]> andersk Git - openssh.git/blame - configure.ac
andersk / openssh.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
- (dtucker) [openbsd-compat/{realpath.c,stroll.c,rresvport.c}] $OpenBSD tag.
[openssh.git] / configure.ac
CommitLineData
eb5d7ff6 1# $Id$
2b983b95 2#
3# Copyright (c) 1999-2004 Damien Miller
4#
5# Permission to use, copy, modify, and distribute this software for any
6# purpose with or without fee is hereby granted, provided that the above
7# copyright notice and this permission notice appear in all copies.
8#
9# THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
10# WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
11# MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR
12# ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
13# WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
14# ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
15# OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
0b202697 16
76e6410a 17AC_INIT(OpenSSH, Portable, openssh-unix-dev@mindrot.org)
98a7c37b 18AC_CONFIG_SRCDIR([ssh.c])
5881cd60 19
20AC_CONFIG_HEADER(config.h)
b14b2ae7 21AC_PROG_CC
a7effaac 22AC_CANONICAL_HOST
cf0c5df5 23AC_C_BIGENDIAN
5881cd60 24
a0391976 25# Checks for programs.
4bbf95fa 26AC_PROG_AWK
4cca272e 27AC_PROG_CPP
5881cd60 28AC_PROG_RANLIB
cf8dd513 29AC_PROG_INSTALL
bee0a37e 30AC_PATH_PROG(AR, ar)
ddd8c95b 31AC_PATH_PROG(CAT, cat)
32AC_PATH_PROG(KILL, kill)
13dd877b 33AC_PATH_PROGS(PERL, perl5 perl)
c3690df3 34AC_PATH_PROG(SED, sed)
a0f84251 35AC_SUBST(PERL)
ad85db64 36AC_PATH_PROG(ENT, ent)
37AC_SUBST(ENT)
6958bd37 38AC_PATH_PROG(TEST_MINUS_S_SH, bash)
39AC_PATH_PROG(TEST_MINUS_S_SH, ksh)
40AC_PATH_PROG(TEST_MINUS_S_SH, sh)
6193497b 41AC_PATH_PROG(SH, sh)
a3245b92 42AC_SUBST(TEST_SHELL,sh)
f498ed15 43
9cefe228 44dnl for buildpkg.sh
45AC_PATH_PROG(PATH_GROUPADD_PROG, groupadd, groupadd,
46 [/usr/sbin${PATH_SEPARATOR}/etc])
47AC_PATH_PROG(PATH_USERADD_PROG, useradd, useradd,
48 [/usr/sbin${PATH_SEPARATOR}/etc])
49AC_CHECK_PROG(MAKE_PACKAGE_SUPPORTED, pkgmk, yes, no)
50
948fd8b9 51# System features
52AC_SYS_LARGEFILE
53
c193d002 54if test -z "$AR" ; then
55 AC_MSG_ERROR([*** 'ar' missing, please install or fix your \$PATH ***])
56fi
57
2e73a022 58# Use LOGIN_PROGRAM from environment if possible
59if test ! -z "$LOGIN_PROGRAM" ; then
3466e002 60 AC_DEFINE_UNQUOTED(LOGIN_PROGRAM_FALLBACK, "$LOGIN_PROGRAM",
61 [If your header files don't define LOGIN_PROGRAM,
62 then use this (detected) from environment and PATH])
2e73a022 63else
64 # Search for login
65 AC_PATH_PROG(LOGIN_PROGRAM_FALLBACK, login)
66 if test ! -z "$LOGIN_PROGRAM_FALLBACK" ; then
67 AC_DEFINE_UNQUOTED(LOGIN_PROGRAM_FALLBACK, "$LOGIN_PROGRAM_FALLBACK")
68 fi
69fi
70
37656beb 71AC_PATH_PROG(PATH_PASSWD_PROG, passwd)
72if test ! -z "$PATH_PASSWD_PROG" ; then
3466e002 73 AC_DEFINE_UNQUOTED(_PATH_PASSWD_PROG, "$PATH_PASSWD_PROG",
74 [Full path of your "passwd" program])
37656beb 75fi
76
d423d822 77if test -z "$LD" ; then
78 LD=$CC
79fi
80AC_SUBST(LD)
82f4e93d 81
d423d822 82AC_C_INLINE
dfafb2e1 83
84AC_CHECK_DECL(LLONG_MAX, have_llong_max=1, , [#include <limits.h>])
85
aff51935 86if test "$GCC" = "yes" || test "$GCC" = "egcs"; then
af40ca44 87 CFLAGS="$CFLAGS -Wall -Wpointer-arith -Wuninitialized"
cd595991 88 GCC_VER=`$CC -v 2>&1 | awk '/gcc version /{print $3}'`
5fdabf45 89 case $GCC_VER in
90 1.*) ;;
91 2.8* | 2.9*) CFLAGS="$CFLAGS -Wsign-compare" ;;
92 2.*) ;;
dbf07ba2 93 3.*) CFLAGS="$CFLAGS -Wsign-compare" ;;
cd595991 94 4.*) CFLAGS="$CFLAGS -Wsign-compare -Wno-pointer-sign" ;;
95 *) ;;
5fdabf45 96 esac
8a3ff1aa 97
dfafb2e1 98 if test -z "$have_llong_max"; then
99 # retry LLONG_MAX with -std=gnu99, needed on some Linuxes
100 unset ac_cv_have_decl_LLONG_MAX
101 saved_CFLAGS="$CFLAGS"
102 CFLAGS="$CFLAGS -std=gnu99"
103 AC_CHECK_DECL(LLONG_MAX,
104 [have_llong_max=1],
105 [CFLAGS="$saved_CFLAGS"],
106 [#include <limits.h>]
107 )
108 fi
d423d822 109fi
110
e6354014 111AC_ARG_WITH(rpath,
112 [ --without-rpath Disable auto-added -R linker paths],
113 [
82f4e93d 114 if test "x$withval" = "xno" ; then
e6354014 115 need_dash_r=""
116 fi
117 if test "x$withval" = "xyes" ; then
118 need_dash_r=1
119 fi
120 ]
121)
122
a0391976 123# Check for some target-specific stuff
a7effaac 124case "$host" in
9d6b1b96 125*-*-aix*)
aff51935 126 AC_MSG_CHECKING([how to specify blibpath for linker ($LD)])
68ece370 127 if (test -z "$blibpath"); then
0a15d73b 128 blibpath="/usr/lib:/lib"
68ece370 129 fi
130 saved_LDFLAGS="$LDFLAGS"
131 for tryflags in -blibpath: -Wl,-blibpath: -Wl,-rpath, ;do
132 if (test -z "$blibflags"); then
133 LDFLAGS="$saved_LDFLAGS $tryflags$blibpath"
134 AC_TRY_LINK([], [], [blibflags=$tryflags])
135 fi
136 done
137 if (test -z "$blibflags"); then
138 AC_MSG_RESULT(not found)
139 AC_MSG_ERROR([*** must be able to specify blibpath on AIX - check config.log])
140 else
141 AC_MSG_RESULT($blibflags)
bd499f9e 142 fi
68ece370 143 LDFLAGS="$saved_LDFLAGS"
e351e493 144 dnl Check for authenticate. Might be in libs.a on older AIXes
3466e002 145 AC_CHECK_FUNC(authenticate, [AC_DEFINE(WITH_AIXAUTHENTICATE, 1,
146 [Define if you want to enable AIX4's authenticate function])],
0764e748 147 [AC_CHECK_LIB(s,authenticate,
e351e493 148 [ AC_DEFINE(WITH_AIXAUTHENTICATE)
0764e748 149 LIBS="$LIBS -ls"
150 ])
151 ])
ba603e06 152 dnl Check for various auth function declarations in headers.
c85ed8e2 153 AC_CHECK_DECLS([authenticate, loginrestrictions, loginsuccess,
72ad335d 154 passwdexpired, setauthdb], , , [#include <usersec.h>])
e351e493 155 dnl Check if loginfailed is declared and takes 4 arguments (AIX >= 5.2)
ba603e06 156 AC_CHECK_DECLS(loginfailed,
e351e493 157 [AC_MSG_CHECKING(if loginfailed takes 4 arguments)
158 AC_TRY_COMPILE(
f58c0e01 159 [#include <usersec.h>],
e351e493 160 [(void)loginfailed("user","host","tty",0);],
161 [AC_MSG_RESULT(yes)
3466e002 162 AC_DEFINE(AIX_LOGINFAILED_4ARG, 1,
163 [Define if your AIX loginfailed() function
164 takes 4 arguments (AIX >= 5.2)])],
f58c0e01 165 [AC_MSG_RESULT(no)]
e351e493 166 )],
167 [],
168 [#include <usersec.h>]
169 )
2aa3a16c 170 AC_CHECK_FUNCS(setauthdb)
5ccf88cb 171 check_for_aix_broken_getaddrinfo=1
3466e002 172 AC_DEFINE(BROKEN_REALPATH, 1, [Define if you have a broken realpath.])
173 AC_DEFINE(SETEUID_BREAKS_SETUID, 1,
174 [Define if your platform breaks doing a seteuid before a setuid])
175 AC_DEFINE(BROKEN_SETREUID, 1, [Define if your setreuid() is broken])
176 AC_DEFINE(BROKEN_SETREGID, 1, [Define if your setregid() is broken])
a3cef3ca 177 dnl AIX handles lastlog as part of its login message
3466e002 178 AC_DEFINE(DISABLE_LASTLOG, 1, [Define if you don't want to use lastlog])
179 AC_DEFINE(LOGIN_NEEDS_UTMPX, 1,
180 [Some systems need a utmpx entry for /bin/login to work])
181 AC_DEFINE(SPT_TYPE,SPT_REUSEARGV,
182 [Define to a Set Process Title type if your system is
183 supported by bsd-setproctitle.c])
9d6b1b96 184 ;;
3c62e7eb 185*-*-cygwin*)
a52997bd 186 check_for_libcrypt_later=1
ffb8d130 187 LIBS="$LIBS /usr/lib/textmode.o"
3466e002 188 AC_DEFINE(HAVE_CYGWIN, 1, [Define if you are on Cygwin])
189 AC_DEFINE(USE_PIPES, 1, [Use PIPES instead of a socketpair()])
190 AC_DEFINE(DISABLE_SHADOW, 1,
191 [Define if you want to disable shadow passwords])
192 AC_DEFINE(IP_TOS_IS_BROKEN, 1,
193 [Define if your system choked on IP TOS setting])
194 AC_DEFINE(NO_X11_UNIX_SOCKETS, 1,
195 [Define if X11 doesn't support AF_UNIX sockets on that system])
196 AC_DEFINE(NO_IPPORT_RESERVED_CONCEPT, 1,
197 [Define if the concept of ports only accessible to
198 superusers isn't known])
199 AC_DEFINE(DISABLE_FD_PASSING, 1,
200 [Define if your platform needs to skip post auth
201 file descriptor passing])
3c62e7eb 202 ;;
d6fdb079 203*-*-dgux*)
204 AC_DEFINE(IP_TOS_IS_BROKEN)
0c6a72a5 205 AC_DEFINE(SETEUID_BREAKS_SETUID)
206 AC_DEFINE(BROKEN_SETREUID)
207 AC_DEFINE(BROKEN_SETREGID)
d6fdb079 208 ;;
39c98ef7 209*-*-darwin*)
33e2e066 210 AC_MSG_CHECKING(if we have working getaddrinfo)
211 AC_TRY_RUN([#include <mach-o/dyld.h>
212main() { if (NSVersionOfRunTimeLibrary("System") >= (60 << 16))
213 exit(0);
214 else
215 exit(1);
216}], [AC_MSG_RESULT(working)],
217 [AC_MSG_RESULT(buggy)
3466e002 218 AC_DEFINE(BROKEN_GETADDRINFO, 1, [getaddrinfo is broken (if present)])],
b27e573d 219 [AC_MSG_RESULT(assume it is working)])
635e0c42 220 AC_DEFINE(SETEUID_BREAKS_SETUID)
221 AC_DEFINE(BROKEN_SETREUID)
222 AC_DEFINE(BROKEN_SETREGID)
3466e002 223 AC_DEFINE_UNQUOTED(BIND_8_COMPAT, 1,
224 [Define if your resolver libs need this for getrrsetbyname])
39c98ef7 225 ;;
7d458c86 226*-*-hpux*)
227 # first we define all of the options common to all HP-UX releases
b8fea62d 228 CPPFLAGS="$CPPFLAGS -D_HPUX_SOURCE -D_XOPEN_SOURCE -D_XOPEN_SOURCE_EXTENDED=1"
44839801 229 IPADDR_IN_DISPLAY=yes
2b10f47a 230 AC_DEFINE(USE_PIPES)
3466e002 231 AC_DEFINE(LOGIN_NO_ENDOPT, 1,
232 [Define if your login program cannot handle end of options ("--")])
a2572aa7 233 AC_DEFINE(LOGIN_NEEDS_UTMPX)
3466e002 234 AC_DEFINE(LOCKED_PASSWD_STRING, "*",
235 [String used in /etc/passwd to denote locked account])
3a2b2b44 236 AC_DEFINE(SPT_TYPE,SPT_PSTAT)
83f987c3 237 MAIL="/var/mail/username"
f75ca46d 238 LIBS="$LIBS -lsec"
7d458c86 239 AC_CHECK_LIB(xnet, t_error, ,
240 AC_MSG_ERROR([*** -lxnet needed on HP-UX - check config.log ***]))
241
242 # next, we define all of the options specific to major releases
243 case "$host" in
244 *-*-hpux10*)
245 if test -z "$GCC"; then
246 CFLAGS="$CFLAGS -Ae"
247 fi
248 ;;
249 *-*-hpux11*)
3466e002 250 AC_DEFINE(PAM_SUN_CODEBASE, 1,
251 [Define if you are using Solaris-derived PAM which
252 passes pam_messages to the conversation function
253 with an extra level of indirection])
254 AC_DEFINE(DISABLE_UTMP, 1,
255 [Define if you don't want to use utmp])
7d458c86 256 AC_DEFINE(USE_BTMP, 1, [Use btmp to log bad logins])
257 check_for_hpux_broken_getaddrinfo=1
258 check_for_conflicting_getspnam=1
259 ;;
260 esac
261
262 # lastly, we define options specific to minor releases
263 case "$host" in
264 *-*-hpux10.26)
3466e002 265 AC_DEFINE(HAVE_SECUREWARE, 1,
266 [Define if you have SecureWare-based
267 protected password database])
7d458c86 268 disable_ptmx_check=yes
269 LIBS="$LIBS -lsecpw"
270 ;;
271 esac
2b763e31 272 ;;
d94aa2ae 273*-*-irix5*)
6ac7829a 274 PATH="$PATH:/usr/etc"
3466e002 275 AC_DEFINE(BROKEN_INET_NTOA, 1,
276 [Define if you system's inet_ntoa is busted
277 (e.g. Irix gcc issue)])
cb433561 278 AC_DEFINE(SETEUID_BREAKS_SETUID)
279 AC_DEFINE(BROKEN_SETREUID)
280 AC_DEFINE(BROKEN_SETREGID)
3466e002 281 AC_DEFINE(WITH_ABBREV_NO_TTY, 1,
282 [Define if you shouldn't strip 'tty' from your
283 ttyname in [uw]tmp])
3e6e3da0 284 AC_DEFINE(LOCKED_PASSWD_STRING, "*LK*")
b9795b89 285 ;;
286*-*-irix6*)
6ac7829a 287 PATH="$PATH:/usr/etc"
3466e002 288 AC_DEFINE(WITH_IRIX_ARRAY, 1,
289 [Define if you have/want arrays
290 (cluster-wide session managment, not C arrays)])
291 AC_DEFINE(WITH_IRIX_PROJECT, 1,
292 [Define if you want IRIX project management])
293 AC_DEFINE(WITH_IRIX_AUDIT, 1,
294 [Define if you want IRIX audit trails])
295 AC_CHECK_FUNC(jlimit_startjob, [AC_DEFINE(WITH_IRIX_JOBS, 1,
296 [Define if you want IRIX kernel jobs])])
416ed5a7 297 AC_DEFINE(BROKEN_INET_NTOA)
412c0eaa 298 AC_DEFINE(SETEUID_BREAKS_SETUID)
299 AC_DEFINE(BROKEN_SETREUID)
300 AC_DEFINE(BROKEN_SETREGID)
3466e002 301 AC_DEFINE(BROKEN_UPDWTMPX, 1, [updwtmpx is broken (if present)])
0e8f4eba 302 AC_DEFINE(WITH_ABBREV_NO_TTY)
3e6e3da0 303 AC_DEFINE(LOCKED_PASSWD_STRING, "*LK*")
d94aa2ae 304 ;;
5cdfe03f 305*-*-linux*)
306 no_dev_ptmx=1
717057b6 307 check_for_libcrypt_later=1
eacb954e 308 check_for_openpty_ctty_bug=1
3466e002 309 AC_DEFINE(DONT_TRY_OTHER_AF, 1, [Workaround more Linux IPv6 quirks])
310 AC_DEFINE(PAM_TTY_KLUDGE, 1,
311 [Work around problematic Linux PAM modules handling of PAM_TTY])
312 AC_DEFINE(LOCKED_PASSWD_PREFIX, "!",
313 [String used in /etc/passwd to denote locked account])
3a2b2b44 314 AC_DEFINE(SPT_TYPE,SPT_REUSEARGV)
3466e002 315 AC_DEFINE(LINK_OPNOTSUPP_ERRNO, EPERM,
316 [Define to whatever link() returns for "not supported"
317 if it doesn't return EOPNOTSUPP.])
b6610e8f 318 AC_DEFINE(_PATH_BTMP, "/var/log/btmp", [log for bad login attempts])
3466e002 319 AC_DEFINE(USE_BTMP)
80faa19f 320 inet6_default_4in6=yes
bf7c1e6c 321 case `uname -r` in
ad84c479 322 1.*|2.0.*)
3466e002 323 AC_DEFINE(BROKEN_CMSG_TYPE, 1,
324 [Define if cmsg_type is not passed correctly])
bf7c1e6c 325 ;;
bf7c1e6c 326 esac
5cdfe03f 327 ;;
66d6c27e 328mips-sony-bsd|mips-sony-newsos4)
3466e002 329 AC_DEFINE(NEED_SETPRGP, 1, [Need setpgrp to acquire controlling tty])
66d6c27e 330 SONY=1
66d6c27e 331 ;;
d468fc76 332*-*-netbsd*)
33e2e066 333 check_for_libcrypt_before=1
82f4e93d 334 if test "x$withval" != "xno" ; then
e6354014 335 need_dash_r=1
336 fi
d468fc76 337 ;;
86b416a7 338*-*-freebsd*)
339 check_for_libcrypt_later=1
988c5031 340 AC_DEFINE(LOCKED_PASSWD_PREFIX, "*LOCKED*", [Account locked with pw(1)])
86b416a7 341 ;;
8707b7eb 342*-*-bsdi*)
343 AC_DEFINE(SETEUID_BREAKS_SETUID)
344 AC_DEFINE(BROKEN_SETREUID)
345 AC_DEFINE(BROKEN_SETREGID)
346 ;;
729bfe59 347*-next-*)
729bfe59 348 conf_lastlog_location="/usr/adm/lastlog"
698d107e 349 conf_utmp_location=/etc/utmp
350 conf_wtmp_location=/usr/adm/wtmp
351 MAIL=/usr/spool/mail
3466e002 352 AC_DEFINE(HAVE_NEXT, 1, [Define if you are on NeXT])
443172c4 353 AC_DEFINE(BROKEN_REALPATH)
00937921 354 AC_DEFINE(USE_PIPES)
3466e002 355 AC_DEFINE(BROKEN_SAVED_UIDS, 1, [Needed for NeXT])
729bfe59 356 ;;
5b7b5e23 357*-*-openbsd*)
358 AC_DEFINE(HAVE_ATTRIBUTE__SENTINEL__, 1, [OpenBSD's gcc has sentinel])
8034a348 359 AC_DEFINE(HAVE_ATTRIBUTE__BOUNDED__, 1, [OpenBSD's gcc has bounded])
5b7b5e23 360 ;;
9d6b1b96 361*-*-solaris*)
82f4e93d 362 if test "x$withval" != "xno" ; then
010e9d5b 363 need_dash_r=1
364 fi
adeebd37 365 AC_DEFINE(PAM_SUN_CODEBASE)
7e2d5fa4 366 AC_DEFINE(LOGIN_NEEDS_UTMPX)
3466e002 367 AC_DEFINE(LOGIN_NEEDS_TERM, 1,
368 [Some versions of /bin/login need the TERM supplied
369 on the commandline])
7f0a4ff1 370 AC_DEFINE(PAM_TTY_KLUDGE)
3466e002 371 AC_DEFINE(SSHPAM_CHAUTHTOK_NEEDS_RUID, 1,
372 [Define if pam_chauthtok wants real uid set
373 to the unpriv'ed user])
3e6e3da0 374 AC_DEFINE(LOCKED_PASSWD_STRING, "*LK*")
ad84c479 375 # Pushing STREAMS modules will cause sshd to acquire a controlling tty.
3466e002 376 AC_DEFINE(SSHD_ACQUIRES_CTTY, 1,
377 [Define if sshd somehow reacquires a controlling TTY
378 after setsid()])
95b99395 379 external_path_file=/etc/default/login
1d7b9b20 380 # hardwire lastlog location (can't detect it on some versions)
381 conf_lastlog_location="/var/adm/lastlog"
32c80420 382 AC_MSG_CHECKING(for obsolete utmp and wtmp in solaris2.x)
383 sol2ver=`echo "$host"| sed -e 's/.*[[0-9]]\.//'`
384 if test "$sol2ver" -ge 8; then
385 AC_MSG_RESULT(yes)
386 AC_DEFINE(DISABLE_UTMP)
3466e002 387 AC_DEFINE(DISABLE_WTMP, 1,
388 [Define if you don't want to use wtmp])
32c80420 389 else
390 AC_MSG_RESULT(no)
391 fi
9d6b1b96 392 ;;
a423beaf 393*-*-sunos4*)
0c2fb82f 394 CPPFLAGS="$CPPFLAGS -DSUNOS4"
a423beaf 395 AC_CHECK_FUNCS(getpwanam)
adeebd37 396 AC_DEFINE(PAM_SUN_CODEBASE)
32eec038 397 conf_utmp_location=/etc/utmp
398 conf_wtmp_location=/var/adm/wtmp
399 conf_lastlog_location=/var/adm/lastlog
137d7b6c 400 AC_DEFINE(USE_PIPES)
a423beaf 401 ;;
6f68f28a 402*-ncr-sysv*)
98a7c37b 403 LIBS="$LIBS -lc89"
29525240 404 AC_DEFINE(USE_PIPES)
eabb99c6 405 AC_DEFINE(SSHD_ACQUIRES_CTTY)
6fb3618d 406 AC_DEFINE(SETEUID_BREAKS_SETUID)
407 AC_DEFINE(BROKEN_SETREUID)
408 AC_DEFINE(BROKEN_SETREGID)
6f68f28a 409 ;;
132dd316 410*-sni-sysv*)
c8c15bcb 411 # /usr/ucblib MUST NOT be searched on ReliantUNIX
e2798e96 412 AC_CHECK_LIB(dl, dlsym, ,)
85cf54ec 413 # -lresolv needs to be at then end of LIBS or DNS lookups break
414 AC_CHECK_LIB(res_query, resolv, [ LIBS="$LIBS -lresolv" ])
9548d6c8 415 IPADDR_IN_DISPLAY=yes
416 AC_DEFINE(USE_PIPES)
132dd316 417 AC_DEFINE(IP_TOS_IS_BROKEN)
605369bb 418 AC_DEFINE(SETEUID_BREAKS_SETUID)
419 AC_DEFINE(BROKEN_SETREUID)
420 AC_DEFINE(BROKEN_SETREGID)
eabb99c6 421 AC_DEFINE(SSHD_ACQUIRES_CTTY)
95b99395 422 external_path_file=/etc/default/login
c8c15bcb 423 # /usr/ucblib/libucb.a no longer needed on ReliantUNIX
424 # Attention: always take care to bind libsocket and libnsl before libc,
425 # otherwise you will find lots of "SIOCGPGRP errno 22" on syslog
132dd316 426 ;;
79a7ba96 427# UnixWare 1.x, UnixWare 2.x, and others based on code from Univel.
77bb0bca 428*-*-sysv4.2*)
ed6553e2 429 AC_DEFINE(USE_PIPES)
7ed101c0 430 AC_DEFINE(SETEUID_BREAKS_SETUID)
431 AC_DEFINE(BROKEN_SETREUID)
432 AC_DEFINE(BROKEN_SETREGID)
46f853b9 433 AC_DEFINE(PASSWD_NEEDS_USERNAME, 1, [must supply username to passwd])
77bb0bca 434 ;;
79a7ba96 435# UnixWare 7.x, OpenUNIX 8
77bb0bca 436*-*-sysv5*)
d7d2cc6e 437 check_for_libcrypt_later=1
438 AC_DEFINE(UNIXWARE_LONG_PASSWORDS, 1, [Support passwords > 8 chars])
ed6553e2 439 AC_DEFINE(USE_PIPES)
7ed101c0 440 AC_DEFINE(SETEUID_BREAKS_SETUID)
441 AC_DEFINE(BROKEN_SETREUID)
442 AC_DEFINE(BROKEN_SETREGID)
3466e002 443 AC_DEFINE(PASSWD_NEEDS_USERNAME)
822015dd 444 case "$host" in
445 *-*-sysv5SCO_SV*) # SCO OpenServer 6.x
446 TEST_SHELL=/u95/bin/sh
3466e002 447 AC_DEFINE(BROKEN_LIBIAF, 1,
448 [ia_uinfo routines not supported by OS yet])
822015dd 449 ;;
450 esac
77bb0bca 451 ;;
9d6b1b96 452*-*-sysv*)
9d6b1b96 453 ;;
79a7ba96 454# SCO UNIX and OEM versions of SCO UNIX
77bb0bca 455*-*-sco3.2v4*)
11cf4f1f 456 AC_MSG_ERROR("This Platform is no longer supported.")
77bb0bca 457 ;;
79a7ba96 458# SCO OpenServer 5.x
77bb0bca 459*-*-sco3.2v5*)
21710e39 460 if test -z "$GCC"; then
461 CFLAGS="$CFLAGS -belf"
462 fi
ed6553e2 463 LIBS="$LIBS -lprot -lx -ltinfo -lm"
509b1f88 464 no_dev_ptmx=1
ed6553e2 465 AC_DEFINE(USE_PIPES)
6e879cb4 466 AC_DEFINE(HAVE_SECUREWARE)
d287c664 467 AC_DEFINE(DISABLE_SHADOW)
94d8258b 468 AC_DEFINE(DISABLE_FD_PASSING)
7ed101c0 469 AC_DEFINE(SETEUID_BREAKS_SETUID)
470 AC_DEFINE(BROKEN_SETREUID)
471 AC_DEFINE(BROKEN_SETREGID)
bcebad47 472 AC_DEFINE(WITH_ABBREV_NO_TTY)
34f2baf0 473 AC_DEFINE(BROKEN_UPDWTMPX)
3466e002 474 AC_DEFINE(PASSWD_NEEDS_USERNAME)
aca75d94 475 AC_CHECK_FUNCS(getluid setluid)
533875af 476 MANTYPE=man
a3245b92 477 TEST_SHELL=ksh
509b1f88 478 ;;
ccbb983c 479*-*-unicosmk*)
3466e002 480 AC_DEFINE(NO_SSH_LASTLOG, 1,
481 [Define if you don't want to use lastlog in session.c])
c1ad5966 482 AC_DEFINE(SETEUID_BREAKS_SETUID)
483 AC_DEFINE(BROKEN_SETREUID)
484 AC_DEFINE(BROKEN_SETREGID)
ccbb983c 485 AC_DEFINE(USE_PIPES)
486 AC_DEFINE(DISABLE_FD_PASSING)
487 LDFLAGS="$LDFLAGS"
488 LIBS="$LIBS -lgen -lrsc -lshare -luex -lacm"
489 MANTYPE=cat
d262b7f2 490 ;;
7b9a8c6e 491*-*-unicosmp*)
c1ad5966 492 AC_DEFINE(SETEUID_BREAKS_SETUID)
493 AC_DEFINE(BROKEN_SETREUID)
494 AC_DEFINE(BROKEN_SETREGID)
7b9a8c6e 495 AC_DEFINE(WITH_ABBREV_NO_TTY)
496 AC_DEFINE(USE_PIPES)
497 AC_DEFINE(DISABLE_FD_PASSING)
498 LDFLAGS="$LDFLAGS"
c1ad5966 499 LIBS="$LIBS -lgen -lacid -ldb"
7b9a8c6e 500 MANTYPE=cat
501 ;;
ca5c7d6a 502*-*-unicos*)
c1ad5966 503 AC_DEFINE(SETEUID_BREAKS_SETUID)
504 AC_DEFINE(BROKEN_SETREUID)
505 AC_DEFINE(BROKEN_SETREGID)
ca5c7d6a 506 AC_DEFINE(USE_PIPES)
94d8258b 507 AC_DEFINE(DISABLE_FD_PASSING)
ef51930f 508 AC_DEFINE(NO_SSH_LASTLOG)
ccbb983c 509 LDFLAGS="$LDFLAGS -Wl,-Dmsglevel=334:fatal"
510 LIBS="$LIBS -lgen -lrsc -lshare -luex -lacm"
511 MANTYPE=cat
a704dd54 512 ;;
4d33e531 513*-dec-osf*)
99c8ddac 514 AC_MSG_CHECKING(for Digital Unix SIA)
515 no_osfsia=""
516 AC_ARG_WITH(osfsia,
517 [ --with-osfsia Enable Digital Unix SIA],
518 [
519 if test "x$withval" = "xno" ; then
520 AC_MSG_RESULT(disabled)
521 no_osfsia=1
522 fi
523 ],
524 )
525 if test -z "$no_osfsia" ; then
4d33e531 526 if test -f /etc/sia/matrix.conf; then
527 AC_MSG_RESULT(yes)
3466e002 528 AC_DEFINE(HAVE_OSF_SIA, 1,
529 [Define if you have Digital Unix Security
530 Integration Architecture])
531 AC_DEFINE(DISABLE_LOGIN, 1,
532 [Define if you don't want to use your
533 system's login() call])
58d0df4e 534 AC_DEFINE(DISABLE_FD_PASSING)
4d33e531 535 LIBS="$LIBS -lsecurity -ldb -lm -laud"
536 else
537 AC_MSG_RESULT(no)
3466e002 538 AC_DEFINE(LOCKED_PASSWD_SUBSTR, "Nologin",
539 [String used in /etc/passwd to denote locked account])
4d33e531 540 fi
541 fi
a6e67b60 542 AC_DEFINE(BROKEN_GETADDRINFO)
f4f2ff4f 543 AC_DEFINE(SETEUID_BREAKS_SETUID)
08da2d08 544 AC_DEFINE(BROKEN_SETREUID)
545 AC_DEFINE(BROKEN_SETREGID)
4d33e531 546 ;;
41cb4569 547
548*-*-nto-qnx)
549 AC_DEFINE(USE_PIPES)
550 AC_DEFINE(NO_X11_UNIX_SOCKETS)
3466e002 551 AC_DEFINE(MISSING_NFDBITS, 1, [Define on *nto-qnx systems])
552 AC_DEFINE(MISSING_HOWMANY, 1, [Define on *nto-qnx systems])
553 AC_DEFINE(MISSING_FD_MASK, 1, [Define on *nto-qnx systems])
41cb4569 554 ;;
35fc74ed 555
556*-*-ultrix*)
3466e002 557 AC_DEFINE(BROKEN_GETGROUPS, 1, [getgroups(0,NULL) will return -1])
558 AC_DEFINE(BROKEN_MMAP, 1, [Ultrix mmap can't map files])
559 AC_DEFINE(NEED_SETPRGP)
b5765e1d 560 AC_DEFINE(HAVE_SYS_SYSLOG_H, 1, [Force use of sys/syslog.h on Ultrix])
561 ;;
157b6700 562
563*-*-lynxos)
564 CFLAGS="$CFLAGS -D__NO_INCLUDE_WARN__"
3466e002 565 AC_DEFINE(MISSING_HOWMANY)
157b6700 566 AC_DEFINE(BROKEN_SETVBUF, 1, [LynxOS has broken setvbuf() implementation])
567 ;;
a7effaac 568esac
569
8e7b16f8 570# Allow user to specify flags
571AC_ARG_WITH(cflags,
572 [ --with-cflags Specify additional flags to pass to compiler],
573 [
6cf0200f 574 if test -n "$withval" && test "x$withval" != "xno" && \
575 test "x${withval}" != "xyes"; then
8e7b16f8 576 CFLAGS="$CFLAGS $withval"
577 fi
82f4e93d 578 ]
8e7b16f8 579)
0c2fb82f 580AC_ARG_WITH(cppflags,
581 [ --with-cppflags Specify additional flags to pass to preprocessor] ,
582 [
6cf0200f 583 if test -n "$withval" && test "x$withval" != "xno" && \
584 test "x${withval}" != "xyes"; then
0c2fb82f 585 CPPFLAGS="$CPPFLAGS $withval"
586 fi
587 ]
588)
8e7b16f8 589AC_ARG_WITH(ldflags,
97b378bf 590 [ --with-ldflags Specify additional flags to pass to linker],
8e7b16f8 591 [
6cf0200f 592 if test -n "$withval" && test "x$withval" != "xno" && \
593 test "x${withval}" != "xyes"; then
8e7b16f8 594 LDFLAGS="$LDFLAGS $withval"
595 fi
82f4e93d 596 ]
8e7b16f8 597)
598AC_ARG_WITH(libs,
599 [ --with-libs Specify additional libraries to link with],
600 [
6cf0200f 601 if test -n "$withval" && test "x$withval" != "xno" && \
602 test "x${withval}" != "xyes"; then
8e7b16f8 603 LIBS="$LIBS $withval"
604 fi
82f4e93d 605 ]
8e7b16f8 606)
ed89c848 607AC_ARG_WITH(Werror,
608 [ --with-Werror Build main code with -Werror],
609 [
610 if test -n "$withval" && test "x$withval" != "xno"; then
611 werror_flags="-Werror"
1012885d 612 if test "x${withval}" != "xyes"; then
ed89c848 613 werror_flags="$withval"
614 fi
615 fi
616 ]
617)
8e7b16f8 618
c5829391 619AC_MSG_CHECKING(compiler and flags for sanity)
479cece8 620AC_RUN_IFELSE(
621 [AC_LANG_SOURCE([
c5829391 622#include <stdio.h>
623int main(){exit(0);}
479cece8 624 ])],
c5829391 625 [ AC_MSG_RESULT(yes) ],
626 [
627 AC_MSG_RESULT(no)
628 AC_MSG_ERROR([*** compiler cannot create working executables, check config.log ***])
1a01a50c 629 ],
630 [ AC_MSG_WARN([cross compiling: not checking compiler sanity]) ]
c5829391 631)
632
b04a9f8c 633dnl Checks for header files.
634AC_CHECK_HEADERS( \
635 bstring.h \
636 crypt.h \
637 dirent.h \
638 endian.h \
639 features.h \
640 floatingpoint.h \
641 getopt.h \
642 glob.h \
643 ia.h \
4c653d8e 644 iaf.h \
b04a9f8c 645 lastlog.h \
646 limits.h \
647 login.h \
648 login_cap.h \
649 maillock.h \
650 ndir.h \
651 netdb.h \
652 netgroup.h \
653 netinet/in_systm.h \
654 pam/pam_appl.h \
655 paths.h \
656 pty.h \
657 readpassphrase.h \
658 rpc/types.h \
659 security/pam_appl.h \
660 shadow.h \
661 stddef.h \
662 stdint.h \
0957c2cf 663 string.h \
b04a9f8c 664 strings.h \
665 sys/audit.h \
666 sys/bitypes.h \
667 sys/bsdtty.h \
668 sys/cdefs.h \
669 sys/dir.h \
670 sys/mman.h \
671 sys/ndir.h \
672 sys/prctl.h \
673 sys/pstat.h \
674 sys/select.h \
675 sys/stat.h \
676 sys/stream.h \
677 sys/stropts.h \
678 sys/strtio.h \
679 sys/sysmacros.h \
680 sys/time.h \
681 sys/timers.h \
682 sys/un.h \
683 time.h \
684 tmpdir.h \
685 ttyent.h \
25dd2ce6 686 unistd.h \
b04a9f8c 687 usersec.h \
688 util.h \
689 utime.h \
690 utmp.h \
691 utmpx.h \
ea76f54c 692 vis.h \
b04a9f8c 693)
ddceb1c8 694
765a24cd 695# sys/ptms.h requires sys/stream.h to be included first on Solaris
696AC_CHECK_HEADERS(sys/ptms.h, [], [], [
697#ifdef HAVE_SYS_STREAM_H
698# include <sys/stream.h>
699#endif
700])
701
a0391976 702# Checks for libraries.
98a7c37b 703AC_CHECK_FUNC(yp_match, , AC_CHECK_LIB(nsl, yp_match))
704AC_CHECK_FUNC(setsockopt, , AC_CHECK_LIB(socket, setsockopt))
2c523de9 705
446227d6 706dnl IRIX and Solaris 2.5.1 have dirname() in libgen
707AC_CHECK_FUNCS(dirname, [AC_CHECK_HEADERS(libgen.h)] ,[
708 AC_CHECK_LIB(gen, dirname,[
709 AC_CACHE_CHECK([for broken dirname],
710 ac_cv_have_broken_dirname, [
711 save_LIBS="$LIBS"
712 LIBS="$LIBS -lgen"
b0e7249f 713 AC_RUN_IFELSE(
714 [AC_LANG_SOURCE([[
446227d6 715#include <libgen.h>
716#include <string.h>
717
718int main(int argc, char **argv) {
719 char *s, buf[32];
720
721 strncpy(buf,"/etc", 32);
722 s = dirname(buf);
723 if (!s || strncmp(s, "/", 32) != 0) {
724 exit(1);
725 } else {
726 exit(0);
727 }
728}
b0e7249f 729 ]])],
730 [ ac_cv_have_broken_dirname="no" ],
731 [ ac_cv_have_broken_dirname="yes" ],
446227d6 732 [ ac_cv_have_broken_dirname="no" ],
446227d6 733 )
734 LIBS="$save_LIBS"
735 ])
736 if test "x$ac_cv_have_broken_dirname" = "xno" ; then
737 LIBS="$LIBS -lgen"
738 AC_DEFINE(HAVE_DIRNAME)
739 AC_CHECK_HEADERS(libgen.h)
740 fi
741 ])
742])
743
744AC_CHECK_FUNC(getspnam, ,
745 AC_CHECK_LIB(gen, getspnam, LIBS="$LIBS -lgen"))
3466e002 746AC_SEARCH_LIBS(basename, gen, AC_DEFINE(HAVE_BASENAME, 1,
747 [Define if you have the basename function.]))
446227d6 748
98a7c37b 749dnl zlib is required
750AC_ARG_WITH(zlib,
751 [ --with-zlib=PATH Use zlib in PATH],
6dd05556 752 [ if test "x$withval" = "xno" ; then
753 AC_MSG_ERROR([*** zlib is required ***])
754 elif test "x$withval" != "xyes"; then
98a7c37b 755 if test -d "$withval/lib"; then
756 if test -n "${need_dash_r}"; then
5a162955 757 LDFLAGS="-L${withval}/lib -R${withval}/lib ${LDFLAGS}"
98a7c37b 758 else
5a162955 759 LDFLAGS="-L${withval}/lib ${LDFLAGS}"
98a7c37b 760 fi
761 else
762 if test -n "${need_dash_r}"; then
5a162955 763 LDFLAGS="-L${withval} -R${withval} ${LDFLAGS}"
98a7c37b 764 else
5a162955 765 LDFLAGS="-L${withval} ${LDFLAGS}"
98a7c37b 766 fi
767 fi
768 if test -d "$withval/include"; then
5a162955 769 CPPFLAGS="-I${withval}/include ${CPPFLAGS}"
98a7c37b 770 else
5a162955 771 CPPFLAGS="-I${withval} ${CPPFLAGS}"
98a7c37b 772 fi
6dd05556 773 fi ]
98a7c37b 774)
775
0a15d73b 776AC_CHECK_LIB(z, deflate, ,
777 [
778 saved_CPPFLAGS="$CPPFLAGS"
779 saved_LDFLAGS="$LDFLAGS"
780 save_LIBS="$LIBS"
781 dnl Check default zlib install dir
782 if test -n "${need_dash_r}"; then
783 LDFLAGS="-L/usr/local/lib -R/usr/local/lib ${saved_LDFLAGS}"
784 else
785 LDFLAGS="-L/usr/local/lib ${saved_LDFLAGS}"
786 fi
787 CPPFLAGS="-I/usr/local/include ${saved_CPPFLAGS}"
788 LIBS="$LIBS -lz"
789 AC_TRY_LINK_FUNC(deflate, AC_DEFINE(HAVE_LIBZ),
790 [
791 AC_MSG_ERROR([*** zlib missing - please install first or check config.log ***])
792 ]
793 )
794 ]
795)
4ad65809 796AC_CHECK_HEADER([zlib.h], ,AC_MSG_ERROR([*** zlib.h missing - please install first or check config.log ***]))
8068d564 797
798AC_ARG_WITH(zlib-version-check,
799 [ --without-zlib-version-check Disable zlib version check],
800 [ if test "x$withval" = "xno" ; then
801 zlib_check_nonfatal=1
802 fi
803 ]
804)
805
5c7fc85d 806AC_MSG_CHECKING(for possibly buggy zlib)
479cece8 807AC_RUN_IFELSE([AC_LANG_SOURCE([[
5c7fc85d 808#include <stdio.h>
4ad65809 809#include <zlib.h>
810int main()
811{
5c7fc85d 812 int a=0, b=0, c=0, d=0, n, v;
813 n = sscanf(ZLIB_VERSION, "%d.%d.%d.%d", &a, &b, &c, &d);
814 if (n != 3 && n != 4)
4ad65809 815 exit(1);
5c7fc85d 816 v = a*1000000 + b*10000 + c*100 + d;
817 fprintf(stderr, "found zlib version %s (%d)\n", ZLIB_VERSION, v);
818
819 /* 1.1.4 is OK */
820 if (a == 1 && b == 1 && c >= 4)
4ad65809 821 exit(0);
5c7fc85d 822
0072b59d 823 /* 1.2.3 and up are OK */
824 if (v >= 1020300)
5c7fc85d 825 exit(0);
826
4ad65809 827 exit(2);
828}
479cece8 829 ]])],
5c7fc85d 830 AC_MSG_RESULT(no),
831 [ AC_MSG_RESULT(yes)
8068d564 832 if test -z "$zlib_check_nonfatal" ; then
833 AC_MSG_ERROR([*** zlib too old - check config.log ***
834Your reported zlib version has known security problems. It's possible your
835vendor has fixed these problems without changing the version number. If you
836are sure this is the case, you can disable the check by running
837"./configure --without-zlib-version-check".
6090bcfe 838If you are in doubt, upgrade zlib to version 1.2.3 or greater.
5c7fc85d 839See http://www.gzip.org/zlib/ for details.])
8068d564 840 else
841 AC_MSG_WARN([zlib version may have security problems])
842 fi
1a01a50c 843 ],
844 [ AC_MSG_WARN([cross compiling: not checking zlib version]) ]
4ad65809 845)
48e7916f 846
2c523de9 847dnl UnixWare 2.x
aff51935 848AC_CHECK_FUNC(strcasecmp,
2c523de9 849 [], [ AC_CHECK_LIB(resolv, strcasecmp, LIBS="$LIBS -lresolv") ]
850)
aff51935 851AC_CHECK_FUNC(utimes,
cda1ebcb 852 [], [ AC_CHECK_LIB(c89, utimes, [AC_DEFINE(HAVE_UTIMES)
853 LIBS="$LIBS -lc89"]) ]
2c523de9 854)
4cca272e 855
7c6d759d 856dnl Checks for libutil functions
857AC_CHECK_HEADERS(libutil.h)
3466e002 858AC_SEARCH_LIBS(login, util bsd, [AC_DEFINE(HAVE_LOGIN, 1,
859 [Define if your libraries define login()])])
7c6d759d 860AC_CHECK_FUNCS(logout updwtmp logwtmp)
861
a738c3b0 862AC_FUNC_STRFTIME
863
84ceda19 864# Check for ALTDIRFUNC glob() extension
865AC_MSG_CHECKING(for GLOB_ALTDIRFUNC support)
866AC_EGREP_CPP(FOUNDIT,
867 [
868 #include <glob.h>
869 #ifdef GLOB_ALTDIRFUNC
870 FOUNDIT
871 #endif
aff51935 872 ],
84ceda19 873 [
3466e002 874 AC_DEFINE(GLOB_HAS_ALTDIRFUNC, 1,
875 [Define if your system glob() function has
876 the GLOB_ALTDIRFUNC extension])
84ceda19 877 AC_MSG_RESULT(yes)
878 ],
879 [
880 AC_MSG_RESULT(no)
881 ]
882)
4cca272e 883
40849fdb 884# Check for g.gl_matchc glob() extension
885AC_MSG_CHECKING(for gl_matchc field in glob_t)
886AC_EGREP_CPP(FOUNDIT,
aff51935 887 [
888 #include <glob.h>
40849fdb 889 int main(void){glob_t g; g.gl_matchc = 1;}
aff51935 890 ],
891 [
3466e002 892 AC_DEFINE(GLOB_HAS_GL_MATCHC, 1,
893 [Define if your system glob() function has
894 gl_matchc options in glob_t])
aff51935 895 AC_MSG_RESULT(yes)
896 ],
897 [
898 AC_MSG_RESULT(no)
899 ]
40849fdb 900)
901
edbe6722 902AC_MSG_CHECKING([whether struct dirent allocates space for d_name])
1a01a50c 903AC_RUN_IFELSE(
479cece8 904 [AC_LANG_SOURCE([[
edbe6722 905#include <sys/types.h>
906#include <dirent.h>
aec4cb4f 907int main(void){struct dirent d;exit(sizeof(d.d_name)<=sizeof(char));}
479cece8 908 ]])],
aff51935 909 [AC_MSG_RESULT(yes)],
edbe6722 910 [
911 AC_MSG_RESULT(no)
3466e002 912 AC_DEFINE(BROKEN_ONE_BYTE_DIRENT_D_NAME, 1,
913 [Define in your struct dirent expects you to
914 allocate extra space for d_name])
1a01a50c 915 ],
82f4e93d 916 [
1a01a50c 917 AC_MSG_WARN([cross compiling: assuming BROKEN_ONE_BYTE_DIRENT_D_NAME])
918 AC_DEFINE(BROKEN_ONE_BYTE_DIRENT_D_NAME)
edbe6722 919 ]
920)
921
419e26e7 922AC_MSG_CHECKING([for /proc/pid/fd directory])
923if test -d "/proc/$$/fd" ; then
3466e002 924 AC_DEFINE(HAVE_PROC_PID, 1, [Define if you have /proc/$pid/fd])
419e26e7 925 AC_MSG_RESULT(yes)
926else
927 AC_MSG_RESULT(no)
928fi
929
278588d8 930# Check whether user wants S/Key support
aff51935 931SKEY_MSG="no"
278588d8 932AC_ARG_WITH(skey,
6ff3d0dc 933 [ --with-skey[[=PATH]] Enable S/Key support (optionally in PATH)],
278588d8 934 [
935 if test "x$withval" != "xno" ; then
936
937 if test "x$withval" != "xyes" ; then
938 CPPFLAGS="$CPPFLAGS -I${withval}/include"
939 LDFLAGS="$LDFLAGS -L${withval}/lib"
940 fi
941
3466e002 942 AC_DEFINE(SKEY, 1, [Define if you want S/Key support])
278588d8 943 LIBS="-lskey $LIBS"
aff51935 944 SKEY_MSG="yes"
82f4e93d 945
ddceb1c8 946 AC_MSG_CHECKING([for s/key support])
b0e7249f 947 AC_LINK_IFELSE(
948 [AC_LANG_SOURCE([[
ddceb1c8 949#include <stdio.h>
950#include <skey.h>
aec4cb4f 951int main() { char *ff = skey_keyinfo(""); ff=""; exit(0); }
b0e7249f 952 ]])],
ddceb1c8 953 [AC_MSG_RESULT(yes)],
278588d8 954 [
ddceb1c8 955 AC_MSG_RESULT(no)
278588d8 956 AC_MSG_ERROR([** Incomplete or missing s/key libraries.])
957 ])
141fc639 958 AC_MSG_CHECKING(if skeychallenge takes 4 arguments)
959 AC_TRY_COMPILE(
960 [#include <stdio.h>
961 #include <skey.h>],
962 [(void)skeychallenge(NULL,"name","",0);],
963 [AC_MSG_RESULT(yes)
3466e002 964 AC_DEFINE(SKEYCHALLENGE_4ARG, 1,
965 [Define if your skeychallenge()
966 function takes 4 arguments (NetBSD)])],
141fc639 967 [AC_MSG_RESULT(no)]
968 )
278588d8 969 fi
970 ]
971)
972
973# Check whether user wants TCP wrappers support
98a7c37b 974TCPW_MSG="no"
278588d8 975AC_ARG_WITH(tcp-wrappers,
6ff3d0dc 976 [ --with-tcp-wrappers[[=PATH]] Enable tcpwrappers support (optionally in PATH)],
278588d8 977 [
978 if test "x$withval" != "xno" ; then
979 saved_LIBS="$LIBS"
98a7c37b 980 saved_LDFLAGS="$LDFLAGS"
981 saved_CPPFLAGS="$CPPFLAGS"
4b492aab 982 if test -n "${withval}" && \
6cf0200f 983 test "x${withval}" != "xyes"; then
98a7c37b 984 if test -d "${withval}/lib"; then
985 if test -n "${need_dash_r}"; then
5a162955 986 LDFLAGS="-L${withval}/lib -R${withval}/lib ${LDFLAGS}"
98a7c37b 987 else
5a162955 988 LDFLAGS="-L${withval}/lib ${LDFLAGS}"
98a7c37b 989 fi
990 else
991 if test -n "${need_dash_r}"; then
5a162955 992 LDFLAGS="-L${withval} -R${withval} ${LDFLAGS}"
98a7c37b 993 else
5a162955 994 LDFLAGS="-L${withval} ${LDFLAGS}"
98a7c37b 995 fi
996 fi
997 if test -d "${withval}/include"; then
5a162955 998 CPPFLAGS="-I${withval}/include ${CPPFLAGS}"
98a7c37b 999 else
5a162955 1000 CPPFLAGS="-I${withval} ${CPPFLAGS}"
98a7c37b 1001 fi
98a7c37b 1002 fi
ddceb1c8 1003 LIBWRAP="-lwrap"
1004 LIBS="$LIBWRAP $LIBS"
278588d8 1005 AC_MSG_CHECKING(for libwrap)
1006 AC_TRY_LINK(
1007 [
77f09220 1008#include <sys/types.h>
1009#include <sys/socket.h>
1010#include <netinet/in.h>
278588d8 1011#include <tcpd.h>
1012 int deny_severity = 0, allow_severity = 0;
1013 ],
1014 [hosts_access(0);],
1015 [
1016 AC_MSG_RESULT(yes)
3466e002 1017 AC_DEFINE(LIBWRAP, 1,
1018 [Define if you want
1019 TCP Wrappers support])
ddceb1c8 1020 AC_SUBST(LIBWRAP)
98a7c37b 1021 TCPW_MSG="yes"
278588d8 1022 ],
1023 [
1024 AC_MSG_ERROR([*** libwrap missing])
1025 ]
1026 )
ddceb1c8 1027 LIBS="$saved_LIBS"
278588d8 1028 fi
1029 ]
1030)
1031
59031773 1032# Check whether user wants libedit support
1033LIBEDIT_MSG="no"
1034AC_ARG_WITH(libedit,
6ff3d0dc 1035 [ --with-libedit[[=PATH]] Enable libedit support for sftp],
59031773 1036 [ if test "x$withval" != "xno" ; then
737edf04 1037 if test "x$withval" != "xyes"; then
bb116c8e 1038 CPPFLAGS="$CPPFLAGS -I${withval}/include"
1039 if test -n "${need_dash_r}"; then
1040 LDFLAGS="-L${withval}/lib -R${withval}/lib ${LDFLAGS}"
1041 else
1042 LDFLAGS="-L${withval}/lib ${LDFLAGS}"
1043 fi
737edf04 1044 fi
59031773 1045 AC_CHECK_LIB(edit, el_init,
3466e002 1046 [ AC_DEFINE(USE_LIBEDIT, 1, [Use libedit for sftp])
59031773 1047 LIBEDIT="-ledit -lcurses"
1048 LIBEDIT_MSG="yes"
1049 AC_SUBST(LIBEDIT)
1050 ],
737edf04 1051 [ AC_MSG_ERROR(libedit not found) ],
1052 [ -lcurses ]
59031773 1053 )
f47ddccb 1054 AC_MSG_CHECKING(if libedit version is compatible)
d92622f9 1055 AC_COMPILE_IFELSE(
1056 [AC_LANG_SOURCE([[
1057#include <histedit.h>
f47ddccb 1058int main(void)
1059{
1060 int i = H_SETSIZE;
1061 el_init("", NULL, NULL, NULL);
1062 exit(0);
1063}
d92622f9 1064 ]])],
f47ddccb 1065 [ AC_MSG_RESULT(yes) ],
1066 [ AC_MSG_RESULT(no)
1067 AC_MSG_ERROR(libedit version is not compatible) ]
1068 )
59031773 1069 fi ]
1070)
1071
7b578f7d 1072AUDIT_MODULE=none
1073AC_ARG_WITH(audit,
1074 [ --with-audit=module Enable EXPERIMENTAL audit support (modules=debug,bsm)],
1075 [
1076 AC_MSG_CHECKING(for supported audit module)
1077 case "$withval" in
1078 bsm)
1079 AC_MSG_RESULT(bsm)
1080 AUDIT_MODULE=bsm
1081 dnl Checks for headers, libs and functions
1082 AC_CHECK_HEADERS(bsm/audit.h, [],
1083 [AC_MSG_ERROR(BSM enabled and bsm/audit.h not found)])
1084 AC_CHECK_LIB(bsm, getaudit, [],
1085 [AC_MSG_ERROR(BSM enabled and required library not found)])
1086 AC_CHECK_FUNCS(getaudit, [],
1087 [AC_MSG_ERROR(BSM enabled and required function not found)])
1088 # These are optional
7939c496 1089 AC_CHECK_FUNCS(getaudit_addr)
3466e002 1090 AC_DEFINE(USE_BSM_AUDIT, 1, [Use BSM audit module])
7b578f7d 1091 ;;
1092 debug)
1093 AUDIT_MODULE=debug
1094 AC_MSG_RESULT(debug)
3466e002 1095 AC_DEFINE(SSH_AUDIT_EVENTS, 1, Use audit debugging module)
7b578f7d 1096 ;;
a2b3321d 1097 no)
d92622f9 1098 AC_MSG_RESULT(no)
a2b3321d 1099 ;;
7b578f7d 1100 *)
1101 AC_MSG_ERROR([Unknown audit module $withval])
1102 ;;
1103 esac ]
1104)
1105
19160674 1106dnl Checks for library functions. Please keep in alphabetical order
b04a9f8c 1107AC_CHECK_FUNCS( \
1108 arc4random \
1109 b64_ntop \
1110 __b64_ntop \
1111 b64_pton \
1112 __b64_pton \
1113 bcopy \
1114 bindresvport_sa \
1115 clock \
1116 closefrom \
1117 dirfd \
b04a9f8c 1118 fchmod \
1119 fchown \
1120 freeaddrinfo \
1121 futimes \
1122 getaddrinfo \
1123 getcwd \
1124 getgrouplist \
1125 getnameinfo \
1126 getopt \
1127 getpeereid \
1128 _getpty \
1129 getrlimit \
1130 getttyent \
1131 glob \
1132 inet_aton \
1133 inet_ntoa \
1134 inet_ntop \
1135 innetgr \
1136 login_getcapbool \
1137 md5_crypt \
1138 memmove \
1139 mkdtemp \
1140 mmap \
1141 ngetaddrinfo \
1142 nsleep \
1143 ogetaddrinfo \
1144 openlog_r \
1145 openpty \
1146 prctl \
1147 pstat \
1148 readpassphrase \
1149 realpath \
1150 recvmsg \
1151 rresvport_af \
1152 sendmsg \
1153 setdtablesize \
1154 setegid \
1155 setenv \
1156 seteuid \
1157 setgroups \
1158 setlogin \
1159 setpcred \
1160 setproctitle \
1161 setregid \
1162 setreuid \
1163 setrlimit \
1164 setsid \
1165 setvbuf \
1166 sigaction \
1167 sigvec \
1168 snprintf \
1169 socketpair \
1170 strdup \
1171 strerror \
1172 strlcat \
1173 strlcpy \
1174 strmode \
1175 strnvis \
1176 strtonum \
1e29a0c8 1177 strtoll \
b04a9f8c 1178 strtoul \
1179 sysconf \
1180 tcgetpgrp \
1181 truncate \
1182 unsetenv \
1183 updwtmpx \
1184 utimes \
1185 vhangup \
1186 vsnprintf \
1187 waitpid \
19160674 1188)
98a7c37b 1189
1a086f97 1190# IRIX has a const char return value for gai_strerror()
1191AC_CHECK_FUNCS(gai_strerror,[
1192 AC_DEFINE(HAVE_GAI_STRERROR)
1193 AC_TRY_COMPILE([
1194#include <sys/types.h>
1195#include <sys/socket.h>
1196#include <netdb.h>
1197
1198const char *gai_strerror(int);],[
1199char *str;
1200
1201str = gai_strerror(0);],[
1202 AC_DEFINE(HAVE_CONST_GAI_STRERROR_PROTO, 1,
1203 [Define if gai_strerror() returns const char *])])])
1204
3466e002 1205AC_SEARCH_LIBS(nanosleep, rt posix4, AC_DEFINE(HAVE_NANOSLEEP, 1,
1206 [Some systems put nanosleep outside of libc]))
92b1decf 1207
309709db 1208dnl Make sure prototypes are defined for these before using them.
309709db 1209AC_CHECK_DECL(getrusage, [AC_CHECK_FUNCS(getrusage)])
0957c2cf 1210AC_CHECK_DECL(strsep,
1211 [AC_CHECK_FUNCS(strsep)],
1212 [],
1213 [
1214#ifdef HAVE_STRING_H
1215# include <string.h>
1216#endif
1217 ])
08412d26 1218
3490699c 1219dnl tcsendbreak might be a macro
1220AC_CHECK_DECL(tcsendbreak,
1221 [AC_DEFINE(HAVE_TCSENDBREAK)],
aff51935 1222 [AC_CHECK_FUNCS(tcsendbreak)],
3490699c 1223 [#include <termios.h>]
1224)
1225
41e0e158 1226AC_CHECK_DECLS(h_errno, , ,[#include <netdb.h>])
1227
3f176010 1228AC_CHECK_FUNCS(setresuid, [
1229 dnl Some platorms have setresuid that isn't implemented, test for this
1230 AC_MSG_CHECKING(if setresuid seems to work)
479cece8 1231 AC_RUN_IFELSE(
1232 [AC_LANG_SOURCE([[
9a3fe0e2 1233#include <stdlib.h>
1234#include <errno.h>
1235int main(){errno=0; setresuid(0,0,0); if (errno==ENOSYS) exit(1); else exit(0);}
479cece8 1236 ]])],
3f176010 1237 [AC_MSG_RESULT(yes)],
3466e002 1238 [AC_DEFINE(BROKEN_SETRESUID, 1,
1239 [Define if your setresuid() is broken])
1a01a50c 1240 AC_MSG_RESULT(not implemented)],
1241 [AC_MSG_WARN([cross compiling: not checking setresuid])]
3f176010 1242 )
1243])
9a3fe0e2 1244
3f176010 1245AC_CHECK_FUNCS(setresgid, [
1246 dnl Some platorms have setresgid that isn't implemented, test for this
1247 AC_MSG_CHECKING(if setresgid seems to work)
479cece8 1248 AC_RUN_IFELSE(
1249 [AC_LANG_SOURCE([[
9a3fe0e2 1250#include <stdlib.h>
1251#include <errno.h>
1252int main(){errno=0; setresgid(0,0,0); if (errno==ENOSYS) exit(1); else exit(0);}
479cece8 1253 ]])],
3f176010 1254 [AC_MSG_RESULT(yes)],
3466e002 1255 [AC_DEFINE(BROKEN_SETRESGID, 1,
1256 [Define if your setresgid() is broken])
1a01a50c 1257 AC_MSG_RESULT(not implemented)],
1258 [AC_MSG_WARN([cross compiling: not checking setresuid])]
3f176010 1259 )
1260])
9a3fe0e2 1261
2e73a022 1262dnl Checks for time functions
1d7b9b20 1263AC_CHECK_FUNCS(gettimeofday time)
2e73a022 1264dnl Checks for utmp functions
b03bd394 1265AC_CHECK_FUNCS(endutent getutent getutid getutline pututline setutent)
1d7b9b20 1266AC_CHECK_FUNCS(utmpname)
2e73a022 1267dnl Checks for utmpx functions
b03bd394 1268AC_CHECK_FUNCS(endutxent getutxent getutxid getutxline pututxline )
1d7b9b20 1269AC_CHECK_FUNCS(setutxent utmpxname)
76cd7316 1270
aff51935 1271AC_CHECK_FUNC(daemon,
3466e002 1272 [AC_DEFINE(HAVE_DAEMON, 1, [Define if your libraries define daemon()])],
1273 [AC_CHECK_LIB(bsd, daemon,
1274 [LIBS="$LIBS -lbsd"; AC_DEFINE(HAVE_DAEMON)])]
beb43d31 1275)
1276
aff51935 1277AC_CHECK_FUNC(getpagesize,
3466e002 1278 [AC_DEFINE(HAVE_GETPAGESIZE, 1,
1279 [Define if your libraries define getpagesize()])],
1280 [AC_CHECK_LIB(ucb, getpagesize,
1281 [LIBS="$LIBS -lucb"; AC_DEFINE(HAVE_GETPAGESIZE)])]
aa6bd60a 1282)
1283
2647ae26 1284# Check for broken snprintf
1285if test "x$ac_cv_func_snprintf" = "xyes" ; then
1286 AC_MSG_CHECKING([whether snprintf correctly terminates long strings])
1a01a50c 1287 AC_RUN_IFELSE(
479cece8 1288 [AC_LANG_SOURCE([[
2647ae26 1289#include <stdio.h>
aec4cb4f 1290int main(void){char b[5];snprintf(b,5,"123456789");exit(b[4]!='\0');}
479cece8 1291 ]])],
aff51935 1292 [AC_MSG_RESULT(yes)],
2647ae26 1293 [
1294 AC_MSG_RESULT(no)
3466e002 1295 AC_DEFINE(BROKEN_SNPRINTF, 1,
1296 [Define if your snprintf is busted])
2647ae26 1297 AC_MSG_WARN([****** Your snprintf() function is broken, complain to your vendor])
1a01a50c 1298 ],
1299 [ AC_MSG_WARN([cross compiling: Assuming working snprintf()]) ]
2647ae26 1300 )
1301fi
1302
2f6f9cff 1303# Check for missing getpeereid (or equiv) support
1304NO_PEERCHECK=""
1305if test "x$ac_cv_func_getpeereid" != "xyes" ; then
1306 AC_MSG_CHECKING([whether system supports SO_PEERCRED getsockopt])
1307 AC_TRY_COMPILE(
1308 [#include <sys/types.h>
1309 #include <sys/socket.h>],
1310 [int i = SO_PEERCRED;],
62eb7db4 1311 [ AC_MSG_RESULT(yes)
3466e002 1312 AC_DEFINE(HAVE_SO_PEERCRED, 1, [Have PEERCRED socket option])
62eb7db4 1313 ],
2f6f9cff 1314 [AC_MSG_RESULT(no)
1315 NO_PEERCHECK=1]
1316 )
1317fi
1318
70e7d0b0 1319dnl see whether mkstemp() requires XXXXXX
1320if test "x$ac_cv_func_mkdtemp" = "xyes" ; then
1321AC_MSG_CHECKING([for (overly) strict mkstemp])
b0e7249f 1322AC_RUN_IFELSE(
1323 [AC_LANG_SOURCE([[
70e7d0b0 1324#include <stdlib.h>
1325main() { char template[]="conftest.mkstemp-test";
1326if (mkstemp(template) == -1)
1327 exit(1);
1328unlink(template); exit(0);
1329}
b0e7249f 1330 ]])],
70e7d0b0 1331 [
1332 AC_MSG_RESULT(no)
1333 ],
aff51935 1334 [
70e7d0b0 1335 AC_MSG_RESULT(yes)
3466e002 1336 AC_DEFINE(HAVE_STRICT_MKSTEMP, 1, [Silly mkstemp()])
70e7d0b0 1337 ],
1338 [
1339 AC_MSG_RESULT(yes)
1340 AC_DEFINE(HAVE_STRICT_MKSTEMP)
aff51935 1341 ]
70e7d0b0 1342)
1343fi
1344
eacb954e 1345dnl make sure that openpty does not reacquire controlling terminal
1346if test ! -z "$check_for_openpty_ctty_bug"; then
1347 AC_MSG_CHECKING(if openpty correctly handles controlling tty)
b0e7249f 1348 AC_RUN_IFELSE(
1349 [AC_LANG_SOURCE([[
eacb954e 1350#include <stdio.h>
1351#include <sys/fcntl.h>
1352#include <sys/types.h>
1353#include <sys/wait.h>
1354
1355int
1356main()
1357{
1358 pid_t pid;
1359 int fd, ptyfd, ttyfd, status;
1360
1361 pid = fork();
1362 if (pid < 0) { /* failed */
1363 exit(1);
1364 } else if (pid > 0) { /* parent */
1365 waitpid(pid, &status, 0);
aff51935 1366 if (WIFEXITED(status))
eacb954e 1367 exit(WEXITSTATUS(status));
1368 else
1369 exit(2);
1370 } else { /* child */
1371 close(0); close(1); close(2);
1372 setsid();
1373 openpty(&ptyfd, &ttyfd, NULL, NULL, NULL);
1374 fd = open("/dev/tty", O_RDWR | O_NOCTTY);
1375 if (fd >= 0)
1376 exit(3); /* Acquired ctty: broken */
1377 else
1378 exit(0); /* Did not acquire ctty: OK */
1379 }
1380}
b0e7249f 1381 ]])],
eacb954e 1382 [
1383 AC_MSG_RESULT(yes)
1384 ],
1385 [
1386 AC_MSG_RESULT(no)
1387 AC_DEFINE(SSHD_ACQUIRES_CTTY)
b0e7249f 1388 ],
1389 [
1390 AC_MSG_RESULT(cross-compiling, assuming yes)
eacb954e 1391 ]
1392 )
1393fi
1394
4b492aab 1395if test "x$ac_cv_func_getaddrinfo" = "xyes" && \
1396 test "x$check_for_hpux_broken_getaddrinfo" = "x1"; then
2fe51906 1397 AC_MSG_CHECKING(if getaddrinfo seems to work)
b0e7249f 1398 AC_RUN_IFELSE(
1399 [AC_LANG_SOURCE([[
2fe51906 1400#include <stdio.h>
1401#include <sys/socket.h>
1402#include <netdb.h>
1403#include <errno.h>
1404#include <netinet/in.h>
1405
1406#define TEST_PORT "2222"
1407
1408int
1409main(void)
1410{
1411 int err, sock;
1412 struct addrinfo *gai_ai, *ai, hints;
1413 char ntop[NI_MAXHOST], strport[NI_MAXSERV], *name = NULL;
1414
1415 memset(&hints, 0, sizeof(hints));
1416 hints.ai_family = PF_UNSPEC;
1417 hints.ai_socktype = SOCK_STREAM;
1418 hints.ai_flags = AI_PASSIVE;
1419
1420 err = getaddrinfo(name, TEST_PORT, &hints, &gai_ai);
1421 if (err != 0) {
1422 fprintf(stderr, "getaddrinfo failed (%s)", gai_strerror(err));
1423 exit(1);
1424 }
1425
1426 for (ai = gai_ai; ai != NULL; ai = ai->ai_next) {
1427 if (ai->ai_family != AF_INET6)
1428 continue;
1429
1430 err = getnameinfo(ai->ai_addr, ai->ai_addrlen, ntop,
1431 sizeof(ntop), strport, sizeof(strport),
1432 NI_NUMERICHOST|NI_NUMERICSERV);
1433
1434 if (err != 0) {
1435 if (err == EAI_SYSTEM)
1436 perror("getnameinfo EAI_SYSTEM");
1437 else
1438 fprintf(stderr, "getnameinfo failed: %s\n",
1439 gai_strerror(err));
1440 exit(2);
1441 }
1442
1443 sock = socket(ai->ai_family, ai->ai_socktype, ai->ai_protocol);
1444 if (sock < 0)
1445 perror("socket");
1446 if (bind(sock, ai->ai_addr, ai->ai_addrlen) < 0) {
1447 if (errno == EBADF)
1448 exit(3);
1449 }
1450 }
1451 exit(0);
1452}
b0e7249f 1453 ]])],
2fe51906 1454 [
1455 AC_MSG_RESULT(yes)
1456 ],
1457 [
1458 AC_MSG_RESULT(no)
1459 AC_DEFINE(BROKEN_GETADDRINFO)
b0e7249f 1460 ],
1461 [
1462 AC_MSG_RESULT(cross-compiling, assuming yes)
2fe51906 1463 ]
1464 )
1465fi
1466
4b492aab 1467if test "x$ac_cv_func_getaddrinfo" = "xyes" && \
1468 test "x$check_for_aix_broken_getaddrinfo" = "x1"; then
5ccf88cb 1469 AC_MSG_CHECKING(if getaddrinfo seems to work)
b0e7249f 1470 AC_RUN_IFELSE(
1471 [AC_LANG_SOURCE([[
5ccf88cb 1472#include <stdio.h>
1473#include <sys/socket.h>
1474#include <netdb.h>
1475#include <errno.h>
1476#include <netinet/in.h>
1477
1478#define TEST_PORT "2222"
1479
1480int
1481main(void)
1482{
1483 int err, sock;
1484 struct addrinfo *gai_ai, *ai, hints;
1485 char ntop[NI_MAXHOST], strport[NI_MAXSERV], *name = NULL;
1486
1487 memset(&hints, 0, sizeof(hints));
1488 hints.ai_family = PF_UNSPEC;
1489 hints.ai_socktype = SOCK_STREAM;
1490 hints.ai_flags = AI_PASSIVE;
1491
1492 err = getaddrinfo(name, TEST_PORT, &hints, &gai_ai);
1493 if (err != 0) {
1494 fprintf(stderr, "getaddrinfo failed (%s)", gai_strerror(err));
1495 exit(1);
1496 }
1497
1498 for (ai = gai_ai; ai != NULL; ai = ai->ai_next) {
1499 if (ai->ai_family != AF_INET && ai->ai_family != AF_INET6)
1500 continue;
1501
1502 err = getnameinfo(ai->ai_addr, ai->ai_addrlen, ntop,
1503 sizeof(ntop), strport, sizeof(strport),
1504 NI_NUMERICHOST|NI_NUMERICSERV);
1505
1506 if (ai->ai_family == AF_INET && err != 0) {
1507 perror("getnameinfo");
1508 exit(2);
1509 }
1510 }
1511 exit(0);
1512}
b0e7249f 1513 ]])],
5ccf88cb 1514 [
1515 AC_MSG_RESULT(yes)
3466e002 1516 AC_DEFINE(AIX_GETNAMEINFO_HACK, 1,
1517 [Define if you have a getaddrinfo that fails
1518 for the all-zeros IPv6 address])
5ccf88cb 1519 ],
1520 [
1521 AC_MSG_RESULT(no)
1522 AC_DEFINE(BROKEN_GETADDRINFO)
b0e7249f 1523 ],
1524 AC_MSG_RESULT(cross-compiling, assuming no)
5ccf88cb 1525 ]
1526 )
1527fi
1528
b29fd59f 1529if test "x$check_for_conflicting_getspnam" = "x1"; then
1530 AC_MSG_CHECKING(for conflicting getspnam in shadow.h)
1531 AC_COMPILE_IFELSE(
1532 [
1533#include <shadow.h>
1534int main(void) {exit(0);}
1535 ],
1536 [
1537 AC_MSG_RESULT(no)
1538 ],
1539 [
1540 AC_MSG_RESULT(yes)
1541 AC_DEFINE(GETSPNAM_CONFLICTING_DEFS, 1,
1542 [Conflicting defs for getspnam])
1543 ]
1544 )
1545fi
1546
7f8f5e00 1547AC_FUNC_GETPGRP
1548
717057b6 1549# Check for PAM libs
cbd7492e 1550PAM_MSG="no"
a0391976 1551AC_ARG_WITH(pam,
717057b6 1552 [ --with-pam Enable PAM support ],
a0391976 1553 [
717057b6 1554 if test "x$withval" != "xno" ; then
2511d104 1555 if test "x$ac_cv_header_security_pam_appl_h" != "xyes" && \
1556 test "x$ac_cv_header_pam_pam_appl_h" != "xyes" ; then
717057b6 1557 AC_MSG_ERROR([PAM headers not found])
1558 fi
a0391976 1559
717057b6 1560 AC_CHECK_LIB(dl, dlopen, , )
1561 AC_CHECK_LIB(pam, pam_set_item, , AC_MSG_ERROR([*** libpam missing]))
1562 AC_CHECK_FUNCS(pam_getenvlist)
749560dd 1563 AC_CHECK_FUNCS(pam_putenv)
2b763e31 1564
717057b6 1565 PAM_MSG="yes"
4cb5ffa0 1566
3466e002 1567 AC_DEFINE(USE_PAM, 1,
1568 [Define if you want to enable PAM support])
98f2d9d5 1569 if test $ac_cv_lib_dl_dlopen = yes; then
1570 LIBPAM="-lpam -ldl"
1571 else
1572 LIBPAM="-lpam"
1573 fi
1574 AC_SUBST(LIBPAM)
717057b6 1575 fi
1576 ]
1577)
cbd7492e 1578
717057b6 1579# Check for older PAM
1580if test "x$PAM_MSG" = "xyes" ; then
a0391976 1581 # Check PAM strerror arguments (old PAM)
1582 AC_MSG_CHECKING([whether pam_strerror takes only one argument])
1583 AC_TRY_COMPILE(
1584 [
18ba2aab 1585#include <stdlib.h>
2511d104 1586#if defined(HAVE_SECURITY_PAM_APPL_H)
18ba2aab 1587#include <security/pam_appl.h>
2511d104 1588#elif defined (HAVE_PAM_PAM_APPL_H)
1589#include <pam/pam_appl.h>
1590#endif
aff51935 1591 ],
1592 [(void)pam_strerror((pam_handle_t *)NULL, -1);],
a0391976 1593 [AC_MSG_RESULT(no)],
1594 [
3466e002 1595 AC_DEFINE(HAVE_OLD_PAM, 1,
1596 [Define if you have an old version of PAM
1597 which takes only one argument to pam_strerror])
a0391976 1598 AC_MSG_RESULT(yes)
cbd7492e 1599 PAM_MSG="yes (old library)"
a0391976 1600 ]
717057b6 1601 )
a0391976 1602fi
1603
5b991353 1604# Search for OpenSSL
1605saved_CPPFLAGS="$CPPFLAGS"
1606saved_LDFLAGS="$LDFLAGS"
a0391976 1607AC_ARG_WITH(ssl-dir,
1608 [ --with-ssl-dir=PATH Specify path to OpenSSL installation ],
1609 [
e9e4a1c7 1610 if test "x$withval" != "xno" ; then
99eb0f64 1611 case "$withval" in
1612 # Relative paths
1613 ./*|../*) withval="`pwd`/$withval"
1614 esac
5b991353 1615 if test -d "$withval/lib"; then
1616 if test -n "${need_dash_r}"; then
1617 LDFLAGS="-L${withval}/lib -R${withval}/lib ${LDFLAGS}"
1618 else
1619 LDFLAGS="-L${withval}/lib ${LDFLAGS}"
d6f13fbb 1620 fi
1621 else
5b991353 1622 if test -n "${need_dash_r}"; then
1623 LDFLAGS="-L${withval} -R${withval} ${LDFLAGS}"
1624 else
1625 LDFLAGS="-L${withval} ${LDFLAGS}"
d6f13fbb 1626 fi
1627 fi
5b991353 1628 if test -d "$withval/include"; then
1629 CPPFLAGS="-I${withval}/include ${CPPFLAGS}"
d6f13fbb 1630 else
5b991353 1631 CPPFLAGS="-I${withval} ${CPPFLAGS}"
58d100bf 1632 fi
a0391976 1633 fi
5b991353 1634 ]
1635)
5486a457 1636LIBS="-lcrypto $LIBS"
3466e002 1637AC_TRY_LINK_FUNC(RAND_add, AC_DEFINE(HAVE_OPENSSL, 1,
1638 [Define if your ssl headers are included
1639 with #include <openssl/header.h>]),
d45e3d76 1640 [
5b991353 1641 dnl Check default openssl install dir
1642 if test -n "${need_dash_r}"; then
1643 LDFLAGS="-L/usr/local/ssl/lib -R/usr/local/ssl/lib ${saved_LDFLAGS}"
d45e3d76 1644 else
5b991353 1645 LDFLAGS="-L/usr/local/ssl/lib ${saved_LDFLAGS}"
d45e3d76 1646 fi
5b991353 1647 CPPFLAGS="-I/usr/local/ssl/include ${saved_CPPFLAGS}"
1648 AC_TRY_LINK_FUNC(RAND_add, AC_DEFINE(HAVE_OPENSSL),
1649 [
1650 AC_MSG_ERROR([*** Can't find recent OpenSSL libcrypto (see config.log for details) ***])
1651 ]
1652 )
1653 ]
1654)
1655
cd018561 1656# Determine OpenSSL header version
1657AC_MSG_CHECKING([OpenSSL header version])
1a01a50c 1658AC_RUN_IFELSE(
479cece8 1659 [AC_LANG_SOURCE([[
cd018561 1660#include <stdio.h>
1661#include <string.h>
1662#include <openssl/opensslv.h>
1663#define DATA "conftest.sslincver"
1664int main(void) {
aff51935 1665 FILE *fd;
1666 int rc;
cd018561 1667
aff51935 1668 fd = fopen(DATA,"w");
1669 if(fd == NULL)
1670 exit(1);
cd018561 1671
1672 if ((rc = fprintf(fd ,"%x (%s)\n", OPENSSL_VERSION_NUMBER, OPENSSL_VERSION_TEXT)) <0)
1673 exit(1);
1674
1675 exit(0);
1676}
479cece8 1677 ]])],
cd018561 1678 [
1679 ssl_header_ver=`cat conftest.sslincver`
1680 AC_MSG_RESULT($ssl_header_ver)
1681 ],
1682 [
1683 AC_MSG_RESULT(not found)
1684 AC_MSG_ERROR(OpenSSL version header not found.)
1a01a50c 1685 ],
1686 [
1687 AC_MSG_WARN([cross compiling: not checking])
cd018561 1688 ]
1689)
1690
1691# Determine OpenSSL library version
1692AC_MSG_CHECKING([OpenSSL library version])
1a01a50c 1693AC_RUN_IFELSE(
479cece8 1694 [AC_LANG_SOURCE([[
cd018561 1695#include <stdio.h>
1696#include <string.h>
1697#include <openssl/opensslv.h>
1698#include <openssl/crypto.h>
1699#define DATA "conftest.ssllibver"
1700int main(void) {
aff51935 1701 FILE *fd;
1702 int rc;
cd018561 1703
aff51935 1704 fd = fopen(DATA,"w");
1705 if(fd == NULL)
1706 exit(1);
cd018561 1707
1708 if ((rc = fprintf(fd ,"%x (%s)\n", SSLeay(), SSLeay_version(SSLEAY_VERSION))) <0)
1709 exit(1);
1710
1711 exit(0);
1712}
479cece8 1713 ]])],
cd018561 1714 [
1715 ssl_library_ver=`cat conftest.ssllibver`
1716 AC_MSG_RESULT($ssl_library_ver)
1717 ],
1718 [
1719 AC_MSG_RESULT(not found)
1720 AC_MSG_ERROR(OpenSSL library not found.)
1a01a50c 1721 ],
1722 [
1723 AC_MSG_WARN([cross compiling: not checking])
cd018561 1724 ]
1725)
58d100bf 1726
9780116c 1727# Sanity check OpenSSL headers
1728AC_MSG_CHECKING([whether OpenSSL's headers match the library])
1a01a50c 1729AC_RUN_IFELSE(
479cece8 1730 [AC_LANG_SOURCE([[
9780116c 1731#include <string.h>
1732#include <openssl/opensslv.h>
aec4cb4f 1733int main(void) { exit(SSLeay() == OPENSSL_VERSION_NUMBER ? 0 : 1); }
479cece8 1734 ]])],
9780116c 1735 [
1736 AC_MSG_RESULT(yes)
1737 ],
1738 [
1739 AC_MSG_RESULT(no)
e15ba28b 1740 AC_MSG_ERROR([Your OpenSSL headers do not match your library.
1741Check config.log for details.
1742Also see contrib/findssl.sh for help identifying header/library mismatches.])
1a01a50c 1743 ],
1744 [
1745 AC_MSG_WARN([cross compiling: not checking])
9780116c 1746 ]
1747)
1748
5486a457 1749# Some systems want crypt() from libcrypt, *not* the version in OpenSSL,
1750# because the system crypt() is more featureful.
1751if test "x$check_for_libcrypt_before" = "x1"; then
1752 AC_CHECK_LIB(crypt, crypt)
1753fi
1754
aff51935 1755# Some Linux systems (Slackware) need crypt() from libcrypt, *not* the
8087c5ee 1756# version in OpenSSL.
05114c74 1757if test "x$check_for_libcrypt_later" = "x1"; then
20cad736 1758 AC_CHECK_LIB(crypt, crypt, LIBS="$LIBS -lcrypt")
717057b6 1759fi
1760
4c653d8e 1761AC_CHECK_LIB(iaf, ia_openinfo)
f1b0ecc3 1762
1763### Configure cryptographic random number support
1764
1765# Check wheter OpenSSL seeds itself
1766AC_MSG_CHECKING([whether OpenSSL's PRNG is internally seeded])
1a01a50c 1767AC_RUN_IFELSE(
479cece8 1768 [AC_LANG_SOURCE([[
f1b0ecc3 1769#include <string.h>
1770#include <openssl/rand.h>
aec4cb4f 1771int main(void) { exit(RAND_status() == 1 ? 0 : 1); }
479cece8 1772 ]])],
f1b0ecc3 1773 [
1774 OPENSSL_SEEDS_ITSELF=yes
1775 AC_MSG_RESULT(yes)
1776 ],
1777 [
1778 AC_MSG_RESULT(no)
1779 # Default to use of the rand helper if OpenSSL doesn't
1780 # seed itself
1781 USE_RAND_HELPER=yes
1a01a50c 1782 ],
1783 [
1784 AC_MSG_WARN([cross compiling: assuming yes])
1785 # This is safe, since all recent OpenSSL versions will
82f4e93d 1786 # complain at runtime if not seeded correctly.
1a01a50c 1787 OPENSSL_SEEDS_ITSELF=yes
f1b0ecc3 1788 ]
1789)
1790
1791
1792# Do we want to force the use of the rand helper?
1793AC_ARG_WITH(rand-helper,
1794 [ --with-rand-helper Use subprocess to gather strong randomness ],
1795 [
1796 if test "x$withval" = "xno" ; then
aff51935 1797 # Force use of OpenSSL's internal RNG, even if
f1b0ecc3 1798 # the previous test showed it to be unseeded.
1799 if test -z "$OPENSSL_SEEDS_ITSELF" ; then
1800 AC_MSG_WARN([*** Forcing use of OpenSSL's non-self-seeding PRNG])
1801 OPENSSL_SEEDS_ITSELF=yes
1802 USE_RAND_HELPER=""
1803 fi
1804 else
1805 USE_RAND_HELPER=yes
1806 fi
1807 ],
82f4e93d 1808)
f1b0ecc3 1809
1810# Which randomness source do we use?
4b492aab 1811if test ! -z "$OPENSSL_SEEDS_ITSELF" && test -z "$USE_RAND_HELPER" ; then
f1b0ecc3 1812 # OpenSSL only
3466e002 1813 AC_DEFINE(OPENSSL_PRNG_ONLY, 1,
1814 [Define if you want OpenSSL's internally seeded PRNG only])
f1b0ecc3 1815 RAND_MSG="OpenSSL internal ONLY"
1816 INSTALL_SSH_RAND_HELPER=""
70e2f2f3 1817elif test ! -z "$USE_RAND_HELPER" ; then
1818 # install rand helper
f1b0ecc3 1819 RAND_MSG="ssh-rand-helper"
1820 INSTALL_SSH_RAND_HELPER="yes"
1821fi
1822AC_SUBST(INSTALL_SSH_RAND_HELPER)
1823
1824### Configuration of ssh-rand-helper
1825
1826# PRNGD TCP socket
1827AC_ARG_WITH(prngd-port,
1828 [ --with-prngd-port=PORT read entropy from PRNGD/EGD TCP localhost:PORT],
1829 [
eb5d7ff6 1830 case "$withval" in
1831 no)
1832 withval=""
1833 ;;
1834 [[0-9]]*)
1835 ;;
1836 *)
1837 AC_MSG_ERROR(You must specify a numeric port number for --with-prngd-port)
1838 ;;
1839 esac
1840 if test ! -z "$withval" ; then
f1b0ecc3 1841 PRNGD_PORT="$withval"
3466e002 1842 AC_DEFINE_UNQUOTED(PRNGD_PORT, $PRNGD_PORT,
1843 [Port number of PRNGD/EGD random number socket])
f1b0ecc3 1844 fi
1845 ]
1846)
1847
1848# PRNGD Unix domain socket
1849AC_ARG_WITH(prngd-socket,
1850 [ --with-prngd-socket=FILE read entropy from PRNGD/EGD socket FILE (default=/var/run/egd-pool)],
1851 [
eb5d7ff6 1852 case "$withval" in
1853 yes)
f1b0ecc3 1854 withval="/var/run/egd-pool"
eb5d7ff6 1855 ;;
1856 no)
1857 withval=""
1858 ;;
1859 /*)
1860 ;;
1861 *)
1862 AC_MSG_ERROR(You must specify an absolute path to the entropy socket)
1863 ;;
1864 esac
1865
1866 if test ! -z "$withval" ; then
f1b0ecc3 1867 if test ! -z "$PRNGD_PORT" ; then
1868 AC_MSG_ERROR(You may not specify both a PRNGD/EGD port and socket)
1869 fi
906e811b 1870 if test ! -r "$withval" ; then
f1b0ecc3 1871 AC_MSG_WARN(Entropy socket is not readable)
1872 fi
1873 PRNGD_SOCKET="$withval"
3466e002 1874 AC_DEFINE_UNQUOTED(PRNGD_SOCKET, "$PRNGD_SOCKET",
1875 [Location of PRNGD/EGD random number socket])
f1b0ecc3 1876 fi
ddceb1c8 1877 ],
1878 [
1879 # Check for existing socket only if we don't have a random device already
1880 if test "$USE_RAND_HELPER" = yes ; then
1881 AC_MSG_CHECKING(for PRNGD/EGD socket)
1882 # Insert other locations here
1883 for sock in /var/run/egd-pool /dev/egd-pool /etc/entropy; do
1884 if test -r $sock && $TEST_MINUS_S_SH -c "test -S $sock -o -p $sock" ; then
1885 PRNGD_SOCKET="$sock"
1886 AC_DEFINE_UNQUOTED(PRNGD_SOCKET, "$PRNGD_SOCKET")
1887 break;
1888 fi
1889 done
1890 if test ! -z "$PRNGD_SOCKET" ; then
1891 AC_MSG_RESULT($PRNGD_SOCKET)
1892 else
1893 AC_MSG_RESULT(not found)
1894 fi
1895 fi
f1b0ecc3 1896 ]
1897)
1898
1899# Change default command timeout for hashing entropy source
1900entropy_timeout=200
1901AC_ARG_WITH(entropy-timeout,
1902 [ --with-entropy-timeout Specify entropy gathering command timeout (msec)],
1903 [
6cf0200f 1904 if test -n "$withval" && test "x$withval" != "xno" && \
1905 test "x${withval}" != "xyes"; then
f1b0ecc3 1906 entropy_timeout=$withval
1907 fi
82f4e93d 1908 ]
f1b0ecc3 1909)
3466e002 1910AC_DEFINE_UNQUOTED(ENTROPY_TIMEOUT_MSEC, $entropy_timeout,
1911 [Builtin PRNG command timeout])
f1b0ecc3 1912
fd3cbf67 1913SSH_PRIVSEP_USER=sshd
9a0fbcb3 1914AC_ARG_WITH(privsep-user,
5222e7ef 1915 [ --with-privsep-user=user Specify non-privileged user for privilege separation],
9a0fbcb3 1916 [
6cf0200f 1917 if test -n "$withval" && test "x$withval" != "xno" && \
1918 test "x${withval}" != "xyes"; then
fd3cbf67 1919 SSH_PRIVSEP_USER=$withval
9a0fbcb3 1920 fi
82f4e93d 1921 ]
9a0fbcb3 1922)
3466e002 1923AC_DEFINE_UNQUOTED(SSH_PRIVSEP_USER, "$SSH_PRIVSEP_USER",
1924 [non-privileged user for privilege separation])
fd3cbf67 1925AC_SUBST(SSH_PRIVSEP_USER)
9a0fbcb3 1926
81dadca3 1927# We do this little dance with the search path to insure
1928# that programs that we select for use by installed programs
1929# (which may be run by the super-user) come from trusted
1930# locations before they come from the user's private area.
1931# This should help avoid accidentally configuring some
1932# random version of a program in someone's personal bin.
1933
1934OPATH=$PATH
1935PATH=/bin:/usr/bin
f95c8ce8 1936test -h /bin 2> /dev/null && PATH=/usr/bin
81dadca3 1937test -d /sbin && PATH=$PATH:/sbin
1938test -d /usr/sbin && PATH=$PATH:/usr/sbin
1939PATH=$PATH:/etc:$OPATH
1940
aff51935 1941# These programs are used by the command hashing source to gather entropy
f1b0ecc3 1942OSSH_PATH_ENTROPY_PROG(PROG_LS, ls)
1943OSSH_PATH_ENTROPY_PROG(PROG_NETSTAT, netstat)
1944OSSH_PATH_ENTROPY_PROG(PROG_ARP, arp)
1945OSSH_PATH_ENTROPY_PROG(PROG_IFCONFIG, ifconfig)
1946OSSH_PATH_ENTROPY_PROG(PROG_JSTAT, jstat)
1947OSSH_PATH_ENTROPY_PROG(PROG_PS, ps)
1948OSSH_PATH_ENTROPY_PROG(PROG_SAR, sar)
1949OSSH_PATH_ENTROPY_PROG(PROG_W, w)
1950OSSH_PATH_ENTROPY_PROG(PROG_WHO, who)
1951OSSH_PATH_ENTROPY_PROG(PROG_LAST, last)
1952OSSH_PATH_ENTROPY_PROG(PROG_LASTLOG, lastlog)
1953OSSH_PATH_ENTROPY_PROG(PROG_DF, df)
1954OSSH_PATH_ENTROPY_PROG(PROG_VMSTAT, vmstat)
1955OSSH_PATH_ENTROPY_PROG(PROG_UPTIME, uptime)
1956OSSH_PATH_ENTROPY_PROG(PROG_IPCS, ipcs)
1957OSSH_PATH_ENTROPY_PROG(PROG_TAIL, tail)
81dadca3 1958# restore PATH
1959PATH=$OPATH
f1b0ecc3 1960
1961# Where does ssh-rand-helper get its randomness from?
1962INSTALL_SSH_PRNG_CMDS=""
1963if test ! -z "$INSTALL_SSH_RAND_HELPER" ; then
1964 if test ! -z "$PRNGD_PORT" ; then
1965 RAND_HELPER_MSG="TCP localhost:$PRNGD_PORT"
1966 elif test ! -z "$PRNGD_SOCKET" ; then
1967 RAND_HELPER_MSG="Unix domain socket \"$PRNGD_SOCKET\""
1968 else
1969 RAND_HELPER_MSG="Command hashing (timeout $entropy_timeout)"
1970 RAND_HELPER_CMDHASH=yes
1971 INSTALL_SSH_PRNG_CMDS="yes"
1972 fi
1973fi
1974AC_SUBST(INSTALL_SSH_PRNG_CMDS)
1975
1976
66d6c27e 1977# Cheap hack to ensure NEWS-OS libraries are arranged right.
1978if test ! -z "$SONY" ; then
1979 LIBS="$LIBS -liberty";
1980fi
1981
a0391976 1982# Checks for data types
976f7e19 1983AC_CHECK_SIZEOF(char, 1)
2b942fe0 1984AC_CHECK_SIZEOF(short int, 2)
1985AC_CHECK_SIZEOF(int, 4)
1986AC_CHECK_SIZEOF(long int, 4)
1987AC_CHECK_SIZEOF(long long int, 8)
1988
52f1ccb2 1989# Sanity check long long for some platforms (AIX)
1990if test "x$ac_cv_sizeof_long_long_int" = "x4" ; then
1991 ac_cv_sizeof_long_long_int=0
1992fi
1993
90f15776 1994# compute LLONG_MIN and LLONG_MAX if we don't know them.
1995if test -z "$have_llong_max"; then
1996 AC_MSG_CHECKING([for max value of long long])
1997 AC_RUN_IFELSE(
1998 [AC_LANG_SOURCE([[
1999#include <stdio.h>
2000/* Why is this so damn hard? */
2001#ifdef __GNUC__
2002# undef __GNUC__
2003#endif
2004#define __USE_ISOC99
2005#include <limits.h>
2006#define DATA "conftest.llminmax"
2007int main(void) {
2008 FILE *f;
2009 long long i, llmin, llmax = 0;
2010
2011 if((f = fopen(DATA,"w")) == NULL)
2012 exit(1);
2013
2014#if defined(LLONG_MIN) && defined(LLONG_MAX)
2015 fprintf(stderr, "Using system header for LLONG_MIN and LLONG_MAX\n");
2016 llmin = LLONG_MIN;
2017 llmax = LLONG_MAX;
2018#else
2019 fprintf(stderr, "Calculating LLONG_MIN and LLONG_MAX\n");
2020 /* This will work on one's complement and two's complement */
2021 for (i = 1; i > llmax; i <<= 1, i++)
2022 llmax = i;
2023 llmin = llmax + 1LL; /* wrap */
2024#endif
2025
2026 /* Sanity check */
2027 if (llmin + 1 < llmin || llmin - 1 < llmin || llmax + 1 > llmax
2028 || llmax - 1 > llmax) {
2029 fprintf(f, "unknown unknown\n");
2030 exit(2);
2031 }
2032
2033 if (fprintf(f ,"%lld %lld", llmin, llmax) < 0)
2034 exit(3);
2035
2036 exit(0);
2037}
2038 ]])],
2039 [
2040 llong_min=`$AWK '{print $1}' conftest.llminmax`
2041 llong_max=`$AWK '{print $2}' conftest.llminmax`
2042
2043 # snprintf on some Tru64s doesn't understand "%lld"
2044 case "$host" in
2045 alpha-dec-osf*)
2046 if test "x$ac_cv_sizeof_long_long_int" = "x8" &&
2047 test "x$llong_max" = "xld"; then
2048 llong_min="-9223372036854775808"
2049 llong_max="9223372036854775807"
2050 fi
2051 ;;
2052 esac
2053
2054 AC_MSG_RESULT($llong_max)
2055 AC_DEFINE_UNQUOTED(LLONG_MAX, [${llong_max}LL],
2056 [max value of long long calculated by configure])
2057 AC_MSG_CHECKING([for min value of long long])
2058 AC_MSG_RESULT($llong_min)
2059 AC_DEFINE_UNQUOTED(LLONG_MIN, [${llong_min}LL],
2060 [min value of long long calculated by configure])
2061 ],
2062 [
2063 AC_MSG_RESULT(not found)
2064 ],
2065 [
2066 AC_MSG_WARN([cross compiling: not checking])
2067 ]
2068 )
2069fi
2070
2071
a0391976 2072# More checks for data types
14a9a859 2073AC_CACHE_CHECK([for u_int type], ac_cv_have_u_int, [
2074 AC_TRY_COMPILE(
aff51935 2075 [ #include <sys/types.h> ],
2076 [ u_int a; a = 1;],
14a9a859 2077 [ ac_cv_have_u_int="yes" ],
2078 [ ac_cv_have_u_int="no" ]
2079 )
2080])
2081if test "x$ac_cv_have_u_int" = "xyes" ; then
3466e002 2082 AC_DEFINE(HAVE_U_INT, 1, [define if you have u_int data type])
14a9a859 2083 have_u_int=1
2084fi
2085
58d100bf 2086AC_CACHE_CHECK([for intXX_t types], ac_cv_have_intxx_t, [
2087 AC_TRY_COMPILE(
aff51935 2088 [ #include <sys/types.h> ],
2089 [ int8_t a; int16_t b; int32_t c; a = b = c = 1;],
58d100bf 2090 [ ac_cv_have_intxx_t="yes" ],
2091 [ ac_cv_have_intxx_t="no" ]
2092 )
2093])
2094if test "x$ac_cv_have_intxx_t" = "xyes" ; then
3466e002 2095 AC_DEFINE(HAVE_INTXX_T, 1, [define if you have intxx_t data type])
58d100bf 2096 have_intxx_t=1
2097fi
41cb4569 2098
2099if (test -z "$have_intxx_t" && \
aff51935 2100 test "x$ac_cv_header_stdint_h" = "xyes")
41cb4569 2101then
2102 AC_MSG_CHECKING([for intXX_t types in stdint.h])
2103 AC_TRY_COMPILE(
aff51935 2104 [ #include <stdint.h> ],
2105 [ int8_t a; int16_t b; int32_t c; a = b = c = 1;],
41cb4569 2106 [
2107 AC_DEFINE(HAVE_INTXX_T)
2108 AC_MSG_RESULT(yes)
2109 ],
2110 [ AC_MSG_RESULT(no) ]
2111 )
2112fi
2113
bd590612 2114AC_CACHE_CHECK([for int64_t type], ac_cv_have_int64_t, [
2115 AC_TRY_COMPILE(
1cbbe6c8 2116 [
2117#include <sys/types.h>
2118#ifdef HAVE_STDINT_H
2119# include <stdint.h>
2120#endif
2121#include <sys/socket.h>
2122#ifdef HAVE_SYS_BITYPES_H
2123# include <sys/bitypes.h>
2124#endif
aff51935 2125 ],
2126 [ int64_t a; a = 1;],
bd590612 2127 [ ac_cv_have_int64_t="yes" ],
2128 [ ac_cv_have_int64_t="no" ]
2129 )
2130])
2131if test "x$ac_cv_have_int64_t" = "xyes" ; then
3466e002 2132 AC_DEFINE(HAVE_INT64_T, 1, [define if you have int64_t data type])
ddceb1c8 2133fi
2134
58d100bf 2135AC_CACHE_CHECK([for u_intXX_t types], ac_cv_have_u_intxx_t, [
2136 AC_TRY_COMPILE(
aff51935 2137 [ #include <sys/types.h> ],
2138 [ u_int8_t a; u_int16_t b; u_int32_t c; a = b = c = 1;],
58d100bf 2139 [ ac_cv_have_u_intxx_t="yes" ],
2140 [ ac_cv_have_u_intxx_t="no" ]
2141 )
2142])
2143if test "x$ac_cv_have_u_intxx_t" = "xyes" ; then
3466e002 2144 AC_DEFINE(HAVE_U_INTXX_T, 1, [define if you have u_intxx_t data type])
58d100bf 2145 have_u_intxx_t=1
2146fi
2b942fe0 2147
41cb4569 2148if test -z "$have_u_intxx_t" ; then
2149 AC_MSG_CHECKING([for u_intXX_t types in sys/socket.h])
2150 AC_TRY_COMPILE(
aff51935 2151 [ #include <sys/socket.h> ],
2152 [ u_int8_t a; u_int16_t b; u_int32_t c; a = b = c = 1;],
41cb4569 2153 [
2154 AC_DEFINE(HAVE_U_INTXX_T)
2155 AC_MSG_RESULT(yes)
2156 ],
2157 [ AC_MSG_RESULT(no) ]
2158 )
2159fi
2160
bd590612 2161AC_CACHE_CHECK([for u_int64_t types], ac_cv_have_u_int64_t, [
2162 AC_TRY_COMPILE(
aff51935 2163 [ #include <sys/types.h> ],
2164 [ u_int64_t a; a = 1;],
bd590612 2165 [ ac_cv_have_u_int64_t="yes" ],
2166 [ ac_cv_have_u_int64_t="no" ]
2167 )
2168])
2169if test "x$ac_cv_have_u_int64_t" = "xyes" ; then
3466e002 2170 AC_DEFINE(HAVE_U_INT64_T, 1, [define if you have u_int64_t data type])
bd590612 2171 have_u_int64_t=1
2172fi
2173
ddceb1c8 2174if test -z "$have_u_int64_t" ; then
2175 AC_MSG_CHECKING([for u_int64_t type in sys/bitypes.h])
2176 AC_TRY_COMPILE(
aff51935 2177 [ #include <sys/bitypes.h> ],
ddceb1c8 2178 [ u_int64_t a; a = 1],
2179 [
2180 AC_DEFINE(HAVE_U_INT64_T)
2181 AC_MSG_RESULT(yes)
2182 ],
2183 [ AC_MSG_RESULT(no) ]
2184 )
2185fi
2186
41cb4569 2187if test -z "$have_u_intxx_t" ; then
2188 AC_CACHE_CHECK([for uintXX_t types], ac_cv_have_uintxx_t, [
2189 AC_TRY_COMPILE(
2190 [
2191#include <sys/types.h>
aff51935 2192 ],
2193 [ uint8_t a; uint16_t b; uint32_t c; a = b = c = 1; ],
41cb4569 2194 [ ac_cv_have_uintxx_t="yes" ],
2195 [ ac_cv_have_uintxx_t="no" ]
2196 )
2197 ])
2198 if test "x$ac_cv_have_uintxx_t" = "xyes" ; then
3466e002 2199 AC_DEFINE(HAVE_UINTXX_T, 1,
2200 [define if you have uintxx_t data type])
41cb4569 2201 fi
2202fi
2203
2204if test -z "$have_uintxx_t" ; then
2205 AC_MSG_CHECKING([for uintXX_t types in stdint.h])
2206 AC_TRY_COMPILE(
aff51935 2207 [ #include <stdint.h> ],
2208 [ uint8_t a; uint16_t b; uint32_t c; a = b = c = 1;],
41cb4569 2209 [
2210 AC_DEFINE(HAVE_UINTXX_T)
2211 AC_MSG_RESULT(yes)
2212 ],
2213 [ AC_MSG_RESULT(no) ]
2214 )
2215fi
2216
e5fe9a1f 2217if (test -z "$have_u_intxx_t" || test -z "$have_intxx_t" && \
aff51935 2218 test "x$ac_cv_header_sys_bitypes_h" = "xyes")
5cdfe03f 2219then
2220 AC_MSG_CHECKING([for intXX_t and u_intXX_t types in sys/bitypes.h])
2221 AC_TRY_COMPILE(
58d100bf 2222 [
2223#include <sys/bitypes.h>
aff51935 2224 ],
5cdfe03f 2225 [
837c30b8 2226 int8_t a; int16_t b; int32_t c;
2227 u_int8_t e; u_int16_t f; u_int32_t g;
2228 a = b = c = e = f = g = 1;
aff51935 2229 ],
5cdfe03f 2230 [
2231 AC_DEFINE(HAVE_U_INTXX_T)
2232 AC_DEFINE(HAVE_INTXX_T)
2233 AC_MSG_RESULT(yes)
2234 ],
2235 [AC_MSG_RESULT(no)]
aff51935 2236 )
5cdfe03f 2237fi
2238
0362750e 2239
2240AC_CACHE_CHECK([for u_char], ac_cv_have_u_char, [
2241 AC_TRY_COMPILE(
2242 [
2243#include <sys/types.h>
2244 ],
2245 [ u_char foo; foo = 125; ],
2246 [ ac_cv_have_u_char="yes" ],
2247 [ ac_cv_have_u_char="no" ]
2248 )
2249])
2250if test "x$ac_cv_have_u_char" = "xyes" ; then
3466e002 2251 AC_DEFINE(HAVE_U_CHAR, 1, [define if you have u_char data type])
0362750e 2252fi
2253
98a7c37b 2254TYPE_SOCKLEN_T
2b942fe0 2255
2d16d9a3 2256AC_CHECK_TYPES(sig_atomic_t,,,[#include <signal.h>])
ddceb1c8 2257
777ece68 2258AC_CHECK_TYPES(in_addr_t,,,
2259[#include <sys/types.h>
2260#include <netinet/in.h>])
7b578f7d 2261
58d100bf 2262AC_CACHE_CHECK([for size_t], ac_cv_have_size_t, [
2263 AC_TRY_COMPILE(
2264 [
18ba2aab 2265#include <sys/types.h>
58d100bf 2266 ],
2267 [ size_t foo; foo = 1235; ],
2268 [ ac_cv_have_size_t="yes" ],
2269 [ ac_cv_have_size_t="no" ]
2270 )
2271])
2272if test "x$ac_cv_have_size_t" = "xyes" ; then
3466e002 2273 AC_DEFINE(HAVE_SIZE_T, 1, [define if you have size_t data type])
58d100bf 2274fi
ea1970a3 2275
c04f75f1 2276AC_CACHE_CHECK([for ssize_t], ac_cv_have_ssize_t, [
2277 AC_TRY_COMPILE(
2278 [
2279#include <sys/types.h>
2280 ],
2281 [ ssize_t foo; foo = 1235; ],
2282 [ ac_cv_have_ssize_t="yes" ],
2283 [ ac_cv_have_ssize_t="no" ]
2284 )
2285])
2286if test "x$ac_cv_have_ssize_t" = "xyes" ; then
3466e002 2287 AC_DEFINE(HAVE_SSIZE_T, 1, [define if you have ssize_t data type])
c04f75f1 2288fi
2289
f1c4659d 2290AC_CACHE_CHECK([for clock_t], ac_cv_have_clock_t, [
2291 AC_TRY_COMPILE(
2292 [
2293#include <time.h>
2294 ],
2295 [ clock_t foo; foo = 1235; ],
2296 [ ac_cv_have_clock_t="yes" ],
2297 [ ac_cv_have_clock_t="no" ]
2298 )
2299])
2300if test "x$ac_cv_have_clock_t" = "xyes" ; then
3466e002 2301 AC_DEFINE(HAVE_CLOCK_T, 1, [define if you have clock_t data type])
f1c4659d 2302fi
2303
1c04b088 2304AC_CACHE_CHECK([for sa_family_t], ac_cv_have_sa_family_t, [
2305 AC_TRY_COMPILE(
2306 [
2307#include <sys/types.h>
2308#include <sys/socket.h>
2309 ],
2310 [ sa_family_t foo; foo = 1235; ],
2311 [ ac_cv_have_sa_family_t="yes" ],
77bb0bca 2312 [ AC_TRY_COMPILE(
2313 [
2314#include <sys/types.h>
2315#include <sys/socket.h>
2316#include <netinet/in.h>
2317 ],
2318 [ sa_family_t foo; foo = 1235; ],
2319 [ ac_cv_have_sa_family_t="yes" ],
2320
1c04b088 2321 [ ac_cv_have_sa_family_t="no" ]
77bb0bca 2322 )]
1c04b088 2323 )
2324])
2325if test "x$ac_cv_have_sa_family_t" = "xyes" ; then
3466e002 2326 AC_DEFINE(HAVE_SA_FAMILY_T, 1,
2327 [define if you have sa_family_t data type])
1c04b088 2328fi
2329
729bfe59 2330AC_CACHE_CHECK([for pid_t], ac_cv_have_pid_t, [
2331 AC_TRY_COMPILE(
2332 [
2333#include <sys/types.h>
2334 ],
2335 [ pid_t foo; foo = 1235; ],
2336 [ ac_cv_have_pid_t="yes" ],
2337 [ ac_cv_have_pid_t="no" ]
2338 )
2339])
2340if test "x$ac_cv_have_pid_t" = "xyes" ; then
3466e002 2341 AC_DEFINE(HAVE_PID_T, 1, [define if you have pid_t data type])
729bfe59 2342fi
2343
2344AC_CACHE_CHECK([for mode_t], ac_cv_have_mode_t, [
2345 AC_TRY_COMPILE(
2346 [
2347#include <sys/types.h>
2348 ],
2349 [ mode_t foo; foo = 1235; ],
2350 [ ac_cv_have_mode_t="yes" ],
2351 [ ac_cv_have_mode_t="no" ]
2352 )
2353])
2354if test "x$ac_cv_have_mode_t" = "xyes" ; then
3466e002 2355 AC_DEFINE(HAVE_MODE_T, 1, [define if you have mode_t data type])
729bfe59 2356fi
2357
e3a93db0 2358
58d100bf 2359AC_CACHE_CHECK([for struct sockaddr_storage], ac_cv_have_struct_sockaddr_storage, [
2360 AC_TRY_COMPILE(
2361 [
18ba2aab 2362#include <sys/types.h>
2363#include <sys/socket.h>
58d100bf 2364 ],
2365 [ struct sockaddr_storage s; ],
2366 [ ac_cv_have_struct_sockaddr_storage="yes" ],
2367 [ ac_cv_have_struct_sockaddr_storage="no" ]
2368 )
2369])
2370if test "x$ac_cv_have_struct_sockaddr_storage" = "xyes" ; then
3466e002 2371 AC_DEFINE(HAVE_STRUCT_SOCKADDR_STORAGE, 1,
2372 [define if you have struct sockaddr_storage data type])
58d100bf 2373fi
48e671d5 2374
58d100bf 2375AC_CACHE_CHECK([for struct sockaddr_in6], ac_cv_have_struct_sockaddr_in6, [
2376 AC_TRY_COMPILE(
2377 [
cbd7492e 2378#include <sys/types.h>
58d100bf 2379#include <netinet/in.h>
2380 ],
2381 [ struct sockaddr_in6 s; s.sin6_family = 0; ],
2382 [ ac_cv_have_struct_sockaddr_in6="yes" ],
2383 [ ac_cv_have_struct_sockaddr_in6="no" ]
2384 )
2385])
2386if test "x$ac_cv_have_struct_sockaddr_in6" = "xyes" ; then
3466e002 2387 AC_DEFINE(HAVE_STRUCT_SOCKADDR_IN6, 1,
2388 [define if you have struct sockaddr_in6 data type])
58d100bf 2389fi
48e671d5 2390
58d100bf 2391AC_CACHE_CHECK([for struct in6_addr], ac_cv_have_struct_in6_addr, [
2392 AC_TRY_COMPILE(
2393 [
cbd7492e 2394#include <sys/types.h>
58d100bf 2395#include <netinet/in.h>
2396 ],
2397 [ struct in6_addr s; s.s6_addr[0] = 0; ],
2398 [ ac_cv_have_struct_in6_addr="yes" ],
2399 [ ac_cv_have_struct_in6_addr="no" ]
2400 )
2401])
2402if test "x$ac_cv_have_struct_in6_addr" = "xyes" ; then
3466e002 2403 AC_DEFINE(HAVE_STRUCT_IN6_ADDR, 1,
2404 [define if you have struct in6_addr data type])
58d100bf 2405fi
48e671d5 2406
58d100bf 2407AC_CACHE_CHECK([for struct addrinfo], ac_cv_have_struct_addrinfo, [
2408 AC_TRY_COMPILE(
2409 [
18ba2aab 2410#include <sys/types.h>
2411#include <sys/socket.h>
2412#include <netdb.h>
58d100bf 2413 ],
2414 [ struct addrinfo s; s.ai_flags = AI_PASSIVE; ],
2415 [ ac_cv_have_struct_addrinfo="yes" ],
2416 [ ac_cv_have_struct_addrinfo="no" ]
2417 )
2418])
2419if test "x$ac_cv_have_struct_addrinfo" = "xyes" ; then
3466e002 2420 AC_DEFINE(HAVE_STRUCT_ADDRINFO, 1,
2421 [define if you have struct addrinfo data type])
58d100bf 2422fi
2423
89c7e31c 2424AC_CACHE_CHECK([for struct timeval], ac_cv_have_struct_timeval, [
2425 AC_TRY_COMPILE(
aff51935 2426 [ #include <sys/time.h> ],
2427 [ struct timeval tv; tv.tv_sec = 1;],
89c7e31c 2428 [ ac_cv_have_struct_timeval="yes" ],
2429 [ ac_cv_have_struct_timeval="no" ]
2430 )
2431])
2432if test "x$ac_cv_have_struct_timeval" = "xyes" ; then
3466e002 2433 AC_DEFINE(HAVE_STRUCT_TIMEVAL, 1, [define if you have struct timeval])
89c7e31c 2434 have_struct_timeval=1
2435fi
2436
5271b55c 2437AC_CHECK_TYPES(struct timespec)
2438
85abc74b 2439# We need int64_t or else certian parts of the compile will fail.
4b492aab 2440if test "x$ac_cv_have_int64_t" = "xno" && \
2441 test "x$ac_cv_sizeof_long_int" != "x8" && \
2442 test "x$ac_cv_sizeof_long_long_int" = "x0" ; then
85abc74b 2443 echo "OpenSSH requires int64_t support. Contact your vendor or install"
2444 echo "an alternative compiler (I.E., GCC) before continuing."
2445 echo ""
2446 exit 1;
733cf7f4 2447else
2448dnl test snprintf (broken on SCO w/gcc)
1a01a50c 2449 AC_RUN_IFELSE(
479cece8 2450 [AC_LANG_SOURCE([[
733cf7f4 2451#include <stdio.h>
2452#include <string.h>
2453#ifdef HAVE_SNPRINTF
2454main()
2455{
2456 char buf[50];
2457 char expected_out[50];
2458 int mazsize = 50 ;
2459#if (SIZEOF_LONG_INT == 8)
2460 long int num = 0x7fffffffffffffff;
2461#else
763a1a18 2462 long long num = 0x7fffffffffffffffll;
733cf7f4 2463#endif
2464 strcpy(expected_out, "9223372036854775807");
2465 snprintf(buf, mazsize, "%lld", num);
2466 if(strcmp(buf, expected_out) != 0)
aff51935 2467 exit(1);
733cf7f4 2468 exit(0);
2469}
2470#else
2471main() { exit(0); }
2472#endif
479cece8 2473 ]])], [ true ], [ AC_DEFINE(BROKEN_SNPRINTF) ],
1a01a50c 2474 AC_MSG_WARN([cross compiling: Assuming working snprintf()])
733cf7f4 2475 )
2c523de9 2476fi
2477
77bb0bca 2478dnl Checks for structure members
58d100bf 2479OSSH_CHECK_HEADER_FOR_FIELD(ut_host, utmp.h, HAVE_HOST_IN_UTMP)
2480OSSH_CHECK_HEADER_FOR_FIELD(ut_host, utmpx.h, HAVE_HOST_IN_UTMPX)
2481OSSH_CHECK_HEADER_FOR_FIELD(syslen, utmpx.h, HAVE_SYSLEN_IN_UTMPX)
2482OSSH_CHECK_HEADER_FOR_FIELD(ut_pid, utmp.h, HAVE_PID_IN_UTMP)
2483OSSH_CHECK_HEADER_FOR_FIELD(ut_type, utmp.h, HAVE_TYPE_IN_UTMP)
25422c70 2484OSSH_CHECK_HEADER_FOR_FIELD(ut_type, utmpx.h, HAVE_TYPE_IN_UTMPX)
58d100bf 2485OSSH_CHECK_HEADER_FOR_FIELD(ut_tv, utmp.h, HAVE_TV_IN_UTMP)
2486OSSH_CHECK_HEADER_FOR_FIELD(ut_id, utmp.h, HAVE_ID_IN_UTMP)
daaff4d5 2487OSSH_CHECK_HEADER_FOR_FIELD(ut_id, utmpx.h, HAVE_ID_IN_UTMPX)
58d100bf 2488OSSH_CHECK_HEADER_FOR_FIELD(ut_addr, utmp.h, HAVE_ADDR_IN_UTMP)
2489OSSH_CHECK_HEADER_FOR_FIELD(ut_addr, utmpx.h, HAVE_ADDR_IN_UTMPX)
2490OSSH_CHECK_HEADER_FOR_FIELD(ut_addr_v6, utmp.h, HAVE_ADDR_V6_IN_UTMP)
2491OSSH_CHECK_HEADER_FOR_FIELD(ut_addr_v6, utmpx.h, HAVE_ADDR_V6_IN_UTMPX)
1d7b9b20 2492OSSH_CHECK_HEADER_FOR_FIELD(ut_exit, utmp.h, HAVE_EXIT_IN_UTMP)
2493OSSH_CHECK_HEADER_FOR_FIELD(ut_time, utmp.h, HAVE_TIME_IN_UTMP)
2494OSSH_CHECK_HEADER_FOR_FIELD(ut_time, utmpx.h, HAVE_TIME_IN_UTMPX)
2495OSSH_CHECK_HEADER_FOR_FIELD(ut_tv, utmpx.h, HAVE_TV_IN_UTMPX)
98a7c37b 2496
2497AC_CHECK_MEMBERS([struct stat.st_blksize])
1d7b9b20 2498
58d100bf 2499AC_CACHE_CHECK([for ss_family field in struct sockaddr_storage],
2500 ac_cv_have_ss_family_in_struct_ss, [
2501 AC_TRY_COMPILE(
2502 [
18ba2aab 2503#include <sys/types.h>
2504#include <sys/socket.h>
58d100bf 2505 ],
2506 [ struct sockaddr_storage s; s.ss_family = 1; ],
2507 [ ac_cv_have_ss_family_in_struct_ss="yes" ],
2508 [ ac_cv_have_ss_family_in_struct_ss="no" ],
2509 )
2510])
2511if test "x$ac_cv_have_ss_family_in_struct_ss" = "xyes" ; then
3466e002 2512 AC_DEFINE(HAVE_SS_FAMILY_IN_SS, 1, [Fields in struct sockaddr_storage])
58d100bf 2513fi
2514
58d100bf 2515AC_CACHE_CHECK([for __ss_family field in struct sockaddr_storage],
2516 ac_cv_have___ss_family_in_struct_ss, [
2517 AC_TRY_COMPILE(
2518 [
18ba2aab 2519#include <sys/types.h>
2520#include <sys/socket.h>
58d100bf 2521 ],
2522 [ struct sockaddr_storage s; s.__ss_family = 1; ],
2523 [ ac_cv_have___ss_family_in_struct_ss="yes" ],
2524 [ ac_cv_have___ss_family_in_struct_ss="no" ]
2525 )
2526])
2527if test "x$ac_cv_have___ss_family_in_struct_ss" = "xyes" ; then
3466e002 2528 AC_DEFINE(HAVE___SS_FAMILY_IN_SS, 1,
2529 [Fields in struct sockaddr_storage])
58d100bf 2530fi
2531
2e73a022 2532AC_CACHE_CHECK([for pw_class field in struct passwd],
2533 ac_cv_have_pw_class_in_struct_passwd, [
2534 AC_TRY_COMPILE(
2535 [
2e73a022 2536#include <pwd.h>
2537 ],
97994d32 2538 [ struct passwd p; p.pw_class = 0; ],
2e73a022 2539 [ ac_cv_have_pw_class_in_struct_passwd="yes" ],
2540 [ ac_cv_have_pw_class_in_struct_passwd="no" ]
2541 )
2542])
2543if test "x$ac_cv_have_pw_class_in_struct_passwd" = "xyes" ; then
3466e002 2544 AC_DEFINE(HAVE_PW_CLASS_IN_PASSWD, 1,
2545 [Define if your password has a pw_class field])
2e73a022 2546fi
2547
7751d4eb 2548AC_CACHE_CHECK([for pw_expire field in struct passwd],
2549 ac_cv_have_pw_expire_in_struct_passwd, [
2550 AC_TRY_COMPILE(
2551 [
2552#include <pwd.h>
2553 ],
2554 [ struct passwd p; p.pw_expire = 0; ],
2555 [ ac_cv_have_pw_expire_in_struct_passwd="yes" ],
2556 [ ac_cv_have_pw_expire_in_struct_passwd="no" ]
2557 )
2558])
2559if test "x$ac_cv_have_pw_expire_in_struct_passwd" = "xyes" ; then
3466e002 2560 AC_DEFINE(HAVE_PW_EXPIRE_IN_PASSWD, 1,
2561 [Define if your password has a pw_expire field])
7751d4eb 2562fi
2563
2564AC_CACHE_CHECK([for pw_change field in struct passwd],
2565 ac_cv_have_pw_change_in_struct_passwd, [
2566 AC_TRY_COMPILE(
2567 [
2568#include <pwd.h>
2569 ],
2570 [ struct passwd p; p.pw_change = 0; ],
2571 [ ac_cv_have_pw_change_in_struct_passwd="yes" ],
2572 [ ac_cv_have_pw_change_in_struct_passwd="no" ]
2573 )
2574])
2575if test "x$ac_cv_have_pw_change_in_struct_passwd" = "xyes" ; then
3466e002 2576 AC_DEFINE(HAVE_PW_CHANGE_IN_PASSWD, 1,
2577 [Define if your password has a pw_change field])
7751d4eb 2578fi
58d100bf 2579
637f9177 2580dnl make sure we're using the real structure members and not defines
6f34652e 2581AC_CACHE_CHECK([for msg_accrights field in struct msghdr],
2582 ac_cv_have_accrights_in_msghdr, [
1a01a50c 2583 AC_COMPILE_IFELSE(
6f34652e 2584 [
f95c8ce8 2585#include <sys/types.h>
6f34652e 2586#include <sys/socket.h>
2587#include <sys/uio.h>
637f9177 2588int main() {
2589#ifdef msg_accrights
1a01a50c 2590#error "msg_accrights is a macro"
637f9177 2591exit(1);
2592#endif
2593struct msghdr m;
2594m.msg_accrights = 0;
2595exit(0);
2596}
6f34652e 2597 ],
6f34652e 2598 [ ac_cv_have_accrights_in_msghdr="yes" ],
2599 [ ac_cv_have_accrights_in_msghdr="no" ]
2600 )
2601])
2602if test "x$ac_cv_have_accrights_in_msghdr" = "xyes" ; then
3466e002 2603 AC_DEFINE(HAVE_ACCRIGHTS_IN_MSGHDR, 1,
2604 [Define if your system uses access rights style
2605 file descriptor passing])
6f34652e 2606fi
2607
7176df4f 2608AC_CACHE_CHECK([for msg_control field in struct msghdr],
2609 ac_cv_have_control_in_msghdr, [
1a01a50c 2610 AC_COMPILE_IFELSE(
7176df4f 2611 [
f95c8ce8 2612#include <sys/types.h>
7176df4f 2613#include <sys/socket.h>
2614#include <sys/uio.h>
637f9177 2615int main() {
2616#ifdef msg_control
1a01a50c 2617#error "msg_control is a macro"
637f9177 2618exit(1);
2619#endif
2620struct msghdr m;
2621m.msg_control = 0;
2622exit(0);
2623}
7176df4f 2624 ],
7176df4f 2625 [ ac_cv_have_control_in_msghdr="yes" ],
2626 [ ac_cv_have_control_in_msghdr="no" ]
2627 )
2628])
2629if test "x$ac_cv_have_control_in_msghdr" = "xyes" ; then
3466e002 2630 AC_DEFINE(HAVE_CONTROL_IN_MSGHDR, 1,
2631 [Define if your system uses ancillary data style
2632 file descriptor passing])
7176df4f 2633fi
2634
58d100bf 2635AC_CACHE_CHECK([if libc defines __progname], ac_cv_libc_defines___progname, [
aff51935 2636 AC_TRY_LINK([],
2637 [ extern char *__progname; printf("%s", __progname); ],
58d100bf 2638 [ ac_cv_libc_defines___progname="yes" ],
2639 [ ac_cv_libc_defines___progname="no" ]
2640 )
2641])
2642if test "x$ac_cv_libc_defines___progname" = "xyes" ; then
3466e002 2643 AC_DEFINE(HAVE___PROGNAME, 1, [Define if libc defines __progname])
58d100bf 2644fi
8946db53 2645
c921ee00 2646AC_CACHE_CHECK([whether $CC implements __FUNCTION__], ac_cv_cc_implements___FUNCTION__, [
2647 AC_TRY_LINK([
2648#include <stdio.h>
aff51935 2649],
2650 [ printf("%s", __FUNCTION__); ],
c921ee00 2651 [ ac_cv_cc_implements___FUNCTION__="yes" ],
2652 [ ac_cv_cc_implements___FUNCTION__="no" ]
2653 )
2654])
2655if test "x$ac_cv_cc_implements___FUNCTION__" = "xyes" ; then
3466e002 2656 AC_DEFINE(HAVE___FUNCTION__, 1,
2657 [Define if compiler implements __FUNCTION__])
c921ee00 2658fi
2659
2660AC_CACHE_CHECK([whether $CC implements __func__], ac_cv_cc_implements___func__, [
2661 AC_TRY_LINK([
2662#include <stdio.h>
aff51935 2663],
2664 [ printf("%s", __func__); ],
c921ee00 2665 [ ac_cv_cc_implements___func__="yes" ],
2666 [ ac_cv_cc_implements___func__="no" ]
2667 )
2668])
2669if test "x$ac_cv_cc_implements___func__" = "xyes" ; then
3466e002 2670 AC_DEFINE(HAVE___func__, 1, [Define if compiler implements __func__])
c921ee00 2671fi
2672
1812a662 2673AC_CACHE_CHECK([whether getopt has optreset support],
2674 ac_cv_have_getopt_optreset, [
2675 AC_TRY_LINK(
2676 [
2677#include <getopt.h>
2678 ],
2679 [ extern int optreset; optreset = 0; ],
2680 [ ac_cv_have_getopt_optreset="yes" ],
2681 [ ac_cv_have_getopt_optreset="no" ]
2682 )
2683])
2684if test "x$ac_cv_have_getopt_optreset" = "xyes" ; then
3466e002 2685 AC_DEFINE(HAVE_GETOPT_OPTRESET, 1,
2686 [Define if your getopt(3) defines and uses optreset])
1812a662 2687fi
a0391976 2688
819b676f 2689AC_CACHE_CHECK([if libc defines sys_errlist], ac_cv_libc_defines_sys_errlist, [
aff51935 2690 AC_TRY_LINK([],
2691 [ extern const char *const sys_errlist[]; printf("%s", sys_errlist[0]);],
819b676f 2692 [ ac_cv_libc_defines_sys_errlist="yes" ],
2693 [ ac_cv_libc_defines_sys_errlist="no" ]
2694 )
2695])
2696if test "x$ac_cv_libc_defines_sys_errlist" = "xyes" ; then
3466e002 2697 AC_DEFINE(HAVE_SYS_ERRLIST, 1,
2698 [Define if your system defines sys_errlist[]])
819b676f 2699fi
2700
2701
416ed5a7 2702AC_CACHE_CHECK([if libc defines sys_nerr], ac_cv_libc_defines_sys_nerr, [
aff51935 2703 AC_TRY_LINK([],
2704 [ extern int sys_nerr; printf("%i", sys_nerr);],
416ed5a7 2705 [ ac_cv_libc_defines_sys_nerr="yes" ],
2706 [ ac_cv_libc_defines_sys_nerr="no" ]
2707 )
2708])
2709if test "x$ac_cv_libc_defines_sys_nerr" = "xyes" ; then
3466e002 2710 AC_DEFINE(HAVE_SYS_NERR, 1, [Define if your system defines sys_nerr])
416ed5a7 2711fi
2712
aff51935 2713SCARD_MSG="no"
295c8801 2714# Check whether user wants sectok support
2715AC_ARG_WITH(sectok,
2716 [ --with-sectok Enable smartcard support using libsectok],
d0b19c95 2717 [
2718 if test "x$withval" != "xno" ; then
2719 if test "x$withval" != "xyes" ; then
2720 CPPFLAGS="$CPPFLAGS -I${withval}"
2721 LDFLAGS="$LDFLAGS -L${withval}"
2722 if test ! -z "$need_dash_r" ; then
2723 LDFLAGS="$LDFLAGS -R${withval}"
2724 fi
2725 if test ! -z "$blibpath" ; then
2726 blibpath="$blibpath:${withval}"
2727 fi
2728 fi
2729 AC_CHECK_HEADERS(sectok.h)
2730 if test "$ac_cv_header_sectok_h" != yes; then
2731 AC_MSG_ERROR(Can't find sectok.h)
2732 fi
2733 AC_CHECK_LIB(sectok, sectok_open)
2734 if test "$ac_cv_lib_sectok_sectok_open" != yes; then
2735 AC_MSG_ERROR(Can't find libsectok)
2736 fi
3466e002 2737 AC_DEFINE(SMARTCARD, 1,
2738 [Define if you want smartcard support])
2739 AC_DEFINE(USE_SECTOK, 1,
2740 [Define if you want smartcard support
2741 using sectok])
aff51935 2742 SCARD_MSG="yes, using sectok"
295c8801 2743 fi
2744 ]
2745)
2746
2747# Check whether user wants OpenSC support
987b458f 2748OPENSC_CONFIG="no"
295c8801 2749AC_ARG_WITH(opensc,
e47fb473 2750 [ --with-opensc[[=PFX]] Enable smartcard support using OpenSC (optionally in PATH)],
987b458f 2751 [
2752 if test "x$withval" != "xno" ; then
2753 if test "x$withval" != "xyes" ; then
2754 OPENSC_CONFIG=$withval/bin/opensc-config
2755 else
2756 AC_PATH_PROG(OPENSC_CONFIG, opensc-config, no)
2757 fi
2758 if test "$OPENSC_CONFIG" != "no"; then
2759 LIBOPENSC_CFLAGS=`$OPENSC_CONFIG --cflags`
2760 LIBOPENSC_LIBS=`$OPENSC_CONFIG --libs`
2761 CPPFLAGS="$CPPFLAGS $LIBOPENSC_CFLAGS"
2762 LDFLAGS="$LDFLAGS $LIBOPENSC_LIBS"
2763 AC_DEFINE(SMARTCARD)
3466e002 2764 AC_DEFINE(USE_OPENSC, 1,
2765 [Define if you want smartcard support
2766 using OpenSC])
987b458f 2767 SCARD_MSG="yes, using OpenSC"
2768 fi
2769 fi
2770 ]
2771)
d0b19c95 2772
c31dc31c 2773# Check libraries needed by DNS fingerprint support
aff51935 2774AC_SEARCH_LIBS(getrrsetbyname, resolv,
3466e002 2775 [AC_DEFINE(HAVE_GETRRSETBYNAME, 1,
2776 [Define if getrrsetbyname() exists])],
3e05e934 2777 [
c31dc31c 2778 # Needed by our getrrsetbyname()
2779 AC_SEARCH_LIBS(res_query, resolv)
2780 AC_SEARCH_LIBS(dn_expand, resolv)
dabb524a 2781 AC_MSG_CHECKING(if res_query will link)
2782 AC_TRY_LINK_FUNC(res_query, AC_MSG_RESULT(yes),
2783 [AC_MSG_RESULT(no)
2784 saved_LIBS="$LIBS"
2785 LIBS="$LIBS -lresolv"
2786 AC_MSG_CHECKING(for res_query in -lresolv)
2787 AC_LINK_IFELSE([
2788#include <resolv.h>
2789int main()
2790{
2791 res_query (0, 0, 0, 0, 0);
2792 return 0;
2793}
2794 ],
2795 [LIBS="$LIBS -lresolv"
2796 AC_MSG_RESULT(yes)],
2797 [LIBS="$saved_LIBS"
2798 AC_MSG_RESULT(no)])
2799 ])
c31dc31c 2800 AC_CHECK_FUNCS(_getshort _getlong)
1c829da5 2801 AC_CHECK_DECLS([_getshort, _getlong], , ,
b5765e1d 2802 [#include <sys/types.h>
2803 #include <arpa/nameser.h>])
c31dc31c 2804 AC_CHECK_MEMBER(HEADER.ad,
3466e002 2805 [AC_DEFINE(HAVE_HEADER_AD, 1,
2806 [Define if HEADER.ad exists in arpa/nameser.h])],,
c31dc31c 2807 [#include <arpa/nameser.h>])
2808 ])
3e05e934 2809
12928e80 2810# Check whether user wants Kerberos 5 support
aff51935 2811KRB5_MSG="no"
12928e80 2812AC_ARG_WITH(kerberos5,
aff51935 2813 [ --with-kerberos5=PATH Enable Kerberos 5 support],
5585c441 2814 [ if test "x$withval" != "xno" ; then
2815 if test "x$withval" = "xyes" ; then
2816 KRB5ROOT="/usr/local"
2817 else
2818 KRB5ROOT=${withval}
2819 fi
2820
3466e002 2821 AC_DEFINE(KRB5, 1, [Define if you want Kerberos 5 support])
5585c441 2822 KRB5_MSG="yes"
2823
2824 AC_MSG_CHECKING(for krb5-config)
2825 if test -x $KRB5ROOT/bin/krb5-config ; then
2826 KRB5CONF=$KRB5ROOT/bin/krb5-config
2827 AC_MSG_RESULT($KRB5CONF)
2828
2829 AC_MSG_CHECKING(for gssapi support)
2830 if $KRB5CONF | grep gssapi >/dev/null ; then
2831 AC_MSG_RESULT(yes)
3466e002 2832 AC_DEFINE(GSSAPI, 1,
2833 [Define this if you want GSSAPI
2834 support in the version 2 protocol])
071970fb 2835 k5confopts=gssapi
aff51935 2836 else
5585c441 2837 AC_MSG_RESULT(no)
071970fb 2838 k5confopts=""
aff51935 2839 fi
071970fb 2840 K5CFLAGS="`$KRB5CONF --cflags $k5confopts`"
2841 K5LIBS="`$KRB5CONF --libs $k5confopts`"
5585c441 2842 CPPFLAGS="$CPPFLAGS $K5CFLAGS"
5585c441 2843 AC_MSG_CHECKING(whether we are using Heimdal)
2844 AC_TRY_COMPILE([ #include <krb5.h> ],
2845 [ char *tmp = heimdal_version; ],
2846 [ AC_MSG_RESULT(yes)
3466e002 2847 AC_DEFINE(HEIMDAL, 1,
2848 [Define this if you are using the
2849 Heimdal version of Kerberos V5]) ],
5585c441 2850 AC_MSG_RESULT(no)
2851 )
2852 else
2853 AC_MSG_RESULT(no)
12928e80 2854 CPPFLAGS="$CPPFLAGS -I${KRB5ROOT}/include"
aff51935 2855 LDFLAGS="$LDFLAGS -L${KRB5ROOT}/lib"
aff51935 2856 AC_MSG_CHECKING(whether we are using Heimdal)
2857 AC_TRY_COMPILE([ #include <krb5.h> ],
2858 [ char *tmp = heimdal_version; ],
2859 [ AC_MSG_RESULT(yes)
2860 AC_DEFINE(HEIMDAL)
41707f74 2861 K5LIBS="-lkrb5 -ldes"
2862 K5LIBS="$K5LIBS -lcom_err -lasn1"
82f4e93d 2863 AC_CHECK_LIB(roken, net_write,
41707f74 2864 [K5LIBS="$K5LIBS -lroken"])
aff51935 2865 ],
2866 [ AC_MSG_RESULT(no)
2867 K5LIBS="-lkrb5 -lk5crypto -lcom_err"
2868 ]
2869 )
4e00038c 2870 AC_SEARCH_LIBS(dn_expand, resolv)
12928e80 2871
749560dd 2872 AC_CHECK_LIB(gssapi,gss_init_sec_context,
2873 [ AC_DEFINE(GSSAPI)
2874 K5LIBS="-lgssapi $K5LIBS" ],
2875 [ AC_CHECK_LIB(gssapi_krb5,gss_init_sec_context,
2876 [ AC_DEFINE(GSSAPI)
aff51935 2877 K5LIBS="-lgssapi_krb5 $K5LIBS" ],
749560dd 2878 AC_MSG_WARN([Cannot find any suitable gss-api library - build may fail]),
2879 $K5LIBS)
2880 ],
2881 $K5LIBS)
82f4e93d 2882
749560dd 2883 AC_CHECK_HEADER(gssapi.h, ,
2884 [ unset ac_cv_header_gssapi_h
aff51935 2885 CPPFLAGS="$CPPFLAGS -I${KRB5ROOT}/include/gssapi"
749560dd 2886 AC_CHECK_HEADERS(gssapi.h, ,
2887 AC_MSG_WARN([Cannot find any suitable gss-api header - build may fail])
aff51935 2888 )
749560dd 2889 ]
2890 )
2891
2892 oldCPP="$CPPFLAGS"
2893 CPPFLAGS="$CPPFLAGS -I${KRB5ROOT}/include/gssapi"
2894 AC_CHECK_HEADER(gssapi_krb5.h, ,
2895 [ CPPFLAGS="$oldCPP" ])
2896
aff51935 2897 fi
5585c441 2898 if test ! -z "$need_dash_r" ; then
2899 LDFLAGS="$LDFLAGS -R${KRB5ROOT}/lib"
2900 fi
2901 if test ! -z "$blibpath" ; then
2902 blibpath="$blibpath:${KRB5ROOT}/lib"
2903 fi
071970fb 2904
f5555364 2905 AC_CHECK_HEADERS(gssapi.h gssapi/gssapi.h)
2906 AC_CHECK_HEADERS(gssapi_krb5.h gssapi/gssapi_krb5.h)
2907 AC_CHECK_HEADERS(gssapi_generic.h gssapi/gssapi_generic.h)
071970fb 2908
f5555364 2909 LIBS="$LIBS $K5LIBS"
3466e002 2910 AC_SEARCH_LIBS(k_hasafs, kafs, AC_DEFINE(USE_AFS, 1,
2911 [Define this if you want to use libkafs' AFS support]))
f5555364 2912 fi
071970fb 2913 ]
12928e80 2914)
b5b68128 2915
a0391976 2916# Looking for programs, paths and files
a0391976 2917
ecac8ee5 2918PRIVSEP_PATH=/var/empty
2919AC_ARG_WITH(privsep-path,
cda1ebcb 2920 [ --with-privsep-path=xxx Path for privilege separation chroot (default=/var/empty)],
ecac8ee5 2921 [
6cf0200f 2922 if test -n "$withval" && test "x$withval" != "xno" && \
2923 test "x${withval}" != "xyes"; then
ecac8ee5 2924 PRIVSEP_PATH=$withval
2925 fi
2926 ]
2927)
2928AC_SUBST(PRIVSEP_PATH)
2929
a0391976 2930AC_ARG_WITH(xauth,
2931 [ --with-xauth=PATH Specify path to xauth program ],
2932 [
6cf0200f 2933 if test -n "$withval" && test "x$withval" != "xno" && \
2934 test "x${withval}" != "xyes"; then
cbd7492e 2935 xauth_path=$withval
a0391976 2936 fi
2937 ],
2938 [
2bf42e4a 2939 TestPath="$PATH"
2940 TestPath="${TestPath}${PATH_SEPARATOR}/usr/X/bin"
2941 TestPath="${TestPath}${PATH_SEPARATOR}/usr/bin/X11"
2942 TestPath="${TestPath}${PATH_SEPARATOR}/usr/X11R6/bin"
2943 TestPath="${TestPath}${PATH_SEPARATOR}/usr/openwin/bin"
2944 AC_PATH_PROG(xauth_path, xauth, , $TestPath)
e5fe9a1f 2945 if (test ! -z "$xauth_path" && test -x "/usr/openwin/bin/xauth") ; then
a0391976 2946 xauth_path="/usr/openwin/bin/xauth"
2947 fi
2948 ]
2949)
2950
65a4b4af 2951STRIP_OPT=-s
2952AC_ARG_ENABLE(strip,
2953 [ --disable-strip Disable calling strip(1) on install],
2954 [
2955 if test "x$enableval" = "xno" ; then
2956 STRIP_OPT=
2957 fi
2958 ]
2959)
2960AC_SUBST(STRIP_OPT)
2961
b3ec54b4 2962if test -z "$xauth_path" ; then
2963 XAUTH_PATH="undefined"
2964 AC_SUBST(XAUTH_PATH)
2965else
3466e002 2966 AC_DEFINE_UNQUOTED(XAUTH_PATH, "$xauth_path",
2967 [Define if xauth is found in your path])
b3ec54b4 2968 XAUTH_PATH=$xauth_path
2969 AC_SUBST(XAUTH_PATH)
a0391976 2970fi
a0391976 2971
2972# Check for mail directory (last resort if we cannot get it from headers)
2973if test ! -z "$MAIL" ; then
2974 maildir=`dirname $MAIL`
3466e002 2975 AC_DEFINE_UNQUOTED(MAIL_DIRECTORY, "$maildir",
2976 [Set this to your mail directory if you don't have maillock.h])
a0391976 2977fi
2978
479cece8 2979if test ! -z "$cross_compiling" && test "x$cross_compiling" = "xyes"; then
1a01a50c 2980 AC_MSG_WARN([cross compiling: Disabling /dev/ptmx test])
2981 disable_ptmx_check=yes
2982fi
a0391976 2983if test -z "$no_dev_ptmx" ; then
6e879cb4 2984 if test "x$disable_ptmx_check" != "xyes" ; then
aff51935 2985 AC_CHECK_FILE("/dev/ptmx",
6e879cb4 2986 [
3466e002 2987 AC_DEFINE_UNQUOTED(HAVE_DEV_PTMX, 1,
2988 [Define if you have /dev/ptmx])
6e879cb4 2989 have_dev_ptmx=1
2990 ]
2991 )
2992 fi
3276571c 2993fi
1a01a50c 2994
479cece8 2995if test ! -z "$cross_compiling" && test "x$cross_compiling" != "xyes"; then
1a01a50c 2996 AC_CHECK_FILE("/dev/ptc",
2997 [
3466e002 2998 AC_DEFINE_UNQUOTED(HAVE_DEV_PTS_AND_PTC, 1,
2999 [Define if you have /dev/ptc])
1a01a50c 3000 have_dev_ptc=1
3001 ]
3002 )
3003else
3004 AC_MSG_WARN([cross compiling: Disabling /dev/ptc test])
3005fi
3276571c 3006
a0391976 3007# Options from here on. Some of these are preset by platform above
fdf6b7aa 3008AC_ARG_WITH(mantype,
5d97cfbf 3009 [ --with-mantype=man|cat|doc Set man page type],
c54a6257 3010 [
5d97cfbf 3011 case "$withval" in
3012 man|cat|doc)
3013 MANTYPE=$withval
3014 ;;
3015 *)
3016 AC_MSG_ERROR(invalid man type: $withval)
3017 ;;
3018 esac
c54a6257 3019 ]
3020)
e0c4d3ac 3021if test -z "$MANTYPE"; then
2bf42e4a 3022 TestPath="/usr/bin${PATH_SEPARATOR}/usr/ucb"
3023 AC_PATH_PROGS(NROFF, nroff awf, /bin/false, $TestPath)
e0c4d3ac 3024 if ${NROFF} -mdoc ${srcdir}/ssh.1 >/dev/null 2>&1; then
3025 MANTYPE=doc
3026 elif ${NROFF} -man ${srcdir}/ssh.1 >/dev/null 2>&1; then
3027 MANTYPE=man
3028 else
3029 MANTYPE=cat
3030 fi
3031fi
c54a6257 3032AC_SUBST(MANTYPE)
e0c4d3ac 3033if test "$MANTYPE" = "doc"; then
3034 mansubdir=man;
3035else
3036 mansubdir=$MANTYPE;
3037fi
3038AC_SUBST(mansubdir)
0bc5b6fb 3039
a0391976 3040# Check whether to enable MD5 passwords
aff51935 3041MD5_MSG="no"
2ddcfdf3 3042AC_ARG_WITH(md5-passwords,
caf3bc51 3043 [ --with-md5-passwords Enable use of MD5 passwords],
0bc5b6fb 3044 [
bcf36c78 3045 if test "x$withval" != "xno" ; then
3466e002 3046 AC_DEFINE(HAVE_MD5_PASSWORDS, 1,
3047 [Define if you want to allow MD5 passwords])
aff51935 3048 MD5_MSG="yes"
0bc5b6fb 3049 fi
3050 ]
caf3bc51 3051)
3052
a0391976 3053# Whether to disable shadow password support
a7effaac 3054AC_ARG_WITH(shadow,
3055 [ --without-shadow Disable shadow password support],
3056 [
82f4e93d 3057 if test "x$withval" = "xno" ; then
a7effaac 3058 AC_DEFINE(DISABLE_SHADOW)
4cb5ffa0 3059 disable_shadow=yes
a7effaac 3060 fi
3061 ]
3062)
3063
4cb5ffa0 3064if test -z "$disable_shadow" ; then
3065 AC_MSG_CHECKING([if the systems has expire shadow information])
3066 AC_TRY_COMPILE(
3067 [
3068#include <sys/types.h>
3069#include <shadow.h>
3070 struct spwd sp;
3071 ],[ sp.sp_expire = sp.sp_lstchg = sp.sp_inact = 0; ],
3072 [ sp_expire_available=yes ], []
3073 )
3074
3075 if test "x$sp_expire_available" = "xyes" ; then
3076 AC_MSG_RESULT(yes)
3466e002 3077 AC_DEFINE(HAS_SHADOW_EXPIRE, 1,
3078 [Define if you want to use shadow password expire field])
4cb5ffa0 3079 else
3080 AC_MSG_RESULT(no)
3081 fi
3082fi
3083
a0391976 3084# Use ip address instead of hostname in $DISPLAY
44839801 3085if test ! -z "$IPADDR_IN_DISPLAY" ; then
3086 DISPLAY_HACK_MSG="yes"
3466e002 3087 AC_DEFINE(IPADDR_IN_DISPLAY, 1,
3088 [Define if you need to use IP address
3089 instead of hostname in $DISPLAY])
44839801 3090else
aff51935 3091 DISPLAY_HACK_MSG="no"
44839801 3092 AC_ARG_WITH(ipaddr-display,
3093 [ --with-ipaddr-display Use ip address instead of hostname in \$DISPLAY],
3094 [
82f4e93d 3095 if test "x$withval" != "xno" ; then
44839801 3096 AC_DEFINE(IPADDR_IN_DISPLAY)
aff51935 3097 DISPLAY_HACK_MSG="yes"
44839801 3098 fi
3099 ]
3100 )
3101fi
a7effaac 3102
95b99395 3103# check for /etc/default/login and use it if present.
daa41e62 3104AC_ARG_ENABLE(etc-default-login,
6ff3d0dc 3105 [ --disable-etc-default-login Disable using PATH from /etc/default/login [no]],
694d0cef 3106 [ if test "x$enableval" = "xno"; then
3107 AC_MSG_NOTICE([/etc/default/login handling disabled])
3108 etc_default_login=no
3109 else
3110 etc_default_login=yes
3111 fi ],
b0e7249f 3112 [ if test ! -z "$cross_compiling" && test "x$cross_compiling" = "xyes";
3113 then
3114 AC_MSG_WARN([cross compiling: not checking /etc/default/login])
3115 etc_default_login=no
3116 else
3117 etc_default_login=yes
3118 fi ]
694d0cef 3119)
95b99395 3120
694d0cef 3121if test "x$etc_default_login" != "xno"; then
3122 AC_CHECK_FILE("/etc/default/login",
3123 [ external_path_file=/etc/default/login ])
b0e7249f 3124 if test "x$external_path_file" = "x/etc/default/login"; then
3466e002 3125 AC_DEFINE(HAVE_ETC_DEFAULT_LOGIN, 1,
3126 [Define if your system has /etc/default/login])
1a01a50c 3127 fi
694d0cef 3128fi
95b99395 3129
8d184c09 3130dnl BSD systems use /etc/login.conf so --with-default-path= has no effect
4b492aab 3131if test $ac_cv_func_login_getcapbool = "yes" && \
3132 test $ac_cv_header_login_cap_h = "yes" ; then
95b99395 3133 external_path_file=/etc/login.conf
8d184c09 3134fi
95b99395 3135
a0391976 3136# Whether to mess with the default path
aff51935 3137SERVER_PATH_MSG="(default)"
c43d69a9 3138AC_ARG_WITH(default-path,
75817f90 3139 [ --with-default-path= Specify default \$PATH environment for server],
cb807f40 3140 [
95b99395 3141 if test "x$external_path_file" = "x/etc/login.conf" ; then
8d184c09 3142 AC_MSG_WARN([
3143--with-default-path=PATH has no effect on this system.
3144Edit /etc/login.conf instead.])
82f4e93d 3145 elif test "x$withval" != "xno" ; then
89bbd457 3146 if test ! -z "$external_path_file" ; then
95b99395 3147 AC_MSG_WARN([
3148--with-default-path=PATH will only be used if PATH is not defined in
3149$external_path_file .])
3150 fi
b2d818e6 3151 user_path="$withval"
aff51935 3152 SERVER_PATH_MSG="$withval"
cb807f40 3153 fi
b2d818e6 3154 ],
95b99395 3155 [ if test "x$external_path_file" = "x/etc/login.conf" ; then
3156 AC_MSG_WARN([Make sure the path to scp is in /etc/login.conf])
8d184c09 3157 else
89bbd457 3158 if test ! -z "$external_path_file" ; then
95b99395 3159 AC_MSG_WARN([
3160If PATH is defined in $external_path_file, ensure the path to scp is included,
3161otherwise scp will not work.])
3162 fi
b0e7249f 3163 AC_RUN_IFELSE(
3164 [AC_LANG_SOURCE([[
b2d818e6 3165/* find out what STDPATH is */
3166#include <stdio.h>
b2d818e6 3167#ifdef HAVE_PATHS_H
3168# include <paths.h>
3169#endif
3170#ifndef _PATH_STDPATH
d9a4e55b 3171# ifdef _PATH_USERPATH /* Irix */
3172# define _PATH_STDPATH _PATH_USERPATH
3173# else
3174# define _PATH_STDPATH "/usr/bin:/bin:/usr/sbin:/sbin"
3175# endif
b2d818e6 3176#endif
3177#include <sys/types.h>
3178#include <sys/stat.h>
3179#include <fcntl.h>
3180#define DATA "conftest.stdpath"
3181
3182main()
3183{
3184 FILE *fd;
3185 int rc;
82f4e93d 3186
b2d818e6 3187 fd = fopen(DATA,"w");
3188 if(fd == NULL)
3189 exit(1);
82f4e93d 3190
b2d818e6 3191 if ((rc = fprintf(fd,"%s", _PATH_STDPATH)) < 0)
3192 exit(1);
3193
3194 exit(0);
3195}
b0e7249f 3196 ]])],
3197 [ user_path=`cat conftest.stdpath` ],
b2d818e6 3198 [ user_path="/usr/bin:/bin:/usr/sbin:/sbin" ],
3199 [ user_path="/usr/bin:/bin:/usr/sbin:/sbin" ]
3200 )
3201# make sure $bindir is in USER_PATH so scp will work
3202 t_bindir=`eval echo ${bindir}`
3203 case $t_bindir in
3204 NONE/*) t_bindir=`echo $t_bindir | sed "s~NONE~$prefix~"` ;;
3205 esac
3206 case $t_bindir in
3207 NONE/*) t_bindir=`echo $t_bindir | sed "s~NONE~$ac_default_prefix~"` ;;
3208 esac
3209 echo $user_path | grep ":$t_bindir" > /dev/null 2>&1
3210 if test $? -ne 0 ; then
3211 echo $user_path | grep "^$t_bindir" > /dev/null 2>&1
3212 if test $? -ne 0 ; then
3213 user_path=$user_path:$t_bindir
3214 AC_MSG_RESULT(Adding $t_bindir to USER_PATH so scp will work)
3215 fi
3216 fi
8d184c09 3217 fi ]
cb807f40 3218)
95b99395 3219if test "x$external_path_file" != "x/etc/login.conf" ; then
3466e002 3220 AC_DEFINE_UNQUOTED(USER_PATH, "$user_path", [Specify default $PATH])
8d184c09 3221 AC_SUBST(user_path)
3222fi
cb807f40 3223
06617857 3224# Set superuser path separately to user path
06617857 3225AC_ARG_WITH(superuser-path,
3226 [ --with-superuser-path= Specify different path for super-user],
3227 [
6cf0200f 3228 if test -n "$withval" && test "x$withval" != "xno" && \
3229 test "x${withval}" != "xyes"; then
3466e002 3230 AC_DEFINE_UNQUOTED(SUPERUSER_PATH, "$withval",
3231 [Define if you want a different $PATH
3232 for the superuser])
06617857 3233 superuser_path=$withval
3234 fi
3235 ]
3236)
3237
3238
58d100bf 3239AC_MSG_CHECKING([if we need to convert IPv4 in IPv6-mapped addresses])
aff51935 3240IPV4_IN6_HACK_MSG="no"
80faa19f 3241AC_ARG_WITH(4in6,
3242 [ --with-4in6 Check for and convert IPv4 in IPv6 mapped addresses],
3243 [
3244 if test "x$withval" != "xno" ; then
3245 AC_MSG_RESULT(yes)
3466e002 3246 AC_DEFINE(IPV4_IN_IPV6, 1,
3247 [Detect IPv4 in IPv6 mapped addresses
3248 and treat as IPv4])
aff51935 3249 IPV4_IN6_HACK_MSG="yes"
80faa19f 3250 else
3251 AC_MSG_RESULT(no)
3252 fi
3253 ],[
3254 if test "x$inet6_default_4in6" = "xyes"; then
3255 AC_MSG_RESULT([yes (default)])
3256 AC_DEFINE(IPV4_IN_IPV6)
aff51935 3257 IPV4_IN6_HACK_MSG="yes"
80faa19f 3258 else
3259 AC_MSG_RESULT([no (default)])
3260 fi
3261 ]
3262)
3263
af774732 3264# Whether to enable BSD auth support
f1b0ecc3 3265BSD_AUTH_MSG=no
af774732 3266AC_ARG_WITH(bsd-auth,
3267 [ --with-bsd-auth Enable BSD auth support],
3268 [
82f4e93d 3269 if test "x$withval" != "xno" ; then
3466e002 3270 AC_DEFINE(BSD_AUTH, 1,
3271 [Define if you have BSD auth support])
f1b0ecc3 3272 BSD_AUTH_MSG=yes
af774732 3273 fi
3274 ]
3275)
3276
a0391976 3277# Where to place sshd.pid
19d9ac2a 3278piddir=/var/run
81dadca3 3279# make sure the directory exists
82f4e93d 3280if test ! -d $piddir ; then
81dadca3 3281 piddir=`eval echo ${sysconfdir}`
3282 case $piddir in
aff51935 3283 NONE/*) piddir=`echo $piddir | sed "s~NONE~$ac_default_prefix~"` ;;
81dadca3 3284 esac
3285fi
3286
47e45e44 3287AC_ARG_WITH(pid-dir,
3288 [ --with-pid-dir=PATH Specify location of ssh.pid file],
3289 [
6cf0200f 3290 if test -n "$withval" && test "x$withval" != "xno" && \
3291 test "x${withval}" != "xyes"; then
19d9ac2a 3292 piddir=$withval
82f4e93d 3293 if test ! -d $piddir ; then
81dadca3 3294 AC_MSG_WARN([** no $piddir directory on this system **])
3295 fi
47e45e44 3296 fi
3297 ]
3298)
b7a87eea 3299
3466e002 3300AC_DEFINE_UNQUOTED(_PATH_SSH_PIDDIR, "$piddir", [Specify location of ssh.pid])
19d9ac2a 3301AC_SUBST(piddir)
47e45e44 3302
1d7b9b20 3303dnl allow user to disable some login recording features
3304AC_ARG_ENABLE(lastlog,
bfd550a2 3305 [ --disable-lastlog disable use of lastlog even if detected [no]],
ddb154b3 3306 [
3307 if test "x$enableval" = "xno" ; then
3308 AC_DEFINE(DISABLE_LASTLOG)
3309 fi
3310 ]
1d7b9b20 3311)
3312AC_ARG_ENABLE(utmp,
bfd550a2 3313 [ --disable-utmp disable use of utmp even if detected [no]],
ddb154b3 3314 [
3315 if test "x$enableval" = "xno" ; then
3316 AC_DEFINE(DISABLE_UTMP)
3317 fi
3318 ]
1d7b9b20 3319)
3320AC_ARG_ENABLE(utmpx,
bfd550a2 3321 [ --disable-utmpx disable use of utmpx even if detected [no]],
ddb154b3 3322 [
3323 if test "x$enableval" = "xno" ; then
3466e002 3324 AC_DEFINE(DISABLE_UTMPX, 1,
3325 [Define if you don't want to use utmpx])
ddb154b3 3326 fi
3327 ]
1d7b9b20 3328)
3329AC_ARG_ENABLE(wtmp,
bfd550a2 3330 [ --disable-wtmp disable use of wtmp even if detected [no]],
ddb154b3 3331 [
3332 if test "x$enableval" = "xno" ; then
3333 AC_DEFINE(DISABLE_WTMP)
3334 fi
3335 ]
1d7b9b20 3336)
3337AC_ARG_ENABLE(wtmpx,
bfd550a2 3338 [ --disable-wtmpx disable use of wtmpx even if detected [no]],
ddb154b3 3339 [
3340 if test "x$enableval" = "xno" ; then
3466e002 3341 AC_DEFINE(DISABLE_WTMPX, 1,
3342 [Define if you don't want to use wtmpx])
ddb154b3 3343 fi
3344 ]
1d7b9b20 3345)
3346AC_ARG_ENABLE(libutil,
bfd550a2 3347 [ --disable-libutil disable use of libutil (login() etc.) [no]],
ddb154b3 3348 [
3349 if test "x$enableval" = "xno" ; then
3350 AC_DEFINE(DISABLE_LOGIN)
3351 fi
3352 ]
1d7b9b20 3353)
3354AC_ARG_ENABLE(pututline,
bfd550a2 3355 [ --disable-pututline disable use of pututline() etc. ([uw]tmp) [no]],
ddb154b3 3356 [
3357 if test "x$enableval" = "xno" ; then
3466e002 3358 AC_DEFINE(DISABLE_PUTUTLINE, 1,
3359 [Define if you don't want to use pututline()
3360 etc. to write [uw]tmp])
ddb154b3 3361 fi
3362 ]
1d7b9b20 3363)
3364AC_ARG_ENABLE(pututxline,
bfd550a2 3365 [ --disable-pututxline disable use of pututxline() etc. ([uw]tmpx) [no]],
ddb154b3 3366 [
3367 if test "x$enableval" = "xno" ; then
3466e002 3368 AC_DEFINE(DISABLE_PUTUTXLINE, 1,
3369 [Define if you don't want to use pututxline()
3370 etc. to write [uw]tmpx])
ddb154b3 3371 fi
3372 ]
1d7b9b20 3373)
3374AC_ARG_WITH(lastlog,
bfd550a2 3375 [ --with-lastlog=FILE|DIR specify lastlog location [common locations]],
8c89dd2b 3376 [
82f4e93d 3377 if test "x$withval" = "xno" ; then
8c89dd2b 3378 AC_DEFINE(DISABLE_LASTLOG)
6cf0200f 3379 elif test -n "$withval" && test "x${withval}" != "xyes"; then
8c89dd2b 3380 conf_lastlog_location=$withval
3381 fi
3382 ]
3383)
1d7b9b20 3384
3385dnl lastlog, [uw]tmpx? detection
3386dnl NOTE: set the paths in the platform section to avoid the
3387dnl need for command-line parameters
3388dnl lastlog and [uw]tmp are subject to a file search if all else fails
3389
3390dnl lastlog detection
3391dnl NOTE: the code itself will detect if lastlog is a directory
3392AC_MSG_CHECKING([if your system defines LASTLOG_FILE])
3393AC_TRY_COMPILE([
3394#include <sys/types.h>
3395#include <utmp.h>
3396#ifdef HAVE_LASTLOG_H
3397# include <lastlog.h>
3398#endif
d7c0f3d5 3399#ifdef HAVE_PATHS_H
1d7b9b20 3400# include <paths.h>
41cb4569 3401#endif
3402#ifdef HAVE_LOGIN_H
3403# include <login.h>
1d7b9b20 3404#endif
3405 ],
3406 [ char *lastlog = LASTLOG_FILE; ],
3407 [ AC_MSG_RESULT(yes) ],
d7c0f3d5 3408 [
3409 AC_MSG_RESULT(no)
3410 AC_MSG_CHECKING([if your system defines _PATH_LASTLOG])
3411 AC_TRY_COMPILE([
3412#include <sys/types.h>
3413#include <utmp.h>
3414#ifdef HAVE_LASTLOG_H
3415# include <lastlog.h>
3416#endif
3417#ifdef HAVE_PATHS_H
3418# include <paths.h>
3419#endif
3420 ],
3421 [ char *lastlog = _PATH_LASTLOG; ],
3422 [ AC_MSG_RESULT(yes) ],
3423 [
f282b668 3424 AC_MSG_RESULT(no)
d7c0f3d5 3425 system_lastlog_path=no
3426 ])
3427 ]
1d7b9b20 3428)
d7c0f3d5 3429
1d7b9b20 3430if test -z "$conf_lastlog_location"; then
3431 if test x"$system_lastlog_path" = x"no" ; then
3432 for f in /var/log/lastlog /usr/adm/lastlog /var/adm/lastlog /etc/security/lastlog ; do
e5fe9a1f 3433 if (test -d "$f" || test -f "$f") ; then
1d7b9b20 3434 conf_lastlog_location=$f
3435 fi
3436 done
3437 if test -z "$conf_lastlog_location"; then
f8119cef 3438 AC_MSG_WARN([** Cannot find lastlog **])
3439 dnl Don't define DISABLE_LASTLOG - that means we don't try wtmp/wtmpx
1d7b9b20 3440 fi
3441 fi
3442fi
3443
3444if test -n "$conf_lastlog_location"; then
3466e002 3445 AC_DEFINE_UNQUOTED(CONF_LASTLOG_FILE, "$conf_lastlog_location",
3446 [Define if you want to specify the path to your lastlog file])
82f4e93d 3447fi
1d7b9b20 3448
3449dnl utmp detection
3450AC_MSG_CHECKING([if your system defines UTMP_FILE])
3451AC_TRY_COMPILE([
3452#include <sys/types.h>
3453#include <utmp.h>
d7c0f3d5 3454#ifdef HAVE_PATHS_H
1d7b9b20 3455# include <paths.h>
3456#endif
3457 ],
3458 [ char *utmp = UTMP_FILE; ],
3459 [ AC_MSG_RESULT(yes) ],
3460 [ AC_MSG_RESULT(no)
3461 system_utmp_path=no ]
3462)
3463if test -z "$conf_utmp_location"; then
3464 if test x"$system_utmp_path" = x"no" ; then
3465 for f in /etc/utmp /usr/adm/utmp /var/run/utmp; do
3466 if test -f $f ; then
3467 conf_utmp_location=$f
3468 fi
3469 done
3470 if test -z "$conf_utmp_location"; then
3471 AC_DEFINE(DISABLE_UTMP)
3472 fi
3473 fi
3474fi
3475if test -n "$conf_utmp_location"; then
3466e002 3476 AC_DEFINE_UNQUOTED(CONF_UTMP_FILE, "$conf_utmp_location",
3477 [Define if you want to specify the path to your utmp file])
82f4e93d 3478fi
1d7b9b20 3479
3480dnl wtmp detection
3481AC_MSG_CHECKING([if your system defines WTMP_FILE])
3482AC_TRY_COMPILE([
3483#include <sys/types.h>
3484#include <utmp.h>
d7c0f3d5 3485#ifdef HAVE_PATHS_H
1d7b9b20 3486# include <paths.h>
3487#endif
3488 ],
3489 [ char *wtmp = WTMP_FILE; ],
3490 [ AC_MSG_RESULT(yes) ],
3491 [ AC_MSG_RESULT(no)
3492 system_wtmp_path=no ]
3493)
3494if test -z "$conf_wtmp_location"; then
3495 if test x"$system_wtmp_path" = x"no" ; then
3496 for f in /usr/adm/wtmp /var/log/wtmp; do
3497 if test -f $f ; then
3498 conf_wtmp_location=$f
3499 fi
3500 done
3501 if test -z "$conf_wtmp_location"; then
3502 AC_DEFINE(DISABLE_WTMP)
3503 fi
3504 fi
3505fi
3506if test -n "$conf_wtmp_location"; then
3466e002 3507 AC_DEFINE_UNQUOTED(CONF_WTMP_FILE, "$conf_wtmp_location",
3508 [Define if you want to specify the path to your wtmp file])
82f4e93d 3509fi
1d7b9b20 3510
3511
3512dnl utmpx detection - I don't know any system so perverse as to require
3513dnl utmpx, but not define UTMPX_FILE (ditto wtmpx.) No doubt it's out
3514dnl there, though.
3515AC_MSG_CHECKING([if your system defines UTMPX_FILE])
3516AC_TRY_COMPILE([
3517#include <sys/types.h>
3518#include <utmp.h>
3519#ifdef HAVE_UTMPX_H
3520#include <utmpx.h>
3521#endif
d7c0f3d5 3522#ifdef HAVE_PATHS_H
1d7b9b20 3523# include <paths.h>
3524#endif
3525 ],
3526 [ char *utmpx = UTMPX_FILE; ],
3527 [ AC_MSG_RESULT(yes) ],
3528 [ AC_MSG_RESULT(no)
3529 system_utmpx_path=no ]
3530)
3531if test -z "$conf_utmpx_location"; then
3532 if test x"$system_utmpx_path" = x"no" ; then
3533 AC_DEFINE(DISABLE_UTMPX)
3534 fi
3535else
3466e002 3536 AC_DEFINE_UNQUOTED(CONF_UTMPX_FILE, "$conf_utmpx_location",
3537 [Define if you want to specify the path to your utmpx file])
82f4e93d 3538fi
1d7b9b20 3539
3540dnl wtmpx detection
3541AC_MSG_CHECKING([if your system defines WTMPX_FILE])
3542AC_TRY_COMPILE([
3543#include <sys/types.h>
3544#include <utmp.h>
3545#ifdef HAVE_UTMPX_H
3546#include <utmpx.h>
3547#endif
d7c0f3d5 3548#ifdef HAVE_PATHS_H
1d7b9b20 3549# include <paths.h>
3550#endif
3551 ],
3552 [ char *wtmpx = WTMPX_FILE; ],
3553 [ AC_MSG_RESULT(yes) ],
3554 [ AC_MSG_RESULT(no)
3555 system_wtmpx_path=no ]
3556)
3557if test -z "$conf_wtmpx_location"; then
3558 if test x"$system_wtmpx_path" = x"no" ; then
3559 AC_DEFINE(DISABLE_WTMPX)
3560 fi
3561else
3466e002 3562 AC_DEFINE_UNQUOTED(CONF_WTMPX_FILE, "$conf_wtmpx_location",
3563 [Define if you want to specify the path to your wtmpx file])
82f4e93d 3564fi
1d7b9b20 3565
b7a87eea 3566
bd499f9e 3567if test ! -z "$blibpath" ; then
68ece370 3568 LDFLAGS="$LDFLAGS $blibflags$blibpath"
3569 AC_MSG_WARN([Please check and edit blibpath in LDFLAGS in Makefile])
bd499f9e 3570fi
3571
ddceb1c8 3572dnl remove pam and dl because they are in $LIBPAM
3573if test "$PAM_MSG" = yes ; then
98f2d9d5 3574 LIBS=`echo $LIBS | sed 's/-lpam //'`
3575fi
3576if test "$ac_cv_lib_pam_pam_set_item" = yes ; then
3577 LIBS=`echo $LIBS | sed 's/-ldl //'`
ddceb1c8 3578fi
3579
ed89c848 3580dnl Adding -Werror to CFLAGS early prevents configure tests from running.
3581dnl Add now.
3582CFLAGS="$CFLAGS $werror_flags"
3583
3c62e7eb 3584AC_EXEEXT
d7cfdd7c 3585AC_CONFIG_FILES([Makefile buildpkg.sh opensshd.init openbsd-compat/Makefile \
3586 scard/Makefile ssh_prng_cmds survey.sh])
98a7c37b 3587AC_OUTPUT
d3083fbd 3588
cbd7492e 3589# Print summary of options
3590
cbd7492e 3591# Someone please show me a better way :)
3592A=`eval echo ${prefix}` ; A=`eval echo ${A}`
3593B=`eval echo ${bindir}` ; B=`eval echo ${B}`
3594C=`eval echo ${sbindir}` ; C=`eval echo ${C}`
3595D=`eval echo ${sysconfdir}` ; D=`eval echo ${D}`
f5665f6f 3596E=`eval echo ${libexecdir}/ssh-askpass` ; E=`eval echo ${E}`
e0c4d3ac 3597F=`eval echo ${mandir}/${mansubdir}X` ; F=`eval echo ${F}`
cbd7492e 3598G=`eval echo ${piddir}` ; G=`eval echo ${G}`
ecac8ee5 3599H=`eval echo ${PRIVSEP_PATH}` ; H=`eval echo ${H}`
3600I=`eval echo ${user_path}` ; I=`eval echo ${I}`
3601J=`eval echo ${superuser_path}` ; J=`eval echo ${J}`
cbd7492e 3602
3603echo ""
26de7942 3604echo "OpenSSH has been configured with the following options:"
ecac8ee5 3605echo " User binaries: $B"
3606echo " System binaries: $C"
3607echo " Configuration files: $D"
3608echo " Askpass program: $E"
3609echo " Manual pages: $F"
3610echo " PID file: $G"
3611echo " Privilege separation chroot path: $H"
95b99395 3612if test "x$external_path_file" = "x/etc/login.conf" ; then
3613echo " At runtime, sshd will use the path defined in $external_path_file"
3614echo " Make sure the path to scp is present, otherwise scp will not work"
8d184c09 3615else
ecac8ee5 3616echo " sshd default user PATH: $I"
89bbd457 3617 if test ! -z "$external_path_file"; then
95b99395 3618echo " (If PATH is set in $external_path_file it will be used instead. If"
3619echo " used, ensure the path to scp is present, otherwise scp will not work.)"
3620 fi
8d184c09 3621fi
06617857 3622if test ! -z "$superuser_path" ; then
ecac8ee5 3623echo " sshd superuser user PATH: $J"
3624fi
3625echo " Manpage format: $MANTYPE"
3e05e934 3626echo " PAM support: $PAM_MSG"
ecac8ee5 3627echo " KerberosV support: $KRB5_MSG"
3628echo " Smartcard support: $SCARD_MSG"
ecac8ee5 3629echo " S/KEY support: $SKEY_MSG"
3630echo " TCP Wrappers support: $TCPW_MSG"
3631echo " MD5 password support: $MD5_MSG"
59031773 3632echo " libedit support: $LIBEDIT_MSG"
3deb1408 3633echo " IP address in \$DISPLAY hack: $DISPLAY_HACK_MSG"
ecac8ee5 3634echo " Translate v4 in v6 hack: $IPV4_IN6_HACK_MSG"
3635echo " BSD Auth support: $BSD_AUTH_MSG"
3636echo " Random number source: $RAND_MSG"
f1b0ecc3 3637if test ! -z "$USE_RAND_HELPER" ; then
ecac8ee5 3638echo " ssh-rand-helper collects from: $RAND_HELPER_MSG"
af774732 3639fi
3640
cbd7492e 3641echo ""
3642
0c2fb82f 3643echo " Host: ${host}"
3644echo " Compiler: ${CC}"
3645echo " Compiler flags: ${CFLAGS}"
3646echo "Preprocessor flags: ${CPPFLAGS}"
3647echo " Linker flags: ${LDFLAGS}"
ddceb1c8 3648echo " Libraries: ${LIBWRAP} ${LIBPAM} ${LIBS}"
cbd7492e 3649
3650echo ""
3651
9cefe228 3652if test "x$MAKE_PACKAGE_SUPPORTED" = "xyes" ; then
b3146b5f 3653 echo "SVR4 style packages are supported with \"make package\""
3654 echo ""
9cefe228 3655fi
3656
adeebd37 3657if test "x$PAM_MSG" = "xyes" ; then
f1b0ecc3 3658 echo "PAM is enabled. You may need to install a PAM control file "
3659 echo "for sshd, otherwise password authentication may fail. "
aff51935 3660 echo "Example PAM control files can be found in the contrib/ "
f1b0ecc3 3661 echo "subdirectory"
adeebd37 3662 echo ""
3663fi
3664
f1b0ecc3 3665if test ! -z "$RAND_HELPER_CMDHASH" ; then
3666 echo "WARNING: you are using the builtin random number collection "
3667 echo "service. Please read WARNING.RNG and request that your OS "
3668 echo "vendor includes kernel-based random number collection in "
3669 echo "future versions of your OS."
2c523de9 3670 echo ""
3671fi
af774732 3672
2f6f9cff 3673if test ! -z "$NO_PEERCHECK" ; then
3674 echo "WARNING: the operating system that you are using does not "
3675 echo "appear to support either the getpeereid() API nor the "
3676 echo "SO_PEERCRED getsockopt() option. These facilities are used to "
3677 echo "enforce security checks to prevent unauthorised connections to "
3678 echo "ssh-agent. Their absence increases the risk that a malicious "
3679 echo "user can connect to your agent. "
3680 echo ""
3681fi
3682
7b578f7d 3683if test "$AUDIT_MODULE" = "bsm" ; then
3684 echo "WARNING: BSM audit support is currently considered EXPERIMENTAL."
3685 echo "See the Solaris section in README.platform for details."
3686fi
git-cvsimport mirror of OpenSSH
This page took 0.956237 seconds and 5 git commands to generate.