]> andersk Git - openssh.git/blame - configure.ac
andersk / openssh.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
- djm@cvs.openbsd.org 2010/01/30 02:54:53
[openssh.git] / configure.ac
CommitLineData
eb5d7ff6 1# $Id$
2b983b95 2#
3# Copyright (c) 1999-2004 Damien Miller
4#
5# Permission to use, copy, modify, and distribute this software for any
6# purpose with or without fee is hereby granted, provided that the above
7# copyright notice and this permission notice appear in all copies.
8#
9# THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
10# WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
11# MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR
12# ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
13# WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
14# ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
15# OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
0b202697 16
76e6410a 17AC_INIT(OpenSSH, Portable, openssh-unix-dev@mindrot.org)
823221b2 18AC_REVISION($Revision$)
98a7c37b 19AC_CONFIG_SRCDIR([ssh.c])
5881cd60 20
21AC_CONFIG_HEADER(config.h)
b14b2ae7 22AC_PROG_CC
a7effaac 23AC_CANONICAL_HOST
cf0c5df5 24AC_C_BIGENDIAN
5881cd60 25
a0391976 26# Checks for programs.
4bbf95fa 27AC_PROG_AWK
4cca272e 28AC_PROG_CPP
5881cd60 29AC_PROG_RANLIB
cf8dd513 30AC_PROG_INSTALL
c9ecc3c7 31AC_PROG_EGREP
bee0a37e 32AC_PATH_PROG(AR, ar)
ddd8c95b 33AC_PATH_PROG(CAT, cat)
34AC_PATH_PROG(KILL, kill)
13dd877b 35AC_PATH_PROGS(PERL, perl5 perl)
c3690df3 36AC_PATH_PROG(SED, sed)
a0f84251 37AC_SUBST(PERL)
ad85db64 38AC_PATH_PROG(ENT, ent)
39AC_SUBST(ENT)
6958bd37 40AC_PATH_PROG(TEST_MINUS_S_SH, bash)
41AC_PATH_PROG(TEST_MINUS_S_SH, ksh)
42AC_PATH_PROG(TEST_MINUS_S_SH, sh)
6193497b 43AC_PATH_PROG(SH, sh)
a3245b92 44AC_SUBST(TEST_SHELL,sh)
f498ed15 45
9cefe228 46dnl for buildpkg.sh
47AC_PATH_PROG(PATH_GROUPADD_PROG, groupadd, groupadd,
48 [/usr/sbin${PATH_SEPARATOR}/etc])
49AC_PATH_PROG(PATH_USERADD_PROG, useradd, useradd,
50 [/usr/sbin${PATH_SEPARATOR}/etc])
51AC_CHECK_PROG(MAKE_PACKAGE_SUPPORTED, pkgmk, yes, no)
eeb27c78 52if test -x /sbin/sh; then
53 AC_SUBST(STARTUP_SCRIPT_SHELL,/sbin/sh)
54else
55 AC_SUBST(STARTUP_SCRIPT_SHELL,/bin/sh)
56fi
9cefe228 57
948fd8b9 58# System features
59AC_SYS_LARGEFILE
60
c193d002 61if test -z "$AR" ; then
62 AC_MSG_ERROR([*** 'ar' missing, please install or fix your \$PATH ***])
63fi
64
2e73a022 65# Use LOGIN_PROGRAM from environment if possible
66if test ! -z "$LOGIN_PROGRAM" ; then
3466e002 67 AC_DEFINE_UNQUOTED(LOGIN_PROGRAM_FALLBACK, "$LOGIN_PROGRAM",
68 [If your header files don't define LOGIN_PROGRAM,
69 then use this (detected) from environment and PATH])
2e73a022 70else
71 # Search for login
72 AC_PATH_PROG(LOGIN_PROGRAM_FALLBACK, login)
73 if test ! -z "$LOGIN_PROGRAM_FALLBACK" ; then
74 AC_DEFINE_UNQUOTED(LOGIN_PROGRAM_FALLBACK, "$LOGIN_PROGRAM_FALLBACK")
75 fi
76fi
77
37656beb 78AC_PATH_PROG(PATH_PASSWD_PROG, passwd)
79if test ! -z "$PATH_PASSWD_PROG" ; then
3466e002 80 AC_DEFINE_UNQUOTED(_PATH_PASSWD_PROG, "$PATH_PASSWD_PROG",
81 [Full path of your "passwd" program])
37656beb 82fi
83
d423d822 84if test -z "$LD" ; then
85 LD=$CC
86fi
87AC_SUBST(LD)
82f4e93d 88
d423d822 89AC_C_INLINE
dfafb2e1 90
91AC_CHECK_DECL(LLONG_MAX, have_llong_max=1, , [#include <limits.h>])
92
caa21240 93use_stack_protector=1
94AC_ARG_WITH(stackprotect,
a0969097 95 [ --without-stackprotect Don't use compiler's stack protection], [
caa21240 96 if test "x$withval" = "xno"; then
97 use_stack_protector=0
98 fi ])
99
aff51935 100if test "$GCC" = "yes" || test "$GCC" = "egcs"; then
af40ca44 101 CFLAGS="$CFLAGS -Wall -Wpointer-arith -Wuninitialized"
eeee8237 102 GCC_VER=`$CC -v 2>&1 | $AWK '/gcc version /{print $3}'`
5fdabf45 103 case $GCC_VER in
0b9fdeb8 104 1.*) no_attrib_nonnull=1 ;;
105 2.8* | 2.9*)
106 CFLAGS="$CFLAGS -Wsign-compare"
107 no_attrib_nonnull=1
108 ;;
109 2.*) no_attrib_nonnull=1 ;;
b5902374 110 3.*) CFLAGS="$CFLAGS -Wsign-compare -Wformat-security" ;;
111 4.*) CFLAGS="$CFLAGS -Wsign-compare -Wno-pointer-sign -Wformat-security" ;;
cd595991 112 *) ;;
5fdabf45 113 esac
8a3ff1aa 114
b55b0285 115 AC_MSG_CHECKING(if $CC accepts -fno-builtin-memset)
116 saved_CFLAGS="$CFLAGS"
117 CFLAGS="$CFLAGS -fno-builtin-memset"
118 AC_LINK_IFELSE( [AC_LANG_SOURCE([[
119#include <string.h>
120int main(void){char b[10]; memset(b, 0, sizeof(b));}
121 ]])],
122 [ AC_MSG_RESULT(yes) ],
123 [ AC_MSG_RESULT(no)
124 CFLAGS="$saved_CFLAGS" ]
125)
126
caa21240 127 # -fstack-protector-all doesn't always work for some GCC versions
23c5c479 128 # and/or platforms, so we test if we can. If it's not supported
53e2660a 129 # on a given platform gcc will emit a warning so we use -Werror.
caa21240 130 if test "x$use_stack_protector" = "x1"; then
131 for t in -fstack-protector-all -fstack-protector; do
23c5c479 132 AC_MSG_CHECKING(if $CC supports $t)
caa21240 133 saved_CFLAGS="$CFLAGS"
134 saved_LDFLAGS="$LDFLAGS"
23c5c479 135 CFLAGS="$CFLAGS $t -Werror"
136 LDFLAGS="$LDFLAGS $t -Werror"
137 AC_LINK_IFELSE(
138 [AC_LANG_SOURCE([
53e2660a 139#include <stdio.h>
140int main(void){char x[[256]]; snprintf(x, sizeof(x), "XXX"); return 0;}
23c5c479 141 ])],
caa21240 142 [ AC_MSG_RESULT(yes)
23c5c479 143 CFLAGS="$saved_CFLAGS $t"
144 LDFLAGS="$saved_LDFLAGS $t"
caa21240 145 AC_MSG_CHECKING(if $t works)
146 AC_RUN_IFELSE(
147 [AC_LANG_SOURCE([
53e2660a 148#include <stdio.h>
149int main(void){char x[[256]]; snprintf(x, sizeof(x), "XXX"); return 0;}
caa21240 150 ])],
151 [ AC_MSG_RESULT(yes)
152 break ],
153 [ AC_MSG_RESULT(no) ],
154 [ AC_MSG_WARN([cross compiling: cannot test])
155 break ]
23c5c479 156 )
caa21240 157 ],
158 [ AC_MSG_RESULT(no) ]
159 )
160 CFLAGS="$saved_CFLAGS"
161 LDFLAGS="$saved_LDFLAGS"
162 done
163 fi
eb5a7224 164
dfafb2e1 165 if test -z "$have_llong_max"; then
166 # retry LLONG_MAX with -std=gnu99, needed on some Linuxes
167 unset ac_cv_have_decl_LLONG_MAX
168 saved_CFLAGS="$CFLAGS"
169 CFLAGS="$CFLAGS -std=gnu99"
170 AC_CHECK_DECL(LLONG_MAX,
171 [have_llong_max=1],
172 [CFLAGS="$saved_CFLAGS"],
173 [#include <limits.h>]
174 )
175 fi
d423d822 176fi
177
0b9fdeb8 178if test "x$no_attrib_nonnull" != "x1" ; then
179 AC_DEFINE(HAVE_ATTRIBUTE__NONNULL__, 1, [Have attribute nonnull])
180fi
181
e6354014 182AC_ARG_WITH(rpath,
183 [ --without-rpath Disable auto-added -R linker paths],
184 [
82f4e93d 185 if test "x$withval" = "xno" ; then
e6354014 186 need_dash_r=""
187 fi
188 if test "x$withval" = "xyes" ; then
189 need_dash_r=1
190 fi
191 ]
192)
193
aa56f760 194# Allow user to specify flags
195AC_ARG_WITH(cflags,
196 [ --with-cflags Specify additional flags to pass to compiler],
197 [
198 if test -n "$withval" && test "x$withval" != "xno" && \
199 test "x${withval}" != "xyes"; then
200 CFLAGS="$CFLAGS $withval"
201 fi
202 ]
203)
204AC_ARG_WITH(cppflags,
205 [ --with-cppflags Specify additional flags to pass to preprocessor] ,
206 [
207 if test -n "$withval" && test "x$withval" != "xno" && \
208 test "x${withval}" != "xyes"; then
209 CPPFLAGS="$CPPFLAGS $withval"
210 fi
211 ]
212)
213AC_ARG_WITH(ldflags,
214 [ --with-ldflags Specify additional flags to pass to linker],
215 [
216 if test -n "$withval" && test "x$withval" != "xno" && \
217 test "x${withval}" != "xyes"; then
218 LDFLAGS="$LDFLAGS $withval"
219 fi
220 ]
221)
222AC_ARG_WITH(libs,
223 [ --with-libs Specify additional libraries to link with],
224 [
225 if test -n "$withval" && test "x$withval" != "xno" && \
226 test "x${withval}" != "xyes"; then
227 LIBS="$LIBS $withval"
228 fi
229 ]
230)
231AC_ARG_WITH(Werror,
232 [ --with-Werror Build main code with -Werror],
233 [
234 if test -n "$withval" && test "x$withval" != "xno"; then
235 werror_flags="-Werror"
236 if test "x${withval}" != "xyes"; then
237 werror_flags="$withval"
238 fi
239 fi
240 ]
241)
242
243AC_CHECK_HEADERS( \
244 bstring.h \
245 crypt.h \
246 crypto/sha2.h \
247 dirent.h \
248 endian.h \
249 features.h \
250 fcntl.h \
251 floatingpoint.h \
252 getopt.h \
253 glob.h \
254 ia.h \
255 iaf.h \
256 limits.h \
257 login.h \
258 maillock.h \
259 ndir.h \
260 net/if_tun.h \
261 netdb.h \
262 netgroup.h \
263 pam/pam_appl.h \
264 paths.h \
6d39a5c4 265 poll.h \
aa56f760 266 pty.h \
267 readpassphrase.h \
268 rpc/types.h \
269 security/pam_appl.h \
270 sha2.h \
271 shadow.h \
272 stddef.h \
273 stdint.h \
274 string.h \
275 strings.h \
276 sys/audit.h \
277 sys/bitypes.h \
278 sys/bsdtty.h \
279 sys/cdefs.h \
280 sys/dir.h \
281 sys/mman.h \
282 sys/ndir.h \
8aa5db7d 283 sys/poll.h \
aa56f760 284 sys/prctl.h \
285 sys/pstat.h \
286 sys/select.h \
287 sys/stat.h \
288 sys/stream.h \
289 sys/stropts.h \
290 sys/strtio.h \
4538e135 291 sys/statvfs.h \
aa56f760 292 sys/sysmacros.h \
293 sys/time.h \
294 sys/timers.h \
295 sys/un.h \
296 time.h \
297 tmpdir.h \
298 ttyent.h \
40701614 299 ucred.h \
aa56f760 300 unistd.h \
301 usersec.h \
302 util.h \
303 utime.h \
304 utmp.h \
305 utmpx.h \
306 vis.h \
307)
308
309# lastlog.h requires sys/time.h to be included first on Solaris
310AC_CHECK_HEADERS(lastlog.h, [], [], [
311#ifdef HAVE_SYS_TIME_H
312# include <sys/time.h>
313#endif
314])
315
316# sys/ptms.h requires sys/stream.h to be included first on Solaris
317AC_CHECK_HEADERS(sys/ptms.h, [], [], [
318#ifdef HAVE_SYS_STREAM_H
319# include <sys/stream.h>
320#endif
321])
322
323# login_cap.h requires sys/types.h on NetBSD
324AC_CHECK_HEADERS(login_cap.h, [], [], [
325#include <sys/types.h>
326])
327
0a008a4d 328# older BSDs need sys/param.h before sys/mount.h
329AC_CHECK_HEADERS(sys/mount.h, [], [], [
330#include <sys/param.h>
331])
332
5b84789f 333# Messages for features tested for in target-specific section
334SIA_MSG="no"
335SPC_MSG="no"
336
a0391976 337# Check for some target-specific stuff
a7effaac 338case "$host" in
9d6b1b96 339*-*-aix*)
25a2779b 340 # Some versions of VAC won't allow macro redefinitions at
341 # -qlanglevel=ansi, and autoconf 2.60 sometimes insists on using that
342 # particularly with older versions of vac or xlc.
343 # It also throws errors about null macro argments, but these are
344 # not fatal.
345 AC_MSG_CHECKING(if compiler allows macro redefinitions)
346 AC_COMPILE_IFELSE(
347 [AC_LANG_SOURCE([[
348#define testmacro foo
349#define testmacro bar
350int main(void) { exit(0); }
351 ]])],
352 [ AC_MSG_RESULT(yes) ],
353 [ AC_MSG_RESULT(no)
354 CC="`echo $CC | sed 's/-qlanglvl\=ansi//g'`"
355 LD="`echo $LD | sed 's/-qlanglvl\=ansi//g'`"
356 CFLAGS="`echo $CFLAGS | sed 's/-qlanglvl\=ansi//g'`"
357 CPPFLAGS="`echo $CPPFLAGS | sed 's/-qlanglvl\=ansi//g'`"
358 ]
359 )
360
aff51935 361 AC_MSG_CHECKING([how to specify blibpath for linker ($LD)])
68ece370 362 if (test -z "$blibpath"); then
0a15d73b 363 blibpath="/usr/lib:/lib"
68ece370 364 fi
365 saved_LDFLAGS="$LDFLAGS"
e7479666 366 if test "$GCC" = "yes"; then
367 flags="-Wl,-blibpath: -Wl,-rpath, -blibpath:"
368 else
369 flags="-blibpath: -Wl,-blibpath: -Wl,-rpath,"
370 fi
371 for tryflags in $flags ;do
68ece370 372 if (test -z "$blibflags"); then
373 LDFLAGS="$saved_LDFLAGS $tryflags$blibpath"
374 AC_TRY_LINK([], [], [blibflags=$tryflags])
375 fi
376 done
377 if (test -z "$blibflags"); then
378 AC_MSG_RESULT(not found)
379 AC_MSG_ERROR([*** must be able to specify blibpath on AIX - check config.log])
380 else
381 AC_MSG_RESULT($blibflags)
bd499f9e 382 fi
68ece370 383 LDFLAGS="$saved_LDFLAGS"
e351e493 384 dnl Check for authenticate. Might be in libs.a on older AIXes
3466e002 385 AC_CHECK_FUNC(authenticate, [AC_DEFINE(WITH_AIXAUTHENTICATE, 1,
386 [Define if you want to enable AIX4's authenticate function])],
0764e748 387 [AC_CHECK_LIB(s,authenticate,
e351e493 388 [ AC_DEFINE(WITH_AIXAUTHENTICATE)
0764e748 389 LIBS="$LIBS -ls"
390 ])
391 ])
ba603e06 392 dnl Check for various auth function declarations in headers.
c85ed8e2 393 AC_CHECK_DECLS([authenticate, loginrestrictions, loginsuccess,
72ad335d 394 passwdexpired, setauthdb], , , [#include <usersec.h>])
e351e493 395 dnl Check if loginfailed is declared and takes 4 arguments (AIX >= 5.2)
ba603e06 396 AC_CHECK_DECLS(loginfailed,
e351e493 397 [AC_MSG_CHECKING(if loginfailed takes 4 arguments)
398 AC_TRY_COMPILE(
f58c0e01 399 [#include <usersec.h>],
e351e493 400 [(void)loginfailed("user","host","tty",0);],
401 [AC_MSG_RESULT(yes)
3466e002 402 AC_DEFINE(AIX_LOGINFAILED_4ARG, 1,
403 [Define if your AIX loginfailed() function
404 takes 4 arguments (AIX >= 5.2)])],
f58c0e01 405 [AC_MSG_RESULT(no)]
e351e493 406 )],
407 [],
408 [#include <usersec.h>]
409 )
533a78f0 410 AC_CHECK_FUNCS(getgrset setauthdb)
53c337ed 411 AC_CHECK_DECL(F_CLOSEM,
795e7517 412 AC_DEFINE(HAVE_FCNTL_CLOSEM, 1, [Use F_CLOSEM fcntl for closefrom]),
53c337ed 413 [],
414 [ #include <limits.h>
415 #include <fcntl.h> ]
416 )
5ccf88cb 417 check_for_aix_broken_getaddrinfo=1
3466e002 418 AC_DEFINE(BROKEN_REALPATH, 1, [Define if you have a broken realpath.])
419 AC_DEFINE(SETEUID_BREAKS_SETUID, 1,
420 [Define if your platform breaks doing a seteuid before a setuid])
421 AC_DEFINE(BROKEN_SETREUID, 1, [Define if your setreuid() is broken])
422 AC_DEFINE(BROKEN_SETREGID, 1, [Define if your setregid() is broken])
a3cef3ca 423 dnl AIX handles lastlog as part of its login message
3466e002 424 AC_DEFINE(DISABLE_LASTLOG, 1, [Define if you don't want to use lastlog])
425 AC_DEFINE(LOGIN_NEEDS_UTMPX, 1,
426 [Some systems need a utmpx entry for /bin/login to work])
427 AC_DEFINE(SPT_TYPE,SPT_REUSEARGV,
428 [Define to a Set Process Title type if your system is
429 supported by bsd-setproctitle.c])
961c2997 430 AC_DEFINE(SSHPAM_CHAUTHTOK_NEEDS_RUID, 1,
431 [AIX 5.2 and 5.3 (and presumably newer) require this])
ea8c44d9 432 AC_DEFINE(PTY_ZEROREAD, 1, [read(1) can return 0 for a non-closed fd])
9d6b1b96 433 ;;
3c62e7eb 434*-*-cygwin*)
a52997bd 435 check_for_libcrypt_later=1
04765d02 436 LIBS="$LIBS /usr/lib/textreadmode.o"
3466e002 437 AC_DEFINE(HAVE_CYGWIN, 1, [Define if you are on Cygwin])
438 AC_DEFINE(USE_PIPES, 1, [Use PIPES instead of a socketpair()])
439 AC_DEFINE(DISABLE_SHADOW, 1,
440 [Define if you want to disable shadow passwords])
3466e002 441 AC_DEFINE(NO_X11_UNIX_SOCKETS, 1,
442 [Define if X11 doesn't support AF_UNIX sockets on that system])
443 AC_DEFINE(NO_IPPORT_RESERVED_CONCEPT, 1,
444 [Define if the concept of ports only accessible to
445 superusers isn't known])
446 AC_DEFINE(DISABLE_FD_PASSING, 1,
447 [Define if your platform needs to skip post auth
448 file descriptor passing])
abaf180d 449 AC_DEFINE(SSH_IOBUFSZ, 65535, [Windows is sensitive to read buffer size])
3c62e7eb 450 ;;
d6fdb079 451*-*-dgux*)
bc9a470b 452 AC_DEFINE(IP_TOS_IS_BROKEN, 1,
453 [Define if your system choked on IP TOS setting])
0c6a72a5 454 AC_DEFINE(SETEUID_BREAKS_SETUID)
455 AC_DEFINE(BROKEN_SETREUID)
456 AC_DEFINE(BROKEN_SETREGID)
d6fdb079 457 ;;
39c98ef7 458*-*-darwin*)
33e2e066 459 AC_MSG_CHECKING(if we have working getaddrinfo)
460 AC_TRY_RUN([#include <mach-o/dyld.h>
461main() { if (NSVersionOfRunTimeLibrary("System") >= (60 << 16))
462 exit(0);
463 else
464 exit(1);
465}], [AC_MSG_RESULT(working)],
466 [AC_MSG_RESULT(buggy)
3466e002 467 AC_DEFINE(BROKEN_GETADDRINFO, 1, [getaddrinfo is broken (if present)])],
b27e573d 468 [AC_MSG_RESULT(assume it is working)])
635e0c42 469 AC_DEFINE(SETEUID_BREAKS_SETUID)
470 AC_DEFINE(BROKEN_SETREUID)
471 AC_DEFINE(BROKEN_SETREGID)
a8ad3b9d 472 AC_DEFINE(BROKEN_GLOB, 1, [OS X glob does not do what we expect])
3466e002 473 AC_DEFINE_UNQUOTED(BIND_8_COMPAT, 1,
474 [Define if your resolver libs need this for getrrsetbyname])
e02505e2 475 AC_DEFINE(SSH_TUN_FREEBSD, 1, [Open tunnel devices the FreeBSD way])
476 AC_DEFINE(SSH_TUN_COMPAT_AF, 1,
477 [Use tunnel device compatibility to OpenBSD])
478 AC_DEFINE(SSH_TUN_PREPEND_AF, 1,
479 [Prepend the address family to IP tunnel traffic])
a74e9b64 480 m4_pattern_allow(AU_IPv)
481 AC_CHECK_DECL(AU_IPv4, [],
482 AC_DEFINE(AU_IPv4, 0, [System only supports IPv4 audit records])
483 [#include <bsm/audit.h>]
295dd642 484 AC_DEFINE(LASTLOG_WRITE_PUTUTXLINE, 1,
485 [Define if pututxline updates lastlog too])
a74e9b64 486 )
39c98ef7 487 ;;
36f36ba3 488*-*-dragonfly*)
489 SSHDLIBS="$SSHDLIBS -lcrypt"
490 ;;
7d458c86 491*-*-hpux*)
492 # first we define all of the options common to all HP-UX releases
b8fea62d 493 CPPFLAGS="$CPPFLAGS -D_HPUX_SOURCE -D_XOPEN_SOURCE -D_XOPEN_SOURCE_EXTENDED=1"
44839801 494 IPADDR_IN_DISPLAY=yes
2b10f47a 495 AC_DEFINE(USE_PIPES)
3466e002 496 AC_DEFINE(LOGIN_NO_ENDOPT, 1,
497 [Define if your login program cannot handle end of options ("--")])
a2572aa7 498 AC_DEFINE(LOGIN_NEEDS_UTMPX)
3466e002 499 AC_DEFINE(LOCKED_PASSWD_STRING, "*",
500 [String used in /etc/passwd to denote locked account])
3a2b2b44 501 AC_DEFINE(SPT_TYPE,SPT_PSTAT)
83f987c3 502 MAIL="/var/mail/username"
f75ca46d 503 LIBS="$LIBS -lsec"
7d458c86 504 AC_CHECK_LIB(xnet, t_error, ,
505 AC_MSG_ERROR([*** -lxnet needed on HP-UX - check config.log ***]))
506
507 # next, we define all of the options specific to major releases
508 case "$host" in
509 *-*-hpux10*)
510 if test -z "$GCC"; then
511 CFLAGS="$CFLAGS -Ae"
512 fi
513 ;;
514 *-*-hpux11*)
3466e002 515 AC_DEFINE(PAM_SUN_CODEBASE, 1,
516 [Define if you are using Solaris-derived PAM which
517 passes pam_messages to the conversation function
518 with an extra level of indirection])
519 AC_DEFINE(DISABLE_UTMP, 1,
520 [Define if you don't want to use utmp])
7d458c86 521 AC_DEFINE(USE_BTMP, 1, [Use btmp to log bad logins])
522 check_for_hpux_broken_getaddrinfo=1
523 check_for_conflicting_getspnam=1
524 ;;
525 esac
526
527 # lastly, we define options specific to minor releases
528 case "$host" in
529 *-*-hpux10.26)
3466e002 530 AC_DEFINE(HAVE_SECUREWARE, 1,
531 [Define if you have SecureWare-based
532 protected password database])
7d458c86 533 disable_ptmx_check=yes
534 LIBS="$LIBS -lsecpw"
535 ;;
536 esac
2b763e31 537 ;;
d94aa2ae 538*-*-irix5*)
6ac7829a 539 PATH="$PATH:/usr/etc"
3466e002 540 AC_DEFINE(BROKEN_INET_NTOA, 1,
541 [Define if you system's inet_ntoa is busted
542 (e.g. Irix gcc issue)])
cb433561 543 AC_DEFINE(SETEUID_BREAKS_SETUID)
544 AC_DEFINE(BROKEN_SETREUID)
545 AC_DEFINE(BROKEN_SETREGID)
3466e002 546 AC_DEFINE(WITH_ABBREV_NO_TTY, 1,
547 [Define if you shouldn't strip 'tty' from your
548 ttyname in [uw]tmp])
3e6e3da0 549 AC_DEFINE(LOCKED_PASSWD_STRING, "*LK*")
b9795b89 550 ;;
551*-*-irix6*)
6ac7829a 552 PATH="$PATH:/usr/etc"
3466e002 553 AC_DEFINE(WITH_IRIX_ARRAY, 1,
554 [Define if you have/want arrays
555 (cluster-wide session managment, not C arrays)])
556 AC_DEFINE(WITH_IRIX_PROJECT, 1,
557 [Define if you want IRIX project management])
558 AC_DEFINE(WITH_IRIX_AUDIT, 1,
559 [Define if you want IRIX audit trails])
560 AC_CHECK_FUNC(jlimit_startjob, [AC_DEFINE(WITH_IRIX_JOBS, 1,
561 [Define if you want IRIX kernel jobs])])
416ed5a7 562 AC_DEFINE(BROKEN_INET_NTOA)
412c0eaa 563 AC_DEFINE(SETEUID_BREAKS_SETUID)
564 AC_DEFINE(BROKEN_SETREUID)
565 AC_DEFINE(BROKEN_SETREGID)
3466e002 566 AC_DEFINE(BROKEN_UPDWTMPX, 1, [updwtmpx is broken (if present)])
0e8f4eba 567 AC_DEFINE(WITH_ABBREV_NO_TTY)
3e6e3da0 568 AC_DEFINE(LOCKED_PASSWD_STRING, "*LK*")
d94aa2ae 569 ;;
4c3b7423 570*-*-k*bsd*-gnu | *-*-kopensolaris*-gnu)
571 check_for_libcrypt_later=1
572 AC_DEFINE(PAM_TTY_KLUDGE)
573 AC_DEFINE(LOCKED_PASSWD_PREFIX, "!")
574 AC_DEFINE(SPT_TYPE,SPT_REUSEARGV)
575 AC_DEFINE(_PATH_BTMP, "/var/log/btmp", [log for bad login attempts])
576 AC_DEFINE(USE_BTMP, 1, [Use btmp to log bad logins])
577 ;;
5cdfe03f 578*-*-linux*)
579 no_dev_ptmx=1
717057b6 580 check_for_libcrypt_later=1
eacb954e 581 check_for_openpty_ctty_bug=1
3466e002 582 AC_DEFINE(PAM_TTY_KLUDGE, 1,
583 [Work around problematic Linux PAM modules handling of PAM_TTY])
584 AC_DEFINE(LOCKED_PASSWD_PREFIX, "!",
585 [String used in /etc/passwd to denote locked account])
3a2b2b44 586 AC_DEFINE(SPT_TYPE,SPT_REUSEARGV)
3466e002 587 AC_DEFINE(LINK_OPNOTSUPP_ERRNO, EPERM,
588 [Define to whatever link() returns for "not supported"
589 if it doesn't return EOPNOTSUPP.])
b6610e8f 590 AC_DEFINE(_PATH_BTMP, "/var/log/btmp", [log for bad login attempts])
3466e002 591 AC_DEFINE(USE_BTMP)
fd2d830a 592 AC_DEFINE(LINUX_OOM_ADJUST, 1, [Adjust Linux out-of-memory killer])
80faa19f 593 inet6_default_4in6=yes
bf7c1e6c 594 case `uname -r` in
ad84c479 595 1.*|2.0.*)
3466e002 596 AC_DEFINE(BROKEN_CMSG_TYPE, 1,
597 [Define if cmsg_type is not passed correctly])
bf7c1e6c 598 ;;
bf7c1e6c 599 esac
c40f09ca 600 # tun(4) forwarding compat code
d91775e1 601 AC_CHECK_HEADERS(linux/if_tun.h)
b5081213 602 if test "x$ac_cv_header_linux_if_tun_h" = "xyes" ; then
c40f09ca 603 AC_DEFINE(SSH_TUN_LINUX, 1,
604 [Open tunnel devices the Linux tun/tap way])
605 AC_DEFINE(SSH_TUN_COMPAT_AF, 1,
606 [Use tunnel device compatibility to OpenBSD])
607 AC_DEFINE(SSH_TUN_PREPEND_AF, 1,
608 [Prepend the address family to IP tunnel traffic])
609 fi
5cdfe03f 610 ;;
66d6c27e 611mips-sony-bsd|mips-sony-newsos4)
4b2cf3f1 612 AC_DEFINE(NEED_SETPGRP, 1, [Need setpgrp to acquire controlling tty])
66d6c27e 613 SONY=1
66d6c27e 614 ;;
d468fc76 615*-*-netbsd*)
33e2e066 616 check_for_libcrypt_before=1
82f4e93d 617 if test "x$withval" != "xno" ; then
e6354014 618 need_dash_r=1
619 fi
0f6cb079 620 AC_DEFINE(SSH_TUN_FREEBSD, 1, [Open tunnel devices the FreeBSD way])
621 AC_CHECK_HEADER([net/if_tap.h], ,
622 AC_DEFINE(SSH_TUN_NO_L2, 1, [No layer 2 tunnel support]))
623 AC_DEFINE(SSH_TUN_PREPEND_AF, 1,
624 [Prepend the address family to IP tunnel traffic])
d468fc76 625 ;;
86b416a7 626*-*-freebsd*)
627 check_for_libcrypt_later=1
988c5031 628 AC_DEFINE(LOCKED_PASSWD_PREFIX, "*LOCKED*", [Account locked with pw(1)])
0f6cb079 629 AC_DEFINE(SSH_TUN_FREEBSD, 1, [Open tunnel devices the FreeBSD way])
630 AC_CHECK_HEADER([net/if_tap.h], ,
631 AC_DEFINE(SSH_TUN_NO_L2, 1, [No layer 2 tunnel support]))
fbfeb0de 632 AC_DEFINE(BROKEN_GLOB, 1, [FreeBSD glob does not do what we need])
86b416a7 633 ;;
8707b7eb 634*-*-bsdi*)
635 AC_DEFINE(SETEUID_BREAKS_SETUID)
636 AC_DEFINE(BROKEN_SETREUID)
637 AC_DEFINE(BROKEN_SETREGID)
638 ;;
729bfe59 639*-next-*)
729bfe59 640 conf_lastlog_location="/usr/adm/lastlog"
698d107e 641 conf_utmp_location=/etc/utmp
642 conf_wtmp_location=/usr/adm/wtmp
643 MAIL=/usr/spool/mail
3466e002 644 AC_DEFINE(HAVE_NEXT, 1, [Define if you are on NeXT])
443172c4 645 AC_DEFINE(BROKEN_REALPATH)
00937921 646 AC_DEFINE(USE_PIPES)
3466e002 647 AC_DEFINE(BROKEN_SAVED_UIDS, 1, [Needed for NeXT])
729bfe59 648 ;;
5b7b5e23 649*-*-openbsd*)
650 AC_DEFINE(HAVE_ATTRIBUTE__SENTINEL__, 1, [OpenBSD's gcc has sentinel])
8034a348 651 AC_DEFINE(HAVE_ATTRIBUTE__BOUNDED__, 1, [OpenBSD's gcc has bounded])
0f6cb079 652 AC_DEFINE(SSH_TUN_OPENBSD, 1, [Open tunnel devices the OpenBSD way])
c79c4814 653 AC_DEFINE(SYSLOG_R_SAFE_IN_SIGHAND, 1,
654 [syslog_r function is safe to use in in a signal handler])
5b7b5e23 655 ;;
9d6b1b96 656*-*-solaris*)
82f4e93d 657 if test "x$withval" != "xno" ; then
010e9d5b 658 need_dash_r=1
659 fi
adeebd37 660 AC_DEFINE(PAM_SUN_CODEBASE)
7e2d5fa4 661 AC_DEFINE(LOGIN_NEEDS_UTMPX)
3466e002 662 AC_DEFINE(LOGIN_NEEDS_TERM, 1,
663 [Some versions of /bin/login need the TERM supplied
664 on the commandline])
7f0a4ff1 665 AC_DEFINE(PAM_TTY_KLUDGE)
3466e002 666 AC_DEFINE(SSHPAM_CHAUTHTOK_NEEDS_RUID, 1,
667 [Define if pam_chauthtok wants real uid set
668 to the unpriv'ed user])
3e6e3da0 669 AC_DEFINE(LOCKED_PASSWD_STRING, "*LK*")
ad84c479 670 # Pushing STREAMS modules will cause sshd to acquire a controlling tty.
3466e002 671 AC_DEFINE(SSHD_ACQUIRES_CTTY, 1,
672 [Define if sshd somehow reacquires a controlling TTY
673 after setsid()])
795aa5f5 674 AC_DEFINE(PASSWD_NEEDS_USERNAME, 1, [must supply username to passwd
675 in case the name is longer than 8 chars])
00789f24 676 AC_DEFINE(BROKEN_TCGETATTR_ICANON, 1, [tcgetattr with ICANON may hang])
95b99395 677 external_path_file=/etc/default/login
1d7b9b20 678 # hardwire lastlog location (can't detect it on some versions)
679 conf_lastlog_location="/var/adm/lastlog"
32c80420 680 AC_MSG_CHECKING(for obsolete utmp and wtmp in solaris2.x)
681 sol2ver=`echo "$host"| sed -e 's/.*[[0-9]]\.//'`
682 if test "$sol2ver" -ge 8; then
683 AC_MSG_RESULT(yes)
684 AC_DEFINE(DISABLE_UTMP)
3466e002 685 AC_DEFINE(DISABLE_WTMP, 1,
686 [Define if you don't want to use wtmp])
32c80420 687 else
688 AC_MSG_RESULT(no)
689 fi
5b84789f 690 AC_ARG_WITH(solaris-contracts,
691 [ --with-solaris-contracts Enable Solaris process contracts (experimental)],
692 [
693 AC_CHECK_LIB(contract, ct_tmpl_activate,
694 [ AC_DEFINE(USE_SOLARIS_PROCESS_CONTRACTS, 1,
695 [Define if you have Solaris process contracts])
696 SSHDLIBS="$SSHDLIBS -lcontract"
697 AC_SUBST(SSHDLIBS)
698 SPC_MSG="yes" ], )
699 ],
700 )
9d6b1b96 701 ;;
a423beaf 702*-*-sunos4*)
0c2fb82f 703 CPPFLAGS="$CPPFLAGS -DSUNOS4"
a423beaf 704 AC_CHECK_FUNCS(getpwanam)
adeebd37 705 AC_DEFINE(PAM_SUN_CODEBASE)
32eec038 706 conf_utmp_location=/etc/utmp
707 conf_wtmp_location=/var/adm/wtmp
708 conf_lastlog_location=/var/adm/lastlog
137d7b6c 709 AC_DEFINE(USE_PIPES)
a423beaf 710 ;;
6f68f28a 711*-ncr-sysv*)
98a7c37b 712 LIBS="$LIBS -lc89"
29525240 713 AC_DEFINE(USE_PIPES)
eabb99c6 714 AC_DEFINE(SSHD_ACQUIRES_CTTY)
6fb3618d 715 AC_DEFINE(SETEUID_BREAKS_SETUID)
716 AC_DEFINE(BROKEN_SETREUID)
717 AC_DEFINE(BROKEN_SETREGID)
6f68f28a 718 ;;
132dd316 719*-sni-sysv*)
c8c15bcb 720 # /usr/ucblib MUST NOT be searched on ReliantUNIX
e2798e96 721 AC_CHECK_LIB(dl, dlsym, ,)
d08db6d1 722 # -lresolv needs to be at the end of LIBS or DNS lookups break
723 AC_CHECK_LIB(resolv, res_query, [ LIBS="$LIBS -lresolv" ])
9548d6c8 724 IPADDR_IN_DISPLAY=yes
725 AC_DEFINE(USE_PIPES)
132dd316 726 AC_DEFINE(IP_TOS_IS_BROKEN)
605369bb 727 AC_DEFINE(SETEUID_BREAKS_SETUID)
728 AC_DEFINE(BROKEN_SETREUID)
729 AC_DEFINE(BROKEN_SETREGID)
eabb99c6 730 AC_DEFINE(SSHD_ACQUIRES_CTTY)
95b99395 731 external_path_file=/etc/default/login
c8c15bcb 732 # /usr/ucblib/libucb.a no longer needed on ReliantUNIX
733 # Attention: always take care to bind libsocket and libnsl before libc,
734 # otherwise you will find lots of "SIOCGPGRP errno 22" on syslog
132dd316 735 ;;
79a7ba96 736# UnixWare 1.x, UnixWare 2.x, and others based on code from Univel.
77bb0bca 737*-*-sysv4.2*)
ed6553e2 738 AC_DEFINE(USE_PIPES)
7ed101c0 739 AC_DEFINE(SETEUID_BREAKS_SETUID)
740 AC_DEFINE(BROKEN_SETREUID)
741 AC_DEFINE(BROKEN_SETREGID)
46f853b9 742 AC_DEFINE(PASSWD_NEEDS_USERNAME, 1, [must supply username to passwd])
e45da4d6 743 AC_DEFINE(LOCKED_PASSWD_STRING, "*LK*")
77bb0bca 744 ;;
79a7ba96 745# UnixWare 7.x, OpenUNIX 8
77bb0bca 746*-*-sysv5*)
9b9be998 747 CPPFLAGS="$CPPFLAGS -Dvsnprintf=_xvsnprintf -Dsnprintf=_xsnprintf"
d7d2cc6e 748 AC_DEFINE(UNIXWARE_LONG_PASSWORDS, 1, [Support passwords > 8 chars])
ed6553e2 749 AC_DEFINE(USE_PIPES)
7ed101c0 750 AC_DEFINE(SETEUID_BREAKS_SETUID)
0303fddc 751 AC_DEFINE(BROKEN_GETADDRINFO)
7ed101c0 752 AC_DEFINE(BROKEN_SETREUID)
753 AC_DEFINE(BROKEN_SETREGID)
3466e002 754 AC_DEFINE(PASSWD_NEEDS_USERNAME)
822015dd 755 case "$host" in
756 *-*-sysv5SCO_SV*) # SCO OpenServer 6.x
757 TEST_SHELL=/u95/bin/sh
3466e002 758 AC_DEFINE(BROKEN_LIBIAF, 1,
759 [ia_uinfo routines not supported by OS yet])
5cc6ddad 760 AC_DEFINE(BROKEN_UPDWTMPX)
16076ac9 761 AC_CHECK_LIB(prot, getluid,[ LIBS="$LIBS -lprot"
762 AC_CHECK_FUNCS(getluid setluid,,,-lprot)
763 AC_DEFINE(HAVE_SECUREWARE)
764 AC_DEFINE(DISABLE_SHADOW)
765 ],,)
822015dd 766 ;;
e45da4d6 767 *) AC_DEFINE(LOCKED_PASSWD_STRING, "*LK*")
44a71983 768 check_for_libcrypt_later=1
e45da4d6 769 ;;
822015dd 770 esac
77bb0bca 771 ;;
9d6b1b96 772*-*-sysv*)
9d6b1b96 773 ;;
79a7ba96 774# SCO UNIX and OEM versions of SCO UNIX
77bb0bca 775*-*-sco3.2v4*)
11cf4f1f 776 AC_MSG_ERROR("This Platform is no longer supported.")
77bb0bca 777 ;;
79a7ba96 778# SCO OpenServer 5.x
77bb0bca 779*-*-sco3.2v5*)
21710e39 780 if test -z "$GCC"; then
781 CFLAGS="$CFLAGS -belf"
782 fi
ed6553e2 783 LIBS="$LIBS -lprot -lx -ltinfo -lm"
509b1f88 784 no_dev_ptmx=1
ed6553e2 785 AC_DEFINE(USE_PIPES)
6e879cb4 786 AC_DEFINE(HAVE_SECUREWARE)
d287c664 787 AC_DEFINE(DISABLE_SHADOW)
94d8258b 788 AC_DEFINE(DISABLE_FD_PASSING)
7ed101c0 789 AC_DEFINE(SETEUID_BREAKS_SETUID)
afd41342 790 AC_DEFINE(BROKEN_GETADDRINFO)
7ed101c0 791 AC_DEFINE(BROKEN_SETREUID)
792 AC_DEFINE(BROKEN_SETREGID)
bcebad47 793 AC_DEFINE(WITH_ABBREV_NO_TTY)
34f2baf0 794 AC_DEFINE(BROKEN_UPDWTMPX)
3466e002 795 AC_DEFINE(PASSWD_NEEDS_USERNAME)
aca75d94 796 AC_CHECK_FUNCS(getluid setluid)
533875af 797 MANTYPE=man
a3245b92 798 TEST_SHELL=ksh
509b1f88 799 ;;
ccbb983c 800*-*-unicosmk*)
3466e002 801 AC_DEFINE(NO_SSH_LASTLOG, 1,
802 [Define if you don't want to use lastlog in session.c])
c1ad5966 803 AC_DEFINE(SETEUID_BREAKS_SETUID)
804 AC_DEFINE(BROKEN_SETREUID)
805 AC_DEFINE(BROKEN_SETREGID)
ccbb983c 806 AC_DEFINE(USE_PIPES)
807 AC_DEFINE(DISABLE_FD_PASSING)
808 LDFLAGS="$LDFLAGS"
809 LIBS="$LIBS -lgen -lrsc -lshare -luex -lacm"
810 MANTYPE=cat
d262b7f2 811 ;;
7b9a8c6e 812*-*-unicosmp*)
c1ad5966 813 AC_DEFINE(SETEUID_BREAKS_SETUID)
814 AC_DEFINE(BROKEN_SETREUID)
815 AC_DEFINE(BROKEN_SETREGID)
7b9a8c6e 816 AC_DEFINE(WITH_ABBREV_NO_TTY)
817 AC_DEFINE(USE_PIPES)
818 AC_DEFINE(DISABLE_FD_PASSING)
819 LDFLAGS="$LDFLAGS"
c1ad5966 820 LIBS="$LIBS -lgen -lacid -ldb"
7b9a8c6e 821 MANTYPE=cat
822 ;;
ca5c7d6a 823*-*-unicos*)
c1ad5966 824 AC_DEFINE(SETEUID_BREAKS_SETUID)
825 AC_DEFINE(BROKEN_SETREUID)
826 AC_DEFINE(BROKEN_SETREGID)
ca5c7d6a 827 AC_DEFINE(USE_PIPES)
94d8258b 828 AC_DEFINE(DISABLE_FD_PASSING)
ef51930f 829 AC_DEFINE(NO_SSH_LASTLOG)
ccbb983c 830 LDFLAGS="$LDFLAGS -Wl,-Dmsglevel=334:fatal"
831 LIBS="$LIBS -lgen -lrsc -lshare -luex -lacm"
832 MANTYPE=cat
a704dd54 833 ;;
4d33e531 834*-dec-osf*)
99c8ddac 835 AC_MSG_CHECKING(for Digital Unix SIA)
836 no_osfsia=""
837 AC_ARG_WITH(osfsia,
838 [ --with-osfsia Enable Digital Unix SIA],
839 [
840 if test "x$withval" = "xno" ; then
841 AC_MSG_RESULT(disabled)
842 no_osfsia=1
843 fi
844 ],
845 )
846 if test -z "$no_osfsia" ; then
4d33e531 847 if test -f /etc/sia/matrix.conf; then
848 AC_MSG_RESULT(yes)
3466e002 849 AC_DEFINE(HAVE_OSF_SIA, 1,
850 [Define if you have Digital Unix Security
851 Integration Architecture])
852 AC_DEFINE(DISABLE_LOGIN, 1,
853 [Define if you don't want to use your
854 system's login() call])
58d0df4e 855 AC_DEFINE(DISABLE_FD_PASSING)
4d33e531 856 LIBS="$LIBS -lsecurity -ldb -lm -laud"
5b84789f 857 SIA_MSG="yes"
4d33e531 858 else
859 AC_MSG_RESULT(no)
3466e002 860 AC_DEFINE(LOCKED_PASSWD_SUBSTR, "Nologin",
861 [String used in /etc/passwd to denote locked account])
4d33e531 862 fi
863 fi
a6e67b60 864 AC_DEFINE(BROKEN_GETADDRINFO)
f4f2ff4f 865 AC_DEFINE(SETEUID_BREAKS_SETUID)
08da2d08 866 AC_DEFINE(BROKEN_SETREUID)
867 AC_DEFINE(BROKEN_SETREGID)
6ed8a3ae 868 AC_DEFINE(BROKEN_READV_COMPARISON, 1, [Can't do comparisons on readv])
4d33e531 869 ;;
41cb4569 870
9c54c067 871*-*-nto-qnx*)
41cb4569 872 AC_DEFINE(USE_PIPES)
873 AC_DEFINE(NO_X11_UNIX_SOCKETS)
3466e002 874 AC_DEFINE(MISSING_NFDBITS, 1, [Define on *nto-qnx systems])
875 AC_DEFINE(MISSING_HOWMANY, 1, [Define on *nto-qnx systems])
876 AC_DEFINE(MISSING_FD_MASK, 1, [Define on *nto-qnx systems])
9c54c067 877 AC_DEFINE(DISABLE_LASTLOG)
49c64dd6 878 AC_DEFINE(SSHD_ACQUIRES_CTTY)
86996ebe 879 AC_DEFINE(BROKEN_SHADOW_EXPIRE, 1, [QNX shadow support is broken])
0c7e8877 880 enable_etc_default_login=no # has incompatible /etc/default/login
575ee4c4 881 case "$host" in
882 *-*-nto-qnx6*)
883 AC_DEFINE(DISABLE_FD_PASSING)
884 ;;
885 esac
41cb4569 886 ;;
35fc74ed 887
888*-*-ultrix*)
3466e002 889 AC_DEFINE(BROKEN_GETGROUPS, 1, [getgroups(0,NULL) will return -1])
890 AC_DEFINE(BROKEN_MMAP, 1, [Ultrix mmap can't map files])
4b2cf3f1 891 AC_DEFINE(NEED_SETPGRP)
b5765e1d 892 AC_DEFINE(HAVE_SYS_SYSLOG_H, 1, [Force use of sys/syslog.h on Ultrix])
893 ;;
157b6700 894
895*-*-lynxos)
896 CFLAGS="$CFLAGS -D__NO_INCLUDE_WARN__"
3466e002 897 AC_DEFINE(MISSING_HOWMANY)
157b6700 898 AC_DEFINE(BROKEN_SETVBUF, 1, [LynxOS has broken setvbuf() implementation])
899 ;;
a7effaac 900esac
901
c5829391 902AC_MSG_CHECKING(compiler and flags for sanity)
479cece8 903AC_RUN_IFELSE(
904 [AC_LANG_SOURCE([
c5829391 905#include <stdio.h>
906int main(){exit(0);}
479cece8 907 ])],
c5829391 908 [ AC_MSG_RESULT(yes) ],
909 [
910 AC_MSG_RESULT(no)
911 AC_MSG_ERROR([*** compiler cannot create working executables, check config.log ***])
1a01a50c 912 ],
913 [ AC_MSG_WARN([cross compiling: not checking compiler sanity]) ]
c5829391 914)
915
b04a9f8c 916dnl Checks for header files.
a0391976 917# Checks for libraries.
98a7c37b 918AC_CHECK_FUNC(yp_match, , AC_CHECK_LIB(nsl, yp_match))
919AC_CHECK_FUNC(setsockopt, , AC_CHECK_LIB(socket, setsockopt))
2c523de9 920
446227d6 921dnl IRIX and Solaris 2.5.1 have dirname() in libgen
922AC_CHECK_FUNCS(dirname, [AC_CHECK_HEADERS(libgen.h)] ,[
923 AC_CHECK_LIB(gen, dirname,[
924 AC_CACHE_CHECK([for broken dirname],
925 ac_cv_have_broken_dirname, [
926 save_LIBS="$LIBS"
927 LIBS="$LIBS -lgen"
b0e7249f 928 AC_RUN_IFELSE(
929 [AC_LANG_SOURCE([[
446227d6 930#include <libgen.h>
931#include <string.h>
932
933int main(int argc, char **argv) {
934 char *s, buf[32];
935
936 strncpy(buf,"/etc", 32);
937 s = dirname(buf);
938 if (!s || strncmp(s, "/", 32) != 0) {
939 exit(1);
940 } else {
941 exit(0);
942 }
943}
b0e7249f 944 ]])],
945 [ ac_cv_have_broken_dirname="no" ],
946 [ ac_cv_have_broken_dirname="yes" ],
446227d6 947 [ ac_cv_have_broken_dirname="no" ],
446227d6 948 )
949 LIBS="$save_LIBS"
950 ])
951 if test "x$ac_cv_have_broken_dirname" = "xno" ; then
952 LIBS="$LIBS -lgen"
953 AC_DEFINE(HAVE_DIRNAME)
954 AC_CHECK_HEADERS(libgen.h)
955 fi
956 ])
957])
958
959AC_CHECK_FUNC(getspnam, ,
960 AC_CHECK_LIB(gen, getspnam, LIBS="$LIBS -lgen"))
3466e002 961AC_SEARCH_LIBS(basename, gen, AC_DEFINE(HAVE_BASENAME, 1,
962 [Define if you have the basename function.]))
446227d6 963
98a7c37b 964dnl zlib is required
965AC_ARG_WITH(zlib,
966 [ --with-zlib=PATH Use zlib in PATH],
6dd05556 967 [ if test "x$withval" = "xno" ; then
968 AC_MSG_ERROR([*** zlib is required ***])
969 elif test "x$withval" != "xyes"; then
98a7c37b 970 if test -d "$withval/lib"; then
971 if test -n "${need_dash_r}"; then
5a162955 972 LDFLAGS="-L${withval}/lib -R${withval}/lib ${LDFLAGS}"
98a7c37b 973 else
5a162955 974 LDFLAGS="-L${withval}/lib ${LDFLAGS}"
98a7c37b 975 fi
976 else
977 if test -n "${need_dash_r}"; then
5a162955 978 LDFLAGS="-L${withval} -R${withval} ${LDFLAGS}"
98a7c37b 979 else
5a162955 980 LDFLAGS="-L${withval} ${LDFLAGS}"
98a7c37b 981 fi
982 fi
983 if test -d "$withval/include"; then
5a162955 984 CPPFLAGS="-I${withval}/include ${CPPFLAGS}"
98a7c37b 985 else
5a162955 986 CPPFLAGS="-I${withval} ${CPPFLAGS}"
98a7c37b 987 fi
6dd05556 988 fi ]
98a7c37b 989)
990
8295689f 991AC_CHECK_HEADER([zlib.h], ,AC_MSG_ERROR([*** zlib.h missing - please install first or check config.log ***]))
0a15d73b 992AC_CHECK_LIB(z, deflate, ,
993 [
994 saved_CPPFLAGS="$CPPFLAGS"
995 saved_LDFLAGS="$LDFLAGS"
996 save_LIBS="$LIBS"
997 dnl Check default zlib install dir
998 if test -n "${need_dash_r}"; then
999 LDFLAGS="-L/usr/local/lib -R/usr/local/lib ${saved_LDFLAGS}"
1000 else
1001 LDFLAGS="-L/usr/local/lib ${saved_LDFLAGS}"
1002 fi
1003 CPPFLAGS="-I/usr/local/include ${saved_CPPFLAGS}"
1004 LIBS="$LIBS -lz"
1005 AC_TRY_LINK_FUNC(deflate, AC_DEFINE(HAVE_LIBZ),
1006 [
1007 AC_MSG_ERROR([*** zlib missing - please install first or check config.log ***])
1008 ]
1009 )
1010 ]
1011)
8068d564 1012
1013AC_ARG_WITH(zlib-version-check,
1014 [ --without-zlib-version-check Disable zlib version check],
1015 [ if test "x$withval" = "xno" ; then
1016 zlib_check_nonfatal=1
1017 fi
1018 ]
1019)
1020
5c7fc85d 1021AC_MSG_CHECKING(for possibly buggy zlib)
479cece8 1022AC_RUN_IFELSE([AC_LANG_SOURCE([[
5c7fc85d 1023#include <stdio.h>
4ad65809 1024#include <zlib.h>
1025int main()
1026{
5c7fc85d 1027 int a=0, b=0, c=0, d=0, n, v;
1028 n = sscanf(ZLIB_VERSION, "%d.%d.%d.%d", &a, &b, &c, &d);
1029 if (n != 3 && n != 4)
4ad65809 1030 exit(1);
5c7fc85d 1031 v = a*1000000 + b*10000 + c*100 + d;
1032 fprintf(stderr, "found zlib version %s (%d)\n", ZLIB_VERSION, v);
1033
1034 /* 1.1.4 is OK */
1035 if (a == 1 && b == 1 && c >= 4)
4ad65809 1036 exit(0);
5c7fc85d 1037
0072b59d 1038 /* 1.2.3 and up are OK */
1039 if (v >= 1020300)
5c7fc85d 1040 exit(0);
1041
4ad65809 1042 exit(2);
1043}
479cece8 1044 ]])],
5c7fc85d 1045 AC_MSG_RESULT(no),
1046 [ AC_MSG_RESULT(yes)
8068d564 1047 if test -z "$zlib_check_nonfatal" ; then
1048 AC_MSG_ERROR([*** zlib too old - check config.log ***
1049Your reported zlib version has known security problems. It's possible your
1050vendor has fixed these problems without changing the version number. If you
1051are sure this is the case, you can disable the check by running
1052"./configure --without-zlib-version-check".
6090bcfe 1053If you are in doubt, upgrade zlib to version 1.2.3 or greater.
5c7fc85d 1054See http://www.gzip.org/zlib/ for details.])
8068d564 1055 else
1056 AC_MSG_WARN([zlib version may have security problems])
1057 fi
1a01a50c 1058 ],
1059 [ AC_MSG_WARN([cross compiling: not checking zlib version]) ]
4ad65809 1060)
48e7916f 1061
2c523de9 1062dnl UnixWare 2.x
aff51935 1063AC_CHECK_FUNC(strcasecmp,
2c523de9 1064 [], [ AC_CHECK_LIB(resolv, strcasecmp, LIBS="$LIBS -lresolv") ]
1065)
23361281 1066AC_CHECK_FUNCS(utimes,
cda1ebcb 1067 [], [ AC_CHECK_LIB(c89, utimes, [AC_DEFINE(HAVE_UTIMES)
1068 LIBS="$LIBS -lc89"]) ]
2c523de9 1069)
4cca272e 1070
7c6d759d 1071dnl Checks for libutil functions
1072AC_CHECK_HEADERS(libutil.h)
3466e002 1073AC_SEARCH_LIBS(login, util bsd, [AC_DEFINE(HAVE_LOGIN, 1,
1074 [Define if your libraries define login()])])
b3ef88dc 1075AC_CHECK_FUNCS(fmt_scaled logout updwtmp logwtmp)
7c6d759d 1076
a738c3b0 1077AC_FUNC_STRFTIME
1078
84ceda19 1079# Check for ALTDIRFUNC glob() extension
1080AC_MSG_CHECKING(for GLOB_ALTDIRFUNC support)
1081AC_EGREP_CPP(FOUNDIT,
1082 [
1083 #include <glob.h>
1084 #ifdef GLOB_ALTDIRFUNC
1085 FOUNDIT
1086 #endif
aff51935 1087 ],
84ceda19 1088 [
3466e002 1089 AC_DEFINE(GLOB_HAS_ALTDIRFUNC, 1,
1090 [Define if your system glob() function has
1091 the GLOB_ALTDIRFUNC extension])
84ceda19 1092 AC_MSG_RESULT(yes)
1093 ],
1094 [
1095 AC_MSG_RESULT(no)
1096 ]
1097)
4cca272e 1098
40849fdb 1099# Check for g.gl_matchc glob() extension
1100AC_MSG_CHECKING(for gl_matchc field in glob_t)
d90b9f9a 1101AC_TRY_COMPILE(
13ff27b7 1102 [ #include <glob.h> ],
1103 [glob_t g; g.gl_matchc = 1;],
aff51935 1104 [
3466e002 1105 AC_DEFINE(GLOB_HAS_GL_MATCHC, 1,
1106 [Define if your system glob() function has
1107 gl_matchc options in glob_t])
aff51935 1108 AC_MSG_RESULT(yes)
1109 ],
1110 [
1111 AC_MSG_RESULT(no)
1112 ]
40849fdb 1113)
1114
78888bab 1115AC_CHECK_DECLS(GLOB_NOMATCH, , , [#include <glob.h>])
1116
edbe6722 1117AC_MSG_CHECKING([whether struct dirent allocates space for d_name])
1a01a50c 1118AC_RUN_IFELSE(
479cece8 1119 [AC_LANG_SOURCE([[
edbe6722 1120#include <sys/types.h>
1121#include <dirent.h>
aec4cb4f 1122int main(void){struct dirent d;exit(sizeof(d.d_name)<=sizeof(char));}
479cece8 1123 ]])],
aff51935 1124 [AC_MSG_RESULT(yes)],
edbe6722 1125 [
1126 AC_MSG_RESULT(no)
3466e002 1127 AC_DEFINE(BROKEN_ONE_BYTE_DIRENT_D_NAME, 1,
d08db6d1 1128 [Define if your struct dirent expects you to
3466e002 1129 allocate extra space for d_name])
1a01a50c 1130 ],
82f4e93d 1131 [
1a01a50c 1132 AC_MSG_WARN([cross compiling: assuming BROKEN_ONE_BYTE_DIRENT_D_NAME])
1133 AC_DEFINE(BROKEN_ONE_BYTE_DIRENT_D_NAME)
edbe6722 1134 ]
1135)
1136
419e26e7 1137AC_MSG_CHECKING([for /proc/pid/fd directory])
1138if test -d "/proc/$$/fd" ; then
3466e002 1139 AC_DEFINE(HAVE_PROC_PID, 1, [Define if you have /proc/$pid/fd])
419e26e7 1140 AC_MSG_RESULT(yes)
1141else
1142 AC_MSG_RESULT(no)
1143fi
1144
278588d8 1145# Check whether user wants S/Key support
aff51935 1146SKEY_MSG="no"
278588d8 1147AC_ARG_WITH(skey,
6ff3d0dc 1148 [ --with-skey[[=PATH]] Enable S/Key support (optionally in PATH)],
278588d8 1149 [
1150 if test "x$withval" != "xno" ; then
1151
1152 if test "x$withval" != "xyes" ; then
1153 CPPFLAGS="$CPPFLAGS -I${withval}/include"
1154 LDFLAGS="$LDFLAGS -L${withval}/lib"
1155 fi
1156
3466e002 1157 AC_DEFINE(SKEY, 1, [Define if you want S/Key support])
278588d8 1158 LIBS="-lskey $LIBS"
aff51935 1159 SKEY_MSG="yes"
82f4e93d 1160
ddceb1c8 1161 AC_MSG_CHECKING([for s/key support])
b0e7249f 1162 AC_LINK_IFELSE(
1163 [AC_LANG_SOURCE([[
ddceb1c8 1164#include <stdio.h>
1165#include <skey.h>
aec4cb4f 1166int main() { char *ff = skey_keyinfo(""); ff=""; exit(0); }
b0e7249f 1167 ]])],
ddceb1c8 1168 [AC_MSG_RESULT(yes)],
278588d8 1169 [
ddceb1c8 1170 AC_MSG_RESULT(no)
278588d8 1171 AC_MSG_ERROR([** Incomplete or missing s/key libraries.])
1172 ])
141fc639 1173 AC_MSG_CHECKING(if skeychallenge takes 4 arguments)
1174 AC_TRY_COMPILE(
1175 [#include <stdio.h>
1176 #include <skey.h>],
1177 [(void)skeychallenge(NULL,"name","",0);],
1178 [AC_MSG_RESULT(yes)
3466e002 1179 AC_DEFINE(SKEYCHALLENGE_4ARG, 1,
1180 [Define if your skeychallenge()
1181 function takes 4 arguments (NetBSD)])],
141fc639 1182 [AC_MSG_RESULT(no)]
1183 )
278588d8 1184 fi
1185 ]
1186)
1187
1188# Check whether user wants TCP wrappers support
98a7c37b 1189TCPW_MSG="no"
278588d8 1190AC_ARG_WITH(tcp-wrappers,
6ff3d0dc 1191 [ --with-tcp-wrappers[[=PATH]] Enable tcpwrappers support (optionally in PATH)],
278588d8 1192 [
1193 if test "x$withval" != "xno" ; then
1194 saved_LIBS="$LIBS"
98a7c37b 1195 saved_LDFLAGS="$LDFLAGS"
1196 saved_CPPFLAGS="$CPPFLAGS"
4b492aab 1197 if test -n "${withval}" && \
6cf0200f 1198 test "x${withval}" != "xyes"; then
98a7c37b 1199 if test -d "${withval}/lib"; then
1200 if test -n "${need_dash_r}"; then
5a162955 1201 LDFLAGS="-L${withval}/lib -R${withval}/lib ${LDFLAGS}"
98a7c37b 1202 else
5a162955 1203 LDFLAGS="-L${withval}/lib ${LDFLAGS}"
98a7c37b 1204 fi
1205 else
1206 if test -n "${need_dash_r}"; then
5a162955 1207 LDFLAGS="-L${withval} -R${withval} ${LDFLAGS}"
98a7c37b 1208 else
5a162955 1209 LDFLAGS="-L${withval} ${LDFLAGS}"
98a7c37b 1210 fi
1211 fi
1212 if test -d "${withval}/include"; then
5a162955 1213 CPPFLAGS="-I${withval}/include ${CPPFLAGS}"
98a7c37b 1214 else
5a162955 1215 CPPFLAGS="-I${withval} ${CPPFLAGS}"
98a7c37b 1216 fi
98a7c37b 1217 fi
e54defb4 1218 LIBS="-lwrap $LIBS"
278588d8 1219 AC_MSG_CHECKING(for libwrap)
1220 AC_TRY_LINK(
1221 [
77f09220 1222#include <sys/types.h>
1223#include <sys/socket.h>
1224#include <netinet/in.h>
278588d8 1225#include <tcpd.h>
1226 int deny_severity = 0, allow_severity = 0;
1227 ],
1228 [hosts_access(0);],
1229 [
1230 AC_MSG_RESULT(yes)
3466e002 1231 AC_DEFINE(LIBWRAP, 1,
1232 [Define if you want
1233 TCP Wrappers support])
e54defb4 1234 SSHDLIBS="$SSHDLIBS -lwrap"
98a7c37b 1235 TCPW_MSG="yes"
278588d8 1236 ],
1237 [
1238 AC_MSG_ERROR([*** libwrap missing])
1239 ]
1240 )
ddceb1c8 1241 LIBS="$saved_LIBS"
278588d8 1242 fi
1243 ]
1244)
1245
59031773 1246# Check whether user wants libedit support
1247LIBEDIT_MSG="no"
1248AC_ARG_WITH(libedit,
6ff3d0dc 1249 [ --with-libedit[[=PATH]] Enable libedit support for sftp],
59031773 1250 [ if test "x$withval" != "xno" ; then
737edf04 1251 if test "x$withval" != "xyes"; then
bb116c8e 1252 CPPFLAGS="$CPPFLAGS -I${withval}/include"
1253 if test -n "${need_dash_r}"; then
1254 LDFLAGS="-L${withval}/lib -R${withval}/lib ${LDFLAGS}"
1255 else
1256 LDFLAGS="-L${withval}/lib ${LDFLAGS}"
1257 fi
737edf04 1258 fi
59031773 1259 AC_CHECK_LIB(edit, el_init,
3466e002 1260 [ AC_DEFINE(USE_LIBEDIT, 1, [Use libedit for sftp])
59031773 1261 LIBEDIT="-ledit -lcurses"
1262 LIBEDIT_MSG="yes"
1263 AC_SUBST(LIBEDIT)
1264 ],
737edf04 1265 [ AC_MSG_ERROR(libedit not found) ],
1266 [ -lcurses ]
59031773 1267 )
f47ddccb 1268 AC_MSG_CHECKING(if libedit version is compatible)
d92622f9 1269 AC_COMPILE_IFELSE(
1270 [AC_LANG_SOURCE([[
1271#include <histedit.h>
f47ddccb 1272int main(void)
1273{
1274 int i = H_SETSIZE;
1275 el_init("", NULL, NULL, NULL);
1276 exit(0);
1277}
d92622f9 1278 ]])],
f47ddccb 1279 [ AC_MSG_RESULT(yes) ],
1280 [ AC_MSG_RESULT(no)
1281 AC_MSG_ERROR(libedit version is not compatible) ]
1282 )
59031773 1283 fi ]
1284)
1285
7b578f7d 1286AUDIT_MODULE=none
1287AC_ARG_WITH(audit,
1288 [ --with-audit=module Enable EXPERIMENTAL audit support (modules=debug,bsm)],
1289 [
1290 AC_MSG_CHECKING(for supported audit module)
1291 case "$withval" in
1292 bsm)
1293 AC_MSG_RESULT(bsm)
1294 AUDIT_MODULE=bsm
1295 dnl Checks for headers, libs and functions
1296 AC_CHECK_HEADERS(bsm/audit.h, [],
a01f637d 1297 [AC_MSG_ERROR(BSM enabled and bsm/audit.h not found)],
1298 [
1299#ifdef HAVE_TIME_H
1300# include <time.h>
1301#endif
1302 ]
1303)
7b578f7d 1304 AC_CHECK_LIB(bsm, getaudit, [],
1305 [AC_MSG_ERROR(BSM enabled and required library not found)])
1306 AC_CHECK_FUNCS(getaudit, [],
1307 [AC_MSG_ERROR(BSM enabled and required function not found)])
1308 # These are optional
a74e9b64 1309 AC_CHECK_FUNCS(getaudit_addr aug_get_machine)
3466e002 1310 AC_DEFINE(USE_BSM_AUDIT, 1, [Use BSM audit module])
7b578f7d 1311 ;;
1312 debug)
1313 AUDIT_MODULE=debug
1314 AC_MSG_RESULT(debug)
3466e002 1315 AC_DEFINE(SSH_AUDIT_EVENTS, 1, Use audit debugging module)
7b578f7d 1316 ;;
a2b3321d 1317 no)
d92622f9 1318 AC_MSG_RESULT(no)
a2b3321d 1319 ;;
7b578f7d 1320 *)
1321 AC_MSG_ERROR([Unknown audit module $withval])
1322 ;;
1323 esac ]
1324)
1325
19160674 1326dnl Checks for library functions. Please keep in alphabetical order
b04a9f8c 1327AC_CHECK_FUNCS( \
1328 arc4random \
185adaf8 1329 arc4random_buf \
1330 arc4random_uniform \
9a406e1e 1331 asprintf \
b04a9f8c 1332 b64_ntop \
1333 __b64_ntop \
1334 b64_pton \
1335 __b64_pton \
1336 bcopy \
1337 bindresvport_sa \
1338 clock \
1339 closefrom \
1340 dirfd \
b04a9f8c 1341 fchmod \
1342 fchown \
1343 freeaddrinfo \
22f5e872 1344 fstatvfs \
b04a9f8c 1345 futimes \
1346 getaddrinfo \
1347 getcwd \
1348 getgrouplist \
1349 getnameinfo \
1350 getopt \
1351 getpeereid \
1961d660 1352 getpeerucred \
b04a9f8c 1353 _getpty \
1354 getrlimit \
1355 getttyent \
1356 glob \
2dec25c9 1357 group_from_gid \
b04a9f8c 1358 inet_aton \
1359 inet_ntoa \
1360 inet_ntop \
1361 innetgr \
1362 login_getcapbool \
1363 md5_crypt \
1364 memmove \
1365 mkdtemp \
1366 mmap \
1367 ngetaddrinfo \
1368 nsleep \
1369 ogetaddrinfo \
1370 openlog_r \
1371 openpty \
6d39a5c4 1372 poll \
b04a9f8c 1373 prctl \
1374 pstat \
1375 readpassphrase \
1376 realpath \
1377 recvmsg \
1378 rresvport_af \
1379 sendmsg \
1380 setdtablesize \
1381 setegid \
1382 setenv \
1383 seteuid \
2dec25c9 1384 setgroupent \
b04a9f8c 1385 setgroups \
1386 setlogin \
2dec25c9 1387 setpassent\
b04a9f8c 1388 setpcred \
1389 setproctitle \
1390 setregid \
1391 setreuid \
1392 setrlimit \
1393 setsid \
1394 setvbuf \
1395 sigaction \
1396 sigvec \
1397 snprintf \
1398 socketpair \
4538e135 1399 statfs \
1400 statvfs \
b04a9f8c 1401 strdup \
1402 strerror \
1403 strlcat \
1404 strlcpy \
1405 strmode \
1406 strnvis \
1407 strtonum \
1e29a0c8 1408 strtoll \
b04a9f8c 1409 strtoul \
1aac2117 1410 swap32 \
b04a9f8c 1411 sysconf \
1412 tcgetpgrp \
1413 truncate \
1414 unsetenv \
1415 updwtmpx \
2dec25c9 1416 user_from_uid \
9a406e1e 1417 vasprintf \
b04a9f8c 1418 vhangup \
1419 vsnprintf \
1420 waitpid \
19160674 1421)
98a7c37b 1422
1a086f97 1423# IRIX has a const char return value for gai_strerror()
1424AC_CHECK_FUNCS(gai_strerror,[
1425 AC_DEFINE(HAVE_GAI_STRERROR)
1426 AC_TRY_COMPILE([
1427#include <sys/types.h>
1428#include <sys/socket.h>
1429#include <netdb.h>
1430
1431const char *gai_strerror(int);],[
1432char *str;
1433
1434str = gai_strerror(0);],[
1435 AC_DEFINE(HAVE_CONST_GAI_STRERROR_PROTO, 1,
1436 [Define if gai_strerror() returns const char *])])])
1437
3466e002 1438AC_SEARCH_LIBS(nanosleep, rt posix4, AC_DEFINE(HAVE_NANOSLEEP, 1,
1439 [Some systems put nanosleep outside of libc]))
92b1decf 1440
309709db 1441dnl Make sure prototypes are defined for these before using them.
309709db 1442AC_CHECK_DECL(getrusage, [AC_CHECK_FUNCS(getrusage)])
0957c2cf 1443AC_CHECK_DECL(strsep,
1444 [AC_CHECK_FUNCS(strsep)],
1445 [],
1446 [
1447#ifdef HAVE_STRING_H
1448# include <string.h>
1449#endif
1450 ])
08412d26 1451
3490699c 1452dnl tcsendbreak might be a macro
1453AC_CHECK_DECL(tcsendbreak,
1454 [AC_DEFINE(HAVE_TCSENDBREAK)],
aff51935 1455 [AC_CHECK_FUNCS(tcsendbreak)],
3490699c 1456 [#include <termios.h>]
1457)
1458
41e0e158 1459AC_CHECK_DECLS(h_errno, , ,[#include <netdb.h>])
1460
71f4c727 1461AC_CHECK_DECLS(SHUT_RD, , ,
1462 [
1463#include <sys/types.h>
1464#include <sys/socket.h>
1465 ])
956d6743 1466
1467AC_CHECK_DECLS(O_NONBLOCK, , ,
1468 [
1469#include <sys/types.h>
1470#ifdef HAVE_SYS_STAT_H
1471# include <sys/stat.h>
1472#endif
1473#ifdef HAVE_FCNTL_H
1474# include <fcntl.h>
1475#endif
1476 ])
1477
752994dd 1478AC_CHECK_DECLS(writev, , , [
1479#include <sys/types.h>
1480#include <sys/uio.h>
1481#include <unistd.h>
1482 ])
1483
0bf6279d 1484AC_CHECK_DECLS(MAXSYMLINKS, , , [
1485#include <sys/param.h>
1486 ])
1487
b41ece30 1488AC_CHECK_DECLS(offsetof, , , [
1489#include <stddef.h>
1490 ])
1491
3f176010 1492AC_CHECK_FUNCS(setresuid, [
1493 dnl Some platorms have setresuid that isn't implemented, test for this
1494 AC_MSG_CHECKING(if setresuid seems to work)
479cece8 1495 AC_RUN_IFELSE(
1496 [AC_LANG_SOURCE([[
9a3fe0e2 1497#include <stdlib.h>
1498#include <errno.h>
1499int main(){errno=0; setresuid(0,0,0); if (errno==ENOSYS) exit(1); else exit(0);}
479cece8 1500 ]])],
3f176010 1501 [AC_MSG_RESULT(yes)],
3466e002 1502 [AC_DEFINE(BROKEN_SETRESUID, 1,
1503 [Define if your setresuid() is broken])
1a01a50c 1504 AC_MSG_RESULT(not implemented)],
1505 [AC_MSG_WARN([cross compiling: not checking setresuid])]
3f176010 1506 )
1507])
9a3fe0e2 1508
3f176010 1509AC_CHECK_FUNCS(setresgid, [
1510 dnl Some platorms have setresgid that isn't implemented, test for this
1511 AC_MSG_CHECKING(if setresgid seems to work)
479cece8 1512 AC_RUN_IFELSE(
1513 [AC_LANG_SOURCE([[
9a3fe0e2 1514#include <stdlib.h>
1515#include <errno.h>
1516int main(){errno=0; setresgid(0,0,0); if (errno==ENOSYS) exit(1); else exit(0);}
479cece8 1517 ]])],
3f176010 1518 [AC_MSG_RESULT(yes)],
3466e002 1519 [AC_DEFINE(BROKEN_SETRESGID, 1,
1520 [Define if your setresgid() is broken])
1a01a50c 1521 AC_MSG_RESULT(not implemented)],
1522 [AC_MSG_WARN([cross compiling: not checking setresuid])]
3f176010 1523 )
1524])
9a3fe0e2 1525
2e73a022 1526dnl Checks for time functions
1d7b9b20 1527AC_CHECK_FUNCS(gettimeofday time)
2e73a022 1528dnl Checks for utmp functions
b03bd394 1529AC_CHECK_FUNCS(endutent getutent getutid getutline pututline setutent)
1d7b9b20 1530AC_CHECK_FUNCS(utmpname)
2e73a022 1531dnl Checks for utmpx functions
b03bd394 1532AC_CHECK_FUNCS(endutxent getutxent getutxid getutxline pututxline )
1d7b9b20 1533AC_CHECK_FUNCS(setutxent utmpxname)
295dd642 1534dnl Checks for lastlog functions
1535AC_CHECK_FUNCS(getlastlogxbyname)
76cd7316 1536
aff51935 1537AC_CHECK_FUNC(daemon,
3466e002 1538 [AC_DEFINE(HAVE_DAEMON, 1, [Define if your libraries define daemon()])],
1539 [AC_CHECK_LIB(bsd, daemon,
1540 [LIBS="$LIBS -lbsd"; AC_DEFINE(HAVE_DAEMON)])]
beb43d31 1541)
1542
aff51935 1543AC_CHECK_FUNC(getpagesize,
3466e002 1544 [AC_DEFINE(HAVE_GETPAGESIZE, 1,
1545 [Define if your libraries define getpagesize()])],
1546 [AC_CHECK_LIB(ucb, getpagesize,
1547 [LIBS="$LIBS -lucb"; AC_DEFINE(HAVE_GETPAGESIZE)])]
aa6bd60a 1548)
1549
2647ae26 1550# Check for broken snprintf
1551if test "x$ac_cv_func_snprintf" = "xyes" ; then
1552 AC_MSG_CHECKING([whether snprintf correctly terminates long strings])
1a01a50c 1553 AC_RUN_IFELSE(
479cece8 1554 [AC_LANG_SOURCE([[
2647ae26 1555#include <stdio.h>
aec4cb4f 1556int main(void){char b[5];snprintf(b,5,"123456789");exit(b[4]!='\0');}
479cece8 1557 ]])],
aff51935 1558 [AC_MSG_RESULT(yes)],
2647ae26 1559 [
1560 AC_MSG_RESULT(no)
3466e002 1561 AC_DEFINE(BROKEN_SNPRINTF, 1,
1562 [Define if your snprintf is busted])
2647ae26 1563 AC_MSG_WARN([****** Your snprintf() function is broken, complain to your vendor])
1a01a50c 1564 ],
1565 [ AC_MSG_WARN([cross compiling: Assuming working snprintf()]) ]
2647ae26 1566 )
1567fi
1568
9a406e1e 1569# If we don't have a working asprintf, then we strongly depend on vsnprintf
1570# returning the right thing on overflow: the number of characters it tried to
1571# create (as per SUSv3)
1572if test "x$ac_cv_func_asprintf" != "xyes" && \
1573 test "x$ac_cv_func_vsnprintf" = "xyes" ; then
1574 AC_MSG_CHECKING([whether vsnprintf returns correct values on overflow])
1575 AC_RUN_IFELSE(
1576 [AC_LANG_SOURCE([[
1577#include <sys/types.h>
1578#include <stdio.h>
1579#include <stdarg.h>
1580
1581int x_snprintf(char *str,size_t count,const char *fmt,...)
1582{
1583 size_t ret; va_list ap;
1584 va_start(ap, fmt); ret = vsnprintf(str, count, fmt, ap); va_end(ap);
1585 return ret;
1586}
1587int main(void)
1588{
1589 char x[1];
1590 exit(x_snprintf(x, 1, "%s %d", "hello", 12345) == 11 ? 0 : 1);
1591} ]])],
1592 [AC_MSG_RESULT(yes)],
1593 [
1594 AC_MSG_RESULT(no)
1595 AC_DEFINE(BROKEN_SNPRINTF, 1,
1596 [Define if your snprintf is busted])
1597 AC_MSG_WARN([****** Your vsnprintf() function is broken, complain to your vendor])
1598 ],
1599 [ AC_MSG_WARN([cross compiling: Assuming working vsnprintf()]) ]
1600 )
1601fi
1602
31b0732a 1603# On systems where [v]snprintf is broken, but is declared in stdio,
1604# check that the fmt argument is const char * or just char *.
1605# This is only useful for when BROKEN_SNPRINTF
1606AC_MSG_CHECKING([whether snprintf can declare const char *fmt])
1607AC_COMPILE_IFELSE([AC_LANG_SOURCE([[#include <stdio.h>
1608 int snprintf(char *a, size_t b, const char *c, ...) { return 0; }
1609 int main(void) { snprintf(0, 0, 0); }
1610 ]])],
1611 [AC_MSG_RESULT(yes)
1612 AC_DEFINE(SNPRINTF_CONST, [const],
1613 [Define as const if snprintf() can declare const char *fmt])],
1614 [AC_MSG_RESULT(no)
1615 AC_DEFINE(SNPRINTF_CONST, [/* not const */])])
1616
2f6f9cff 1617# Check for missing getpeereid (or equiv) support
1618NO_PEERCHECK=""
1961d660 1619if test "x$ac_cv_func_getpeereid" != "xyes" -a "x$ac_cv_func_getpeerucred" != "xyes"; then
2f6f9cff 1620 AC_MSG_CHECKING([whether system supports SO_PEERCRED getsockopt])
1621 AC_TRY_COMPILE(
1622 [#include <sys/types.h>
1623 #include <sys/socket.h>],
1624 [int i = SO_PEERCRED;],
62eb7db4 1625 [ AC_MSG_RESULT(yes)
3466e002 1626 AC_DEFINE(HAVE_SO_PEERCRED, 1, [Have PEERCRED socket option])
62eb7db4 1627 ],
2f6f9cff 1628 [AC_MSG_RESULT(no)
1629 NO_PEERCHECK=1]
1630 )
1631fi
1632
70e7d0b0 1633dnl see whether mkstemp() requires XXXXXX
1634if test "x$ac_cv_func_mkdtemp" = "xyes" ; then
1635AC_MSG_CHECKING([for (overly) strict mkstemp])
b0e7249f 1636AC_RUN_IFELSE(
1637 [AC_LANG_SOURCE([[
70e7d0b0 1638#include <stdlib.h>
1639main() { char template[]="conftest.mkstemp-test";
1640if (mkstemp(template) == -1)
1641 exit(1);
1642unlink(template); exit(0);
1643}
b0e7249f 1644 ]])],
70e7d0b0 1645 [
1646 AC_MSG_RESULT(no)
1647 ],
aff51935 1648 [
70e7d0b0 1649 AC_MSG_RESULT(yes)
3466e002 1650 AC_DEFINE(HAVE_STRICT_MKSTEMP, 1, [Silly mkstemp()])
70e7d0b0 1651 ],
1652 [
1653 AC_MSG_RESULT(yes)
1654 AC_DEFINE(HAVE_STRICT_MKSTEMP)
aff51935 1655 ]
70e7d0b0 1656)
1657fi
1658
eacb954e 1659dnl make sure that openpty does not reacquire controlling terminal
1660if test ! -z "$check_for_openpty_ctty_bug"; then
1661 AC_MSG_CHECKING(if openpty correctly handles controlling tty)
b0e7249f 1662 AC_RUN_IFELSE(
1663 [AC_LANG_SOURCE([[
eacb954e 1664#include <stdio.h>
1665#include <sys/fcntl.h>
1666#include <sys/types.h>
1667#include <sys/wait.h>
1668
1669int
1670main()
1671{
1672 pid_t pid;
1673 int fd, ptyfd, ttyfd, status;
1674
1675 pid = fork();
1676 if (pid < 0) { /* failed */
1677 exit(1);
1678 } else if (pid > 0) { /* parent */
1679 waitpid(pid, &status, 0);
aff51935 1680 if (WIFEXITED(status))
eacb954e 1681 exit(WEXITSTATUS(status));
1682 else
1683 exit(2);
1684 } else { /* child */
1685 close(0); close(1); close(2);
1686 setsid();
1687 openpty(&ptyfd, &ttyfd, NULL, NULL, NULL);
1688 fd = open("/dev/tty", O_RDWR | O_NOCTTY);
1689 if (fd >= 0)
1690 exit(3); /* Acquired ctty: broken */
1691 else
1692 exit(0); /* Did not acquire ctty: OK */
1693 }
1694}
b0e7249f 1695 ]])],
eacb954e 1696 [
1697 AC_MSG_RESULT(yes)
1698 ],
1699 [
1700 AC_MSG_RESULT(no)
1701 AC_DEFINE(SSHD_ACQUIRES_CTTY)
b0e7249f 1702 ],
1703 [
1704 AC_MSG_RESULT(cross-compiling, assuming yes)
eacb954e 1705 ]
1706 )
1707fi
1708
4b492aab 1709if test "x$ac_cv_func_getaddrinfo" = "xyes" && \
1710 test "x$check_for_hpux_broken_getaddrinfo" = "x1"; then
2fe51906 1711 AC_MSG_CHECKING(if getaddrinfo seems to work)
b0e7249f 1712 AC_RUN_IFELSE(
1713 [AC_LANG_SOURCE([[
2fe51906 1714#include <stdio.h>
1715#include <sys/socket.h>
1716#include <netdb.h>
1717#include <errno.h>
1718#include <netinet/in.h>
1719
1720#define TEST_PORT "2222"
1721
1722int
1723main(void)
1724{
1725 int err, sock;
1726 struct addrinfo *gai_ai, *ai, hints;
1727 char ntop[NI_MAXHOST], strport[NI_MAXSERV], *name = NULL;
1728
1729 memset(&hints, 0, sizeof(hints));
1730 hints.ai_family = PF_UNSPEC;
1731 hints.ai_socktype = SOCK_STREAM;
1732 hints.ai_flags = AI_PASSIVE;
1733
1734 err = getaddrinfo(name, TEST_PORT, &hints, &gai_ai);
1735 if (err != 0) {
1736 fprintf(stderr, "getaddrinfo failed (%s)", gai_strerror(err));
1737 exit(1);
1738 }
1739
1740 for (ai = gai_ai; ai != NULL; ai = ai->ai_next) {
1741 if (ai->ai_family != AF_INET6)
1742 continue;
1743
1744 err = getnameinfo(ai->ai_addr, ai->ai_addrlen, ntop,
1745 sizeof(ntop), strport, sizeof(strport),
1746 NI_NUMERICHOST|NI_NUMERICSERV);
1747
1748 if (err != 0) {
1749 if (err == EAI_SYSTEM)
1750 perror("getnameinfo EAI_SYSTEM");
1751 else
1752 fprintf(stderr, "getnameinfo failed: %s\n",
1753 gai_strerror(err));
1754 exit(2);
1755 }
1756
1757 sock = socket(ai->ai_family, ai->ai_socktype, ai->ai_protocol);
1758 if (sock < 0)
1759 perror("socket");
1760 if (bind(sock, ai->ai_addr, ai->ai_addrlen) < 0) {
1761 if (errno == EBADF)
1762 exit(3);
1763 }
1764 }
1765 exit(0);
1766}
b0e7249f 1767 ]])],
2fe51906 1768 [
1769 AC_MSG_RESULT(yes)
1770 ],
1771 [
1772 AC_MSG_RESULT(no)
1773 AC_DEFINE(BROKEN_GETADDRINFO)
b0e7249f 1774 ],
1775 [
1776 AC_MSG_RESULT(cross-compiling, assuming yes)
2fe51906 1777 ]
1778 )
1779fi
1780
4b492aab 1781if test "x$ac_cv_func_getaddrinfo" = "xyes" && \
1782 test "x$check_for_aix_broken_getaddrinfo" = "x1"; then
5ccf88cb 1783 AC_MSG_CHECKING(if getaddrinfo seems to work)
b0e7249f 1784 AC_RUN_IFELSE(
1785 [AC_LANG_SOURCE([[
5ccf88cb 1786#include <stdio.h>
1787#include <sys/socket.h>
1788#include <netdb.h>
1789#include <errno.h>
1790#include <netinet/in.h>
1791
1792#define TEST_PORT "2222"
1793
1794int
1795main(void)
1796{
1797 int err, sock;
1798 struct addrinfo *gai_ai, *ai, hints;
1799 char ntop[NI_MAXHOST], strport[NI_MAXSERV], *name = NULL;
1800
1801 memset(&hints, 0, sizeof(hints));
1802 hints.ai_family = PF_UNSPEC;
1803 hints.ai_socktype = SOCK_STREAM;
1804 hints.ai_flags = AI_PASSIVE;
1805
1806 err = getaddrinfo(name, TEST_PORT, &hints, &gai_ai);
1807 if (err != 0) {
1808 fprintf(stderr, "getaddrinfo failed (%s)", gai_strerror(err));
1809 exit(1);
1810 }
1811
1812 for (ai = gai_ai; ai != NULL; ai = ai->ai_next) {
1813 if (ai->ai_family != AF_INET && ai->ai_family != AF_INET6)
1814 continue;
1815
1816 err = getnameinfo(ai->ai_addr, ai->ai_addrlen, ntop,
1817 sizeof(ntop), strport, sizeof(strport),
1818 NI_NUMERICHOST|NI_NUMERICSERV);
1819
1820 if (ai->ai_family == AF_INET && err != 0) {
1821 perror("getnameinfo");
1822 exit(2);
1823 }
1824 }
1825 exit(0);
1826}
b0e7249f 1827 ]])],
5ccf88cb 1828 [
1829 AC_MSG_RESULT(yes)
3466e002 1830 AC_DEFINE(AIX_GETNAMEINFO_HACK, 1,
1831 [Define if you have a getaddrinfo that fails
1832 for the all-zeros IPv6 address])
5ccf88cb 1833 ],
1834 [
1835 AC_MSG_RESULT(no)
1836 AC_DEFINE(BROKEN_GETADDRINFO)
b0e7249f 1837 ],
ecd9ec09 1838 [
b0e7249f 1839 AC_MSG_RESULT(cross-compiling, assuming no)
5ccf88cb 1840 ]
1841 )
1842fi
1843
b29fd59f 1844if test "x$check_for_conflicting_getspnam" = "x1"; then
1845 AC_MSG_CHECKING(for conflicting getspnam in shadow.h)
1846 AC_COMPILE_IFELSE(
1847 [
1848#include <shadow.h>
1849int main(void) {exit(0);}
1850 ],
1851 [
1852 AC_MSG_RESULT(no)
1853 ],
1854 [
1855 AC_MSG_RESULT(yes)
1856 AC_DEFINE(GETSPNAM_CONFLICTING_DEFS, 1,
1857 [Conflicting defs for getspnam])
1858 ]
1859 )
1860fi
1861
7f8f5e00 1862AC_FUNC_GETPGRP
1863
5b991353 1864# Search for OpenSSL
1865saved_CPPFLAGS="$CPPFLAGS"
1866saved_LDFLAGS="$LDFLAGS"
a0391976 1867AC_ARG_WITH(ssl-dir,
1868 [ --with-ssl-dir=PATH Specify path to OpenSSL installation ],
1869 [
e9e4a1c7 1870 if test "x$withval" != "xno" ; then
99eb0f64 1871 case "$withval" in
1872 # Relative paths
1873 ./*|../*) withval="`pwd`/$withval"
1874 esac
5b991353 1875 if test -d "$withval/lib"; then
1876 if test -n "${need_dash_r}"; then
1877 LDFLAGS="-L${withval}/lib -R${withval}/lib ${LDFLAGS}"
1878 else
1879 LDFLAGS="-L${withval}/lib ${LDFLAGS}"
d6f13fbb 1880 fi
1881 else
5b991353 1882 if test -n "${need_dash_r}"; then
1883 LDFLAGS="-L${withval} -R${withval} ${LDFLAGS}"
1884 else
1885 LDFLAGS="-L${withval} ${LDFLAGS}"
d6f13fbb 1886 fi
1887 fi
5b991353 1888 if test -d "$withval/include"; then
1889 CPPFLAGS="-I${withval}/include ${CPPFLAGS}"
d6f13fbb 1890 else
5b991353 1891 CPPFLAGS="-I${withval} ${CPPFLAGS}"
58d100bf 1892 fi
a0391976 1893 fi
5b991353 1894 ]
1895)
5486a457 1896LIBS="-lcrypto $LIBS"
3466e002 1897AC_TRY_LINK_FUNC(RAND_add, AC_DEFINE(HAVE_OPENSSL, 1,
1898 [Define if your ssl headers are included
1899 with #include <openssl/header.h>]),
d45e3d76 1900 [
5b991353 1901 dnl Check default openssl install dir
1902 if test -n "${need_dash_r}"; then
1903 LDFLAGS="-L/usr/local/ssl/lib -R/usr/local/ssl/lib ${saved_LDFLAGS}"
d45e3d76 1904 else
5b991353 1905 LDFLAGS="-L/usr/local/ssl/lib ${saved_LDFLAGS}"
d45e3d76 1906 fi
5b991353 1907 CPPFLAGS="-I/usr/local/ssl/include ${saved_CPPFLAGS}"
8295689f 1908 AC_CHECK_HEADER([openssl/opensslv.h], ,
1909 AC_MSG_ERROR([*** OpenSSL headers missing - please install first or check config.log ***]))
5b991353 1910 AC_TRY_LINK_FUNC(RAND_add, AC_DEFINE(HAVE_OPENSSL),
1911 [
1912 AC_MSG_ERROR([*** Can't find recent OpenSSL libcrypto (see config.log for details) ***])
1913 ]
1914 )
1915 ]
1916)
1917
cd018561 1918# Determine OpenSSL header version
1919AC_MSG_CHECKING([OpenSSL header version])
1a01a50c 1920AC_RUN_IFELSE(
479cece8 1921 [AC_LANG_SOURCE([[
cd018561 1922#include <stdio.h>
1923#include <string.h>
1924#include <openssl/opensslv.h>
1925#define DATA "conftest.sslincver"
1926int main(void) {
aff51935 1927 FILE *fd;
1928 int rc;
cd018561 1929
aff51935 1930 fd = fopen(DATA,"w");
1931 if(fd == NULL)
1932 exit(1);
cd018561 1933
1934 if ((rc = fprintf(fd ,"%x (%s)\n", OPENSSL_VERSION_NUMBER, OPENSSL_VERSION_TEXT)) <0)
1935 exit(1);
1936
1937 exit(0);
1938}
479cece8 1939 ]])],
cd018561 1940 [
1941 ssl_header_ver=`cat conftest.sslincver`
1942 AC_MSG_RESULT($ssl_header_ver)
1943 ],
1944 [
1945 AC_MSG_RESULT(not found)
1946 AC_MSG_ERROR(OpenSSL version header not found.)
1a01a50c 1947 ],
1948 [
1949 AC_MSG_WARN([cross compiling: not checking])
cd018561 1950 ]
1951)
1952
1953# Determine OpenSSL library version
1954AC_MSG_CHECKING([OpenSSL library version])
1a01a50c 1955AC_RUN_IFELSE(
479cece8 1956 [AC_LANG_SOURCE([[
cd018561 1957#include <stdio.h>
1958#include <string.h>
1959#include <openssl/opensslv.h>
1960#include <openssl/crypto.h>
1961#define DATA "conftest.ssllibver"
1962int main(void) {
aff51935 1963 FILE *fd;
1964 int rc;
cd018561 1965
aff51935 1966 fd = fopen(DATA,"w");
1967 if(fd == NULL)
1968 exit(1);
cd018561 1969
1970 if ((rc = fprintf(fd ,"%x (%s)\n", SSLeay(), SSLeay_version(SSLEAY_VERSION))) <0)
1971 exit(1);
1972
1973 exit(0);
1974}
479cece8 1975 ]])],
cd018561 1976 [
1977 ssl_library_ver=`cat conftest.ssllibver`
1978 AC_MSG_RESULT($ssl_library_ver)
1979 ],
1980 [
1981 AC_MSG_RESULT(not found)
1982 AC_MSG_ERROR(OpenSSL library not found.)
1a01a50c 1983 ],
1984 [
1985 AC_MSG_WARN([cross compiling: not checking])
cd018561 1986 ]
1987)
58d100bf 1988
1d42bcce 1989AC_ARG_WITH(openssl-header-check,
1990 [ --without-openssl-header-check Disable OpenSSL version consistency check],
1991 [ if test "x$withval" = "xno" ; then
1992 openssl_check_nonfatal=1
1993 fi
1994 ]
1995)
1996
9780116c 1997# Sanity check OpenSSL headers
1998AC_MSG_CHECKING([whether OpenSSL's headers match the library])
1a01a50c 1999AC_RUN_IFELSE(
479cece8 2000 [AC_LANG_SOURCE([[
9780116c 2001#include <string.h>
2002#include <openssl/opensslv.h>
aec4cb4f 2003int main(void) { exit(SSLeay() == OPENSSL_VERSION_NUMBER ? 0 : 1); }
479cece8 2004 ]])],
9780116c 2005 [
2006 AC_MSG_RESULT(yes)
2007 ],
2008 [
2009 AC_MSG_RESULT(no)
1d42bcce 2010 if test "x$openssl_check_nonfatal" = "x"; then
2011 AC_MSG_ERROR([Your OpenSSL headers do not match your
2012library. Check config.log for details.
2013If you are sure your installation is consistent, you can disable the check
2014by running "./configure --without-openssl-header-check".
2015Also see contrib/findssl.sh for help identifying header/library mismatches.
2016])
2017 else
2018 AC_MSG_WARN([Your OpenSSL headers do not match your
2019library. Check config.log for details.
e15ba28b 2020Also see contrib/findssl.sh for help identifying header/library mismatches.])
1d42bcce 2021 fi
1a01a50c 2022 ],
2023 [
2024 AC_MSG_WARN([cross compiling: not checking])
9780116c 2025 ]
2026)
2027
282d6408 2028AC_MSG_CHECKING([if programs using OpenSSL functions will link])
2029AC_LINK_IFELSE(
2030 [AC_LANG_SOURCE([[
2031#include <openssl/evp.h>
2032int main(void) { SSLeay_add_all_algorithms(); }
2033 ]])],
2034 [
2035 AC_MSG_RESULT(yes)
2036 ],
2037 [
2038 AC_MSG_RESULT(no)
2039 saved_LIBS="$LIBS"
2040 LIBS="$LIBS -ldl"
2041 AC_MSG_CHECKING([if programs using OpenSSL need -ldl])
2042 AC_LINK_IFELSE(
2043 [AC_LANG_SOURCE([[
2044#include <openssl/evp.h>
2045int main(void) { SSLeay_add_all_algorithms(); }
2046 ]])],
2047 [
2048 AC_MSG_RESULT(yes)
2049 ],
2050 [
2051 AC_MSG_RESULT(no)
2052 LIBS="$saved_LIBS"
2053 ]
2054 )
2055 ]
2056)
2057
c7ad0d99 2058AC_ARG_WITH(ssl-engine,
2059 [ --with-ssl-engine Enable OpenSSL (hardware) ENGINE support ],
2060 [ if test "x$withval" != "xno" ; then
2061 AC_MSG_CHECKING(for OpenSSL ENGINE support)
2062 AC_TRY_COMPILE(
2063 [ #include <openssl/engine.h>],
2064 [
24b2647b 2065ENGINE_load_builtin_engines();ENGINE_register_all_complete();
c7ad0d99 2066 ],
2067 [ AC_MSG_RESULT(yes)
2068 AC_DEFINE(USE_OPENSSL_ENGINE, 1,
2069 [Enable OpenSSL engine support])
2070 ],
2071 [ AC_MSG_ERROR(OpenSSL ENGINE support not found)]
2072 )
2073 fi ]
2074)
2075
e5146707 2076# Check for OpenSSL without EVP_aes_{192,256}_cbc
2077AC_MSG_CHECKING([whether OpenSSL has crippled AES support])
3e05aa50 2078AC_LINK_IFELSE(
e5146707 2079 [AC_LANG_SOURCE([[
2080#include <string.h>
2081#include <openssl/evp.h>
300ea548 2082int main(void) { exit(EVP_aes_192_cbc() == NULL || EVP_aes_256_cbc() == NULL);}
e5146707 2083 ]])],
2084 [
2085 AC_MSG_RESULT(no)
2086 ],
2087 [
2088 AC_MSG_RESULT(yes)
2089 AC_DEFINE(OPENSSL_LOBOTOMISED_AES, 1,
2090 [libcrypto is missing AES 192 and 256 bit functions])
2091 ]
2092)
2093
14e380c6 2094AC_MSG_CHECKING([if EVP_DigestUpdate returns an int])
2095AC_LINK_IFELSE(
2096 [AC_LANG_SOURCE([[
2097#include <string.h>
2098#include <openssl/evp.h>
2099int main(void) { if(EVP_DigestUpdate(NULL, NULL,0)) exit(0); }
2100 ]])],
2101 [
2102 AC_MSG_RESULT(yes)
2103 ],
2104 [
2105 AC_MSG_RESULT(no)
2106 AC_DEFINE(OPENSSL_EVP_DIGESTUPDATE_VOID, 1,
2107 [Define if EVP_DigestUpdate returns void])
2108 ]
2109)
2110
5486a457 2111# Some systems want crypt() from libcrypt, *not* the version in OpenSSL,
2112# because the system crypt() is more featureful.
2113if test "x$check_for_libcrypt_before" = "x1"; then
2114 AC_CHECK_LIB(crypt, crypt)
2115fi
2116
aff51935 2117# Some Linux systems (Slackware) need crypt() from libcrypt, *not* the
8087c5ee 2118# version in OpenSSL.
05114c74 2119if test "x$check_for_libcrypt_later" = "x1"; then
20cad736 2120 AC_CHECK_LIB(crypt, crypt, LIBS="$LIBS -lcrypt")
717057b6 2121fi
2122
13ff27b7 2123# Search for SHA256 support in libc and/or OpenSSL
2124AC_CHECK_FUNCS(SHA256_Update EVP_sha256)
2125
a03acb8f 2126saved_LIBS="$LIBS"
2127AC_CHECK_LIB(iaf, ia_openinfo, [
2128 LIBS="$LIBS -liaf"
d837615a 2129 AC_CHECK_FUNCS(set_id, [SSHDLIBS="$SSHDLIBS -liaf"
2130 AC_DEFINE(HAVE_LIBIAF, 1,
2131 [Define if system has libiaf that supports set_id])
2132 ])
a03acb8f 2133])
2134LIBS="$saved_LIBS"
f1b0ecc3 2135
2136### Configure cryptographic random number support
2137
2138# Check wheter OpenSSL seeds itself
2139AC_MSG_CHECKING([whether OpenSSL's PRNG is internally seeded])
1a01a50c 2140AC_RUN_IFELSE(
479cece8 2141 [AC_LANG_SOURCE([[
f1b0ecc3 2142#include <string.h>
2143#include <openssl/rand.h>
aec4cb4f 2144int main(void) { exit(RAND_status() == 1 ? 0 : 1); }
479cece8 2145 ]])],
f1b0ecc3 2146 [
2147 OPENSSL_SEEDS_ITSELF=yes
2148 AC_MSG_RESULT(yes)
2149 ],
2150 [
2151 AC_MSG_RESULT(no)
2152 # Default to use of the rand helper if OpenSSL doesn't
2153 # seed itself
2154 USE_RAND_HELPER=yes
1a01a50c 2155 ],
2156 [
2157 AC_MSG_WARN([cross compiling: assuming yes])
2158 # This is safe, since all recent OpenSSL versions will
82f4e93d 2159 # complain at runtime if not seeded correctly.
1a01a50c 2160 OPENSSL_SEEDS_ITSELF=yes
f1b0ecc3 2161 ]
2162)
2163
a086f73b 2164# Check for PAM libs
2165PAM_MSG="no"
2166AC_ARG_WITH(pam,
2167 [ --with-pam Enable PAM support ],
2168 [
2169 if test "x$withval" != "xno" ; then
2170 if test "x$ac_cv_header_security_pam_appl_h" != "xyes" && \
2171 test "x$ac_cv_header_pam_pam_appl_h" != "xyes" ; then
2172 AC_MSG_ERROR([PAM headers not found])
2173 fi
2174
2175 saved_LIBS="$LIBS"
2176 AC_CHECK_LIB(dl, dlopen, , )
2177 AC_CHECK_LIB(pam, pam_set_item, , AC_MSG_ERROR([*** libpam missing]))
2178 AC_CHECK_FUNCS(pam_getenvlist)
2179 AC_CHECK_FUNCS(pam_putenv)
2180 LIBS="$saved_LIBS"
2181
2182 PAM_MSG="yes"
2183
e54defb4 2184 SSHDLIBS="$SSHDLIBS -lpam"
a086f73b 2185 AC_DEFINE(USE_PAM, 1,
2186 [Define if you want to enable PAM support])
282d6408 2187
a086f73b 2188 if test $ac_cv_lib_dl_dlopen = yes; then
282d6408 2189 case "$LIBS" in
2190 *-ldl*)
2191 # libdl already in LIBS
2192 ;;
2193 *)
e54defb4 2194 SSHDLIBS="$SSHDLIBS -ldl"
282d6408 2195 ;;
2196 esac
a086f73b 2197 fi
a086f73b 2198 fi
2199 ]
2200)
2201
2202# Check for older PAM
2203if test "x$PAM_MSG" = "xyes" ; then
2204 # Check PAM strerror arguments (old PAM)
2205 AC_MSG_CHECKING([whether pam_strerror takes only one argument])
2206 AC_TRY_COMPILE(
2207 [
2208#include <stdlib.h>
2209#if defined(HAVE_SECURITY_PAM_APPL_H)
2210#include <security/pam_appl.h>
2211#elif defined (HAVE_PAM_PAM_APPL_H)
2212#include <pam/pam_appl.h>
2213#endif
2214 ],
2215 [(void)pam_strerror((pam_handle_t *)NULL, -1);],
2216 [AC_MSG_RESULT(no)],
2217 [
2218 AC_DEFINE(HAVE_OLD_PAM, 1,
2219 [Define if you have an old version of PAM
2220 which takes only one argument to pam_strerror])
2221 AC_MSG_RESULT(yes)
2222 PAM_MSG="yes (old library)"
2223 ]
2224 )
2225fi
f1b0ecc3 2226
2227# Do we want to force the use of the rand helper?
2228AC_ARG_WITH(rand-helper,
2229 [ --with-rand-helper Use subprocess to gather strong randomness ],
2230 [
2231 if test "x$withval" = "xno" ; then
aff51935 2232 # Force use of OpenSSL's internal RNG, even if
f1b0ecc3 2233 # the previous test showed it to be unseeded.
2234 if test -z "$OPENSSL_SEEDS_ITSELF" ; then
2235 AC_MSG_WARN([*** Forcing use of OpenSSL's non-self-seeding PRNG])
2236 OPENSSL_SEEDS_ITSELF=yes
2237 USE_RAND_HELPER=""
2238 fi
2239 else
2240 USE_RAND_HELPER=yes
2241 fi
2242 ],
82f4e93d 2243)
f1b0ecc3 2244
2245# Which randomness source do we use?
4b492aab 2246if test ! -z "$OPENSSL_SEEDS_ITSELF" && test -z "$USE_RAND_HELPER" ; then
f1b0ecc3 2247 # OpenSSL only
3466e002 2248 AC_DEFINE(OPENSSL_PRNG_ONLY, 1,
2249 [Define if you want OpenSSL's internally seeded PRNG only])
f1b0ecc3 2250 RAND_MSG="OpenSSL internal ONLY"
2251 INSTALL_SSH_RAND_HELPER=""
70e2f2f3 2252elif test ! -z "$USE_RAND_HELPER" ; then
2253 # install rand helper
f1b0ecc3 2254 RAND_MSG="ssh-rand-helper"
2255 INSTALL_SSH_RAND_HELPER="yes"
2256fi
2257AC_SUBST(INSTALL_SSH_RAND_HELPER)
2258
2259### Configuration of ssh-rand-helper
2260
2261# PRNGD TCP socket
2262AC_ARG_WITH(prngd-port,
2263 [ --with-prngd-port=PORT read entropy from PRNGD/EGD TCP localhost:PORT],
2264 [
eb5d7ff6 2265 case "$withval" in
2266 no)
2267 withval=""
2268 ;;
2269 [[0-9]]*)
2270 ;;
2271 *)
2272 AC_MSG_ERROR(You must specify a numeric port number for --with-prngd-port)
2273 ;;
2274 esac
2275 if test ! -z "$withval" ; then
f1b0ecc3 2276 PRNGD_PORT="$withval"
3466e002 2277 AC_DEFINE_UNQUOTED(PRNGD_PORT, $PRNGD_PORT,
2278 [Port number of PRNGD/EGD random number socket])
f1b0ecc3 2279 fi
2280 ]
2281)
2282
2283# PRNGD Unix domain socket
2284AC_ARG_WITH(prngd-socket,
2285 [ --with-prngd-socket=FILE read entropy from PRNGD/EGD socket FILE (default=/var/run/egd-pool)],
2286 [
eb5d7ff6 2287 case "$withval" in
2288 yes)
f1b0ecc3 2289 withval="/var/run/egd-pool"
eb5d7ff6 2290 ;;
2291 no)
2292 withval=""
2293 ;;
2294 /*)
2295 ;;
2296 *)
2297 AC_MSG_ERROR(You must specify an absolute path to the entropy socket)
2298 ;;
2299 esac
2300
2301 if test ! -z "$withval" ; then
f1b0ecc3 2302 if test ! -z "$PRNGD_PORT" ; then
2303 AC_MSG_ERROR(You may not specify both a PRNGD/EGD port and socket)
2304 fi
906e811b 2305 if test ! -r "$withval" ; then
f1b0ecc3 2306 AC_MSG_WARN(Entropy socket is not readable)
2307 fi
2308 PRNGD_SOCKET="$withval"
3466e002 2309 AC_DEFINE_UNQUOTED(PRNGD_SOCKET, "$PRNGD_SOCKET",
2310 [Location of PRNGD/EGD random number socket])
f1b0ecc3 2311 fi
ddceb1c8 2312 ],
2313 [
2314 # Check for existing socket only if we don't have a random device already
2315 if test "$USE_RAND_HELPER" = yes ; then
2316 AC_MSG_CHECKING(for PRNGD/EGD socket)
2317 # Insert other locations here
2318 for sock in /var/run/egd-pool /dev/egd-pool /etc/entropy; do
2319 if test -r $sock && $TEST_MINUS_S_SH -c "test -S $sock -o -p $sock" ; then
2320 PRNGD_SOCKET="$sock"
2321 AC_DEFINE_UNQUOTED(PRNGD_SOCKET, "$PRNGD_SOCKET")
2322 break;
2323 fi
2324 done
2325 if test ! -z "$PRNGD_SOCKET" ; then
2326 AC_MSG_RESULT($PRNGD_SOCKET)
2327 else
2328 AC_MSG_RESULT(not found)
2329 fi
2330 fi
f1b0ecc3 2331 ]
2332)
2333
2334# Change default command timeout for hashing entropy source
2335entropy_timeout=200
2336AC_ARG_WITH(entropy-timeout,
2337 [ --with-entropy-timeout Specify entropy gathering command timeout (msec)],
2338 [
6cf0200f 2339 if test -n "$withval" && test "x$withval" != "xno" && \
2340 test "x${withval}" != "xyes"; then
f1b0ecc3 2341 entropy_timeout=$withval
2342 fi
82f4e93d 2343 ]
f1b0ecc3 2344)
3466e002 2345AC_DEFINE_UNQUOTED(ENTROPY_TIMEOUT_MSEC, $entropy_timeout,
2346 [Builtin PRNG command timeout])
f1b0ecc3 2347
fd3cbf67 2348SSH_PRIVSEP_USER=sshd
9a0fbcb3 2349AC_ARG_WITH(privsep-user,
5222e7ef 2350 [ --with-privsep-user=user Specify non-privileged user for privilege separation],
9a0fbcb3 2351 [
6cf0200f 2352 if test -n "$withval" && test "x$withval" != "xno" && \
2353 test "x${withval}" != "xyes"; then
fd3cbf67 2354 SSH_PRIVSEP_USER=$withval
9a0fbcb3 2355 fi
82f4e93d 2356 ]
9a0fbcb3 2357)
3466e002 2358AC_DEFINE_UNQUOTED(SSH_PRIVSEP_USER, "$SSH_PRIVSEP_USER",
2359 [non-privileged user for privilege separation])
fd3cbf67 2360AC_SUBST(SSH_PRIVSEP_USER)
9a0fbcb3 2361
81dadca3 2362# We do this little dance with the search path to insure
2363# that programs that we select for use by installed programs
2364# (which may be run by the super-user) come from trusted
2365# locations before they come from the user's private area.
2366# This should help avoid accidentally configuring some
2367# random version of a program in someone's personal bin.
2368
2369OPATH=$PATH
2370PATH=/bin:/usr/bin
f95c8ce8 2371test -h /bin 2> /dev/null && PATH=/usr/bin
81dadca3 2372test -d /sbin && PATH=$PATH:/sbin
2373test -d /usr/sbin && PATH=$PATH:/usr/sbin
2374PATH=$PATH:/etc:$OPATH
2375
aff51935 2376# These programs are used by the command hashing source to gather entropy
f1b0ecc3 2377OSSH_PATH_ENTROPY_PROG(PROG_LS, ls)
2378OSSH_PATH_ENTROPY_PROG(PROG_NETSTAT, netstat)
2379OSSH_PATH_ENTROPY_PROG(PROG_ARP, arp)
2380OSSH_PATH_ENTROPY_PROG(PROG_IFCONFIG, ifconfig)
2381OSSH_PATH_ENTROPY_PROG(PROG_JSTAT, jstat)
2382OSSH_PATH_ENTROPY_PROG(PROG_PS, ps)
2383OSSH_PATH_ENTROPY_PROG(PROG_SAR, sar)
2384OSSH_PATH_ENTROPY_PROG(PROG_W, w)
2385OSSH_PATH_ENTROPY_PROG(PROG_WHO, who)
2386OSSH_PATH_ENTROPY_PROG(PROG_LAST, last)
2387OSSH_PATH_ENTROPY_PROG(PROG_LASTLOG, lastlog)
2388OSSH_PATH_ENTROPY_PROG(PROG_DF, df)
2389OSSH_PATH_ENTROPY_PROG(PROG_VMSTAT, vmstat)
2390OSSH_PATH_ENTROPY_PROG(PROG_UPTIME, uptime)
2391OSSH_PATH_ENTROPY_PROG(PROG_IPCS, ipcs)
2392OSSH_PATH_ENTROPY_PROG(PROG_TAIL, tail)
81dadca3 2393# restore PATH
2394PATH=$OPATH
f1b0ecc3 2395
2396# Where does ssh-rand-helper get its randomness from?
2397INSTALL_SSH_PRNG_CMDS=""
2398if test ! -z "$INSTALL_SSH_RAND_HELPER" ; then
2399 if test ! -z "$PRNGD_PORT" ; then
2400 RAND_HELPER_MSG="TCP localhost:$PRNGD_PORT"
2401 elif test ! -z "$PRNGD_SOCKET" ; then
2402 RAND_HELPER_MSG="Unix domain socket \"$PRNGD_SOCKET\""
2403 else
2404 RAND_HELPER_MSG="Command hashing (timeout $entropy_timeout)"
2405 RAND_HELPER_CMDHASH=yes
2406 INSTALL_SSH_PRNG_CMDS="yes"
2407 fi
2408fi
2409AC_SUBST(INSTALL_SSH_PRNG_CMDS)
2410
2411
66d6c27e 2412# Cheap hack to ensure NEWS-OS libraries are arranged right.
2413if test ! -z "$SONY" ; then
2414 LIBS="$LIBS -liberty";
2415fi
2416
9a406e1e 2417# Check for long long datatypes
2418AC_CHECK_TYPES([long long, unsigned long long, long double])
2419
2420# Check datatype sizes
976f7e19 2421AC_CHECK_SIZEOF(char, 1)
2b942fe0 2422AC_CHECK_SIZEOF(short int, 2)
2423AC_CHECK_SIZEOF(int, 4)
2424AC_CHECK_SIZEOF(long int, 4)
2425AC_CHECK_SIZEOF(long long int, 8)
2426
52f1ccb2 2427# Sanity check long long for some platforms (AIX)
2428if test "x$ac_cv_sizeof_long_long_int" = "x4" ; then
2429 ac_cv_sizeof_long_long_int=0
2430fi
2431
90f15776 2432# compute LLONG_MIN and LLONG_MAX if we don't know them.
2433if test -z "$have_llong_max"; then
2434 AC_MSG_CHECKING([for max value of long long])
2435 AC_RUN_IFELSE(
2436 [AC_LANG_SOURCE([[
2437#include <stdio.h>
2438/* Why is this so damn hard? */
2439#ifdef __GNUC__
2440# undef __GNUC__
2441#endif
2442#define __USE_ISOC99
2443#include <limits.h>
2444#define DATA "conftest.llminmax"
055252ed 2445#define my_abs(a) ((a) < 0 ? ((a) * -1) : (a))
2446
2447/*
2448 * printf in libc on some platforms (eg old Tru64) does not understand %lld so
2449 * we do this the hard way.
2450 */
2451static int
2452fprint_ll(FILE *f, long long n)
2453{
2454 unsigned int i;
2455 int l[sizeof(long long) * 8];
2456
2457 if (n < 0)
2458 if (fprintf(f, "-") < 0)
2459 return -1;
2460 for (i = 0; n != 0; i++) {
2461 l[i] = my_abs(n % 10);
2462 n /= 10;
2463 }
2464 do {
2465 if (fprintf(f, "%d", l[--i]) < 0)
2466 return -1;
2467 } while (i != 0);
2468 if (fprintf(f, " ") < 0)
2469 return -1;
2470 return 0;
2471}
2472
90f15776 2473int main(void) {
2474 FILE *f;
2475 long long i, llmin, llmax = 0;
2476
2477 if((f = fopen(DATA,"w")) == NULL)
2478 exit(1);
2479
2480#if defined(LLONG_MIN) && defined(LLONG_MAX)
2481 fprintf(stderr, "Using system header for LLONG_MIN and LLONG_MAX\n");
2482 llmin = LLONG_MIN;
2483 llmax = LLONG_MAX;
2484#else
2485 fprintf(stderr, "Calculating LLONG_MIN and LLONG_MAX\n");
2486 /* This will work on one's complement and two's complement */
2487 for (i = 1; i > llmax; i <<= 1, i++)
2488 llmax = i;
2489 llmin = llmax + 1LL; /* wrap */
2490#endif
2491
2492 /* Sanity check */
2493 if (llmin + 1 < llmin || llmin - 1 < llmin || llmax + 1 > llmax
055252ed 2494 || llmax - 1 > llmax || llmin == llmax || llmin == 0
2495 || llmax == 0 || llmax < LONG_MAX || llmin > LONG_MIN) {
90f15776 2496 fprintf(f, "unknown unknown\n");
2497 exit(2);
2498 }
2499
055252ed 2500 if (fprint_ll(f, llmin) < 0)
90f15776 2501 exit(3);
055252ed 2502 if (fprint_ll(f, llmax) < 0)
2503 exit(4);
2504 if (fclose(f) < 0)
2505 exit(5);
90f15776 2506 exit(0);
2507}
2508 ]])],
2509 [
2510 llong_min=`$AWK '{print $1}' conftest.llminmax`
2511 llong_max=`$AWK '{print $2}' conftest.llminmax`
2512
90f15776 2513 AC_MSG_RESULT($llong_max)
2514 AC_DEFINE_UNQUOTED(LLONG_MAX, [${llong_max}LL],
2515 [max value of long long calculated by configure])
2516 AC_MSG_CHECKING([for min value of long long])
2517 AC_MSG_RESULT($llong_min)
2518 AC_DEFINE_UNQUOTED(LLONG_MIN, [${llong_min}LL],
2519 [min value of long long calculated by configure])
2520 ],
2521 [
2522 AC_MSG_RESULT(not found)
2523 ],
2524 [
2525 AC_MSG_WARN([cross compiling: not checking])
2526 ]
2527 )
2528fi
2529
2530
a0391976 2531# More checks for data types
14a9a859 2532AC_CACHE_CHECK([for u_int type], ac_cv_have_u_int, [
2533 AC_TRY_COMPILE(
aff51935 2534 [ #include <sys/types.h> ],
2535 [ u_int a; a = 1;],
14a9a859 2536 [ ac_cv_have_u_int="yes" ],
2537 [ ac_cv_have_u_int="no" ]
2538 )
2539])
2540if test "x$ac_cv_have_u_int" = "xyes" ; then
3466e002 2541 AC_DEFINE(HAVE_U_INT, 1, [define if you have u_int data type])
14a9a859 2542 have_u_int=1
2543fi
2544
58d100bf 2545AC_CACHE_CHECK([for intXX_t types], ac_cv_have_intxx_t, [
2546 AC_TRY_COMPILE(
aff51935 2547 [ #include <sys/types.h> ],
2548 [ int8_t a; int16_t b; int32_t c; a = b = c = 1;],
58d100bf 2549 [ ac_cv_have_intxx_t="yes" ],
2550 [ ac_cv_have_intxx_t="no" ]
2551 )
2552])
2553if test "x$ac_cv_have_intxx_t" = "xyes" ; then
3466e002 2554 AC_DEFINE(HAVE_INTXX_T, 1, [define if you have intxx_t data type])
58d100bf 2555 have_intxx_t=1
2556fi
41cb4569 2557
2558if (test -z "$have_intxx_t" && \
aff51935 2559 test "x$ac_cv_header_stdint_h" = "xyes")
41cb4569 2560then
2561 AC_MSG_CHECKING([for intXX_t types in stdint.h])
2562 AC_TRY_COMPILE(
aff51935 2563 [ #include <stdint.h> ],
2564 [ int8_t a; int16_t b; int32_t c; a = b = c = 1;],
41cb4569 2565 [
2566 AC_DEFINE(HAVE_INTXX_T)
2567 AC_MSG_RESULT(yes)
2568 ],
2569 [ AC_MSG_RESULT(no) ]
2570 )
2571fi
2572
bd590612 2573AC_CACHE_CHECK([for int64_t type], ac_cv_have_int64_t, [
2574 AC_TRY_COMPILE(
1cbbe6c8 2575 [
2576#include <sys/types.h>
2577#ifdef HAVE_STDINT_H
2578# include <stdint.h>
2579#endif
2580#include <sys/socket.h>
2581#ifdef HAVE_SYS_BITYPES_H
2582# include <sys/bitypes.h>
2583#endif
aff51935 2584 ],
2585 [ int64_t a; a = 1;],
bd590612 2586 [ ac_cv_have_int64_t="yes" ],
2587 [ ac_cv_have_int64_t="no" ]
2588 )
2589])
2590if test "x$ac_cv_have_int64_t" = "xyes" ; then
3466e002 2591 AC_DEFINE(HAVE_INT64_T, 1, [define if you have int64_t data type])
ddceb1c8 2592fi
2593
58d100bf 2594AC_CACHE_CHECK([for u_intXX_t types], ac_cv_have_u_intxx_t, [
2595 AC_TRY_COMPILE(
aff51935 2596 [ #include <sys/types.h> ],
2597 [ u_int8_t a; u_int16_t b; u_int32_t c; a = b = c = 1;],
58d100bf 2598 [ ac_cv_have_u_intxx_t="yes" ],
2599 [ ac_cv_have_u_intxx_t="no" ]
2600 )
2601])
2602if test "x$ac_cv_have_u_intxx_t" = "xyes" ; then
3466e002 2603 AC_DEFINE(HAVE_U_INTXX_T, 1, [define if you have u_intxx_t data type])
58d100bf 2604 have_u_intxx_t=1
2605fi
2b942fe0 2606
41cb4569 2607if test -z "$have_u_intxx_t" ; then
2608 AC_MSG_CHECKING([for u_intXX_t types in sys/socket.h])
2609 AC_TRY_COMPILE(
aff51935 2610 [ #include <sys/socket.h> ],
2611 [ u_int8_t a; u_int16_t b; u_int32_t c; a = b = c = 1;],
41cb4569 2612 [
2613 AC_DEFINE(HAVE_U_INTXX_T)
2614 AC_MSG_RESULT(yes)
2615 ],
2616 [ AC_MSG_RESULT(no) ]
2617 )
2618fi
2619
bd590612 2620AC_CACHE_CHECK([for u_int64_t types], ac_cv_have_u_int64_t, [
2621 AC_TRY_COMPILE(
aff51935 2622 [ #include <sys/types.h> ],
2623 [ u_int64_t a; a = 1;],
bd590612 2624 [ ac_cv_have_u_int64_t="yes" ],
2625 [ ac_cv_have_u_int64_t="no" ]
2626 )
2627])
2628if test "x$ac_cv_have_u_int64_t" = "xyes" ; then
3466e002 2629 AC_DEFINE(HAVE_U_INT64_T, 1, [define if you have u_int64_t data type])
bd590612 2630 have_u_int64_t=1
2631fi
2632
ddceb1c8 2633if test -z "$have_u_int64_t" ; then
2634 AC_MSG_CHECKING([for u_int64_t type in sys/bitypes.h])
2635 AC_TRY_COMPILE(
aff51935 2636 [ #include <sys/bitypes.h> ],
ddceb1c8 2637 [ u_int64_t a; a = 1],
2638 [
2639 AC_DEFINE(HAVE_U_INT64_T)
2640 AC_MSG_RESULT(yes)
2641 ],
2642 [ AC_MSG_RESULT(no) ]
2643 )
2644fi
2645
41cb4569 2646if test -z "$have_u_intxx_t" ; then
2647 AC_CACHE_CHECK([for uintXX_t types], ac_cv_have_uintxx_t, [
2648 AC_TRY_COMPILE(
2649 [
2650#include <sys/types.h>
aff51935 2651 ],
2652 [ uint8_t a; uint16_t b; uint32_t c; a = b = c = 1; ],
41cb4569 2653 [ ac_cv_have_uintxx_t="yes" ],
2654 [ ac_cv_have_uintxx_t="no" ]
2655 )
2656 ])
2657 if test "x$ac_cv_have_uintxx_t" = "xyes" ; then
3466e002 2658 AC_DEFINE(HAVE_UINTXX_T, 1,
2659 [define if you have uintxx_t data type])
41cb4569 2660 fi
2661fi
2662
2663if test -z "$have_uintxx_t" ; then
2664 AC_MSG_CHECKING([for uintXX_t types in stdint.h])
2665 AC_TRY_COMPILE(
aff51935 2666 [ #include <stdint.h> ],
2667 [ uint8_t a; uint16_t b; uint32_t c; a = b = c = 1;],
41cb4569 2668 [
2669 AC_DEFINE(HAVE_UINTXX_T)
2670 AC_MSG_RESULT(yes)
2671 ],
2672 [ AC_MSG_RESULT(no) ]
2673 )
2674fi
2675
e5fe9a1f 2676if (test -z "$have_u_intxx_t" || test -z "$have_intxx_t" && \
aff51935 2677 test "x$ac_cv_header_sys_bitypes_h" = "xyes")
5cdfe03f 2678then
2679 AC_MSG_CHECKING([for intXX_t and u_intXX_t types in sys/bitypes.h])
2680 AC_TRY_COMPILE(
58d100bf 2681 [
2682#include <sys/bitypes.h>
aff51935 2683 ],
5cdfe03f 2684 [
837c30b8 2685 int8_t a; int16_t b; int32_t c;
2686 u_int8_t e; u_int16_t f; u_int32_t g;
2687 a = b = c = e = f = g = 1;
aff51935 2688 ],
5cdfe03f 2689 [
2690 AC_DEFINE(HAVE_U_INTXX_T)
2691 AC_DEFINE(HAVE_INTXX_T)
2692 AC_MSG_RESULT(yes)
2693 ],
2694 [AC_MSG_RESULT(no)]
aff51935 2695 )
5cdfe03f 2696fi
2697
0362750e 2698
2699AC_CACHE_CHECK([for u_char], ac_cv_have_u_char, [
2700 AC_TRY_COMPILE(
2701 [
2702#include <sys/types.h>
2703 ],
2704 [ u_char foo; foo = 125; ],
2705 [ ac_cv_have_u_char="yes" ],
2706 [ ac_cv_have_u_char="no" ]
2707 )
2708])
2709if test "x$ac_cv_have_u_char" = "xyes" ; then
3466e002 2710 AC_DEFINE(HAVE_U_CHAR, 1, [define if you have u_char data type])
0362750e 2711fi
2712
98a7c37b 2713TYPE_SOCKLEN_T
2b942fe0 2714
2d16d9a3 2715AC_CHECK_TYPES(sig_atomic_t,,,[#include <signal.h>])
22f5e872 2716AC_CHECK_TYPES([fsblkcnt_t, fsfilcnt_t],,,[
2717#include <sys/types.h>
2718#ifdef HAVE_SYS_BITYPES_H
2719#include <sys/bitypes.h>
2720#endif
2721#ifdef HAVE_SYS_STATFS_H
2722#include <sys/statfs.h>
2723#endif
2724#ifdef HAVE_SYS_STATVFS_H
2725#include <sys/statvfs.h>
2726#endif
2727])
ddceb1c8 2728
86783a32 2729AC_CHECK_TYPES([in_addr_t, in_port_t],,,
777ece68 2730[#include <sys/types.h>
2731#include <netinet/in.h>])
7b578f7d 2732
58d100bf 2733AC_CACHE_CHECK([for size_t], ac_cv_have_size_t, [
2734 AC_TRY_COMPILE(
2735 [
18ba2aab 2736#include <sys/types.h>
58d100bf 2737 ],
2738 [ size_t foo; foo = 1235; ],
2739 [ ac_cv_have_size_t="yes" ],
2740 [ ac_cv_have_size_t="no" ]
2741 )
2742])
2743if test "x$ac_cv_have_size_t" = "xyes" ; then
3466e002 2744 AC_DEFINE(HAVE_SIZE_T, 1, [define if you have size_t data type])
58d100bf 2745fi
ea1970a3 2746
c04f75f1 2747AC_CACHE_CHECK([for ssize_t], ac_cv_have_ssize_t, [
2748 AC_TRY_COMPILE(
2749 [
2750#include <sys/types.h>
2751 ],
2752 [ ssize_t foo; foo = 1235; ],
2753 [ ac_cv_have_ssize_t="yes" ],
2754 [ ac_cv_have_ssize_t="no" ]
2755 )
2756])
2757if test "x$ac_cv_have_ssize_t" = "xyes" ; then
3466e002 2758 AC_DEFINE(HAVE_SSIZE_T, 1, [define if you have ssize_t data type])
c04f75f1 2759fi
2760
f1c4659d 2761AC_CACHE_CHECK([for clock_t], ac_cv_have_clock_t, [
2762 AC_TRY_COMPILE(
2763 [
2764#include <time.h>
2765 ],
2766 [ clock_t foo; foo = 1235; ],
2767 [ ac_cv_have_clock_t="yes" ],
2768 [ ac_cv_have_clock_t="no" ]
2769 )
2770])
2771if test "x$ac_cv_have_clock_t" = "xyes" ; then
3466e002 2772 AC_DEFINE(HAVE_CLOCK_T, 1, [define if you have clock_t data type])
f1c4659d 2773fi
2774
1c04b088 2775AC_CACHE_CHECK([for sa_family_t], ac_cv_have_sa_family_t, [
2776 AC_TRY_COMPILE(
2777 [
2778#include <sys/types.h>
2779#include <sys/socket.h>
2780 ],
2781 [ sa_family_t foo; foo = 1235; ],
2782 [ ac_cv_have_sa_family_t="yes" ],
77bb0bca 2783 [ AC_TRY_COMPILE(
2784 [
2785#include <sys/types.h>
2786#include <sys/socket.h>
2787#include <netinet/in.h>
2788 ],
2789 [ sa_family_t foo; foo = 1235; ],
2790 [ ac_cv_have_sa_family_t="yes" ],
2791
1c04b088 2792 [ ac_cv_have_sa_family_t="no" ]
77bb0bca 2793 )]
1c04b088 2794 )
2795])
2796if test "x$ac_cv_have_sa_family_t" = "xyes" ; then
3466e002 2797 AC_DEFINE(HAVE_SA_FAMILY_T, 1,
2798 [define if you have sa_family_t data type])
1c04b088 2799fi
2800
729bfe59 2801AC_CACHE_CHECK([for pid_t], ac_cv_have_pid_t, [
2802 AC_TRY_COMPILE(
2803 [
2804#include <sys/types.h>
2805 ],
2806 [ pid_t foo; foo = 1235; ],
2807 [ ac_cv_have_pid_t="yes" ],
2808 [ ac_cv_have_pid_t="no" ]
2809 )
2810])
2811if test "x$ac_cv_have_pid_t" = "xyes" ; then
3466e002 2812 AC_DEFINE(HAVE_PID_T, 1, [define if you have pid_t data type])
729bfe59 2813fi
2814
2815AC_CACHE_CHECK([for mode_t], ac_cv_have_mode_t, [
2816 AC_TRY_COMPILE(
2817 [
2818#include <sys/types.h>
2819 ],
2820 [ mode_t foo; foo = 1235; ],
2821 [ ac_cv_have_mode_t="yes" ],
2822 [ ac_cv_have_mode_t="no" ]
2823 )
2824])
2825if test "x$ac_cv_have_mode_t" = "xyes" ; then
3466e002 2826 AC_DEFINE(HAVE_MODE_T, 1, [define if you have mode_t data type])
729bfe59 2827fi
2828
e3a93db0 2829
58d100bf 2830AC_CACHE_CHECK([for struct sockaddr_storage], ac_cv_have_struct_sockaddr_storage, [
2831 AC_TRY_COMPILE(
2832 [
18ba2aab 2833#include <sys/types.h>
2834#include <sys/socket.h>
58d100bf 2835 ],
2836 [ struct sockaddr_storage s; ],
2837 [ ac_cv_have_struct_sockaddr_storage="yes" ],
2838 [ ac_cv_have_struct_sockaddr_storage="no" ]
2839 )
2840])
2841if test "x$ac_cv_have_struct_sockaddr_storage" = "xyes" ; then
3466e002 2842 AC_DEFINE(HAVE_STRUCT_SOCKADDR_STORAGE, 1,
2843 [define if you have struct sockaddr_storage data type])
58d100bf 2844fi
48e671d5 2845
58d100bf 2846AC_CACHE_CHECK([for struct sockaddr_in6], ac_cv_have_struct_sockaddr_in6, [
2847 AC_TRY_COMPILE(
2848 [
cbd7492e 2849#include <sys/types.h>
58d100bf 2850#include <netinet/in.h>
2851 ],
2852 [ struct sockaddr_in6 s; s.sin6_family = 0; ],
2853 [ ac_cv_have_struct_sockaddr_in6="yes" ],
2854 [ ac_cv_have_struct_sockaddr_in6="no" ]
2855 )
2856])
2857if test "x$ac_cv_have_struct_sockaddr_in6" = "xyes" ; then
3466e002 2858 AC_DEFINE(HAVE_STRUCT_SOCKADDR_IN6, 1,
2859 [define if you have struct sockaddr_in6 data type])
58d100bf 2860fi
48e671d5 2861
58d100bf 2862AC_CACHE_CHECK([for struct in6_addr], ac_cv_have_struct_in6_addr, [
2863 AC_TRY_COMPILE(
2864 [
cbd7492e 2865#include <sys/types.h>
58d100bf 2866#include <netinet/in.h>
2867 ],
2868 [ struct in6_addr s; s.s6_addr[0] = 0; ],
2869 [ ac_cv_have_struct_in6_addr="yes" ],
2870 [ ac_cv_have_struct_in6_addr="no" ]
2871 )
2872])
2873if test "x$ac_cv_have_struct_in6_addr" = "xyes" ; then
3466e002 2874 AC_DEFINE(HAVE_STRUCT_IN6_ADDR, 1,
2875 [define if you have struct in6_addr data type])
95e16084 2876
2877dnl Now check for sin6_scope_id
2878 AC_CHECK_MEMBERS([struct sockaddr_in6.sin6_scope_id],,,
2879 [
2880#ifdef HAVE_SYS_TYPES_H
2881#include <sys/types.h>
2882#endif
2883#include <netinet/in.h>
2884 ])
58d100bf 2885fi
48e671d5 2886
58d100bf 2887AC_CACHE_CHECK([for struct addrinfo], ac_cv_have_struct_addrinfo, [
2888 AC_TRY_COMPILE(
2889 [
18ba2aab 2890#include <sys/types.h>
2891#include <sys/socket.h>
2892#include <netdb.h>
58d100bf 2893 ],
2894 [ struct addrinfo s; s.ai_flags = AI_PASSIVE; ],
2895 [ ac_cv_have_struct_addrinfo="yes" ],
2896 [ ac_cv_have_struct_addrinfo="no" ]
2897 )
2898])
2899if test "x$ac_cv_have_struct_addrinfo" = "xyes" ; then
3466e002 2900 AC_DEFINE(HAVE_STRUCT_ADDRINFO, 1,
2901 [define if you have struct addrinfo data type])
58d100bf 2902fi
2903
89c7e31c 2904AC_CACHE_CHECK([for struct timeval], ac_cv_have_struct_timeval, [
2905 AC_TRY_COMPILE(
aff51935 2906 [ #include <sys/time.h> ],
2907 [ struct timeval tv; tv.tv_sec = 1;],
89c7e31c 2908 [ ac_cv_have_struct_timeval="yes" ],
2909 [ ac_cv_have_struct_timeval="no" ]
2910 )
2911])
2912if test "x$ac_cv_have_struct_timeval" = "xyes" ; then
3466e002 2913 AC_DEFINE(HAVE_STRUCT_TIMEVAL, 1, [define if you have struct timeval])
89c7e31c 2914 have_struct_timeval=1
2915fi
2916
5271b55c 2917AC_CHECK_TYPES(struct timespec)
2918
85abc74b 2919# We need int64_t or else certian parts of the compile will fail.
4b492aab 2920if test "x$ac_cv_have_int64_t" = "xno" && \
2921 test "x$ac_cv_sizeof_long_int" != "x8" && \
2922 test "x$ac_cv_sizeof_long_long_int" = "x0" ; then
85abc74b 2923 echo "OpenSSH requires int64_t support. Contact your vendor or install"
2924 echo "an alternative compiler (I.E., GCC) before continuing."
2925 echo ""
2926 exit 1;
733cf7f4 2927else
2928dnl test snprintf (broken on SCO w/gcc)
1a01a50c 2929 AC_RUN_IFELSE(
479cece8 2930 [AC_LANG_SOURCE([[
733cf7f4 2931#include <stdio.h>
2932#include <string.h>
2933#ifdef HAVE_SNPRINTF
2934main()
2935{
2936 char buf[50];
2937 char expected_out[50];
2938 int mazsize = 50 ;
2939#if (SIZEOF_LONG_INT == 8)
2940 long int num = 0x7fffffffffffffff;
2941#else
763a1a18 2942 long long num = 0x7fffffffffffffffll;
733cf7f4 2943#endif
2944 strcpy(expected_out, "9223372036854775807");
2945 snprintf(buf, mazsize, "%lld", num);
2946 if(strcmp(buf, expected_out) != 0)
aff51935 2947 exit(1);
733cf7f4 2948 exit(0);
2949}
2950#else
2951main() { exit(0); }
2952#endif
479cece8 2953 ]])], [ true ], [ AC_DEFINE(BROKEN_SNPRINTF) ],
1a01a50c 2954 AC_MSG_WARN([cross compiling: Assuming working snprintf()])
733cf7f4 2955 )
2c523de9 2956fi
2957
77bb0bca 2958dnl Checks for structure members
58d100bf 2959OSSH_CHECK_HEADER_FOR_FIELD(ut_host, utmp.h, HAVE_HOST_IN_UTMP)
2960OSSH_CHECK_HEADER_FOR_FIELD(ut_host, utmpx.h, HAVE_HOST_IN_UTMPX)
2961OSSH_CHECK_HEADER_FOR_FIELD(syslen, utmpx.h, HAVE_SYSLEN_IN_UTMPX)
2962OSSH_CHECK_HEADER_FOR_FIELD(ut_pid, utmp.h, HAVE_PID_IN_UTMP)
2963OSSH_CHECK_HEADER_FOR_FIELD(ut_type, utmp.h, HAVE_TYPE_IN_UTMP)
25422c70 2964OSSH_CHECK_HEADER_FOR_FIELD(ut_type, utmpx.h, HAVE_TYPE_IN_UTMPX)
58d100bf 2965OSSH_CHECK_HEADER_FOR_FIELD(ut_tv, utmp.h, HAVE_TV_IN_UTMP)
2966OSSH_CHECK_HEADER_FOR_FIELD(ut_id, utmp.h, HAVE_ID_IN_UTMP)
daaff4d5 2967OSSH_CHECK_HEADER_FOR_FIELD(ut_id, utmpx.h, HAVE_ID_IN_UTMPX)
58d100bf 2968OSSH_CHECK_HEADER_FOR_FIELD(ut_addr, utmp.h, HAVE_ADDR_IN_UTMP)
2969OSSH_CHECK_HEADER_FOR_FIELD(ut_addr, utmpx.h, HAVE_ADDR_IN_UTMPX)
2970OSSH_CHECK_HEADER_FOR_FIELD(ut_addr_v6, utmp.h, HAVE_ADDR_V6_IN_UTMP)
2971OSSH_CHECK_HEADER_FOR_FIELD(ut_addr_v6, utmpx.h, HAVE_ADDR_V6_IN_UTMPX)
1d7b9b20 2972OSSH_CHECK_HEADER_FOR_FIELD(ut_exit, utmp.h, HAVE_EXIT_IN_UTMP)
2973OSSH_CHECK_HEADER_FOR_FIELD(ut_time, utmp.h, HAVE_TIME_IN_UTMP)
2974OSSH_CHECK_HEADER_FOR_FIELD(ut_time, utmpx.h, HAVE_TIME_IN_UTMPX)
2975OSSH_CHECK_HEADER_FOR_FIELD(ut_tv, utmpx.h, HAVE_TV_IN_UTMPX)
98a7c37b 2976
2977AC_CHECK_MEMBERS([struct stat.st_blksize])
ccc45ee0 2978AC_CHECK_MEMBER([struct __res_state.retrans], [], [AC_DEFINE(__res_state, state,
2979 [Define if we don't have struct __res_state in resolv.h])],
2980[
2981#include <stdio.h>
2982#if HAVE_SYS_TYPES_H
2983# include <sys/types.h>
2984#endif
2985#include <netinet/in.h>
2986#include <arpa/nameser.h>
2987#include <resolv.h>
2988])
1d7b9b20 2989
58d100bf 2990AC_CACHE_CHECK([for ss_family field in struct sockaddr_storage],
2991 ac_cv_have_ss_family_in_struct_ss, [
2992 AC_TRY_COMPILE(
2993 [
18ba2aab 2994#include <sys/types.h>
2995#include <sys/socket.h>
58d100bf 2996 ],
2997 [ struct sockaddr_storage s; s.ss_family = 1; ],
2998 [ ac_cv_have_ss_family_in_struct_ss="yes" ],
2999 [ ac_cv_have_ss_family_in_struct_ss="no" ],
3000 )
3001])
3002if test "x$ac_cv_have_ss_family_in_struct_ss" = "xyes" ; then
3466e002 3003 AC_DEFINE(HAVE_SS_FAMILY_IN_SS, 1, [Fields in struct sockaddr_storage])
58d100bf 3004fi
3005
58d100bf 3006AC_CACHE_CHECK([for __ss_family field in struct sockaddr_storage],
3007 ac_cv_have___ss_family_in_struct_ss, [
3008 AC_TRY_COMPILE(
3009 [
18ba2aab 3010#include <sys/types.h>
3011#include <sys/socket.h>
58d100bf 3012 ],
3013 [ struct sockaddr_storage s; s.__ss_family = 1; ],
3014 [ ac_cv_have___ss_family_in_struct_ss="yes" ],
3015 [ ac_cv_have___ss_family_in_struct_ss="no" ]
3016 )
3017])
3018if test "x$ac_cv_have___ss_family_in_struct_ss" = "xyes" ; then
3466e002 3019 AC_DEFINE(HAVE___SS_FAMILY_IN_SS, 1,
3020 [Fields in struct sockaddr_storage])
58d100bf 3021fi
3022
2e73a022 3023AC_CACHE_CHECK([for pw_class field in struct passwd],
3024 ac_cv_have_pw_class_in_struct_passwd, [
3025 AC_TRY_COMPILE(
3026 [
2e73a022 3027#include <pwd.h>
3028 ],
97994d32 3029 [ struct passwd p; p.pw_class = 0; ],
2e73a022 3030 [ ac_cv_have_pw_class_in_struct_passwd="yes" ],
3031 [ ac_cv_have_pw_class_in_struct_passwd="no" ]
3032 )
3033])
3034if test "x$ac_cv_have_pw_class_in_struct_passwd" = "xyes" ; then
3466e002 3035 AC_DEFINE(HAVE_PW_CLASS_IN_PASSWD, 1,
3036 [Define if your password has a pw_class field])
2e73a022 3037fi
3038
7751d4eb 3039AC_CACHE_CHECK([for pw_expire field in struct passwd],
3040 ac_cv_have_pw_expire_in_struct_passwd, [
3041 AC_TRY_COMPILE(
3042 [
3043#include <pwd.h>
3044 ],
3045 [ struct passwd p; p.pw_expire = 0; ],
3046 [ ac_cv_have_pw_expire_in_struct_passwd="yes" ],
3047 [ ac_cv_have_pw_expire_in_struct_passwd="no" ]
3048 )
3049])
3050if test "x$ac_cv_have_pw_expire_in_struct_passwd" = "xyes" ; then
3466e002 3051 AC_DEFINE(HAVE_PW_EXPIRE_IN_PASSWD, 1,
3052 [Define if your password has a pw_expire field])
7751d4eb 3053fi
3054
3055AC_CACHE_CHECK([for pw_change field in struct passwd],
3056 ac_cv_have_pw_change_in_struct_passwd, [
3057 AC_TRY_COMPILE(
3058 [
3059#include <pwd.h>
3060 ],
3061 [ struct passwd p; p.pw_change = 0; ],
3062 [ ac_cv_have_pw_change_in_struct_passwd="yes" ],
3063 [ ac_cv_have_pw_change_in_struct_passwd="no" ]
3064 )
3065])
3066if test "x$ac_cv_have_pw_change_in_struct_passwd" = "xyes" ; then
3466e002 3067 AC_DEFINE(HAVE_PW_CHANGE_IN_PASSWD, 1,
3068 [Define if your password has a pw_change field])
7751d4eb 3069fi
58d100bf 3070
637f9177 3071dnl make sure we're using the real structure members and not defines
6f34652e 3072AC_CACHE_CHECK([for msg_accrights field in struct msghdr],
3073 ac_cv_have_accrights_in_msghdr, [
1a01a50c 3074 AC_COMPILE_IFELSE(
6f34652e 3075 [
f95c8ce8 3076#include <sys/types.h>
6f34652e 3077#include <sys/socket.h>
3078#include <sys/uio.h>
637f9177 3079int main() {
3080#ifdef msg_accrights
1a01a50c 3081#error "msg_accrights is a macro"
637f9177 3082exit(1);
3083#endif
3084struct msghdr m;
3085m.msg_accrights = 0;
3086exit(0);
3087}
6f34652e 3088 ],
6f34652e 3089 [ ac_cv_have_accrights_in_msghdr="yes" ],
3090 [ ac_cv_have_accrights_in_msghdr="no" ]
3091 )
3092])
3093if test "x$ac_cv_have_accrights_in_msghdr" = "xyes" ; then
3466e002 3094 AC_DEFINE(HAVE_ACCRIGHTS_IN_MSGHDR, 1,
3095 [Define if your system uses access rights style
3096 file descriptor passing])
6f34652e 3097fi
3098
87562a58 3099AC_MSG_CHECKING(if struct statvfs.f_fsid is integral type)
7a4f468b 3100AC_TRY_COMPILE([
3101#include <sys/types.h>
87562a58 3102#include <sys/stat.h>
3103#ifdef HAVE_SYS_TIME_H
3104# include <sys/time.h>
3105#endif
3106#ifdef HAVE_SYS_MOUNT_H
3107#include <sys/mount.h>
3108#endif
3109#ifdef HAVE_SYS_STATVFS_H
3110#include <sys/statvfs.h>
3111#endif
3112], [struct statvfs s; s.f_fsid = 0;],
3113[ AC_MSG_RESULT(yes) ],
3114[ AC_MSG_RESULT(no)
3115
3116 AC_MSG_CHECKING(if fsid_t has member val)
3117 AC_TRY_COMPILE([
3118#include <sys/types.h>
7a4f468b 3119#include <sys/statvfs.h>],
87562a58 3120 [fsid_t t; t.val[0] = 0;],
7a4f468b 3121 [ AC_MSG_RESULT(yes)
87562a58 3122 AC_DEFINE(FSID_HAS_VAL, 1, fsid_t has member val) ],
3123 [ AC_MSG_RESULT(no) ])
3124
3125 AC_MSG_CHECKING(if f_fsid has member __val)
3126 AC_TRY_COMPILE([
3127#include <sys/types.h>
3128#include <sys/statvfs.h>],
3129 [fsid_t t; t.__val[0] = 0;],
3130 [ AC_MSG_RESULT(yes)
3131 AC_DEFINE(FSID_HAS___VAL, 1, fsid_t has member __val) ],
3132 [ AC_MSG_RESULT(no) ])
3133])
7a4f468b 3134
7176df4f 3135AC_CACHE_CHECK([for msg_control field in struct msghdr],
3136 ac_cv_have_control_in_msghdr, [
1a01a50c 3137 AC_COMPILE_IFELSE(
7176df4f 3138 [
f95c8ce8 3139#include <sys/types.h>
7176df4f 3140#include <sys/socket.h>
3141#include <sys/uio.h>
637f9177 3142int main() {
3143#ifdef msg_control
1a01a50c 3144#error "msg_control is a macro"
637f9177 3145exit(1);
3146#endif
3147struct msghdr m;
3148m.msg_control = 0;
3149exit(0);
3150}
7176df4f 3151 ],
7176df4f 3152 [ ac_cv_have_control_in_msghdr="yes" ],
3153 [ ac_cv_have_control_in_msghdr="no" ]
3154 )
3155])
3156if test "x$ac_cv_have_control_in_msghdr" = "xyes" ; then
3466e002 3157 AC_DEFINE(HAVE_CONTROL_IN_MSGHDR, 1,
3158 [Define if your system uses ancillary data style
3159 file descriptor passing])
7176df4f 3160fi
3161
58d100bf 3162AC_CACHE_CHECK([if libc defines __progname], ac_cv_libc_defines___progname, [
aff51935 3163 AC_TRY_LINK([],
3164 [ extern char *__progname; printf("%s", __progname); ],
58d100bf 3165 [ ac_cv_libc_defines___progname="yes" ],
3166 [ ac_cv_libc_defines___progname="no" ]
3167 )
3168])
3169if test "x$ac_cv_libc_defines___progname" = "xyes" ; then
3466e002 3170 AC_DEFINE(HAVE___PROGNAME, 1, [Define if libc defines __progname])
58d100bf 3171fi
8946db53 3172
c921ee00 3173AC_CACHE_CHECK([whether $CC implements __FUNCTION__], ac_cv_cc_implements___FUNCTION__, [
3174 AC_TRY_LINK([
3175#include <stdio.h>
aff51935 3176],
3177 [ printf("%s", __FUNCTION__); ],
c921ee00 3178 [ ac_cv_cc_implements___FUNCTION__="yes" ],
3179 [ ac_cv_cc_implements___FUNCTION__="no" ]
3180 )
3181])
3182if test "x$ac_cv_cc_implements___FUNCTION__" = "xyes" ; then
3466e002 3183 AC_DEFINE(HAVE___FUNCTION__, 1,
3184 [Define if compiler implements __FUNCTION__])
c921ee00 3185fi
3186
3187AC_CACHE_CHECK([whether $CC implements __func__], ac_cv_cc_implements___func__, [
3188 AC_TRY_LINK([
3189#include <stdio.h>
aff51935 3190],
3191 [ printf("%s", __func__); ],
c921ee00 3192 [ ac_cv_cc_implements___func__="yes" ],
3193 [ ac_cv_cc_implements___func__="no" ]
3194 )
3195])
3196if test "x$ac_cv_cc_implements___func__" = "xyes" ; then
3466e002 3197 AC_DEFINE(HAVE___func__, 1, [Define if compiler implements __func__])
c921ee00 3198fi
3199
9a406e1e 3200AC_CACHE_CHECK([whether va_copy exists], ac_cv_have_va_copy, [
3201 AC_TRY_LINK(
3202 [#include <stdarg.h>
3203 va_list x,y;],
3204 [va_copy(x,y);],
3205 [ ac_cv_have_va_copy="yes" ],
3206 [ ac_cv_have_va_copy="no" ]
3207 )
3208])
3209if test "x$ac_cv_have_va_copy" = "xyes" ; then
3210 AC_DEFINE(HAVE_VA_COPY, 1, [Define if va_copy exists])
3211fi
3212
3213AC_CACHE_CHECK([whether __va_copy exists], ac_cv_have___va_copy, [
3214 AC_TRY_LINK(
3215 [#include <stdarg.h>
3216 va_list x,y;],
3217 [__va_copy(x,y);],
3218 [ ac_cv_have___va_copy="yes" ],
3219 [ ac_cv_have___va_copy="no" ]
3220 )
3221])
3222if test "x$ac_cv_have___va_copy" = "xyes" ; then
3223 AC_DEFINE(HAVE___VA_COPY, 1, [Define if __va_copy exists])
3224fi
3225
1812a662 3226AC_CACHE_CHECK([whether getopt has optreset support],
3227 ac_cv_have_getopt_optreset, [
3228 AC_TRY_LINK(
3229 [
3230#include <getopt.h>
3231 ],
3232 [ extern int optreset; optreset = 0; ],
3233 [ ac_cv_have_getopt_optreset="yes" ],
3234 [ ac_cv_have_getopt_optreset="no" ]
3235 )
3236])
3237if test "x$ac_cv_have_getopt_optreset" = "xyes" ; then
3466e002 3238 AC_DEFINE(HAVE_GETOPT_OPTRESET, 1,
3239 [Define if your getopt(3) defines and uses optreset])
1812a662 3240fi
a0391976 3241
819b676f 3242AC_CACHE_CHECK([if libc defines sys_errlist], ac_cv_libc_defines_sys_errlist, [
aff51935 3243 AC_TRY_LINK([],
3244 [ extern const char *const sys_errlist[]; printf("%s", sys_errlist[0]);],
819b676f 3245 [ ac_cv_libc_defines_sys_errlist="yes" ],
3246 [ ac_cv_libc_defines_sys_errlist="no" ]
3247 )
3248])
3249if test "x$ac_cv_libc_defines_sys_errlist" = "xyes" ; then
3466e002 3250 AC_DEFINE(HAVE_SYS_ERRLIST, 1,
3251 [Define if your system defines sys_errlist[]])
819b676f 3252fi
3253
3254
416ed5a7 3255AC_CACHE_CHECK([if libc defines sys_nerr], ac_cv_libc_defines_sys_nerr, [
aff51935 3256 AC_TRY_LINK([],
3257 [ extern int sys_nerr; printf("%i", sys_nerr);],
416ed5a7 3258 [ ac_cv_libc_defines_sys_nerr="yes" ],
3259 [ ac_cv_libc_defines_sys_nerr="no" ]
3260 )
3261])
3262if test "x$ac_cv_libc_defines_sys_nerr" = "xyes" ; then
3466e002 3263 AC_DEFINE(HAVE_SYS_NERR, 1, [Define if your system defines sys_nerr])
416ed5a7 3264fi
3265
aff51935 3266SCARD_MSG="no"
295c8801 3267# Check whether user wants sectok support
3268AC_ARG_WITH(sectok,
3269 [ --with-sectok Enable smartcard support using libsectok],
d0b19c95 3270 [
3271 if test "x$withval" != "xno" ; then
3272 if test "x$withval" != "xyes" ; then
3273 CPPFLAGS="$CPPFLAGS -I${withval}"
3274 LDFLAGS="$LDFLAGS -L${withval}"
3275 if test ! -z "$need_dash_r" ; then
3276 LDFLAGS="$LDFLAGS -R${withval}"
3277 fi
3278 if test ! -z "$blibpath" ; then
3279 blibpath="$blibpath:${withval}"
3280 fi
3281 fi
3282 AC_CHECK_HEADERS(sectok.h)
3283 if test "$ac_cv_header_sectok_h" != yes; then
3284 AC_MSG_ERROR(Can't find sectok.h)
3285 fi
3286 AC_CHECK_LIB(sectok, sectok_open)
3287 if test "$ac_cv_lib_sectok_sectok_open" != yes; then
3288 AC_MSG_ERROR(Can't find libsectok)
3289 fi
3466e002 3290 AC_DEFINE(SMARTCARD, 1,
3291 [Define if you want smartcard support])
3292 AC_DEFINE(USE_SECTOK, 1,
3293 [Define if you want smartcard support
3294 using sectok])
aff51935 3295 SCARD_MSG="yes, using sectok"
295c8801 3296 fi
3297 ]
3298)
3299
3300# Check whether user wants OpenSC support
987b458f 3301OPENSC_CONFIG="no"
295c8801 3302AC_ARG_WITH(opensc,
e47fb473 3303 [ --with-opensc[[=PFX]] Enable smartcard support using OpenSC (optionally in PATH)],
987b458f 3304 [
3305 if test "x$withval" != "xno" ; then
6b52ddbd 3306 AC_PATH_PROG(PKGCONFIG, pkg-config, no)
3307 AC_MSG_CHECKING(how to get opensc config)
3308 if test "x$withval" != "xyes" -a "x$PKGCONFIG" = "xno"; then
3309 OPENSC_CONFIG="$withval/bin/opensc-config"
3310 elif test -f "$withval/src/libopensc/libopensc.pc"; then
3311 OPENSC_CONFIG="$PKGCONFIG $withval/src/libopensc/libopensc.pc"
3312 elif test "x$PKGCONFIG" != "xno"; then
3313 OPENSC_CONFIG="$PKGCONFIG libopensc"
987b458f 3314 else
6b52ddbd 3315 AC_PATH_PROG(OPENSC_CONFIG, opensc-config, no)
987b458f 3316 fi
6b52ddbd 3317 AC_MSG_RESULT($OPENSC_CONFIG)
987b458f 3318 if test "$OPENSC_CONFIG" != "no"; then
3319 LIBOPENSC_CFLAGS=`$OPENSC_CONFIG --cflags`
3320 LIBOPENSC_LIBS=`$OPENSC_CONFIG --libs`
3321 CPPFLAGS="$CPPFLAGS $LIBOPENSC_CFLAGS"
530456f4 3322 LIBS="$LIBS $LIBOPENSC_LIBS"
987b458f 3323 AC_DEFINE(SMARTCARD)
3466e002 3324 AC_DEFINE(USE_OPENSC, 1,
3325 [Define if you want smartcard support
3326 using OpenSC])
987b458f 3327 SCARD_MSG="yes, using OpenSC"
3328 fi
3329 fi
3330 ]
3331)
d0b19c95 3332
c31dc31c 3333# Check libraries needed by DNS fingerprint support
aff51935 3334AC_SEARCH_LIBS(getrrsetbyname, resolv,
3466e002 3335 [AC_DEFINE(HAVE_GETRRSETBYNAME, 1,
3336 [Define if getrrsetbyname() exists])],
3e05e934 3337 [
c31dc31c 3338 # Needed by our getrrsetbyname()
3339 AC_SEARCH_LIBS(res_query, resolv)
3340 AC_SEARCH_LIBS(dn_expand, resolv)
dabb524a 3341 AC_MSG_CHECKING(if res_query will link)
a37250f4 3342 AC_LINK_IFELSE([
3343#include "confdefs.h"
3344#include <sys/types.h>
3345#include <netinet/in.h>
3346#include <arpa/nameser.h>
3347#include <netdb.h>
3348#include <resolv.h>
3349int main()
3350{
3351 res_query (0, 0, 0, 0, 0);
3352 return 0;
3353}
3354 ],
3355 AC_MSG_RESULT(yes),
dabb524a 3356 [AC_MSG_RESULT(no)
3357 saved_LIBS="$LIBS"
3358 LIBS="$LIBS -lresolv"
3359 AC_MSG_CHECKING(for res_query in -lresolv)
3360 AC_LINK_IFELSE([
a37250f4 3361#include "confdefs.h"
3362#include <sys/types.h>
3363#include <netinet/in.h>
3364#include <arpa/nameser.h>
3365#include <netdb.h>
dabb524a 3366#include <resolv.h>
3367int main()
3368{
3369 res_query (0, 0, 0, 0, 0);
3370 return 0;
3371}
3372 ],
a37250f4 3373 [AC_MSG_RESULT(yes)],
dabb524a 3374 [LIBS="$saved_LIBS"
3375 AC_MSG_RESULT(no)])
3376 ])
c31dc31c 3377 AC_CHECK_FUNCS(_getshort _getlong)
1c829da5 3378 AC_CHECK_DECLS([_getshort, _getlong], , ,
b5765e1d 3379 [#include <sys/types.h>
3380 #include <arpa/nameser.h>])
c31dc31c 3381 AC_CHECK_MEMBER(HEADER.ad,
3466e002 3382 [AC_DEFINE(HAVE_HEADER_AD, 1,
3383 [Define if HEADER.ad exists in arpa/nameser.h])],,
c31dc31c 3384 [#include <arpa/nameser.h>])
3385 ])
3e05e934 3386
560acf80 3387AC_MSG_CHECKING(if struct __res_state _res is an extern)
3388AC_LINK_IFELSE([
3389#include <stdio.h>
3390#if HAVE_SYS_TYPES_H
3391# include <sys/types.h>
3392#endif
3393#include <netinet/in.h>
3394#include <arpa/nameser.h>
3395#include <resolv.h>
3396extern struct __res_state _res;
3397int main() { return 0; }
3398 ],
3399 [AC_MSG_RESULT(yes)
3400 AC_DEFINE(HAVE__RES_EXTERN, 1,
3401 [Define if you have struct __res_state _res as an extern])
3402 ],
3403 [ AC_MSG_RESULT(no) ]
3404)
3405
ef4d1846 3406# Check whether user wants SELinux support
3407SELINUX_MSG="no"
3408LIBSELINUX=""
3409AC_ARG_WITH(selinux,
bb23b54f 3410 [ --with-selinux Enable SELinux support],
ef4d1846 3411 [ if test "x$withval" != "xno" ; then
e54defb4 3412 save_LIBS="$LIBS"
ef4d1846 3413 AC_DEFINE(WITH_SELINUX,1,[Define if you want SELinux support.])
3414 SELINUX_MSG="yes"
3415 AC_CHECK_HEADER([selinux/selinux.h], ,
3416 AC_MSG_ERROR(SELinux support requires selinux.h header))
3417 AC_CHECK_LIB(selinux, setexeccon, [ LIBSELINUX="-lselinux" ],
3418 AC_MSG_ERROR(SELinux support requires libselinux library))
e54defb4 3419 SSHDLIBS="$SSHDLIBS $LIBSELINUX"
ef4d1846 3420 AC_CHECK_FUNCS(getseuserbyname get_default_context_with_level)
5ba277eb 3421 LIBS="$save_LIBS"
ef4d1846 3422 fi ]
3423)
ef4d1846 3424
12928e80 3425# Check whether user wants Kerberos 5 support
aff51935 3426KRB5_MSG="no"
12928e80 3427AC_ARG_WITH(kerberos5,
aff51935 3428 [ --with-kerberos5=PATH Enable Kerberos 5 support],
5585c441 3429 [ if test "x$withval" != "xno" ; then
3430 if test "x$withval" = "xyes" ; then
3431 KRB5ROOT="/usr/local"
3432 else
3433 KRB5ROOT=${withval}
3434 fi
3435
3466e002 3436 AC_DEFINE(KRB5, 1, [Define if you want Kerberos 5 support])
5585c441 3437 KRB5_MSG="yes"
3438
3acad382 3439 AC_PATH_PROG([KRB5CONF],[krb5-config],
3440 [$KRB5ROOT/bin/krb5-config],
3441 [$KRB5ROOT/bin:$PATH])
3442 if test -x $KRB5CONF ; then
5585c441 3443
3444 AC_MSG_CHECKING(for gssapi support)
3445 if $KRB5CONF | grep gssapi >/dev/null ; then
3446 AC_MSG_RESULT(yes)
3466e002 3447 AC_DEFINE(GSSAPI, 1,
3448 [Define this if you want GSSAPI
3449 support in the version 2 protocol])
071970fb 3450 k5confopts=gssapi
aff51935 3451 else
5585c441 3452 AC_MSG_RESULT(no)
071970fb 3453 k5confopts=""
aff51935 3454 fi
071970fb 3455 K5CFLAGS="`$KRB5CONF --cflags $k5confopts`"
3456 K5LIBS="`$KRB5CONF --libs $k5confopts`"
5585c441 3457 CPPFLAGS="$CPPFLAGS $K5CFLAGS"
5585c441 3458 AC_MSG_CHECKING(whether we are using Heimdal)
3459 AC_TRY_COMPILE([ #include <krb5.h> ],
3460 [ char *tmp = heimdal_version; ],
3461 [ AC_MSG_RESULT(yes)
3466e002 3462 AC_DEFINE(HEIMDAL, 1,
3463 [Define this if you are using the
3464 Heimdal version of Kerberos V5]) ],
5585c441 3465 AC_MSG_RESULT(no)
3466 )
3467 else
12928e80 3468 CPPFLAGS="$CPPFLAGS -I${KRB5ROOT}/include"
aff51935 3469 LDFLAGS="$LDFLAGS -L${KRB5ROOT}/lib"
aff51935 3470 AC_MSG_CHECKING(whether we are using Heimdal)
3471 AC_TRY_COMPILE([ #include <krb5.h> ],
3472 [ char *tmp = heimdal_version; ],
3473 [ AC_MSG_RESULT(yes)
3474 AC_DEFINE(HEIMDAL)
41707f74 3475 K5LIBS="-lkrb5 -ldes"
3476 K5LIBS="$K5LIBS -lcom_err -lasn1"
82f4e93d 3477 AC_CHECK_LIB(roken, net_write,
41707f74 3478 [K5LIBS="$K5LIBS -lroken"])
aff51935 3479 ],
3480 [ AC_MSG_RESULT(no)
3481 K5LIBS="-lkrb5 -lk5crypto -lcom_err"
3482 ]
3483 )
4e00038c 3484 AC_SEARCH_LIBS(dn_expand, resolv)
12928e80 3485
596a825b 3486 AC_CHECK_LIB(gssapi_krb5, gss_init_sec_context,
749560dd 3487 [ AC_DEFINE(GSSAPI)
596a825b 3488 K5LIBS="-lgssapi_krb5 $K5LIBS" ],
3489 [ AC_CHECK_LIB(gssapi, gss_init_sec_context,
749560dd 3490 [ AC_DEFINE(GSSAPI)
596a825b 3491 K5LIBS="-lgssapi $K5LIBS" ],
749560dd 3492 AC_MSG_WARN([Cannot find any suitable gss-api library - build may fail]),
3493 $K5LIBS)
3494 ],
3495 $K5LIBS)
82f4e93d 3496
749560dd 3497 AC_CHECK_HEADER(gssapi.h, ,
3498 [ unset ac_cv_header_gssapi_h
aff51935 3499 CPPFLAGS="$CPPFLAGS -I${KRB5ROOT}/include/gssapi"
749560dd 3500 AC_CHECK_HEADERS(gssapi.h, ,
3501 AC_MSG_WARN([Cannot find any suitable gss-api header - build may fail])
aff51935 3502 )
749560dd 3503 ]
3504 )
3505
3506 oldCPP="$CPPFLAGS"
3507 CPPFLAGS="$CPPFLAGS -I${KRB5ROOT}/include/gssapi"
3508 AC_CHECK_HEADER(gssapi_krb5.h, ,
3509 [ CPPFLAGS="$oldCPP" ])
3510
aff51935 3511 fi
5585c441 3512 if test ! -z "$need_dash_r" ; then
3513 LDFLAGS="$LDFLAGS -R${KRB5ROOT}/lib"
3514 fi
3515 if test ! -z "$blibpath" ; then
3516 blibpath="$blibpath:${KRB5ROOT}/lib"
3517 fi
071970fb 3518
f5555364 3519 AC_CHECK_HEADERS(gssapi.h gssapi/gssapi.h)
3520 AC_CHECK_HEADERS(gssapi_krb5.h gssapi/gssapi_krb5.h)
3521 AC_CHECK_HEADERS(gssapi_generic.h gssapi/gssapi_generic.h)
071970fb 3522
f5555364 3523 LIBS="$LIBS $K5LIBS"
3466e002 3524 AC_SEARCH_LIBS(k_hasafs, kafs, AC_DEFINE(USE_AFS, 1,
3525 [Define this if you want to use libkafs' AFS support]))
f5555364 3526 fi
071970fb 3527 ]
12928e80 3528)
b5b68128 3529
a0391976 3530# Looking for programs, paths and files
a0391976 3531
ecac8ee5 3532PRIVSEP_PATH=/var/empty
3533AC_ARG_WITH(privsep-path,
cda1ebcb 3534 [ --with-privsep-path=xxx Path for privilege separation chroot (default=/var/empty)],
ecac8ee5 3535 [
6cf0200f 3536 if test -n "$withval" && test "x$withval" != "xno" && \
3537 test "x${withval}" != "xyes"; then
ecac8ee5 3538 PRIVSEP_PATH=$withval
3539 fi
3540 ]
3541)
3542AC_SUBST(PRIVSEP_PATH)
3543
a0391976 3544AC_ARG_WITH(xauth,
3545 [ --with-xauth=PATH Specify path to xauth program ],
3546 [
6cf0200f 3547 if test -n "$withval" && test "x$withval" != "xno" && \
3548 test "x${withval}" != "xyes"; then
cbd7492e 3549 xauth_path=$withval
a0391976 3550 fi
3551 ],
3552 [
2bf42e4a 3553 TestPath="$PATH"
3554 TestPath="${TestPath}${PATH_SEPARATOR}/usr/X/bin"
3555 TestPath="${TestPath}${PATH_SEPARATOR}/usr/bin/X11"
3556 TestPath="${TestPath}${PATH_SEPARATOR}/usr/X11R6/bin"
3557 TestPath="${TestPath}${PATH_SEPARATOR}/usr/openwin/bin"
3558 AC_PATH_PROG(xauth_path, xauth, , $TestPath)
e5fe9a1f 3559 if (test ! -z "$xauth_path" && test -x "/usr/openwin/bin/xauth") ; then
a0391976 3560 xauth_path="/usr/openwin/bin/xauth"
3561 fi
3562 ]
3563)
3564
65a4b4af 3565STRIP_OPT=-s
3566AC_ARG_ENABLE(strip,
3567 [ --disable-strip Disable calling strip(1) on install],
3568 [
3569 if test "x$enableval" = "xno" ; then
3570 STRIP_OPT=
3571 fi
3572 ]
3573)
3574AC_SUBST(STRIP_OPT)
3575
b3ec54b4 3576if test -z "$xauth_path" ; then
3577 XAUTH_PATH="undefined"
3578 AC_SUBST(XAUTH_PATH)
3579else
3466e002 3580 AC_DEFINE_UNQUOTED(XAUTH_PATH, "$xauth_path",
3581 [Define if xauth is found in your path])
b3ec54b4 3582 XAUTH_PATH=$xauth_path
3583 AC_SUBST(XAUTH_PATH)
a0391976 3584fi
a0391976 3585
3586# Check for mail directory (last resort if we cannot get it from headers)
3587if test ! -z "$MAIL" ; then
3588 maildir=`dirname $MAIL`
3466e002 3589 AC_DEFINE_UNQUOTED(MAIL_DIRECTORY, "$maildir",
3590 [Set this to your mail directory if you don't have maillock.h])
a0391976 3591fi
3592
479cece8 3593if test ! -z "$cross_compiling" && test "x$cross_compiling" = "xyes"; then
1a01a50c 3594 AC_MSG_WARN([cross compiling: Disabling /dev/ptmx test])
3595 disable_ptmx_check=yes
3596fi
a0391976 3597if test -z "$no_dev_ptmx" ; then
6e879cb4 3598 if test "x$disable_ptmx_check" != "xyes" ; then
aff51935 3599 AC_CHECK_FILE("/dev/ptmx",
6e879cb4 3600 [
3466e002 3601 AC_DEFINE_UNQUOTED(HAVE_DEV_PTMX, 1,
3602 [Define if you have /dev/ptmx])
6e879cb4 3603 have_dev_ptmx=1
3604 ]
3605 )
3606 fi
3276571c 3607fi
1a01a50c 3608
479cece8 3609if test ! -z "$cross_compiling" && test "x$cross_compiling" != "xyes"; then
1a01a50c 3610 AC_CHECK_FILE("/dev/ptc",
3611 [
3466e002 3612 AC_DEFINE_UNQUOTED(HAVE_DEV_PTS_AND_PTC, 1,
3613 [Define if you have /dev/ptc])
1a01a50c 3614 have_dev_ptc=1
3615 ]
3616 )
3617else
3618 AC_MSG_WARN([cross compiling: Disabling /dev/ptc test])
3619fi
3276571c 3620
a0391976 3621# Options from here on. Some of these are preset by platform above
fdf6b7aa 3622AC_ARG_WITH(mantype,
5d97cfbf 3623 [ --with-mantype=man|cat|doc Set man page type],
c54a6257 3624 [
5d97cfbf 3625 case "$withval" in
3626 man|cat|doc)
3627 MANTYPE=$withval
3628 ;;
3629 *)
3630 AC_MSG_ERROR(invalid man type: $withval)
3631 ;;
3632 esac
c54a6257 3633 ]
3634)
e0c4d3ac 3635if test -z "$MANTYPE"; then
2bf42e4a 3636 TestPath="/usr/bin${PATH_SEPARATOR}/usr/ucb"
3637 AC_PATH_PROGS(NROFF, nroff awf, /bin/false, $TestPath)
e0c4d3ac 3638 if ${NROFF} -mdoc ${srcdir}/ssh.1 >/dev/null 2>&1; then
3639 MANTYPE=doc
3640 elif ${NROFF} -man ${srcdir}/ssh.1 >/dev/null 2>&1; then
3641 MANTYPE=man
3642 else
3643 MANTYPE=cat
3644 fi
3645fi
c54a6257 3646AC_SUBST(MANTYPE)
e0c4d3ac 3647if test "$MANTYPE" = "doc"; then
3648 mansubdir=man;
3649else
3650 mansubdir=$MANTYPE;
3651fi
3652AC_SUBST(mansubdir)
0bc5b6fb 3653
a0391976 3654# Check whether to enable MD5 passwords
aff51935 3655MD5_MSG="no"
2ddcfdf3 3656AC_ARG_WITH(md5-passwords,
caf3bc51 3657 [ --with-md5-passwords Enable use of MD5 passwords],
0bc5b6fb 3658 [
bcf36c78 3659 if test "x$withval" != "xno" ; then
3466e002 3660 AC_DEFINE(HAVE_MD5_PASSWORDS, 1,
3661 [Define if you want to allow MD5 passwords])
aff51935 3662 MD5_MSG="yes"
0bc5b6fb 3663 fi
3664 ]
caf3bc51 3665)
3666
a0391976 3667# Whether to disable shadow password support
a7effaac 3668AC_ARG_WITH(shadow,
3669 [ --without-shadow Disable shadow password support],
3670 [
82f4e93d 3671 if test "x$withval" = "xno" ; then
a7effaac 3672 AC_DEFINE(DISABLE_SHADOW)
4cb5ffa0 3673 disable_shadow=yes
a7effaac 3674 fi
3675 ]
3676)
3677
4cb5ffa0 3678if test -z "$disable_shadow" ; then
3679 AC_MSG_CHECKING([if the systems has expire shadow information])
3680 AC_TRY_COMPILE(
3681 [
3682#include <sys/types.h>
3683#include <shadow.h>
3684 struct spwd sp;
3685 ],[ sp.sp_expire = sp.sp_lstchg = sp.sp_inact = 0; ],
3686 [ sp_expire_available=yes ], []
3687 )
3688
3689 if test "x$sp_expire_available" = "xyes" ; then
3690 AC_MSG_RESULT(yes)
3466e002 3691 AC_DEFINE(HAS_SHADOW_EXPIRE, 1,
3692 [Define if you want to use shadow password expire field])
4cb5ffa0 3693 else
3694 AC_MSG_RESULT(no)
3695 fi
3696fi
3697
a0391976 3698# Use ip address instead of hostname in $DISPLAY
44839801 3699if test ! -z "$IPADDR_IN_DISPLAY" ; then
3700 DISPLAY_HACK_MSG="yes"
3466e002 3701 AC_DEFINE(IPADDR_IN_DISPLAY, 1,
3702 [Define if you need to use IP address
3703 instead of hostname in $DISPLAY])
44839801 3704else
aff51935 3705 DISPLAY_HACK_MSG="no"
44839801 3706 AC_ARG_WITH(ipaddr-display,
3707 [ --with-ipaddr-display Use ip address instead of hostname in \$DISPLAY],
3708 [
82f4e93d 3709 if test "x$withval" != "xno" ; then
44839801 3710 AC_DEFINE(IPADDR_IN_DISPLAY)
aff51935 3711 DISPLAY_HACK_MSG="yes"
44839801 3712 fi
3713 ]
3714 )
3715fi
a7effaac 3716
95b99395 3717# check for /etc/default/login and use it if present.
daa41e62 3718AC_ARG_ENABLE(etc-default-login,
6ff3d0dc 3719 [ --disable-etc-default-login Disable using PATH from /etc/default/login [no]],
694d0cef 3720 [ if test "x$enableval" = "xno"; then
3721 AC_MSG_NOTICE([/etc/default/login handling disabled])
3722 etc_default_login=no
3723 else
3724 etc_default_login=yes
3725 fi ],
b0e7249f 3726 [ if test ! -z "$cross_compiling" && test "x$cross_compiling" = "xyes";
3727 then
3728 AC_MSG_WARN([cross compiling: not checking /etc/default/login])
3729 etc_default_login=no
3730 else
3731 etc_default_login=yes
3732 fi ]
694d0cef 3733)
95b99395 3734
694d0cef 3735if test "x$etc_default_login" != "xno"; then
3736 AC_CHECK_FILE("/etc/default/login",
3737 [ external_path_file=/etc/default/login ])
b0e7249f 3738 if test "x$external_path_file" = "x/etc/default/login"; then
3466e002 3739 AC_DEFINE(HAVE_ETC_DEFAULT_LOGIN, 1,
3740 [Define if your system has /etc/default/login])
1a01a50c 3741 fi
694d0cef 3742fi
95b99395 3743
8d184c09 3744dnl BSD systems use /etc/login.conf so --with-default-path= has no effect
4b492aab 3745if test $ac_cv_func_login_getcapbool = "yes" && \
3746 test $ac_cv_header_login_cap_h = "yes" ; then
95b99395 3747 external_path_file=/etc/login.conf
8d184c09 3748fi
95b99395 3749
a0391976 3750# Whether to mess with the default path
aff51935 3751SERVER_PATH_MSG="(default)"
c43d69a9 3752AC_ARG_WITH(default-path,
75817f90 3753 [ --with-default-path= Specify default \$PATH environment for server],
cb807f40 3754 [
95b99395 3755 if test "x$external_path_file" = "x/etc/login.conf" ; then
8d184c09 3756 AC_MSG_WARN([
3757--with-default-path=PATH has no effect on this system.
3758Edit /etc/login.conf instead.])
82f4e93d 3759 elif test "x$withval" != "xno" ; then
89bbd457 3760 if test ! -z "$external_path_file" ; then
95b99395 3761 AC_MSG_WARN([
3762--with-default-path=PATH will only be used if PATH is not defined in
3763$external_path_file .])
3764 fi
b2d818e6 3765 user_path="$withval"
aff51935 3766 SERVER_PATH_MSG="$withval"
cb807f40 3767 fi
b2d818e6 3768 ],
95b99395 3769 [ if test "x$external_path_file" = "x/etc/login.conf" ; then
3770 AC_MSG_WARN([Make sure the path to scp is in /etc/login.conf])
8d184c09 3771 else
89bbd457 3772 if test ! -z "$external_path_file" ; then
95b99395 3773 AC_MSG_WARN([
3774If PATH is defined in $external_path_file, ensure the path to scp is included,
3775otherwise scp will not work.])
3776 fi
b0e7249f 3777 AC_RUN_IFELSE(
3778 [AC_LANG_SOURCE([[
b2d818e6 3779/* find out what STDPATH is */
3780#include <stdio.h>
b2d818e6 3781#ifdef HAVE_PATHS_H
3782# include <paths.h>
3783#endif
3784#ifndef _PATH_STDPATH
d9a4e55b 3785# ifdef _PATH_USERPATH /* Irix */
3786# define _PATH_STDPATH _PATH_USERPATH
3787# else
3788# define _PATH_STDPATH "/usr/bin:/bin:/usr/sbin:/sbin"
3789# endif
b2d818e6 3790#endif
3791#include <sys/types.h>
3792#include <sys/stat.h>
3793#include <fcntl.h>
3794#define DATA "conftest.stdpath"
3795
3796main()
3797{
3798 FILE *fd;
3799 int rc;
82f4e93d 3800
b2d818e6 3801 fd = fopen(DATA,"w");
3802 if(fd == NULL)
3803 exit(1);
82f4e93d 3804
b2d818e6 3805 if ((rc = fprintf(fd,"%s", _PATH_STDPATH)) < 0)
3806 exit(1);
3807
3808 exit(0);
3809}
b0e7249f 3810 ]])],
3811 [ user_path=`cat conftest.stdpath` ],
b2d818e6 3812 [ user_path="/usr/bin:/bin:/usr/sbin:/sbin" ],
3813 [ user_path="/usr/bin:/bin:/usr/sbin:/sbin" ]
3814 )
3815# make sure $bindir is in USER_PATH so scp will work
3816 t_bindir=`eval echo ${bindir}`
3817 case $t_bindir in
3818 NONE/*) t_bindir=`echo $t_bindir | sed "s~NONE~$prefix~"` ;;
3819 esac
3820 case $t_bindir in
3821 NONE/*) t_bindir=`echo $t_bindir | sed "s~NONE~$ac_default_prefix~"` ;;
3822 esac
3823 echo $user_path | grep ":$t_bindir" > /dev/null 2>&1
3824 if test $? -ne 0 ; then
3825 echo $user_path | grep "^$t_bindir" > /dev/null 2>&1
3826 if test $? -ne 0 ; then
3827 user_path=$user_path:$t_bindir
3828 AC_MSG_RESULT(Adding $t_bindir to USER_PATH so scp will work)
3829 fi
3830 fi
8d184c09 3831 fi ]
cb807f40 3832)
95b99395 3833if test "x$external_path_file" != "x/etc/login.conf" ; then
3466e002 3834 AC_DEFINE_UNQUOTED(USER_PATH, "$user_path", [Specify default $PATH])
8d184c09 3835 AC_SUBST(user_path)
3836fi
cb807f40 3837
06617857 3838# Set superuser path separately to user path
06617857 3839AC_ARG_WITH(superuser-path,
3840 [ --with-superuser-path= Specify different path for super-user],
3841 [
6cf0200f 3842 if test -n "$withval" && test "x$withval" != "xno" && \
3843 test "x${withval}" != "xyes"; then
3466e002 3844 AC_DEFINE_UNQUOTED(SUPERUSER_PATH, "$withval",
3845 [Define if you want a different $PATH
3846 for the superuser])
06617857 3847 superuser_path=$withval
3848 fi
3849 ]
3850)
3851
3852
58d100bf 3853AC_MSG_CHECKING([if we need to convert IPv4 in IPv6-mapped addresses])
aff51935 3854IPV4_IN6_HACK_MSG="no"
80faa19f 3855AC_ARG_WITH(4in6,
3856 [ --with-4in6 Check for and convert IPv4 in IPv6 mapped addresses],
3857 [
3858 if test "x$withval" != "xno" ; then
3859 AC_MSG_RESULT(yes)
3466e002 3860 AC_DEFINE(IPV4_IN_IPV6, 1,
3861 [Detect IPv4 in IPv6 mapped addresses
3862 and treat as IPv4])
aff51935 3863 IPV4_IN6_HACK_MSG="yes"
80faa19f 3864 else
3865 AC_MSG_RESULT(no)
3866 fi
3867 ],[
3868 if test "x$inet6_default_4in6" = "xyes"; then
3869 AC_MSG_RESULT([yes (default)])
3870 AC_DEFINE(IPV4_IN_IPV6)
aff51935 3871 IPV4_IN6_HACK_MSG="yes"
80faa19f 3872 else
3873 AC_MSG_RESULT([no (default)])
3874 fi
3875 ]
3876)
3877
af774732 3878# Whether to enable BSD auth support
f1b0ecc3 3879BSD_AUTH_MSG=no
af774732 3880AC_ARG_WITH(bsd-auth,
3881 [ --with-bsd-auth Enable BSD auth support],
3882 [
82f4e93d 3883 if test "x$withval" != "xno" ; then
3466e002 3884 AC_DEFINE(BSD_AUTH, 1,
3885 [Define if you have BSD auth support])
f1b0ecc3 3886 BSD_AUTH_MSG=yes
af774732 3887 fi
3888 ]
3889)
3890
a0391976 3891# Where to place sshd.pid
19d9ac2a 3892piddir=/var/run
81dadca3 3893# make sure the directory exists
82f4e93d 3894if test ! -d $piddir ; then
81dadca3 3895 piddir=`eval echo ${sysconfdir}`
3896 case $piddir in
aff51935 3897 NONE/*) piddir=`echo $piddir | sed "s~NONE~$ac_default_prefix~"` ;;
81dadca3 3898 esac
3899fi
3900
47e45e44 3901AC_ARG_WITH(pid-dir,
3902 [ --with-pid-dir=PATH Specify location of ssh.pid file],
3903 [
6cf0200f 3904 if test -n "$withval" && test "x$withval" != "xno" && \
3905 test "x${withval}" != "xyes"; then
19d9ac2a 3906 piddir=$withval
82f4e93d 3907 if test ! -d $piddir ; then
81dadca3 3908 AC_MSG_WARN([** no $piddir directory on this system **])
3909 fi
47e45e44 3910 fi
3911 ]
3912)
b7a87eea 3913
3466e002 3914AC_DEFINE_UNQUOTED(_PATH_SSH_PIDDIR, "$piddir", [Specify location of ssh.pid])
19d9ac2a 3915AC_SUBST(piddir)
47e45e44 3916
1d7b9b20 3917dnl allow user to disable some login recording features
3918AC_ARG_ENABLE(lastlog,
bfd550a2 3919 [ --disable-lastlog disable use of lastlog even if detected [no]],
ddb154b3 3920 [
3921 if test "x$enableval" = "xno" ; then
3922 AC_DEFINE(DISABLE_LASTLOG)
3923 fi
3924 ]
1d7b9b20 3925)
3926AC_ARG_ENABLE(utmp,
bfd550a2 3927 [ --disable-utmp disable use of utmp even if detected [no]],
ddb154b3 3928 [
3929 if test "x$enableval" = "xno" ; then
3930 AC_DEFINE(DISABLE_UTMP)
3931 fi
3932 ]
1d7b9b20 3933)
3934AC_ARG_ENABLE(utmpx,
bfd550a2 3935 [ --disable-utmpx disable use of utmpx even if detected [no]],
ddb154b3 3936 [
3937 if test "x$enableval" = "xno" ; then
3466e002 3938 AC_DEFINE(DISABLE_UTMPX, 1,
3939 [Define if you don't want to use utmpx])
ddb154b3 3940 fi
3941 ]
1d7b9b20 3942)
3943AC_ARG_ENABLE(wtmp,
bfd550a2 3944 [ --disable-wtmp disable use of wtmp even if detected [no]],
ddb154b3 3945 [
3946 if test "x$enableval" = "xno" ; then
3947 AC_DEFINE(DISABLE_WTMP)
3948 fi
3949 ]
1d7b9b20 3950)
3951AC_ARG_ENABLE(wtmpx,
bfd550a2 3952 [ --disable-wtmpx disable use of wtmpx even if detected [no]],
ddb154b3 3953 [
3954 if test "x$enableval" = "xno" ; then
3466e002 3955 AC_DEFINE(DISABLE_WTMPX, 1,
3956 [Define if you don't want to use wtmpx])
ddb154b3 3957 fi
3958 ]
1d7b9b20 3959)
3960AC_ARG_ENABLE(libutil,
bfd550a2 3961 [ --disable-libutil disable use of libutil (login() etc.) [no]],
ddb154b3 3962 [
3963 if test "x$enableval" = "xno" ; then
3964 AC_DEFINE(DISABLE_LOGIN)
3965 fi
3966 ]
1d7b9b20 3967)
3968AC_ARG_ENABLE(pututline,
bfd550a2 3969 [ --disable-pututline disable use of pututline() etc. ([uw]tmp) [no]],
ddb154b3 3970 [
3971 if test "x$enableval" = "xno" ; then
3466e002 3972 AC_DEFINE(DISABLE_PUTUTLINE, 1,
3973 [Define if you don't want to use pututline()
3974 etc. to write [uw]tmp])
ddb154b3 3975 fi
3976 ]
1d7b9b20 3977)
3978AC_ARG_ENABLE(pututxline,
bfd550a2 3979 [ --disable-pututxline disable use of pututxline() etc. ([uw]tmpx) [no]],
ddb154b3 3980 [
3981 if test "x$enableval" = "xno" ; then
3466e002 3982 AC_DEFINE(DISABLE_PUTUTXLINE, 1,
3983 [Define if you don't want to use pututxline()
3984 etc. to write [uw]tmpx])
ddb154b3 3985 fi
3986 ]
1d7b9b20 3987)
3988AC_ARG_WITH(lastlog,
bfd550a2 3989 [ --with-lastlog=FILE|DIR specify lastlog location [common locations]],
8c89dd2b 3990 [
82f4e93d 3991 if test "x$withval" = "xno" ; then
8c89dd2b 3992 AC_DEFINE(DISABLE_LASTLOG)
6cf0200f 3993 elif test -n "$withval" && test "x${withval}" != "xyes"; then
8c89dd2b 3994 conf_lastlog_location=$withval
3995 fi
3996 ]
3997)
1d7b9b20 3998
3999dnl lastlog, [uw]tmpx? detection
4000dnl NOTE: set the paths in the platform section to avoid the
4001dnl need for command-line parameters
4002dnl lastlog and [uw]tmp are subject to a file search if all else fails
4003
4004dnl lastlog detection
4005dnl NOTE: the code itself will detect if lastlog is a directory
4006AC_MSG_CHECKING([if your system defines LASTLOG_FILE])
4007AC_TRY_COMPILE([
4008#include <sys/types.h>
4009#include <utmp.h>
4010#ifdef HAVE_LASTLOG_H
4011# include <lastlog.h>
4012#endif
d7c0f3d5 4013#ifdef HAVE_PATHS_H
1d7b9b20 4014# include <paths.h>
41cb4569 4015#endif
4016#ifdef HAVE_LOGIN_H
4017# include <login.h>
1d7b9b20 4018#endif
4019 ],
4020 [ char *lastlog = LASTLOG_FILE; ],
4021 [ AC_MSG_RESULT(yes) ],
d7c0f3d5 4022 [
4023 AC_MSG_RESULT(no)
4024 AC_MSG_CHECKING([if your system defines _PATH_LASTLOG])
4025 AC_TRY_COMPILE([
4026#include <sys/types.h>
4027#include <utmp.h>
4028#ifdef HAVE_LASTLOG_H
4029# include <lastlog.h>
4030#endif
4031#ifdef HAVE_PATHS_H
4032# include <paths.h>
4033#endif
4034 ],
4035 [ char *lastlog = _PATH_LASTLOG; ],
4036 [ AC_MSG_RESULT(yes) ],
4037 [
f282b668 4038 AC_MSG_RESULT(no)
d7c0f3d5 4039 system_lastlog_path=no
4040 ])
4041 ]
1d7b9b20 4042)
d7c0f3d5 4043
1d7b9b20 4044if test -z "$conf_lastlog_location"; then
4045 if test x"$system_lastlog_path" = x"no" ; then
4046 for f in /var/log/lastlog /usr/adm/lastlog /var/adm/lastlog /etc/security/lastlog ; do
e5fe9a1f 4047 if (test -d "$f" || test -f "$f") ; then
1d7b9b20 4048 conf_lastlog_location=$f
4049 fi
4050 done
4051 if test -z "$conf_lastlog_location"; then
f8119cef 4052 AC_MSG_WARN([** Cannot find lastlog **])
4053 dnl Don't define DISABLE_LASTLOG - that means we don't try wtmp/wtmpx
1d7b9b20 4054 fi
4055 fi
4056fi
4057
4058if test -n "$conf_lastlog_location"; then
3466e002 4059 AC_DEFINE_UNQUOTED(CONF_LASTLOG_FILE, "$conf_lastlog_location",
4060 [Define if you want to specify the path to your lastlog file])
82f4e93d 4061fi
1d7b9b20 4062
4063dnl utmp detection
4064AC_MSG_CHECKING([if your system defines UTMP_FILE])
4065AC_TRY_COMPILE([
4066#include <sys/types.h>
4067#include <utmp.h>
d7c0f3d5 4068#ifdef HAVE_PATHS_H
1d7b9b20 4069# include <paths.h>
4070#endif
4071 ],
4072 [ char *utmp = UTMP_FILE; ],
4073 [ AC_MSG_RESULT(yes) ],
4074 [ AC_MSG_RESULT(no)
4075 system_utmp_path=no ]
4076)
4077if test -z "$conf_utmp_location"; then
4078 if test x"$system_utmp_path" = x"no" ; then
4079 for f in /etc/utmp /usr/adm/utmp /var/run/utmp; do
4080 if test -f $f ; then
4081 conf_utmp_location=$f
4082 fi
4083 done
4084 if test -z "$conf_utmp_location"; then
4085 AC_DEFINE(DISABLE_UTMP)
4086 fi
4087 fi
4088fi
4089if test -n "$conf_utmp_location"; then
3466e002 4090 AC_DEFINE_UNQUOTED(CONF_UTMP_FILE, "$conf_utmp_location",
4091 [Define if you want to specify the path to your utmp file])
82f4e93d 4092fi
1d7b9b20 4093
4094dnl wtmp detection
4095AC_MSG_CHECKING([if your system defines WTMP_FILE])
4096AC_TRY_COMPILE([
4097#include <sys/types.h>
4098#include <utmp.h>
d7c0f3d5 4099#ifdef HAVE_PATHS_H
1d7b9b20 4100# include <paths.h>
4101#endif
4102 ],
4103 [ char *wtmp = WTMP_FILE; ],
4104 [ AC_MSG_RESULT(yes) ],
4105 [ AC_MSG_RESULT(no)
4106 system_wtmp_path=no ]
4107)
4108if test -z "$conf_wtmp_location"; then
4109 if test x"$system_wtmp_path" = x"no" ; then
4110 for f in /usr/adm/wtmp /var/log/wtmp; do
4111 if test -f $f ; then
4112 conf_wtmp_location=$f
4113 fi
4114 done
4115 if test -z "$conf_wtmp_location"; then
4116 AC_DEFINE(DISABLE_WTMP)
4117 fi
4118 fi
4119fi
4120if test -n "$conf_wtmp_location"; then
3466e002 4121 AC_DEFINE_UNQUOTED(CONF_WTMP_FILE, "$conf_wtmp_location",
4122 [Define if you want to specify the path to your wtmp file])
82f4e93d 4123fi
1d7b9b20 4124
4125
4126dnl utmpx detection - I don't know any system so perverse as to require
4127dnl utmpx, but not define UTMPX_FILE (ditto wtmpx.) No doubt it's out
4128dnl there, though.
4129AC_MSG_CHECKING([if your system defines UTMPX_FILE])
4130AC_TRY_COMPILE([
4131#include <sys/types.h>
4132#include <utmp.h>
4133#ifdef HAVE_UTMPX_H
4134#include <utmpx.h>
4135#endif
d7c0f3d5 4136#ifdef HAVE_PATHS_H
1d7b9b20 4137# include <paths.h>
4138#endif
4139 ],
4140 [ char *utmpx = UTMPX_FILE; ],
4141 [ AC_MSG_RESULT(yes) ],
4142 [ AC_MSG_RESULT(no)
4143 system_utmpx_path=no ]
4144)
4145if test -z "$conf_utmpx_location"; then
4146 if test x"$system_utmpx_path" = x"no" ; then
4147 AC_DEFINE(DISABLE_UTMPX)
4148 fi
4149else
3466e002 4150 AC_DEFINE_UNQUOTED(CONF_UTMPX_FILE, "$conf_utmpx_location",
4151 [Define if you want to specify the path to your utmpx file])
82f4e93d 4152fi
1d7b9b20 4153
4154dnl wtmpx detection
4155AC_MSG_CHECKING([if your system defines WTMPX_FILE])
4156AC_TRY_COMPILE([
4157#include <sys/types.h>
4158#include <utmp.h>
4159#ifdef HAVE_UTMPX_H
4160#include <utmpx.h>
4161#endif
d7c0f3d5 4162#ifdef HAVE_PATHS_H
1d7b9b20 4163# include <paths.h>
4164#endif
4165 ],
4166 [ char *wtmpx = WTMPX_FILE; ],
4167 [ AC_MSG_RESULT(yes) ],
4168 [ AC_MSG_RESULT(no)
4169 system_wtmpx_path=no ]
4170)
4171if test -z "$conf_wtmpx_location"; then
4172 if test x"$system_wtmpx_path" = x"no" ; then
4173 AC_DEFINE(DISABLE_WTMPX)
4174 fi
4175else
3466e002 4176 AC_DEFINE_UNQUOTED(CONF_WTMPX_FILE, "$conf_wtmpx_location",
4177 [Define if you want to specify the path to your wtmpx file])
82f4e93d 4178fi
1d7b9b20 4179
b7a87eea 4180
bd499f9e 4181if test ! -z "$blibpath" ; then
68ece370 4182 LDFLAGS="$LDFLAGS $blibflags$blibpath"
4183 AC_MSG_WARN([Please check and edit blibpath in LDFLAGS in Makefile])
bd499f9e 4184fi
4185
ed89c848 4186dnl Adding -Werror to CFLAGS early prevents configure tests from running.
4187dnl Add now.
4188CFLAGS="$CFLAGS $werror_flags"
4189
edee47f5 4190if grep "#define BROKEN_GETADDRINFO 1" confdefs.h >/dev/null || \
4191 test "x$ac_cv_func_getaddrinfo" != "xyes" ; then
4192 AC_SUBST(TEST_SSH_IPV6, no)
4193else
4194 AC_SUBST(TEST_SSH_IPV6, yes)
4195fi
4196
3c62e7eb 4197AC_EXEEXT
29eadd7c 4198AC_CONFIG_FILES([Makefile buildpkg.sh opensshd.init openssh.xml \
4199 openbsd-compat/Makefile openbsd-compat/regress/Makefile \
4200 scard/Makefile ssh_prng_cmds survey.sh])
98a7c37b 4201AC_OUTPUT
d3083fbd 4202
cbd7492e 4203# Print summary of options
4204
cbd7492e 4205# Someone please show me a better way :)
4206A=`eval echo ${prefix}` ; A=`eval echo ${A}`
4207B=`eval echo ${bindir}` ; B=`eval echo ${B}`
4208C=`eval echo ${sbindir}` ; C=`eval echo ${C}`
4209D=`eval echo ${sysconfdir}` ; D=`eval echo ${D}`
f5665f6f 4210E=`eval echo ${libexecdir}/ssh-askpass` ; E=`eval echo ${E}`
e0c4d3ac 4211F=`eval echo ${mandir}/${mansubdir}X` ; F=`eval echo ${F}`
cbd7492e 4212G=`eval echo ${piddir}` ; G=`eval echo ${G}`
ecac8ee5 4213H=`eval echo ${PRIVSEP_PATH}` ; H=`eval echo ${H}`
4214I=`eval echo ${user_path}` ; I=`eval echo ${I}`
4215J=`eval echo ${superuser_path}` ; J=`eval echo ${J}`
cbd7492e 4216
4217echo ""
26de7942 4218echo "OpenSSH has been configured with the following options:"
ecac8ee5 4219echo " User binaries: $B"
4220echo " System binaries: $C"
4221echo " Configuration files: $D"
4222echo " Askpass program: $E"
4223echo " Manual pages: $F"
4224echo " PID file: $G"
4225echo " Privilege separation chroot path: $H"
95b99395 4226if test "x$external_path_file" = "x/etc/login.conf" ; then
4227echo " At runtime, sshd will use the path defined in $external_path_file"
4228echo " Make sure the path to scp is present, otherwise scp will not work"
8d184c09 4229else
ecac8ee5 4230echo " sshd default user PATH: $I"
89bbd457 4231 if test ! -z "$external_path_file"; then
95b99395 4232echo " (If PATH is set in $external_path_file it will be used instead. If"
4233echo " used, ensure the path to scp is present, otherwise scp will not work.)"
4234 fi
8d184c09 4235fi
06617857 4236if test ! -z "$superuser_path" ; then
ecac8ee5 4237echo " sshd superuser user PATH: $J"
4238fi
4239echo " Manpage format: $MANTYPE"
3e05e934 4240echo " PAM support: $PAM_MSG"
5b84789f 4241echo " OSF SIA support: $SIA_MSG"
ecac8ee5 4242echo " KerberosV support: $KRB5_MSG"
ef4d1846 4243echo " SELinux support: $SELINUX_MSG"
ecac8ee5 4244echo " Smartcard support: $SCARD_MSG"
ecac8ee5 4245echo " S/KEY support: $SKEY_MSG"
4246echo " TCP Wrappers support: $TCPW_MSG"
4247echo " MD5 password support: $MD5_MSG"
59031773 4248echo " libedit support: $LIBEDIT_MSG"
5b84789f 4249echo " Solaris process contract support: $SPC_MSG"
3deb1408 4250echo " IP address in \$DISPLAY hack: $DISPLAY_HACK_MSG"
ecac8ee5 4251echo " Translate v4 in v6 hack: $IPV4_IN6_HACK_MSG"
4252echo " BSD Auth support: $BSD_AUTH_MSG"
4253echo " Random number source: $RAND_MSG"
f1b0ecc3 4254if test ! -z "$USE_RAND_HELPER" ; then
ecac8ee5 4255echo " ssh-rand-helper collects from: $RAND_HELPER_MSG"
af774732 4256fi
4257
cbd7492e 4258echo ""
4259
0c2fb82f 4260echo " Host: ${host}"
4261echo " Compiler: ${CC}"
4262echo " Compiler flags: ${CFLAGS}"
4263echo "Preprocessor flags: ${CPPFLAGS}"
4264echo " Linker flags: ${LDFLAGS}"
e54defb4 4265echo " Libraries: ${LIBS}"
4266if test ! -z "${SSHDLIBS}"; then
4267echo " +for sshd: ${SSHDLIBS}"
4268fi
cbd7492e 4269
4270echo ""
4271
9cefe228 4272if test "x$MAKE_PACKAGE_SUPPORTED" = "xyes" ; then
b3146b5f 4273 echo "SVR4 style packages are supported with \"make package\""
4274 echo ""
9cefe228 4275fi
4276
adeebd37 4277if test "x$PAM_MSG" = "xyes" ; then
f1b0ecc3 4278 echo "PAM is enabled. You may need to install a PAM control file "
4279 echo "for sshd, otherwise password authentication may fail. "
aff51935 4280 echo "Example PAM control files can be found in the contrib/ "
f1b0ecc3 4281 echo "subdirectory"
adeebd37 4282 echo ""
4283fi
4284
f1b0ecc3 4285if test ! -z "$RAND_HELPER_CMDHASH" ; then
4286 echo "WARNING: you are using the builtin random number collection "
4287 echo "service. Please read WARNING.RNG and request that your OS "
4288 echo "vendor includes kernel-based random number collection in "
4289 echo "future versions of your OS."
2c523de9 4290 echo ""
4291fi
af774732 4292
2f6f9cff 4293if test ! -z "$NO_PEERCHECK" ; then
1961d660 4294 echo "WARNING: the operating system that you are using does not"
4295 echo "appear to support getpeereid(), getpeerucred() or the"
4296 echo "SO_PEERCRED getsockopt() option. These facilities are used to"
4297 echo "enforce security checks to prevent unauthorised connections to"
4298 echo "ssh-agent. Their absence increases the risk that a malicious"
4299 echo "user can connect to your agent."
2f6f9cff 4300 echo ""
4301fi
4302
7b578f7d 4303if test "$AUDIT_MODULE" = "bsm" ; then
4304 echo "WARNING: BSM audit support is currently considered EXPERIMENTAL."
4305 echo "See the Solaris section in README.platform for details."
4306fi
git-cvsimport mirror of OpenSSH
This page took 1.139009 seconds and 5 git commands to generate.