ac_cv_have_struct_timeval, [
2581 AC_TRY_COMPILE(
aff51935 2582 [ #include <sys/time.h> ],
2583 [ struct timeval tv; tv.tv_sec = 1;],
89c7e31c 2584 [ ac_cv_have_struct_timeval="yes" ],
2585 [ ac_cv_have_struct_timeval="no" ]
2586 )
2587])
2588if test "x$ac_cv_have_struct_timeval" = "xyes" ; then
3466e002 2589 AC_DEFINE(HAVE_STRUCT_TIMEVAL, 1, [define if you have struct timeval])
89c7e31c 2590 have_struct_timeval=1
2591fi
2592
5271b55c 2593AC_CHECK_TYPES(struct timespec)
2594
85abc74b 2595# We need int64_t or else certian parts of the compile will fail.
4b492aab 2596if test "x$ac_cv_have_int64_t" = "xno" && \
2597 test "x$ac_cv_sizeof_long_int" != "x8" && \
2598 test "x$ac_cv_sizeof_long_long_int" = "x0" ; then
85abc74b 2599 echo "OpenSSH requires int64_t support. Contact your vendor or install"
2600 echo "an alternative compiler (I.E., GCC) before continuing."
2601 echo ""
2602 exit 1;
733cf7f4 2603else
2604dnl test snprintf (broken on SCO w/gcc)
1a01a50c 2605 AC_RUN_IFELSE(
479cece8 2606 [AC_LANG_SOURCE([[
733cf7f4 2607#include <stdio.h>
2608#include <string.h>
2609#ifdef HAVE_SNPRINTF
2610main()
2611{
2612 char buf[50];
2613 char expected_out[50];
2614 int mazsize = 50 ;
2615#if (SIZEOF_LONG_INT == 8)
2616 long int num = 0x7fffffffffffffff;
2617#else
763a1a18 2618 long long num = 0x7fffffffffffffffll;
733cf7f4 2619#endif
2620 strcpy(expected_out, "9223372036854775807");
2621 snprintf(buf, mazsize, "%lld", num);
2622 if(strcmp(buf, expected_out) != 0)
aff51935 2623 exit(1);
733cf7f4 2624 exit(0);
2625}
2626#else
2627main() { exit(0); }
2628#endif
479cece8 2629 ]])], [ true ], [ AC_DEFINE(BROKEN_SNPRINTF) ],
1a01a50c 2630 AC_MSG_WARN([cross compiling: Assuming working snprintf()])
733cf7f4 2631 )
2c523de9 2632fi
2633
77bb0bca 2634dnl Checks for structure members
58d100bf 2635OSSH_CHECK_HEADER_FOR_FIELD(ut_host, utmp.h, HAVE_HOST_IN_UTMP)
2636OSSH_CHECK_HEADER_FOR_FIELD(ut_host, utmpx.h, HAVE_HOST_IN_UTMPX)
2637OSSH_CHECK_HEADER_FOR_FIELD(syslen, utmpx.h, HAVE_SYSLEN_IN_UTMPX)
2638OSSH_CHECK_HEADER_FOR_FIELD(ut_pid, utmp.h, HAVE_PID_IN_UTMP)
2639OSSH_CHECK_HEADER_FOR_FIELD(ut_type, utmp.h, HAVE_TYPE_IN_UTMP)
25422c70 2640OSSH_CHECK_HEADER_FOR_FIELD(ut_type, utmpx.h, HAVE_TYPE_IN_UTMPX)
58d100bf 2641OSSH_CHECK_HEADER_FOR_FIELD(ut_tv, utmp.h, HAVE_TV_IN_UTMP)
2642OSSH_CHECK_HEADER_FOR_FIELD(ut_id, utmp.h, HAVE_ID_IN_UTMP)
daaff4d5 2643OSSH_CHECK_HEADER_FOR_FIELD(ut_id, utmpx.h, HAVE_ID_IN_UTMPX)
58d100bf 2644OSSH_CHECK_HEADER_FOR_FIELD(ut_addr, utmp.h, HAVE_ADDR_IN_UTMP)
2645OSSH_CHECK_HEADER_FOR_FIELD(ut_addr, utmpx.h, HAVE_ADDR_IN_UTMPX)
2646OSSH_CHECK_HEADER_FOR_FIELD(ut_addr_v6, utmp.h, HAVE_ADDR_V6_IN_UTMP)
2647OSSH_CHECK_HEADER_FOR_FIELD(ut_addr_v6, utmpx.h, HAVE_ADDR_V6_IN_UTMPX)
1d7b9b20 2648OSSH_CHECK_HEADER_FOR_FIELD(ut_exit, utmp.h, HAVE_EXIT_IN_UTMP)
2649OSSH_CHECK_HEADER_FOR_FIELD(ut_time, utmp.h, HAVE_TIME_IN_UTMP)
2650OSSH_CHECK_HEADER_FOR_FIELD(ut_time, utmpx.h, HAVE_TIME_IN_UTMPX)
2651OSSH_CHECK_HEADER_FOR_FIELD(ut_tv, utmpx.h, HAVE_TV_IN_UTMPX)
98a7c37b 2652
2653AC_CHECK_MEMBERS([struct stat.st_blksize])
ccc45ee0 2654AC_CHECK_MEMBER([struct __res_state.retrans], [], [AC_DEFINE(__res_state, state,
2655 [Define if we don't have struct __res_state in resolv.h])],
2656[
2657#include <stdio.h>
2658#if HAVE_SYS_TYPES_H
2659# include <sys/types.h>
2660#endif
2661#include <netinet/in.h>
2662#include <arpa/nameser.h>
2663#include <resolv.h>
2664])
1d7b9b20 2665
58d100bf 2666AC_CACHE_CHECK([for ss_family field in struct sockaddr_storage],
2667 ac_cv_have_ss_family_in_struct_ss, [
2668 AC_TRY_COMPILE(
2669 [
18ba2aab 2670#include <sys/types.h>
2671#include <sys/socket.h>
58d100bf 2672 ],
2673 [ struct sockaddr_storage s; s.ss_family = 1; ],
2674 [ ac_cv_have_ss_family_in_struct_ss="yes" ],
2675 [ ac_cv_have_ss_family_in_struct_ss="no" ],
2676 )
2677])
2678if test "x$ac_cv_have_ss_family_in_struct_ss" = "xyes" ; then
3466e002 2679 AC_DEFINE(HAVE_SS_FAMILY_IN_SS, 1, [Fields in struct sockaddr_storage])
58d100bf 2680fi
2681
58d100bf 2682AC_CACHE_CHECK([for __ss_family field in struct sockaddr_storage],
2683 ac_cv_have___ss_family_in_struct_ss, [
2684 AC_TRY_COMPILE(
2685 [
18ba2aab 2686#include <sys/types.h>
2687#include <sys/socket.h>
58d100bf 2688 ],
2689 [ struct sockaddr_storage s; s.__ss_family = 1; ],
2690 [ ac_cv_have___ss_family_in_struct_ss="yes" ],
2691 [ ac_cv_have___ss_family_in_struct_ss="no" ]
2692 )
2693])
2694if test "x$ac_cv_have___ss_family_in_struct_ss" = "xyes" ; then
3466e002 2695 AC_DEFINE(HAVE___SS_FAMILY_IN_SS, 1,
2696 [Fields in struct sockaddr_storage])
58d100bf 2697fi
2698
2e73a022 2699AC_CACHE_CHECK([for pw_class field in struct passwd],
2700 ac_cv_have_pw_class_in_struct_passwd, [
2701 AC_TRY_COMPILE(
2702 [
2e73a022 2703#include <pwd.h>
2704 ],
97994d32 2705 [ struct passwd p; p.pw_class = 0; ],
2e73a022 2706 [ ac_cv_have_pw_class_in_struct_passwd="yes" ],
2707 [ ac_cv_have_pw_class_in_struct_passwd="no" ]
2708 )
2709])
2710if test "x$ac_cv_have_pw_class_in_struct_passwd" = "xyes" ; then
3466e002 2711 AC_DEFINE(HAVE_PW_CLASS_IN_PASSWD, 1,
2712 [Define if your password has a pw_class field])
2e73a022 2713fi
2714
7751d4eb 2715AC_CACHE_CHECK([for pw_expire field in struct passwd],
2716 ac_cv_have_pw_expire_in_struct_passwd, [
2717 AC_TRY_COMPILE(
2718 [
2719#include <pwd.h>
2720 ],
2721 [ struct passwd p; p.pw_expire = 0; ],
2722 [ ac_cv_have_pw_expire_in_struct_passwd="yes" ],
2723 [ ac_cv_have_pw_expire_in_struct_passwd="no" ]
2724 )
2725])
2726if test "x$ac_cv_have_pw_expire_in_struct_passwd" = "xyes" ; then
3466e002 2727 AC_DEFINE(HAVE_PW_EXPIRE_IN_PASSWD, 1,
2728 [Define if your password has a pw_expire field])
7751d4eb 2729fi
2730
2731AC_CACHE_CHECK([for pw_change field in struct passwd],
2732 ac_cv_have_pw_change_in_struct_passwd, [
2733 AC_TRY_COMPILE(
2734 [
2735#include <pwd.h>
2736 ],
2737 [ struct passwd p; p.pw_change = 0; ],
2738 [ ac_cv_have_pw_change_in_struct_passwd="yes" ],
2739 [ ac_cv_have_pw_change_in_struct_passwd="no" ]
2740 )
2741])
2742if test "x$ac_cv_have_pw_change_in_struct_passwd" = "xyes" ; then
3466e002 2743 AC_DEFINE(HAVE_PW_CHANGE_IN_PASSWD, 1,
2744 [Define if your password has a pw_change field])
7751d4eb 2745fi
58d100bf 2746
637f9177 2747dnl make sure we're using the real structure members and not defines
6f34652e 2748AC_CACHE_CHECK([for msg_accrights field in struct msghdr],
2749 ac_cv_have_accrights_in_msghdr, [
1a01a50c 2750 AC_COMPILE_IFELSE(
6f34652e 2751 [
f95c8ce8 2752#include <sys/types.h>
6f34652e 2753#include <sys/socket.h>
2754#include <sys/uio.h>
637f9177 2755int main() {
2756#ifdef msg_accrights
1a01a50c 2757#error "msg_accrights is a macro"
637f9177 2758exit(1);
2759#endif
2760struct msghdr m;
2761m.msg_accrights = 0;
2762exit(0);
2763}
6f34652e 2764 ],
6f34652e 2765 [ ac_cv_have_accrights_in_msghdr="yes" ],
2766 [ ac_cv_have_accrights_in_msghdr="no" ]
2767 )
2768])
2769if test "x$ac_cv_have_accrights_in_msghdr" = "xyes" ; then
3466e002 2770 AC_DEFINE(HAVE_ACCRIGHTS_IN_MSGHDR, 1,
2771 [Define if your system uses access rights style
2772 file descriptor passing])
6f34652e 2773fi
2774
7176df4f 2775AC_CACHE_CHECK([for msg_control field in struct msghdr],
2776 ac_cv_have_control_in_msghdr, [
1a01a50c 2777 AC_COMPILE_IFELSE(
7176df4f 2778 [
f95c8ce8 2779#include <sys/types.h>
7176df4f 2780#include <sys/socket.h>
2781#include <sys/uio.h>
637f9177 2782int main() {
2783#ifdef msg_control
1a01a50c 2784#error "msg_control is a macro"
637f9177 2785exit(1);
2786#endif
2787struct msghdr m;
2788m.msg_control = 0;
2789exit(0);
2790}
7176df4f 2791 ],
7176df4f 2792 [ ac_cv_have_control_in_msghdr="yes" ],
2793 [ ac_cv_have_control_in_msghdr="no" ]
2794 )
2795])
2796if test "x$ac_cv_have_control_in_msghdr" = "xyes" ; then
3466e002 2797 AC_DEFINE(HAVE_CONTROL_IN_MSGHDR, 1,
2798 [Define if your system uses ancillary data style
2799 file descriptor passing])
7176df4f 2800fi
2801
58d100bf 2802AC_CACHE_CHECK([if libc defines __progname], ac_cv_libc_defines___progname, [
aff51935 2803 AC_TRY_LINK([],
2804 [ extern char *__progname; printf("%s", __progname); ],
58d100bf 2805 [ ac_cv_libc_defines___progname="yes" ],
2806 [ ac_cv_libc_defines___progname="no" ]
2807 )
2808])
2809if test "x$ac_cv_libc_defines___progname" = "xyes" ; then
3466e002 2810 AC_DEFINE(HAVE___PROGNAME, 1, [Define if libc defines __progname])
58d100bf 2811fi
8946db53 2812
c921ee00 2813AC_CACHE_CHECK([whether $CC implements __FUNCTION__], ac_cv_cc_implements___FUNCTION__, [
2814 AC_TRY_LINK([
2815#include <stdio.h>
aff51935 2816],
2817 [ printf("%s", __FUNCTION__); ],
c921ee00 2818 [ ac_cv_cc_implements___FUNCTION__="yes" ],
2819 [ ac_cv_cc_implements___FUNCTION__="no" ]
2820 )
2821])
2822if test "x$ac_cv_cc_implements___FUNCTION__" = "xyes" ; then
3466e002 2823 AC_DEFINE(HAVE___FUNCTION__, 1,
2824 [Define if compiler implements __FUNCTION__])
c921ee00 2825fi
2826
2827AC_CACHE_CHECK([whether $CC implements __func__], ac_cv_cc_implements___func__, [
2828 AC_TRY_LINK([
2829#include <stdio.h>
aff51935 2830],
2831 [ printf("%s", __func__); ],
c921ee00 2832 [ ac_cv_cc_implements___func__="yes" ],
2833 [ ac_cv_cc_implements___func__="no" ]
2834 )
2835])
2836if test "x$ac_cv_cc_implements___func__" = "xyes" ; then
3466e002 2837 AC_DEFINE(HAVE___func__, 1, [Define if compiler implements __func__])
c921ee00 2838fi
2839
9a406e1e 2840AC_CACHE_CHECK([whether va_copy exists], ac_cv_have_va_copy, [
2841 AC_TRY_LINK(
2842 [#include <stdarg.h>
2843 va_list x,y;],
2844 [va_copy(x,y);],
2845 [ ac_cv_have_va_copy="yes" ],
2846 [ ac_cv_have_va_copy="no" ]
2847 )
2848])
2849if test "x$ac_cv_have_va_copy" = "xyes" ; then
2850 AC_DEFINE(HAVE_VA_COPY, 1, [Define if va_copy exists])
2851fi
2852
2853AC_CACHE_CHECK([whether __va_copy exists], ac_cv_have___va_copy, [
2854 AC_TRY_LINK(
2855 [#include <stdarg.h>
2856 va_list x,y;],
2857 [__va_copy(x,y);],
2858 [ ac_cv_have___va_copy="yes" ],
2859 [ ac_cv_have___va_copy="no" ]
2860 )
2861])
2862if test "x$ac_cv_have___va_copy" = "xyes" ; then
2863 AC_DEFINE(HAVE___VA_COPY, 1, [Define if __va_copy exists])
2864fi
2865
1812a662 2866AC_CACHE_CHECK([whether getopt has optreset support],
2867 ac_cv_have_getopt_optreset, [
2868 AC_TRY_LINK(
2869 [
2870#include <getopt.h>
2871 ],
2872 [ extern int optreset; optreset = 0; ],
2873 [ ac_cv_have_getopt_optreset="yes" ],
2874 [ ac_cv_have_getopt_optreset="no" ]
2875 )
2876])
2877if test "x$ac_cv_have_getopt_optreset" = "xyes" ; then
3466e002 2878 AC_DEFINE(HAVE_GETOPT_OPTRESET, 1,
2879 [Define if your getopt(3) defines and uses optreset])
1812a662 2880fi
a0391976 2881
819b676f 2882AC_CACHE_CHECK([if libc defines sys_errlist], ac_cv_libc_defines_sys_errlist, [
aff51935 2883 AC_TRY_LINK([],
2884 [ extern const char *const sys_errlist[]; printf("%s", sys_errlist[0]);],
819b676f 2885 [ ac_cv_libc_defines_sys_errlist="yes" ],
2886 [ ac_cv_libc_defines_sys_errlist="no" ]
2887 )
2888])
2889if test "x$ac_cv_libc_defines_sys_errlist" = "xyes" ; then
3466e002 2890 AC_DEFINE(HAVE_SYS_ERRLIST, 1,
2891 [Define if your system defines sys_errlist[]])
819b676f 2892fi
2893
2894
416ed5a7 2895AC_CACHE_CHECK([if libc defines sys_nerr], ac_cv_libc_defines_sys_nerr, [
aff51935 2896 AC_TRY_LINK([],
2897 [ extern int sys_nerr; printf("%i", sys_nerr);],
416ed5a7 2898 [ ac_cv_libc_defines_sys_nerr="yes" ],
2899 [ ac_cv_libc_defines_sys_nerr="no" ]
2900 )
2901])
2902if test "x$ac_cv_libc_defines_sys_nerr" = "xyes" ; then
3466e002 2903 AC_DEFINE(HAVE_SYS_NERR, 1, [Define if your system defines sys_nerr])
416ed5a7 2904fi
2905
aff51935 2906SCARD_MSG="no"
295c8801 2907# Check whether user wants sectok support
2908AC_ARG_WITH(sectok,
2909 [ --with-sectok Enable smartcard support using libsectok],
d0b19c95 2910 [
2911 if test "x$withval" != "xno" ; then
2912 if test "x$withval" != "xyes" ; then
2913 CPPFLAGS="$CPPFLAGS -I${withval}"
2914 LDFLAGS="$LDFLAGS -L${withval}"
2915 if test ! -z "$need_dash_r" ; then
2916 LDFLAGS="$LDFLAGS -R${withval}"
2917 fi
2918 if test ! -z "$blibpath" ; then
2919 blibpath="$blibpath:${withval}"
2920 fi
2921 fi
2922 AC_CHECK_HEADERS(sectok.h)
2923 if test "$ac_cv_header_sectok_h" != yes; then
2924 AC_MSG_ERROR(Can't find sectok.h)
2925 fi
2926 AC_CHECK_LIB(sectok, sectok_open)
2927 if test "$ac_cv_lib_sectok_sectok_open" != yes; then
2928 AC_MSG_ERROR(Can't find libsectok)
2929 fi
3466e002 2930 AC_DEFINE(SMARTCARD, 1,
2931 [Define if you want smartcard support])
2932 AC_DEFINE(USE_SECTOK, 1,
2933 [Define if you want smartcard support
2934 using sectok])
aff51935 2935 SCARD_MSG="yes, using sectok"
295c8801 2936 fi
2937 ]
2938)
2939
2940# Check whether user wants OpenSC support
987b458f 2941OPENSC_CONFIG="no"
295c8801 2942AC_ARG_WITH(opensc,
e47fb473 2943 [ --with-opensc[[=PFX]] Enable smartcard support using OpenSC (optionally in PATH)],
987b458f 2944 [
2945 if test "x$withval" != "xno" ; then
2946 if test "x$withval" != "xyes" ; then
2947 OPENSC_CONFIG=$withval/bin/opensc-config
2948 else
2949 AC_PATH_PROG(OPENSC_CONFIG, opensc-config, no)
2950 fi
2951 if test "$OPENSC_CONFIG" != "no"; then
2952 LIBOPENSC_CFLAGS=`$OPENSC_CONFIG --cflags`
2953 LIBOPENSC_LIBS=`$OPENSC_CONFIG --libs`
2954 CPPFLAGS="$CPPFLAGS $LIBOPENSC_CFLAGS"
2955 LDFLAGS="$LDFLAGS $LIBOPENSC_LIBS"
2956 AC_DEFINE(SMARTCARD)
3466e002 2957 AC_DEFINE(USE_OPENSC, 1,
2958 [Define if you want smartcard support
2959 using OpenSC])
987b458f 2960 SCARD_MSG="yes, using OpenSC"
2961 fi
2962 fi
2963 ]
2964)
d0b19c95 2965
c31dc31c 2966# Check libraries needed by DNS fingerprint support
aff51935 2967AC_SEARCH_LIBS(getrrsetbyname, resolv,
3466e002 2968 [AC_DEFINE(HAVE_GETRRSETBYNAME, 1,
2969 [Define if getrrsetbyname() exists])],
3e05e934 2970 [
c31dc31c 2971 # Needed by our getrrsetbyname()
2972 AC_SEARCH_LIBS(res_query, resolv)
2973 AC_SEARCH_LIBS(dn_expand, resolv)
dabb524a 2974 AC_MSG_CHECKING(if res_query will link)
2975 AC_TRY_LINK_FUNC(res_query, AC_MSG_RESULT(yes),
2976 [AC_MSG_RESULT(no)
2977 saved_LIBS="$LIBS"
2978 LIBS="$LIBS -lresolv"
2979 AC_MSG_CHECKING(for res_query in -lresolv)
2980 AC_LINK_IFELSE([
2981#include <resolv.h>
2982int main()
2983{
2984 res_query (0, 0, 0, 0, 0);
2985 return 0;
2986}
2987 ],
2988 [LIBS="$LIBS -lresolv"
2989 AC_MSG_RESULT(yes)],
2990 [LIBS="$saved_LIBS"
2991 AC_MSG_RESULT(no)])
2992 ])
c31dc31c 2993 AC_CHECK_FUNCS(_getshort _getlong)
1c829da5 2994 AC_CHECK_DECLS([_getshort, _getlong], , ,
b5765e1d 2995 [#include <sys/types.h>
2996 #include <arpa/nameser.h>])
c31dc31c 2997 AC_CHECK_MEMBER(HEADER.ad,
3466e002 2998 [AC_DEFINE(HAVE_HEADER_AD, 1,
2999 [Define if HEADER.ad exists in arpa/nameser.h])],,
c31dc31c 3000 [#include <arpa/nameser.h>])
3001 ])
3e05e934 3002
12928e80 3003# Check whether user wants Kerberos 5 support
aff51935 3004KRB5_MSG="no"
12928e80 3005AC_ARG_WITH(kerberos5,
aff51935 3006 [ --with-kerberos5=PATH Enable Kerberos 5 support],
5585c441 3007 [ if test "x$withval" != "xno" ; then
3008 if test "x$withval" = "xyes" ; then
3009 KRB5ROOT="/usr/local"
3010 else
3011 KRB5ROOT=${withval}
3012 fi
3013
3466e002 3014 AC_DEFINE(KRB5, 1, [Define if you want Kerberos 5 support])
5585c441 3015 KRB5_MSG="yes"
3016
3017 AC_MSG_CHECKING(for krb5-config)
3018 if test -x $KRB5ROOT/bin/krb5-config ; then
3019 KRB5CONF=$KRB5ROOT/bin/krb5-config
3020 AC_MSG_RESULT($KRB5CONF)
3021
3022 AC_MSG_CHECKING(for gssapi support)
3023 if $KRB5CONF | grep gssapi >/dev/null ; then
3024 AC_MSG_RESULT(yes)
3466e002 3025 AC_DEFINE(GSSAPI, 1,
3026 [Define this if you want GSSAPI
3027 support in the version 2 protocol])
071970fb 3028 k5confopts=gssapi
aff51935 3029 else
5585c441 3030 AC_MSG_RESULT(no)
071970fb 3031 k5confopts=""
aff51935 3032 fi
071970fb 3033 K5CFLAGS="`$KRB5CONF --cflags $k5confopts`"
3034 K5LIBS="`$KRB5CONF --libs $k5confopts`"
5585c441 3035 CPPFLAGS="$CPPFLAGS $K5CFLAGS"
5585c441 3036 AC_MSG_CHECKING(whether we are using Heimdal)
3037 AC_TRY_COMPILE([ #include <krb5.h> ],
3038 [ char *tmp = heimdal_version; ],
3039 [ AC_MSG_RESULT(yes)
3466e002 3040 AC_DEFINE(HEIMDAL, 1,
3041 [Define this if you are using the
3042 Heimdal version of Kerberos V5]) ],
5585c441 3043 AC_MSG_RESULT(no)
3044 )
3045 else
3046 AC_MSG_RESULT(no)
12928e80 3047 CPPFLAGS="$CPPFLAGS -I${KRB5ROOT}/include"
aff51935 3048 LDFLAGS="$LDFLAGS -L${KRB5ROOT}/lib"
aff51935 3049 AC_MSG_CHECKING(whether we are using Heimdal)
3050 AC_TRY_COMPILE([ #include <krb5.h> ],
3051 [ char *tmp = heimdal_version; ],
3052 [ AC_MSG_RESULT(yes)
3053 AC_DEFINE(HEIMDAL)
41707f74 3054 K5LIBS="-lkrb5 -ldes"
3055 K5LIBS="$K5LIBS -lcom_err -lasn1"
82f4e93d 3056 AC_CHECK_LIB(roken, net_write,
41707f74 3057 [K5LIBS="$K5LIBS -lroken"])
aff51935 3058 ],
3059 [ AC_MSG_RESULT(no)
3060 K5LIBS="-lkrb5 -lk5crypto -lcom_err"
3061 ]
3062 )
4e00038c 3063 AC_SEARCH_LIBS(dn_expand, resolv)
12928e80 3064
749560dd 3065 AC_CHECK_LIB(gssapi,gss_init_sec_context,
3066 [ AC_DEFINE(GSSAPI)
3067 K5LIBS="-lgssapi $K5LIBS" ],
3068 [ AC_CHECK_LIB(gssapi_krb5,gss_init_sec_context,
3069 [ AC_DEFINE(GSSAPI)
aff51935 3070 K5LIBS="-lgssapi_krb5 $K5LIBS" ],
749560dd 3071 AC_MSG_WARN([Cannot find any suitable gss-api library - build may fail]),
3072 $K5LIBS)
3073 ],
3074 $K5LIBS)
82f4e93d 3075
749560dd 3076 AC_CHECK_HEADER(gssapi.h, ,
3077 [ unset ac_cv_header_gssapi_h
aff51935 3078 CPPFLAGS="$CPPFLAGS -I${KRB5ROOT}/include/gssapi"
749560dd 3079 AC_CHECK_HEADERS(gssapi.h, ,
3080 AC_MSG_WARN([Cannot find any suitable gss-api header - build may fail])
aff51935 3081 )
749560dd 3082 ]
3083 )
3084
3085 oldCPP="$CPPFLAGS"
3086 CPPFLAGS="$CPPFLAGS -I${KRB5ROOT}/include/gssapi"
3087 AC_CHECK_HEADER(gssapi_krb5.h, ,
3088 [ CPPFLAGS="$oldCPP" ])
3089
aff51935 3090 fi
5585c441 3091 if test ! -z "$need_dash_r" ; then
3092 LDFLAGS="$LDFLAGS -R${KRB5ROOT}/lib"
3093 fi
3094 if test ! -z "$blibpath" ; then
3095 blibpath="$blibpath:${KRB5ROOT}/lib"
3096 fi
071970fb 3097
f5555364 3098 AC_CHECK_HEADERS(gssapi.h gssapi/gssapi.h)
3099 AC_CHECK_HEADERS(gssapi_krb5.h gssapi/gssapi_krb5.h)
3100 AC_CHECK_HEADERS(gssapi_generic.h gssapi/gssapi_generic.h)
071970fb 3101
f5555364 3102 LIBS="$LIBS $K5LIBS"
3466e002 3103 AC_SEARCH_LIBS(k_hasafs, kafs, AC_DEFINE(USE_AFS, 1,
3104 [Define this if you want to use libkafs' AFS support]))
f5555364 3105 fi
071970fb 3106 ]
12928e80 3107)
b5b68128 3108
a0391976 3109# Looking for programs, paths and files
a0391976 3110
ecac8ee5 3111PRIVSEP_PATH=/var/empty
3112AC_ARG_WITH(privsep-path,
cda1ebcb 3113 [ --with-privsep-path=xxx Path for privilege separation chroot (default=/var/empty)],
ecac8ee5 3114 [
6cf0200f 3115 if test -n "$withval" && test "x$withval" != "xno" && \
3116 test "x${withval}" != "xyes"; then
ecac8ee5 3117 PRIVSEP_PATH=$withval
3118 fi
3119 ]
3120)
3121AC_SUBST(PRIVSEP_PATH)
3122
a0391976 3123AC_ARG_WITH(xauth,
3124 [ --with-xauth=PATH Specify path to xauth program ],
3125 [
6cf0200f 3126 if test -n "$withval" && test "x$withval" != "xno" && \
3127 test "x${withval}" != "xyes"; then
cbd7492e 3128 xauth_path=$withval
a0391976 3129 fi
3130 ],
3131 [
2bf42e4a 3132 TestPath="$PATH"
3133 TestPath="${TestPath}${PATH_SEPARATOR}/usr/X/bin"
3134 TestPath="${TestPath}${PATH_SEPARATOR}/usr/bin/X11"
3135 TestPath="${TestPath}${PATH_SEPARATOR}/usr/X11R6/bin"
3136 TestPath="${TestPath}${PATH_SEPARATOR}/usr/openwin/bin"
3137 AC_PATH_PROG(xauth_path, xauth, , $TestPath)
e5fe9a1f 3138 if (test ! -z "$xauth_path" && test -x "/usr/openwin/bin/xauth") ; then
a0391976 3139 xauth_path="/usr/openwin/bin/xauth"
3140 fi
3141 ]
3142)
3143
65a4b4af 3144STRIP_OPT=-s
3145AC_ARG_ENABLE(strip,
3146 [ --disable-strip Disable calling strip(1) on install],
3147 [
3148 if test "x$enableval" = "xno" ; then
3149 STRIP_OPT=
3150 fi
3151 ]
3152)
3153AC_SUBST(STRIP_OPT)
3154
b3ec54b4 3155if test -z "$xauth_path" ; then
3156 XAUTH_PATH="undefined"
3157 AC_SUBST(XAUTH_PATH)
3158else
3466e002 3159 AC_DEFINE_UNQUOTED(XAUTH_PATH, "$xauth_path",
3160 [Define if xauth is found in your path])
b3ec54b4 3161 XAUTH_PATH=$xauth_path
3162 AC_SUBST(XAUTH_PATH)
a0391976 3163fi
a0391976 3164
3165# Check for mail directory (last resort if we cannot get it from headers)
3166if test ! -z "$MAIL" ; then
3167 maildir=`dirname $MAIL`
3466e002 3168 AC_DEFINE_UNQUOTED(MAIL_DIRECTORY, "$maildir",
3169 [Set this to your mail directory if you don't have maillock.h])
a0391976 3170fi
3171
479cece8 3172if test ! -z "$cross_compiling" && test "x$cross_compiling" = "xyes"; then
1a01a50c 3173 AC_MSG_WARN([cross compiling: Disabling /dev/ptmx test])
3174 disable_ptmx_check=yes
3175fi
a0391976 3176if test -z "$no_dev_ptmx" ; then
6e879cb4 3177 if test "x$disable_ptmx_check" != "xyes" ; then
aff51935 3178 AC_CHECK_FILE("/dev/ptmx",
6e879cb4 3179 [
3466e002 3180 AC_DEFINE_UNQUOTED(HAVE_DEV_PTMX, 1,
3181 [Define if you have /dev/ptmx])
6e879cb4 3182 have_dev_ptmx=1
3183 ]
3184 )
3185 fi
3276571c 3186fi
1a01a50c 3187
479cece8 3188if test ! -z "$cross_compiling" && test "x$cross_compiling" != "xyes"; then
1a01a50c 3189 AC_CHECK_FILE("/dev/ptc",
3190 [
3466e002 3191 AC_DEFINE_UNQUOTED(HAVE_DEV_PTS_AND_PTC, 1,
3192 [Define if you have /dev/ptc])
1a01a50c 3193 have_dev_ptc=1
3194 ]
3195 )
3196else
3197 AC_MSG_WARN([cross compiling: Disabling /dev/ptc test])
3198fi
3276571c 3199
a0391976 3200# Options from here on. Some of these are preset by platform above
fdf6b7aa 3201AC_ARG_WITH(mantype,
5d97cfbf 3202 [ --with-mantype=man|cat|doc Set man page type],
c54a6257 3203 [
5d97cfbf 3204 case "$withval" in
3205 man|cat|doc)
3206 MANTYPE=$withval
3207 ;;
3208 *)
3209 AC_MSG_ERROR(invalid man type: $withval)
3210 ;;
3211 esac
c54a6257 3212 ]
3213)
e0c4d3ac 3214if test -z "$MANTYPE"; then
2bf42e4a 3215 TestPath="/usr/bin${PATH_SEPARATOR}/usr/ucb"
3216 AC_PATH_PROGS(NROFF, nroff awf, /bin/false, $TestPath)
e0c4d3ac 3217 if ${NROFF} -mdoc ${srcdir}/ssh.1 >/dev/null 2>&1; then
3218 MANTYPE=doc
3219 elif ${NROFF} -man ${srcdir}/ssh.1 >/dev/null 2>&1; then
3220 MANTYPE=man
3221 else
3222 MANTYPE=cat
3223 fi
3224fi
c54a6257 3225AC_SUBST(MANTYPE)
e0c4d3ac 3226if test "$MANTYPE" = "doc"; then
3227 mansubdir=man;
3228else
3229 mansubdir=$MANTYPE;
3230fi
3231AC_SUBST(mansubdir)
0bc5b6fb 3232
a0391976 3233# Check whether to enable MD5 passwords
aff51935 3234MD5_MSG="no"
2ddcfdf3 3235AC_ARG_WITH(md5-passwords,
caf3bc51 3236 [ --with-md5-passwords Enable use of MD5 passwords],
0bc5b6fb 3237 [
bcf36c78 3238 if test "x$withval" != "xno" ; then
3466e002 3239 AC_DEFINE(HAVE_MD5_PASSWORDS, 1,
3240 [Define if you want to allow MD5 passwords])
aff51935 3241 MD5_MSG="yes"
0bc5b6fb 3242 fi
3243 ]
caf3bc51 3244)
3245
a0391976 3246# Whether to disable shadow password support
a7effaac 3247AC_ARG_WITH(shadow,
3248 [ --without-shadow Disable shadow password support],
3249 [
82f4e93d 3250 if test "x$withval" = "xno" ; then
a7effaac 3251 AC_DEFINE(DISABLE_SHADOW)
4cb5ffa0 3252 disable_shadow=yes
a7effaac 3253 fi
3254 ]
3255)
3256
4cb5ffa0 3257if test -z "$disable_shadow" ; then
3258 AC_MSG_CHECKING([if the systems has expire shadow information])
3259 AC_TRY_COMPILE(
3260 [
3261#include <sys/types.h>
3262#include <shadow.h>
3263 struct spwd sp;
3264 ],[ sp.sp_expire = sp.sp_lstchg = sp.sp_inact = 0; ],
3265 [ sp_expire_available=yes ], []
3266 )
3267
3268 if test "x$sp_expire_available" = "xyes" ; then
3269 AC_MSG_RESULT(yes)
3466e002 3270 AC_DEFINE(HAS_SHADOW_EXPIRE, 1,
3271 [Define if you want to use shadow password expire field])
4cb5ffa0 3272 else
3273 AC_MSG_RESULT(no)
3274 fi
3275fi
3276
a0391976 3277# Use ip address instead of hostname in $DISPLAY
44839801 3278if test ! -z "$IPADDR_IN_DISPLAY" ; then
3279 DISPLAY_HACK_MSG="yes"
3466e002 3280 AC_DEFINE(IPADDR_IN_DISPLAY, 1,
3281 [Define if you need to use IP address
3282 instead of hostname in $DISPLAY])
44839801 3283else
aff51935 3284 DISPLAY_HACK_MSG="no"
44839801 3285 AC_ARG_WITH(ipaddr-display,
3286 [ --with-ipaddr-display Use ip address instead of hostname in \$DISPLAY],
3287 [
82f4e93d 3288 if test "x$withval" != "xno" ; then
44839801 3289 AC_DEFINE(IPADDR_IN_DISPLAY)
aff51935 3290 DISPLAY_HACK_MSG="yes"
44839801 3291 fi
3292 ]
3293 )
3294fi
a7effaac 3295
95b99395 3296# check for /etc/default/login and use it if present.
daa41e62 3297AC_ARG_ENABLE(etc-default-login,
6ff3d0dc 3298 [ --disable-etc-default-login Disable using PATH from /etc/default/login [no]],
694d0cef 3299 [ if test "x$enableval" = "xno"; then
3300 AC_MSG_NOTICE([/etc/default/login handling disabled])
3301 etc_default_login=no
3302 else
3303 etc_default_login=yes
3304 fi ],
b0e7249f 3305 [ if test ! -z "$cross_compiling" && test "x$cross_compiling" = "xyes";
3306 then
3307 AC_MSG_WARN([cross compiling: not checking /etc/default/login])
3308 etc_default_login=no
3309 else
3310 etc_default_login=yes
3311 fi ]
694d0cef 3312)
95b99395 3313
694d0cef 3314if test "x$etc_default_login" != "xno"; then
3315 AC_CHECK_FILE("/etc/default/login",
3316 [ external_path_file=/etc/default/login ])
b0e7249f 3317 if test "x$external_path_file" = "x/etc/default/login"; then
3466e002 3318 AC_DEFINE(HAVE_ETC_DEFAULT_LOGIN, 1,
3319 [Define if your system has /etc/default/login])
1a01a50c 3320 fi
694d0cef 3321fi
95b99395 3322
8d184c09 3323dnl BSD systems use /etc/login.conf so --with-default-path= has no effect
4b492aab 3324if test $ac_cv_func_login_getcapbool = "yes" && \
3325 test $ac_cv_header_login_cap_h = "yes" ; then
95b99395 3326 external_path_file=/etc/login.conf
8d184c09 3327fi
95b99395 3328
a0391976 3329# Whether to mess with the default path
aff51935 3330SERVER_PATH_MSG="(default)"
c43d69a9 3331AC_ARG_WITH(default-path,
75817f90 3332 [ --with-default-path= Specify default \$PATH environment for server],
cb807f40 3333 [
95b99395 3334 if test "x$external_path_file" = "x/etc/login.conf" ; then
8d184c09 3335 AC_MSG_WARN([
3336--with-default-path=PATH has no effect on this system.
3337Edit /etc/login.conf instead.])
82f4e93d 3338 elif test "x$withval" != "xno" ; then
89bbd457 3339 if test ! -z "$external_path_file" ; then
95b99395 3340 AC_MSG_WARN([
3341--with-default-path=PATH will only be used if PATH is not defined in
3342$external_path_file .])
3343 fi
b2d818e6 3344 user_path="$withval"
aff51935 3345 SERVER_PATH_MSG="$withval"
cb807f40 3346 fi
b2d818e6 3347 ],
95b99395 3348 [ if test "x$external_path_file" = "x/etc/login.conf" ; then
3349 AC_MSG_WARN([Make sure the path to scp is in /etc/login.conf])
8d184c09 3350 else
89bbd457 3351 if test ! -z "$external_path_file" ; then
95b99395 3352 AC_MSG_WARN([
3353If PATH is defined in $external_path_file, ensure the path to scp is included,
3354otherwise scp will not work.])
3355 fi
b0e7249f 3356 AC_RUN_IFELSE(
3357 [AC_LANG_SOURCE([[
b2d818e6 3358/* find out what STDPATH is */
3359#include <stdio.h>
b2d818e6 3360#ifdef HAVE_PATHS_H
3361# include <paths.h>
3362#endif
3363#ifndef _PATH_STDPATH
d9a4e55b 3364# ifdef _PATH_USERPATH /* Irix */
3365# define _PATH_STDPATH _PATH_USERPATH
3366# else
3367# define _PATH_STDPATH "/usr/bin:/bin:/usr/sbin:/sbin"
3368# endif
b2d818e6 3369#endif
3370#include <sys/types.h>
3371#include <sys/stat.h>
3372#include <fcntl.h>
3373#define DATA "conftest.stdpath"
3374
3375main()
3376{
3377 FILE *fd;
3378 int rc;
82f4e93d 3379
b2d818e6 3380 fd = fopen(DATA,"w");
3381 if(fd == NULL)
3382 exit(1);
82f4e93d 3383
b2d818e6 3384 if ((rc = fprintf(fd,"%s", _PATH_STDPATH)) < 0)
3385 exit(1);
3386
3387 exit(0);
3388}
b0e7249f 3389 ]])],
3390 [ user_path=`cat conftest.stdpath` ],
b2d818e6 3391 [ user_path="/usr/bin:/bin:/usr/sbin:/sbin" ],
3392 [ user_path="/usr/bin:/bin:/usr/sbin:/sbin" ]
3393 )
3394# make sure $bindir is in USER_PATH so scp will work
3395 t_bindir=`eval echo ${bindir}`
3396 case $t_bindir in
3397 NONE/*) t_bindir=`echo $t_bindir | sed "s~NONE~$prefix~"` ;;
3398 esac
3399 case $t_bindir in
3400 NONE/*) t_bindir=`echo $t_bindir | sed "s~NONE~$ac_default_prefix~"` ;;
3401 esac
3402 echo $user_path | grep ":$t_bindir" > /dev/null 2>&1
3403 if test $? -ne 0 ; then
3404 echo $user_path | grep "^$t_bindir" > /dev/null 2>&1
3405 if test $? -ne 0 ; then
3406 user_path=$user_path:$t_bindir
3407 AC_MSG_RESULT(Adding $t_bindir to USER_PATH so scp will work)
3408 fi
3409 fi
8d184c09 3410 fi ]
cb807f40 3411)
95b99395 3412if test "x$external_path_file" != "x/etc/login.conf" ; then
3466e002 3413 AC_DEFINE_UNQUOTED(USER_PATH, "$user_path", [Specify default $PATH])
8d184c09 3414 AC_SUBST(user_path)
3415fi
cb807f40 3416
06617857 3417# Set superuser path separately to user path
06617857 3418AC_ARG_WITH(superuser-path,
3419 [ --with-superuser-path= Specify different path for super-user],
3420 [
6cf0200f 3421 if test -n "$withval" && test "x$withval" != "xno" && \
3422 test "x${withval}" != "xyes"; then
3466e002 3423 AC_DEFINE_UNQUOTED(SUPERUSER_PATH, "$withval",
3424 [Define if you want a different $PATH
3425 for the superuser])
06617857 3426 superuser_path=$withval
3427 fi
3428 ]
3429)
3430
3431
58d100bf 3432AC_MSG_CHECKING([if we need to convert IPv4 in IPv6-mapped addresses])
aff51935 3433IPV4_IN6_HACK_MSG="no"
80faa19f 3434AC_ARG_WITH(4in6,
3435 [ --with-4in6 Check for and convert IPv4 in IPv6 mapped addresses],
3436 [
3437 if test "x$withval" != "xno" ; then
3438 AC_MSG_RESULT(yes)
3466e002 3439 AC_DEFINE(IPV4_IN_IPV6, 1,
3440 [Detect IPv4 in IPv6 mapped addresses
3441 and treat as IPv4])
aff51935 3442 IPV4_IN6_HACK_MSG="yes"
80faa19f 3443 else
3444 AC_MSG_RESULT(no)
3445 fi
3446 ],[
3447 if test "x$inet6_default_4in6" = "xyes"; then
3448 AC_MSG_RESULT([yes (default)])
3449 AC_DEFINE(IPV4_IN_IPV6)
aff51935 3450 IPV4_IN6_HACK_MSG="yes"
80faa19f 3451 else
3452 AC_MSG_RESULT([no (default)])
3453 fi
3454 ]
3455)
3456
af774732 3457# Whether to enable BSD auth support
f1b0ecc3 3458BSD_AUTH_MSG=no
af774732 3459AC_ARG_WITH(bsd-auth,
3460 [ --with-bsd-auth Enable BSD auth support],
3461 [
82f4e93d 3462 if test "x$withval" != "xno" ; then
3466e002 3463 AC_DEFINE(BSD_AUTH, 1,
3464 [Define if you have BSD auth support])
f1b0ecc3 3465 BSD_AUTH_MSG=yes
af774732 3466 fi
3467 ]
3468)
3469
a0391976 3470# Where to place sshd.pid
19d9ac2a 3471piddir=/var/run
81dadca3 3472# make sure the directory exists
82f4e93d 3473if test ! -d $piddir ; then
81dadca3 3474 piddir=`eval echo ${sysconfdir}`
3475 case $piddir in
aff51935 3476 NONE/*) piddir=`echo $piddir | sed "s~NONE~$ac_default_prefix~"` ;;
81dadca3 3477 esac
3478fi
3479
47e45e44 3480AC_ARG_WITH(pid-dir,
3481 [ --with-pid-dir=PATH Specify location of ssh.pid file],
3482 [
6cf0200f 3483 if test -n "$withval" && test "x$withval" != "xno" && \
3484 test "x${withval}" != "xyes"; then
19d9ac2a 3485 piddir=$withval
82f4e93d 3486 if test ! -d $piddir ; then
81dadca3 3487 AC_MSG_WARN([** no $piddir directory on this system **])
3488 fi
47e45e44 3489 fi
3490 ]
3491)
b7a87eea 3492
3466e002 3493AC_DEFINE_UNQUOTED(_PATH_SSH_PIDDIR, "$piddir", [Specify location of ssh.pid])
19d9ac2a 3494AC_SUBST(piddir)
47e45e44 3495
1d7b9b20 3496dnl allow user to disable some login recording features
3497AC_ARG_ENABLE(lastlog,
bfd550a2 3498 [ --disable-lastlog disable use of lastlog even if detected [no]],
ddb154b3 3499 [
3500 if test "x$enableval" = "xno" ; then
3501 AC_DEFINE(DISABLE_LASTLOG)
3502 fi
3503 ]
1d7b9b20 3504)
3505AC_ARG_ENABLE(utmp,
bfd550a2 3506 [ --disable-utmp disable use of utmp even if detected [no]],
ddb154b3 3507 [
3508 if test "x$enableval" = "xno" ; then
3509 AC_DEFINE(DISABLE_UTMP)
3510 fi
3511 ]
1d7b9b20 3512)
3513AC_ARG_ENABLE(utmpx,
bfd550a2 3514 [ --disable-utmpx disable use of utmpx even if detected [no]],
ddb154b3 3515 [
3516 if test "x$enableval" = "xno" ; then
3466e002 3517 AC_DEFINE(DISABLE_UTMPX, 1,
3518 [Define if you don't want to use utmpx])
ddb154b3 3519 fi
3520 ]
1d7b9b20 3521)
3522AC_ARG_ENABLE(wtmp,
bfd550a2 3523 [ --disable-wtmp disable use of wtmp even if detected [no]],
ddb154b3 3524 [
3525 if test "x$enableval" = "xno" ; then
3526 AC_DEFINE(DISABLE_WTMP)
3527 fi
3528 ]
1d7b9b20 3529)
3530AC_ARG_ENABLE(wtmpx,
bfd550a2 3531 [ --disable-wtmpx disable use of wtmpx even if detected [no]],
ddb154b3 3532 [
3533 if test "x$enableval" = "xno" ; then
3466e002 3534 AC_DEFINE(DISABLE_WTMPX, 1,
3535 [Define if you don't want to use wtmpx])
ddb154b3 3536 fi
3537 ]
1d7b9b20 3538)
3539AC_ARG_ENABLE(libutil,
bfd550a2 3540 [ --disable-libutil disable use of libutil (login() etc.) [no]],
ddb154b3 3541 [
3542 if test "x$enableval" = "xno" ; then
3543 AC_DEFINE(DISABLE_LOGIN)
3544 fi
3545 ]
1d7b9b20 3546)
3547AC_ARG_ENABLE(pututline,
bfd550a2 3548 [ --disable-pututline disable use of pututline() etc. ([uw]tmp) [no]],
ddb154b3 3549 [
3550 if test "x$enableval" = "xno" ; then
3466e002 3551 AC_DEFINE(DISABLE_PUTUTLINE, 1,
3552 [Define if you don't want to use pututline()
3553 etc. to write [uw]tmp])
ddb154b3 3554 fi
3555 ]
1d7b9b20 3556)
3557AC_ARG_ENABLE(pututxline,
bfd550a2 3558 [ --disable-pututxline disable use of pututxline() etc. ([uw]tmpx) [no]],
ddb154b3 3559 [
3560 if test "x$enableval" = "xno" ; then
3466e002 3561 AC_DEFINE(DISABLE_PUTUTXLINE, 1,
3562 [Define if you don't want to use pututxline()
3563 etc. to write [uw]tmpx])
ddb154b3 3564 fi
3565 ]
1d7b9b20 3566)
3567AC_ARG_WITH(lastlog,
bfd550a2 3568 [ --with-lastlog=FILE|DIR specify lastlog location [common locations]],
8c89dd2b 3569 [
82f4e93d 3570 if test "x$withval" = "xno" ; then
8c89dd2b 3571 AC_DEFINE(DISABLE_LASTLOG)
6cf0200f 3572 elif test -n "$withval" && test "x${withval}" != "xyes"; then
8c89dd2b 3573 conf_lastlog_location=$withval
3574 fi
3575 ]
3576)
1d7b9b20 3577
3578dnl lastlog, [uw]tmpx? detection
3579dnl NOTE: set the paths in the platform section to avoid the
3580dnl need for command-line parameters
3581dnl lastlog and [uw]tmp are subject to a file search if all else fails
3582
3583dnl lastlog detection
3584dnl NOTE: the code itself will detect if lastlog is a directory
3585AC_MSG_CHECKING([if your system defines LASTLOG_FILE])
3586AC_TRY_COMPILE([
3587#include <sys/types.h>
3588#include <utmp.h>
3589#ifdef HAVE_LASTLOG_H
3590# include <lastlog.h>
3591#endif
d7c0f3d5 3592#ifdef HAVE_PATHS_H
1d7b9b20 3593# include <paths.h>
41cb4569 3594#endif
3595#ifdef HAVE_LOGIN_H
3596# include <login.h>
1d7b9b20 3597#endif
3598 ],
3599 [ char *lastlog = LASTLOG_FILE; ],
3600 [ AC_MSG_RESULT(yes) ],
d7c0f3d5 3601 [
3602 AC_MSG_RESULT(no)
3603 AC_MSG_CHECKING([if your system defines _PATH_LASTLOG])
3604 AC_TRY_COMPILE([
3605#include <sys/types.h>
3606#include <utmp.h>
3607#ifdef HAVE_LASTLOG_H
3608# include <lastlog.h>
3609#endif
3610#ifdef HAVE_PATHS_H
3611# include <paths.h>
3612#endif
3613 ],
3614 [ char *lastlog = _PATH_LASTLOG; ],
3615 [ AC_MSG_RESULT(yes) ],
3616 [
f282b668 3617 AC_MSG_RESULT(no)
d7c0f3d5 3618 system_lastlog_path=no
3619 ])
3620 ]
1d7b9b20 3621)
d7c0f3d5 3622
1d7b9b20 3623if test -z "$conf_lastlog_location"; then
3624 if test x"$system_lastlog_path" = x"no" ; then
3625 for f in /var/log/lastlog /usr/adm/lastlog /var/adm/lastlog /etc/security/lastlog ; do
e5fe9a1f 3626 if (test -d "$f" || test -f "$f") ; then
1d7b9b20 3627 conf_lastlog_location=$f
3628 fi
3629 done
3630 if test -z "$conf_lastlog_location"; then
f8119cef 3631 AC_MSG_WARN([** Cannot find lastlog **])
3632 dnl Don't define DISABLE_LASTLOG - that means we don't try wtmp/wtmpx
1d7b9b20 3633 fi
3634 fi
3635fi
3636
3637if test -n "$conf_lastlog_location"; then
3466e002 3638 AC_DEFINE_UNQUOTED(CONF_LASTLOG_FILE, "$conf_lastlog_location",
3639 [Define if you want to specify the path to your lastlog file])
82f4e93d 3640fi
1d7b9b20 3641
3642dnl utmp detection
3643AC_MSG_CHECKING([if your system defines UTMP_FILE])
3644AC_TRY_COMPILE([
3645#include <sys/types.h>
3646#include <utmp.h>
d7c0f3d5 3647#ifdef HAVE_PATHS_H
1d7b9b20 3648# include <paths.h>
3649#endif
3650 ],
3651 [ char *utmp = UTMP_FILE; ],
3652 [ AC_MSG_RESULT(yes) ],
3653 [ AC_MSG_RESULT(no)
3654 system_utmp_path=no ]
3655)
3656if test -z "$conf_utmp_location"; then
3657 if test x"$system_utmp_path" = x"no" ; then
3658 for f in /etc/utmp /usr/adm/utmp /var/run/utmp; do
3659 if test -f $f ; then
3660 conf_utmp_location=$f
3661 fi
3662 done
3663 if test -z "$conf_utmp_location"; then
3664 AC_DEFINE(DISABLE_UTMP)
3665 fi
3666 fi
3667fi
3668if test -n "$conf_utmp_location"; then
3466e002 3669 AC_DEFINE_UNQUOTED(CONF_UTMP_FILE, "$conf_utmp_location",
3670 [Define if you want to specify the path to your utmp file])
82f4e93d 3671fi
1d7b9b20 3672
3673dnl wtmp detection
3674AC_MSG_CHECKING([if your system defines WTMP_FILE])
3675AC_TRY_COMPILE([
3676#include <sys/types.h>
3677#include <utmp.h>
d7c0f3d5 3678#ifdef HAVE_PATHS_H
1d7b9b20 3679# include <paths.h>
3680#endif
3681 ],
3682 [ char *wtmp = WTMP_FILE; ],
3683 [ AC_MSG_RESULT(yes) ],
3684 [ AC_MSG_RESULT(no)
3685 system_wtmp_path=no ]
3686)
3687if test -z "$conf_wtmp_location"; then
3688 if test x"$system_wtmp_path" = x"no" ; then
3689 for f in /usr/adm/wtmp /var/log/wtmp; do
3690 if test -f $f ; then
3691 conf_wtmp_location=$f
3692 fi
3693 done
3694 if test -z "$conf_wtmp_location"; then
3695 AC_DEFINE(DISABLE_WTMP)
3696 fi
3697 fi
3698fi
3699if test -n "$conf_wtmp_location"; then
3466e002 3700 AC_DEFINE_UNQUOTED(CONF_WTMP_FILE, "$conf_wtmp_location",
3701 [Define if you want to specify the path to your wtmp file])
82f4e93d 3702fi
1d7b9b20 3703
3704
3705dnl utmpx detection - I don't know any system so perverse as to require
3706dnl utmpx, but not define UTMPX_FILE (ditto wtmpx.) No doubt it's out
3707dnl there, though.
3708AC_MSG_CHECKING([if your system defines UTMPX_FILE])
3709AC_TRY_COMPILE([
3710#include <sys/types.h>
3711#include <utmp.h>
3712#ifdef HAVE_UTMPX_H
3713#include <utmpx.h>
3714#endif
d7c0f3d5 3715#ifdef HAVE_PATHS_H
1d7b9b20 3716# include <paths.h>
3717#endif
3718 ],
3719 [ char *utmpx = UTMPX_FILE; ],
3720 [ AC_MSG_RESULT(yes) ],
3721 [ AC_MSG_RESULT(no)
3722 system_utmpx_path=no ]
3723)
3724if test -z "$conf_utmpx_location"; then
3725 if test x"$system_utmpx_path" = x"no" ; then
3726 AC_DEFINE(DISABLE_UTMPX)
3727 fi
3728else
3466e002 3729 AC_DEFINE_UNQUOTED(CONF_UTMPX_FILE, "$conf_utmpx_location",
3730 [Define if you want to specify the path to your utmpx file])
82f4e93d 3731fi
1d7b9b20 3732
3733dnl wtmpx detection
3734AC_MSG_CHECKING([if your system defines WTMPX_FILE])
3735AC_TRY_COMPILE([
3736#include <sys/types.h>
3737#include <utmp.h>
3738#ifdef HAVE_UTMPX_H
3739#include <utmpx.h>
3740#endif
d7c0f3d5 3741#ifdef HAVE_PATHS_H
1d7b9b20 3742# include <paths.h>
3743#endif
3744 ],
3745 [ char *wtmpx = WTMPX_FILE; ],
3746 [ AC_MSG_RESULT(yes) ],
3747 [ AC_MSG_RESULT(no)
3748 system_wtmpx_path=no ]
3749)
3750if test -z "$conf_wtmpx_location"; then
3751 if test x"$system_wtmpx_path" = x"no" ; then
3752 AC_DEFINE(DISABLE_WTMPX)
3753 fi
3754else
3466e002 3755 AC_DEFINE_UNQUOTED(CONF_WTMPX_FILE, "$conf_wtmpx_location",
3756 [Define if you want to specify the path to your wtmpx file])
82f4e93d 3757fi
1d7b9b20 3758
b7a87eea 3759
bd499f9e 3760if test ! -z "$blibpath" ; then
68ece370 3761 LDFLAGS="$LDFLAGS $blibflags$blibpath"
3762 AC_MSG_WARN([Please check and edit blibpath in LDFLAGS in Makefile])
bd499f9e 3763fi
3764
ddceb1c8 3765dnl remove pam and dl because they are in $LIBPAM
3766if test "$PAM_MSG" = yes ; then
98f2d9d5 3767 LIBS=`echo $LIBS | sed 's/-lpam //'`
3768fi
3769if test "$ac_cv_lib_pam_pam_set_item" = yes ; then
3770 LIBS=`echo $LIBS | sed 's/-ldl //'`
ddceb1c8 3771fi
3772
ed89c848 3773dnl Adding -Werror to CFLAGS early prevents configure tests from running.
3774dnl Add now.
3775CFLAGS="$CFLAGS $werror_flags"
3776
3c62e7eb 3777AC_EXEEXT
d7cfdd7c 3778AC_CONFIG_FILES([Makefile buildpkg.sh opensshd.init openbsd-compat/Makefile \
46096a5b 3779 openbsd-compat/regress/Makefile scard/Makefile ssh_prng_cmds survey.sh])
98a7c37b 3780AC_OUTPUT
d3083fbd 3781
cbd7492e 3782# Print summary of options
3783
cbd7492e 3784# Someone please show me a better way :)
3785A=`eval echo ${prefix}` ; A=`eval echo ${A}`
3786B=`eval echo ${bindir}` ; B=`eval echo ${B}`
3787C=`eval echo ${sbindir}` ; C=`eval echo ${C}`
3788D=`eval echo ${sysconfdir}` ; D=`eval echo ${D}`
f5665f6f 3789E=`eval echo ${libexecdir}/ssh-askpass` ; E=`eval echo ${E}`
e0c4d3ac 3790F=`eval echo ${mandir}/${mansubdir}X` ; F=`eval echo ${F}`
cbd7492e 3791G=`eval echo ${piddir}` ; G=`eval echo ${G}`
ecac8ee5 3792H=`eval echo ${PRIVSEP_PATH}` ; H=`eval echo ${H}`
3793I=`eval echo ${user_path}` ; I=`eval echo ${I}`
3794J=`eval echo ${superuser_path}` ; J=`eval echo ${J}`
cbd7492e 3795
3796echo ""
26de7942 3797echo "OpenSSH has been configured with the following options:"
ecac8ee5 3798echo " User binaries: $B"
3799echo " System binaries: $C"
3800echo " Configuration files: $D"
3801echo " Askpass program: $E"
3802echo " Manual pages: $F"
3803echo " PID file: $G"
3804echo " Privilege separation chroot path: $H"
95b99395 3805if test "x$external_path_file" = "x/etc/login.conf" ; then
3806echo " At runtime, sshd will use the path defined in $external_path_file"
3807echo " Make sure the path to scp is present, otherwise scp will not work"
8d184c09 3808else
ecac8ee5 3809echo " sshd default user PATH: $I"
89bbd457 3810 if test ! -z "$external_path_file"; then
95b99395 3811echo " (If PATH is set in $external_path_file it will be used instead. If"
3812echo " used, ensure the path to scp is present, otherwise scp will not work.)"
3813 fi
8d184c09 3814fi
06617857 3815if test ! -z "$superuser_path" ; then
ecac8ee5 3816echo " sshd superuser user PATH: $J"
3817fi
3818echo " Manpage format: $MANTYPE"
3e05e934 3819echo " PAM support: $PAM_MSG"
ecac8ee5 3820echo " KerberosV support: $KRB5_MSG"
3821echo " Smartcard support: $SCARD_MSG"
ecac8ee5 3822echo " S/KEY support: $SKEY_MSG"
3823echo " TCP Wrappers support: $TCPW_MSG"
3824echo " MD5 password support: $MD5_MSG"
59031773 3825echo " libedit support: $LIBEDIT_MSG"
3deb1408 3826echo " IP address in \$DISPLAY hack: $DISPLAY_HACK_MSG"
ecac8ee5 3827echo " Translate v4 in v6 hack: $IPV4_IN6_HACK_MSG"
3828echo " BSD Auth support: $BSD_AUTH_MSG"
3829echo " Random number source: $RAND_MSG"
f1b0ecc3 3830if test ! -z "$USE_RAND_HELPER" ; then
ecac8ee5 3831echo " ssh-rand-helper collects from: $RAND_HELPER_MSG"
af774732 3832fi
3833
cbd7492e 3834echo ""
3835
0c2fb82f 3836echo " Host: ${host}"
3837echo " Compiler: ${CC}"
3838echo " Compiler flags: ${CFLAGS}"
3839echo "Preprocessor flags: ${CPPFLAGS}"
3840echo " Linker flags: ${LDFLAGS}"
ddceb1c8 3841echo " Libraries: ${LIBWRAP} ${LIBPAM} ${LIBS}"
cbd7492e 3842
3843echo ""
3844
9cefe228 3845if test "x$MAKE_PACKAGE_SUPPORTED" = "xyes" ; then
b3146b5f 3846 echo "SVR4 style packages are supported with \"make package\""
3847 echo ""
9cefe228 3848fi
3849
adeebd37 3850if test "x$PAM_MSG" = "xyes" ; then
f1b0ecc3 3851 echo "PAM is enabled. You may need to install a PAM control file "
3852 echo "for sshd, otherwise password authentication may fail. "
aff51935 3853 echo "Example PAM control files can be found in the contrib/ "
f1b0ecc3 3854 echo "subdirectory"
adeebd37 3855 echo ""
3856fi
3857
f1b0ecc3 3858if test ! -z "$RAND_HELPER_CMDHASH" ; then
3859 echo "WARNING: you are using the builtin random number collection "
3860 echo "service. Please read WARNING.RNG and request that your OS "
3861 echo "vendor includes kernel-based random number collection in "
3862 echo "future versions of your OS."
2c523de9 3863 echo ""
3864fi
af774732 3865
2f6f9cff 3866if test ! -z "$NO_PEERCHECK" ; then
3867 echo "WARNING: the operating system that you are using does not "
3868 echo "appear to support either the getpeereid() API nor the "
3869 echo "SO_PEERCRED getsockopt() option. These facilities are used to "
3870 echo "enforce security checks to prevent unauthorised connections to "
3871 echo "ssh-agent. Their absence increases the risk that a malicious "
3872 echo "user can connect to your agent. "
3873 echo ""
3874fi
3875
7b578f7d 3876if test "$AUDIT_MODULE" = "bsm" ; then
3877 echo "WARNING: BSM audit support is currently considered EXPERIMENTAL."
3878 echo "See the Solaris section in README.platform for details."
3879fi
git-cvsimport mirror of OpenSSH
This page took 1.912021 seconds and 5 git commands to generate.