version 1.6, 2000/11/21 17:58:44 |
version 1.6.4.1, 2002/01/18 16:14:46 |
|
|
dnl |
dnl |
dnl Process this file with GNU autoconf to produce a configure script. |
dnl Process this file with GNU autoconf to produce a configure script. |
dnl $Sudo: configure.in,v 1.310 2000/03/24 20:14:04 millert Exp $ |
dnl $Sudo: configure.in,v 1.346 2002/01/16 23:37:34 millert Exp $ |
dnl |
dnl |
dnl Copyright (c) 1994-1996,1998-1999 Todd C. Miller <Todd.Miller@courtesan.com> |
dnl Copyright (c) 1994-1996,1998-2002 Todd C. Miller <Todd.Miller@courtesan.com> |
dnl |
dnl |
AC_INIT(sudo.h) |
AC_INIT(sudo, 1.6.5) |
AC_CONFIG_HEADER(config.h pathnames.h) |
AC_CONFIG_HEADER(config.h pathnames.h) |
dnl |
dnl |
dnl This won't work before AC_INIT() |
dnl This won't work before AC_INIT() |
dnl |
dnl |
echo "Configuring Sudo version 1.6.3" |
echo "Configuring Sudo version 1.6.5" |
dnl |
dnl |
dnl Variables that get substituted in the Makefile |
dnl Variables that get substituted in the Makefile and man pages |
dnl |
dnl |
AC_SUBST(CFLAGS)dnl |
AC_SUBST(CFLAGS)dnl |
AC_SUBST(PROGS)dnl |
AC_SUBST(PROGS)dnl |
|
|
AC_SUBST(SUDOERS_MODE)dnl |
AC_SUBST(SUDOERS_MODE)dnl |
AC_SUBST(SUDOERS_UID)dnl |
AC_SUBST(SUDOERS_UID)dnl |
AC_SUBST(SUDOERS_GID)dnl |
AC_SUBST(SUDOERS_GID)dnl |
AC_SUBST(TIMEDIR) |
|
AC_SUBST(DEV) |
AC_SUBST(DEV) |
AC_SUBST(mansectsu) |
AC_SUBST(mansectsu) |
AC_SUBST(mansectform) |
AC_SUBST(mansectform) |
AC_SUBST(mansrcdir) |
AC_SUBST(mansrcdir) |
dnl |
dnl |
|
dnl Variables that get substituted in docs (not overridden by environment) |
|
dnl |
|
AC_SUBST(timedir)dnl initial value from SUDO_TIMEDIR |
|
AC_SUBST(timeout) |
|
AC_SUBST(password_timeout) |
|
AC_SUBST(sudo_umask) |
|
AC_SUBST(passprompt) |
|
AC_SUBST(long_otp_prompt) |
|
AC_SUBST(lecture) |
|
AC_SUBST(logfac) |
|
AC_SUBST(goodpri) |
|
AC_SUBST(badpri) |
|
AC_SUBST(loglen) |
|
AC_SUBST(ignore_dot) |
|
AC_SUBST(mail_no_user) |
|
AC_SUBST(mail_no_host) |
|
AC_SUBST(mail_no_perms) |
|
AC_SUBST(mailto) |
|
AC_SUBST(mailsub) |
|
AC_SUBST(badpass_message) |
|
AC_SUBST(fqdn) |
|
AC_SUBST(runas_default) |
|
AC_SUBST(env_editor) |
|
AC_SUBST(passwd_tries) |
|
AC_SUBST(tty_tickets) |
|
AC_SUBST(insults) |
|
dnl |
|
dnl Initial values for above |
|
dnl |
|
timeout=5 |
|
password_timeout=5 |
|
sudo_umask=0022 |
|
passprompt="Password:" |
|
long_otp_prompt=off |
|
lecture=on |
|
logfac=local2 |
|
goodpri=notice |
|
badpri=alert |
|
loglen=80 |
|
ignore_dot=off |
|
mail_no_user=on |
|
mail_no_host=off |
|
mail_no_perms=off |
|
mailto=root |
|
mailsub='*** SECURITY information for %h ***' |
|
badpass_message='Sorry, try again.' |
|
fqdn=off |
|
runas_default=root |
|
env_editor=off |
|
passwd_tries=3 |
|
tty_tickets=off |
|
insults=off |
|
dnl |
dnl Initial values for Makefile variables listed above |
dnl Initial values for Makefile variables listed above |
dnl Some may be overridden by environment variables.. |
dnl May be overridden by environment variables.. |
dnl |
dnl |
PROGS="sudo visudo" |
PROGS="sudo visudo" |
test -n "$MANTYPE" || MANTYPE="man" |
test -n "$MANTYPE" || MANTYPE="man" |
|
|
AC_ARG_WITH(otp-only, [ --with-otp-only deprecated], |
AC_ARG_WITH(otp-only, [ --with-otp-only deprecated], |
[case $with_otp_only in |
[case $with_otp_only in |
yes) with_passwd=no |
yes) with_passwd=no |
AC_DEFINE(WITHOUT_PASSWD) |
AC_DEFINE(WITHOUT_PASSWD, 1, [Define to avoid using the passwd/shadow file for authentication.]) |
AC_MSG_WARN([--with-otp-only option deprecated, treating as --without-passwd]) |
AC_MSG_WARN([--with-otp-only option deprecated, treating as --without-passwd]) |
;; |
;; |
esac]) |
esac]) |
|
|
AC_ARG_WITH(alertmail, [ --with-alertmail deprecated], |
AC_ARG_WITH(alertmail, [ --with-alertmail deprecated], |
[case $with_alertmail in |
[case $with_alertmail in |
*) with_mailto="$with_alertmail" |
*) with_mailto="$with_alertmail" |
AC_DEFINE(WITHOUT_PASSWD) |
|
AC_MSG_WARN([--with-alertmail option deprecated, treating as --mailto]) |
AC_MSG_WARN([--with-alertmail option deprecated, treating as --mailto]) |
;; |
;; |
esac]) |
esac]) |
|
|
;; |
;; |
esac]) |
esac]) |
|
|
|
AC_ARG_WITH(efence, [ --with-efence link with -lefence for malloc() debugging], |
|
[case $with_efence in |
|
yes) echo 'Sudo will link with -lefence (Electric Fence)' |
|
LIBS="${LIBS} -lefence" |
|
if test -f /usr/local/lib/libefence.a; then |
|
LDFLAGS="${LDFLAGS} -L/usr/local/lib" |
|
fi |
|
;; |
|
no) ;; |
|
*) echo "Ignoring unknown argument to --with-efence: $with_efence" |
|
;; |
|
esac]) |
|
|
AC_ARG_WITH(csops, [ --with-csops add CSOps standard options], |
AC_ARG_WITH(csops, [ --with-csops add CSOps standard options], |
[case $with_csops in |
[case $with_csops in |
yes) echo 'Adding CSOps standard options' |
yes) echo 'Adding CSOps standard options' |
CHECKSIA=false |
CHECKSIA=false |
with_ignore_dot=yes |
with_ignore_dot=yes |
with_insults=yes |
insults=on |
with_classic_insults=yes |
with_classic_insults=yes |
with_csops_insults=yes |
with_csops_insults=yes |
with_env_editor=yes |
with_env_editor=yes |
|
|
yes) if test -n "$with_opie"; then |
yes) if test -n "$with_opie"; then |
AC_MSG_ERROR(["cannot use both S/Key and OPIE"]) |
AC_MSG_ERROR(["cannot use both S/Key and OPIE"]) |
fi |
fi |
AC_DEFINE(HAVE_SKEY) |
AC_DEFINE(HAVE_SKEY, 1, [Define if you use S/Key.]) |
AC_MSG_CHECKING(whether to try S/Key authentication) |
AC_MSG_CHECKING(whether to try S/Key authentication) |
AC_MSG_RESULT(yes) |
AC_MSG_RESULT(yes) |
AUTH_OBJS="${AUTH_OBJS} rfc1938.o" |
AUTH_OBJS="${AUTH_OBJS} rfc1938.o" |
|
|
yes) if test -n "$with_skey"; then |
yes) if test -n "$with_skey"; then |
AC_MSG_ERROR(["cannot use both S/Key and OPIE"]) |
AC_MSG_ERROR(["cannot use both S/Key and OPIE"]) |
fi |
fi |
AC_DEFINE(HAVE_OPIE) |
AC_DEFINE(HAVE_OPIE, 1, [Define if you use NRL OPIE.]) |
AC_MSG_CHECKING(whether to try NRL OPIE authentication) |
AC_MSG_CHECKING(whether to try NRL OPIE authentication) |
AC_MSG_RESULT(yes) |
AC_MSG_RESULT(yes) |
AUTH_OBJS="${AUTH_OBJS} rfc1938.o" |
AUTH_OBJS="${AUTH_OBJS} rfc1938.o" |
|
|
|
|
AC_ARG_WITH(long-otp-prompt, [ --with-long-otp-prompt use a two line OTP (skey/opie) prompt], |
AC_ARG_WITH(long-otp-prompt, [ --with-long-otp-prompt use a two line OTP (skey/opie) prompt], |
[case $with_long_otp_prompt in |
[case $with_long_otp_prompt in |
yes) AC_DEFINE(LONG_OTP_PROMPT) |
yes) AC_DEFINE(LONG_OTP_PROMPT, 1, [Define if you want a two line OTP (S/Key or OPIE) prompt.]) |
AC_MSG_CHECKING(whether to use a two line prompt for OTP authentication) |
AC_MSG_CHECKING(whether to use a two line prompt for OTP authentication) |
AC_MSG_RESULT(yes) |
AC_MSG_RESULT(yes) |
|
long_otp_prompt=on |
;; |
;; |
no) ;; |
no) long_otp_prompt=off |
|
;; |
*) AC_MSG_ERROR(["--with-long-otp-prompt does not take an argument."]) |
*) AC_MSG_ERROR(["--with-long-otp-prompt does not take an argument."]) |
;; |
;; |
esac]) |
esac]) |
|
|
AC_ARG_WITH(SecurID, [ --with-SecurID enable SecurID support], |
AC_ARG_WITH(SecurID, [ --with-SecurID enable SecurID support], |
[case $with_SecurID in |
[case $with_SecurID in |
no) ;; |
no) ;; |
*) AC_DEFINE(HAVE_SECURID) |
*) AC_DEFINE(HAVE_SECURID, 1, [Define if you use SecurID.]) |
AC_MSG_CHECKING(whether to use SecurID for authentication) |
AC_MSG_CHECKING(whether to use SecurID for authentication) |
AC_MSG_RESULT(yes) |
AC_MSG_RESULT(yes) |
with_passwd=no |
with_passwd=no |
|
|
|
|
AC_ARG_WITH(fwtk, [ --with-fwtk enable FWTK AuthSRV support], |
AC_ARG_WITH(fwtk, [ --with-fwtk enable FWTK AuthSRV support], |
[case $with_fwtk in |
[case $with_fwtk in |
yes) AC_DEFINE(HAVE_FWTK) |
|
AC_MSG_CHECKING(whether to use FWTK AuthSRV for authentication) |
|
AC_MSG_RESULT(yes) |
|
with_passwd=no |
|
AUTH_OBJS="fwtk.o" |
|
;; |
|
no) ;; |
no) ;; |
*) AC_DEFINE(HAVE_FWTK) |
*) AC_DEFINE(HAVE_FWTK, 1, [Define if you use the FWTK authsrv daemon.]) |
AC_MSG_CHECKING(whether to use FWTK AuthSRV for authentication) |
AC_MSG_CHECKING(whether to use FWTK AuthSRV for authentication) |
AC_MSG_RESULT(yes) |
AC_MSG_RESULT(yes) |
SUDO_LDFLAGS="${SUDO_LDFLAGS} -L${with_fwtk}" |
|
CPPFLAGS="${CPPFLAGS} -I${with_fwtk}" |
|
with_passwd=no |
with_passwd=no |
AUTH_OBJS="fwtk.o" |
AUTH_OBJS="fwtk.o" |
with_fwtk=yes |
if test "$with_fwtk" != "yes"; then |
|
SUDO_LDFLAGS="${SUDO_LDFLAGS} -L${with_fwtk}" |
|
CPPFLAGS="${CPPFLAGS} -I${with_fwtk}" |
|
with_fwtk=yes |
|
fi |
;; |
;; |
esac]) |
esac]) |
|
|
|
|
|
|
AC_ARG_WITH(authenticate, [ --with-authenticate enable AIX general authentication support], |
AC_ARG_WITH(authenticate, [ --with-authenticate enable AIX general authentication support], |
[case $with_authenticate in |
[case $with_authenticate in |
yes) AC_DEFINE(HAVE_AUTHENTICATE) |
yes) AC_DEFINE(HAVE_AUTHENTICATE, 1, [Define if you use AIX general authentication.]) |
AC_MSG_CHECKING(whether to use AIX general authentication) |
AC_MSG_CHECKING(whether to use AIX general authentication) |
AC_MSG_RESULT(yes) |
AC_MSG_RESULT(yes) |
with_passwd=no |
with_passwd=no |
|
|
|
|
AC_ARG_WITH(pam, [ --with-pam enable PAM support], |
AC_ARG_WITH(pam, [ --with-pam enable PAM support], |
[case $with_pam in |
[case $with_pam in |
yes) AC_DEFINE(HAVE_PAM) |
yes) AC_DEFINE(HAVE_PAM, 1, [Define if you use PAM.]) |
AC_MSG_CHECKING(whether to use PAM authentication) |
AC_MSG_CHECKING(whether to use PAM authentication) |
AC_MSG_RESULT(yes) |
AC_MSG_RESULT(yes) |
with_passwd=no |
with_passwd=no |
|
|
|
|
AC_ARG_WITH(AFS, [ --with-AFS enable AFS support], |
AC_ARG_WITH(AFS, [ --with-AFS enable AFS support], |
[case $with_AFS in |
[case $with_AFS in |
yes) AC_DEFINE(HAVE_AFS) |
yes) AC_DEFINE(HAVE_AFS, 1, [Define if you use AFS.]) |
AC_MSG_CHECKING(whether to try AFS (kerberos) authentication) |
AC_MSG_CHECKING(whether to try AFS (kerberos) authentication) |
AC_MSG_RESULT(yes) |
AC_MSG_RESULT(yes) |
AUTH_OBJS="${AUTH_OBJS} afs.o" |
AUTH_OBJS="${AUTH_OBJS} afs.o" |
|
|
|
|
AC_ARG_WITH(DCE, [ --with-DCE enable DCE support], |
AC_ARG_WITH(DCE, [ --with-DCE enable DCE support], |
[case $with_DCE in |
[case $with_DCE in |
yes) AC_DEFINE(HAVE_DCE) |
yes) AC_DEFINE(HAVE_DCE, 1, [Define if you use OSF DCE.]) |
AC_MSG_CHECKING(whether to try DCE (kerberos) authentication) |
AC_MSG_CHECKING(whether to try DCE (kerberos) authentication) |
AC_MSG_RESULT(yes) |
AC_MSG_RESULT(yes) |
AUTH_OBJS="${AUTH_OBJS} dce.o" |
AUTH_OBJS="${AUTH_OBJS} dce.o" |
|
|
AC_MSG_CHECKING(whether to lecture users the first time they run sudo) |
AC_MSG_CHECKING(whether to lecture users the first time they run sudo) |
AC_ARG_WITH(lecture, [ --without-lecture don't print lecture for first-time sudoer], |
AC_ARG_WITH(lecture, [ --without-lecture don't print lecture for first-time sudoer], |
[case $with_lecture in |
[case $with_lecture in |
yes|short) AC_MSG_RESULT(yes) |
yes|short) lecture=on |
;; |
;; |
no|none) AC_DEFINE(NO_LECTURE) |
no|none) lecture=off |
AC_MSG_RESULT(no) |
|
;; |
;; |
*) AC_MSG_ERROR(["unknown argument to --with-lecture: $with_lecture"]) |
*) AC_MSG_ERROR(["unknown argument to --with-lecture: $with_lecture"]) |
;; |
;; |
esac], [AC_MSG_RESULT(yes)]) |
esac]) |
|
if test "$lecture" = "on"; then |
|
AC_MSG_RESULT(yes) |
|
else |
|
AC_DEFINE(NO_LECTURE, 1, [Define if you don't want users to get the lecture the first they user sudo.]) |
|
AC_MSG_RESULT(no) |
|
fi |
|
|
AC_MSG_CHECKING(whether sudo should log via syslog or to a file by default) |
AC_MSG_CHECKING(whether sudo should log via syslog or to a file by default) |
AC_ARG_WITH(logging, [ --with-logging log via syslog, file, or both], |
AC_ARG_WITH(logging, [ --with-logging log via syslog, file, or both], |
|
|
;; |
;; |
no) AC_MSG_ERROR(["--without-logging not supported."]) |
no) AC_MSG_ERROR(["--without-logging not supported."]) |
;; |
;; |
syslog) AC_DEFINE(LOGGING, SLOG_SYSLOG) |
syslog) AC_DEFINE(LOGGING, SLOG_SYSLOG, [Define to SLOG_SYSLOG, SLOG_FILE, or SLOG_BOTH.]) |
AC_MSG_RESULT(syslog) |
AC_MSG_RESULT(syslog) |
;; |
;; |
file) AC_DEFINE(LOGGING, SLOG_FILE) |
file) AC_DEFINE(LOGGING, SLOG_FILE) |
|
|
esac], [AC_DEFINE(LOGGING, SLOG_SYSLOG) AC_MSG_RESULT(syslog)]) |
esac], [AC_DEFINE(LOGGING, SLOG_SYSLOG) AC_MSG_RESULT(syslog)]) |
|
|
AC_MSG_CHECKING(which syslog facility sudo should log with) |
AC_MSG_CHECKING(which syslog facility sudo should log with) |
AC_ARG_WITH(logfac, [ --with-logfac syslog facility to log with (default is local2)], |
AC_ARG_WITH(logfac, [ --with-logfac syslog facility to log with (default is "local2")], |
[case $with_logfac in |
[case $with_logfac in |
yes) AC_MSG_ERROR(["must give --with-logfac an argument."]) |
yes) AC_MSG_ERROR(["must give --with-logfac an argument."]) |
;; |
;; |
no) AC_MSG_ERROR(["--without-logfac not supported."]) |
no) AC_MSG_ERROR(["--without-logfac not supported."]) |
;; |
;; |
authpriv|auth|daemon|user|local0|local1|local2|local3|local4|local5|local6|local7) AC_DEFINE_UNQUOTED(LOGFAC, "$with_logfac") |
authpriv|auth|daemon|user|local0|local1|local2|local3|local4|local5|local6|local7) logfac=$with_logfac |
AC_MSG_RESULT([$with_logfac]) |
|
;; |
;; |
*) AC_MSG_ERROR(["$with_logfac is not a supported syslog facility."]) |
*) AC_MSG_ERROR(["$with_logfac is not a supported syslog facility."]) |
;; |
;; |
esac], [AC_DEFINE_UNQUOTED(LOGFAC, "local2") AC_MSG_RESULT("local2")]) |
esac]) |
|
AC_DEFINE_UNQUOTED(LOGFAC, "$logfac", [The syslog facility sudo will use.]) |
|
AC_MSG_RESULT($logfac) |
|
|
AC_MSG_CHECKING(at which syslog priority to log commands) |
AC_MSG_CHECKING(at which syslog priority to log commands) |
AC_ARG_WITH(goodpri, [ --with-goodpri syslog priority for commands (def is notice)], |
AC_ARG_WITH(goodpri, [ --with-goodpri syslog priority for commands (def is "notice")], |
[case $with_goodpri in |
[case $with_goodpri in |
yes) AC_MSG_ERROR(["must give --with-goodpri an argument."]) |
yes) AC_MSG_ERROR(["must give --with-goodpri an argument."]) |
;; |
;; |
no) AC_MSG_ERROR(["--without-goodpri not supported."]) |
no) AC_MSG_ERROR(["--without-goodpri not supported."]) |
;; |
;; |
alert|crit|debug|emerg|err|info|notice|warning) AC_DEFINE_UNQUOTED(PRI_SUCCESS, "$with_goodpri") |
alert|crit|debug|emerg|err|info|notice|warning) |
AC_MSG_RESULT([$with_goodpri]) |
goodpri=$with_goodpri |
;; |
;; |
*) AC_MSG_ERROR(["$with_goodpri is not a supported syslog priority."]) |
*) AC_MSG_ERROR(["$with_goodpri is not a supported syslog priority."]) |
;; |
;; |
esac], [AC_DEFINE_UNQUOTED(PRI_SUCCESS, "notice") AC_MSG_RESULT("notice")]) |
esac]) |
|
AC_DEFINE_UNQUOTED(PRI_SUCCESS, "$goodpri", [The syslog priority sudo will use for successful attempts.]) |
|
AC_MSG_RESULT($goodpri) |
|
|
AC_MSG_CHECKING(at which syslog priority to log failures) |
AC_MSG_CHECKING(at which syslog priority to log failures) |
AC_ARG_WITH(badpri, [ --with-badpri syslog priority for failures (def is LOG_ALERT)], |
AC_ARG_WITH(badpri, [ --with-badpri syslog priority for failures (def is "alert")], |
[case $with_badpri in |
[case $with_badpri in |
yes) AC_MSG_ERROR(["must give --with-badpri an argument."]) |
yes) AC_MSG_ERROR(["must give --with-badpri an argument."]) |
;; |
;; |
no) AC_MSG_ERROR(["--without-badpri not supported."]) |
no) AC_MSG_ERROR(["--without-badpri not supported."]) |
;; |
;; |
alert|crit|debug|emerg|err|info|notice|warning) AC_DEFINE_UNQUOTED(PRI_FAILURE, "$with_badpri") |
alert|crit|debug|emerg|err|info|notice|warning) |
AC_MSG_RESULT([$with_badpri]) |
badpri=$with_badpri |
;; |
;; |
*) AC_MSG_ERROR([$with_badpri is not a supported syslog priority.]) |
*) AC_MSG_ERROR([$with_badpri is not a supported syslog priority.]) |
;; |
;; |
esac], [AC_DEFINE_UNQUOTED(PRI_FAILURE, "alert") AC_MSG_RESULT("alert")]) |
esac]) |
|
AC_DEFINE_UNQUOTED(PRI_FAILURE, "$badpri", [The syslog priority sudo will use for unsuccessful attempts/errors.]) |
|
AC_MSG_RESULT(badpri) |
|
|
AC_ARG_WITH(logpath, [ --with-logpath path to the sudo log file], |
AC_ARG_WITH(logpath, [ --with-logpath path to the sudo log file], |
[case $with_logpath in |
[case $with_logpath in |
|
|
;; |
;; |
no) AC_MSG_ERROR(["--without-loglen not supported."]) |
no) AC_MSG_ERROR(["--without-loglen not supported."]) |
;; |
;; |
[[0-9]]*) AC_DEFINE_UNQUOTED(MAXLOGFILELEN, $with_loglen) |
[[0-9]]*) loglen=$with_loglen |
AC_MSG_RESULT([$with_loglen]) |
|
;; |
;; |
*) AC_MSG_ERROR(["you must enter a number, not $with_loglen"]) |
*) AC_MSG_ERROR(["you must enter a number, not $with_loglen"]) |
;; |
;; |
esac], [AC_DEFINE(MAXLOGFILELEN, 80) AC_MSG_RESULT(80)]) |
esac]) |
|
AC_DEFINE_UNQUOTED(MAXLOGFILELEN, $loglen, [The max number of chars per log file line (for line wrapping).]) |
|
AC_MSG_RESULT($loglen) |
|
|
AC_MSG_CHECKING(whether sudo should ignore '.' or '' in \$PATH) |
AC_MSG_CHECKING(whether sudo should ignore '.' or '' in \$PATH) |
AC_ARG_WITH(ignore-dot, [ --with-ignore-dot ignore '.' in the PATH], |
AC_ARG_WITH(ignore-dot, [ --with-ignore-dot ignore '.' in the PATH], |
[case $with_ignore_dot in |
[case $with_ignore_dot in |
yes) AC_DEFINE(IGNORE_DOT_PATH) |
yes) ignore_dot=on |
AC_MSG_RESULT(yes) |
|
;; |
;; |
no) AC_MSG_RESULT(no) |
no) ignore_dot=off |
;; |
;; |
*) AC_MSG_ERROR(["--with-ignore-dot does not take an argument."]) |
*) AC_MSG_ERROR(["--with-ignore-dot does not take an argument."]) |
;; |
;; |
esac], AC_MSG_RESULT(no)) |
esac]) |
|
if test "$ignore_dot" = "on"; then |
|
AC_DEFINE(IGNORE_DOT_PATH, 1, [Define if you want to ignore '.' and empty \$PATH elements]) |
|
AC_MSG_RESULT(yes) |
|
else |
|
AC_MSG_RESULT(no) |
|
fi |
|
|
AC_MSG_CHECKING(who should get the mail that sudo sends) |
|
AC_ARG_WITH(mailto, [ --with-mailto who should get sudo mail (default is "root")], |
|
[case $with_mailto in |
|
yes) AC_MSG_ERROR(["must give --with-mailto an argument."]) |
|
;; |
|
no) AC_MSG_ERROR(["--without-mailto not supported."]) |
|
;; |
|
*) AC_DEFINE_UNQUOTED(MAILTO, "$with_mailto") |
|
AC_MSG_RESULT([$with_mailto]) |
|
;; |
|
esac], [AC_DEFINE(MAILTO, "root") AC_MSG_RESULT(root)]) |
|
|
|
AC_ARG_WITH(mailsubject, [ --with-mailsubject subject of sudo mail], |
|
[case $with_mailsubject in |
|
yes) AC_MSG_ERROR(["must give --with-mailsubject an argument."]) |
|
;; |
|
no) echo "Sorry, --without-mailsubject not supported." |
|
;; |
|
*) AC_DEFINE_UNQUOTED(MAILSUBJECT, "$with_mailsubject") |
|
AC_MSG_CHECKING(sudo mail subject) |
|
AC_MSG_RESULT([Using alert mail subject: $with_mailsubject]) |
|
;; |
|
esac], AC_DEFINE(MAILSUBJECT, "*** SECURITY information for %h ***")) |
|
|
|
AC_MSG_CHECKING(whether to send mail when a user is not in sudoers) |
AC_MSG_CHECKING(whether to send mail when a user is not in sudoers) |
AC_ARG_WITH(mail-if-no-user, [ --without-mail-if-no-user do not send mail if user not in sudoers], |
AC_ARG_WITH(mail-if-no-user, [ --without-mail-if-no-user do not send mail if user not in sudoers], |
[case $with_mail_if_no_user in |
[case $with_mail_if_no_user in |
yes) AC_DEFINE(SEND_MAIL_WHEN_NO_USER) |
yes) mail_no_user=on |
AC_MSG_RESULT(yes) |
|
;; |
;; |
no) AC_MSG_RESULT(no) |
no) mail_no_user=off |
;; |
;; |
*) AC_MSG_ERROR(["unknown argument to --with-mail-if-no-user: $with_mail_if_no_user"]) |
*) AC_MSG_ERROR(["--with-mail-if-no-user does not take an argument."]) |
;; |
;; |
esac], [AC_DEFINE(SEND_MAIL_WHEN_NO_USER) AC_MSG_RESULT(yes)]) |
esac]) |
|
if test "$mail_no_user" = "on"; then |
|
AC_DEFINE(SEND_MAIL_WHEN_NO_USER, 1, [Define to send mail when the user is not in the sudoers file.]) |
|
AC_MSG_RESULT(yes) |
|
else |
|
AC_MSG_RESULT(no) |
|
fi |
|
|
AC_MSG_CHECKING(whether to send mail when user listed but not for this host) |
AC_MSG_CHECKING(whether to send mail when user listed but not for this host) |
AC_ARG_WITH(mail-if-no-host, [ --with-mail-if-no-host send mail if user in sudoers but not for this host], |
AC_ARG_WITH(mail-if-no-host, [ --with-mail-if-no-host send mail if user in sudoers but not for this host], |
[case $with_mail_if_no_host in |
[case $with_mail_if_no_host in |
yes) AC_DEFINE(SEND_MAIL_WHEN_NO_HOST) |
yes) mail_no_host=on |
AC_MSG_RESULT(yes) |
|
;; |
;; |
no) AC_MSG_RESULT(no) |
no) mail_no_host=off |
;; |
;; |
*) AC_MSG_ERROR(["unknown argument to --with-mail-if-no-host: $with_mail_if_no_host"]) |
*) AC_MSG_ERROR(["--with-mail-if-no-host does not take an argument."]) |
;; |
;; |
esac], AC_MSG_RESULT(no)) |
esac]) |
|
if test "$mail_no_host" = "on"; then |
|
AC_DEFINE(SEND_MAIL_WHEN_NO_HOST, 1, [Define to send mail when the user is not not allowed to run sudo on this host.]) |
|
AC_MSG_RESULT(yes) |
|
else |
|
AC_MSG_RESULT(no) |
|
fi |
|
|
AC_MSG_CHECKING(whether to send mail when a user tries a disallowed command) |
AC_MSG_CHECKING(whether to send mail when a user tries a disallowed command) |
AC_ARG_WITH(mail-if-noperms, [ --with-mail-if-noperms send mail if user not allowed to run command], |
AC_ARG_WITH(mail-if-noperms, [ --with-mail-if-noperms send mail if user not allowed to run command], |
[case $with_mail_if_noperms in |
[case $with_mail_if_noperms in |
yes) AC_DEFINE(SEND_MAIL_WHEN_NOT_OK) |
yes) mail_noperms=on |
AC_MSG_RESULT(yes) |
|
;; |
;; |
no) AC_MSG_RESULT(no) |
no) mail_noperms=off |
;; |
;; |
*) AC_MSG_ERROR(["unknown argument to --with-mail-if-noperms: $with_mail_if_noperms"]) |
*) AC_MSG_ERROR(["--with-mail-if-noperms does not take an argument."]) |
;; |
;; |
esac], AC_MSG_RESULT(no)) |
esac]) |
|
if test "$mail_noperms" = "on"; then |
|
AC_DEFINE(SEND_MAIL_WHEN_NOT_OK, 1, [Define to send mail when the user is not not allowed to run a command.]) |
|
AC_MSG_RESULT(yes) |
|
else |
|
AC_MSG_RESULT(no) |
|
fi |
|
|
|
AC_MSG_CHECKING(who should get the mail that sudo sends) |
|
AC_ARG_WITH(mailto, [ --with-mailto who should get sudo mail (default is "root")], |
|
[case $with_mailto in |
|
yes) AC_MSG_ERROR(["must give --with-mailto an argument."]) |
|
;; |
|
no) AC_MSG_ERROR(["--without-mailto not supported."]) |
|
;; |
|
*) mailto=$with_mailto |
|
;; |
|
esac]) |
|
AC_DEFINE_UNQUOTED(MAILTO, "$mailto", [The user or email address that sudo mail is sent to.]) |
|
AC_MSG_RESULT([$mailto]) |
|
|
|
AC_ARG_WITH(mailsubject, [ --with-mailsubject subject of sudo mail], |
|
[case $with_mailsubject in |
|
yes) AC_MSG_ERROR(["must give --with-mailsubject an argument."]) |
|
;; |
|
no) echo "Sorry, --without-mailsubject not supported." |
|
;; |
|
*) mailsub="$with_mailsubject" |
|
AC_MSG_CHECKING(sudo mail subject) |
|
AC_MSG_RESULT([Using alert mail subject: $mailsub]) |
|
;; |
|
esac]) |
|
AC_DEFINE_UNQUOTED(MAILSUBJECT, "$mailsub", [The subject of the mail sent by sudo to the MAILTO user/address.]) |
|
|
AC_MSG_CHECKING(for bad password prompt) |
AC_MSG_CHECKING(for bad password prompt) |
AC_ARG_WITH(passprompt, [ --with-passprompt default password prompt], |
AC_ARG_WITH(passprompt, [ --with-passprompt default password prompt], |
[case $with_passprompt in |
[case $with_passprompt in |
|
|
;; |
;; |
no) echo "Sorry, --without-passprompt not supported." |
no) echo "Sorry, --without-passprompt not supported." |
;; |
;; |
*) AC_DEFINE_UNQUOTED(PASSPROMPT, "$with_passprompt") |
*) passprompt="$with_passprompt" |
AC_MSG_RESULT([$with_passprompt]) |
esac]) |
;; |
AC_MSG_RESULT($passprompt) |
esac], [AC_DEFINE(PASSPROMPT, "Password:") AC_MSG_RESULT(Password:)]) |
AC_DEFINE_UNQUOTED(PASSPROMPT, "$passprompt", [The default password prompt.]) |
|
|
AC_MSG_CHECKING(for bad password message) |
AC_MSG_CHECKING(for bad password message) |
AC_ARG_WITH(badpass-message, [ --with-badpass-message message the user sees when the password is wrong], |
AC_ARG_WITH(badpass-message, [ --with-badpass-message message the user sees when the password is wrong], |
|
|
;; |
;; |
no) echo "Sorry, --without-badpass-message not supported." |
no) echo "Sorry, --without-badpass-message not supported." |
;; |
;; |
*) AC_DEFINE_UNQUOTED(INCORRECT_PASSWORD, "$with_badpass_message") |
*) badpass_message="$with_badpass_message" |
AC_MSG_RESULT([$with_badpass_message]) |
|
;; |
;; |
esac], [AC_DEFINE(INCORRECT_PASSWORD, ["Sorry, try again."]) AC_MSG_RESULT([Sorry, try again.])]) |
esac]) |
|
AC_DEFINE_UNQUOTED(INCORRECT_PASSWORD, "$badpass_message", [The message given when a bad password is entered.]) |
|
AC_MSG_RESULT([$badpass_message]) |
|
|
AC_MSG_CHECKING(whether to expect fully qualified hosts in sudoers) |
AC_MSG_CHECKING(whether to expect fully qualified hosts in sudoers) |
AC_ARG_WITH(fqdn, [ --with-fqdn expect fully qualified hosts in sudoers], |
AC_ARG_WITH(fqdn, [ --with-fqdn expect fully qualified hosts in sudoers], |
[case $with_fqdn in |
[case $with_fqdn in |
yes) AC_DEFINE(FQDN) |
yes) fqdn=on |
AC_MSG_RESULT(yes) |
|
;; |
;; |
no) AC_MSG_RESULT(no) |
no) fqdn=off |
;; |
;; |
*) AC_MSG_ERROR(["--with-fqdn does not take an argument."]) |
*) AC_MSG_ERROR(["--with-fqdn does not take an argument."]) |
;; |
;; |
esac], AC_MSG_RESULT(no)) |
esac]) |
|
if test "$fqdn" = "on"; then |
|
AC_DEFINE(FQDN, 1, [Define if you want to require fully qualified hosts in sudoers.]) |
|
AC_MSG_RESULT(yes) |
|
else |
|
AC_MSG_RESULT(no) |
|
fi |
|
|
AC_ARG_WITH(timedir, [ --with-timedir path to the sudo timestamp dir], |
AC_ARG_WITH(timedir, [ --with-timedir path to the sudo timestamp dir], |
[case $with_timedir in |
[case $with_timedir in |
|
|
yes) with_sendmail="" |
yes) with_sendmail="" |
;; |
;; |
no) ;; |
no) ;; |
*) AC_DEFINE_UNQUOTED(_PATH_SENDMAIL, "$with_sendmail") |
*) SUDO_DEFINE_UNQUOTED(_PATH_SUDO_SENDMAIL, "$with_sendmail") |
;; |
;; |
esac]) |
esac]) |
|
|
|
|
esac]) |
esac]) |
|
|
AC_MSG_CHECKING(for umask programs should be run with) |
AC_MSG_CHECKING(for umask programs should be run with) |
AC_ARG_WITH(umask, [ --with-umask umask with which the prog should run (default is 0022) |
AC_ARG_WITH(umask, [ --with-umask umask with which the prog should run (default is 022) |
--without-umask Preserves the umask of the user invoking sudo.], |
--without-umask Preserves the umask of the user invoking sudo.], |
[case $with_umask in |
[case $with_umask in |
yes) AC_MSG_ERROR(["must give --with-umask an argument."]) |
yes) AC_MSG_ERROR(["must give --with-umask an argument."]) |
;; |
;; |
no) AC_MSG_RESULT(user) |
no) sudo_umask=0777 |
;; |
;; |
[[0-9]]*) AC_DEFINE_UNQUOTED(SUDO_UMASK, $with_umask) |
[[0-9]]*) sudo_umask=$with_umask |
AC_MSG_RESULT([$with_umask]) |
|
;; |
;; |
*) AC_MSG_ERROR(["you must enter a numeric mask."]) |
*) AC_MSG_ERROR(["you must enter a numeric mask."]) |
;; |
;; |
esac], [AC_DEFINE(SUDO_UMASK, 0022) AC_MSG_RESULT(0022)]) |
esac]) |
|
AC_DEFINE_UNQUOTED(SUDO_UMASK, $sudo_umask, [The umask that the root-run prog should use.]) |
|
if test "$sudo_umask" = "0777"; then |
|
AC_MSG_RESULT(user) |
|
else |
|
AC_MSG_RESULT($sudo_umask) |
|
fi |
|
|
AC_MSG_CHECKING(for default user to run commands as) |
AC_MSG_CHECKING(for default user to run commands as) |
AC_ARG_WITH(runas-default, [ --with-runas-default User to run commands as (default is "root"], |
AC_ARG_WITH(runas-default, [ --with-runas-default User to run commands as (default is "root")], |
[case $with_runas_default in |
[case $with_runas_default in |
yes) AC_MSG_ERROR(["must give --with-runas-default an argument."]) |
yes) AC_MSG_ERROR(["must give --with-runas-default an argument."]) |
;; |
;; |
no) AC_MSG_ERROR(["--without-runas-default not supported."]) |
no) AC_MSG_ERROR(["--without-runas-default not supported."]) |
;; |
;; |
*) AC_DEFINE_UNQUOTED(RUNAS_DEFAULT, "$with_runas_default") |
*) runas_default="$with_runas_default" |
AC_MSG_RESULT([$with_runas_default]) |
|
;; |
;; |
esac], [AC_DEFINE(RUNAS_DEFAULT, "root") AC_MSG_RESULT(root)]) |
esac]) |
|
AC_DEFINE_UNQUOTED(RUNAS_DEFAULT, "$runas_default", [The user sudo should run commands as by default.]) |
|
AC_MSG_RESULT([$runas_default]) |
|
|
AC_ARG_WITH(exempt, [ --with-exempt=group no passwd needed for users in this group], |
AC_ARG_WITH(exempt, [ --with-exempt=group no passwd needed for users in this group], |
[case $with_exempt in |
[case $with_exempt in |
|
|
;; |
;; |
no) AC_MSG_ERROR(["--without-exempt not supported."]) |
no) AC_MSG_ERROR(["--without-exempt not supported."]) |
;; |
;; |
*) AC_DEFINE_UNQUOTED(EXEMPTGROUP, "$with_exempt") |
*) AC_DEFINE_UNQUOTED(EXEMPTGROUP, "$with_exempt", [If defined, users in this group need not enter a passwd (ie "sudo").]) |
AC_MSG_CHECKING(for group to be exempt from password) |
AC_MSG_CHECKING(for group to be exempt from password) |
AC_MSG_RESULT([$with_exempt]) |
AC_MSG_RESULT([$with_exempt]) |
;; |
;; |
|
|
;; |
;; |
no) AC_MSG_ERROR(["--without-editor not supported."]) |
no) AC_MSG_ERROR(["--without-editor not supported."]) |
;; |
;; |
*) AC_DEFINE_UNQUOTED(EDITOR, "$with_editor") |
*) AC_DEFINE_UNQUOTED(EDITOR, "$with_editor", [A colon-separated list of pathnames to be used as the editor for visudo.]) |
AC_MSG_RESULT([$with_editor]) |
AC_MSG_RESULT([$with_editor]) |
;; |
;; |
esac], [AC_DEFINE(EDITOR, _PATH_VI) AC_MSG_RESULT(vi)]) |
esac], [AC_DEFINE(EDITOR, _PATH_VI) AC_MSG_RESULT(vi)]) |
|
|
AC_MSG_CHECKING(whether to obey EDITOR and VISUAL environment variables) |
AC_MSG_CHECKING(whether to obey EDITOR and VISUAL environment variables) |
AC_ARG_WITH(env-editor, [ --with-env-editor Use the environment variable EDITOR for visudo], |
AC_ARG_WITH(env-editor, [ --with-env-editor Use the environment variable EDITOR for visudo], |
[case $with_env_editor in |
[case $with_env_editor in |
yes) AC_DEFINE(ENV_EDITOR) |
yes) env_editor=on |
AC_MSG_RESULT(yes) |
|
;; |
;; |
no) AC_MSG_RESULT(no) |
no) env_editor=off |
;; |
;; |
*) AC_MSG_ERROR(["--with-env-editor does not take an argument."]) |
*) AC_MSG_ERROR(["--with-env-editor does not take an argument."]) |
;; |
;; |
esac], AC_MSG_RESULT(no)) |
esac]) |
|
if test "$env_editor" = "on"; then |
|
AC_DEFINE(ENV_EDITOR, 1, [Define if you want visudo to honor the EDITOR and VISUAL env variables.]) |
|
AC_MSG_RESULT(yes) |
|
else |
|
AC_MSG_RESULT(no) |
|
fi |
|
|
AC_MSG_CHECKING(number of tries a user gets to enter their password) |
AC_MSG_CHECKING(number of tries a user gets to enter their password) |
AC_ARG_WITH(passwd-tries, [ --with-passwd-tries number of tries to enter password (default is 3)], |
AC_ARG_WITH(passwd-tries, [ --with-passwd-tries number of tries to enter password (default is 3)], |
[case $with_passwd_tries in |
[case $with_passwd_tries in |
yes) AC_DEFINE(TRIES_FOR_PASSWORD, 3) |
yes) ;; |
AC_MSG_RESULT(3) |
|
;; |
|
no) AC_MSG_ERROR(["--without-editor not supported."]) |
no) AC_MSG_ERROR(["--without-editor not supported."]) |
;; |
;; |
[[1-9]]*) AC_DEFINE_UNQUOTED(TRIES_FOR_PASSWORD, $with_passwd_tries) |
[[1-9]]*) passwd_tries=$with_passwd_tries |
AC_MSG_RESULT([$with_passwd_tries]) |
|
;; |
;; |
*) AC_MSG_ERROR(["you must enter the numer of tries, > 0"]) |
*) AC_MSG_ERROR(["you must enter the numer of tries, > 0"]) |
;; |
;; |
esac], [AC_DEFINE(TRIES_FOR_PASSWORD, 3) AC_MSG_RESULT(3)]) |
esac]) |
|
AC_DEFINE_UNQUOTED(TRIES_FOR_PASSWORD, $passwd_tries, [The number of tries a user gets to enter their password.]) |
|
AC_MSG_RESULT($passwd_tries) |
|
|
AC_MSG_CHECKING(time in minutes after which sudo will ask for a password again) |
AC_MSG_CHECKING(time in minutes after which sudo will ask for a password again) |
AC_ARG_WITH(timeout, [ --with-timeout minutes before sudo asks for passwd again (def is 5)], |
AC_ARG_WITH(timeout, [ --with-timeout minutes before sudo asks for passwd again (def is 5 minutes)], |
[echo $with_timeout; case $with_timeout in |
[echo $with_timeout; case $with_timeout in |
yes) AC_DEFINE(TIMEOUT, 5) |
yes) ;; |
AC_MSG_RESULT(5) |
no) timeout=0 |
;; |
;; |
no) AC_DEFINE(TIMEOUT, 0) |
[[0-9]]*) timeout=$with_timeout |
AC_MSG_RESULT([no timeout]) |
|
;; |
;; |
[[0-9]]*) AC_DEFINE_UNQUOTED(TIMEOUT, $with_timeout) |
|
AC_MSG_RESULT([$with_timeout]) |
|
;; |
|
*) AC_MSG_ERROR(["you must enter the numer of minutes."]) |
*) AC_MSG_ERROR(["you must enter the numer of minutes."]) |
;; |
;; |
esac], [AC_DEFINE(TIMEOUT, 5) AC_MSG_RESULT(5)]) |
esac]) |
|
AC_DEFINE_UNQUOTED(TIMEOUT, $timeout, [The number of minutes before sudo asks for a password again.]) |
|
AC_MSG_RESULT($timeout) |
|
|
AC_MSG_CHECKING(time in minutes after the password prompt will time out) |
AC_MSG_CHECKING(time in minutes after the password prompt will time out) |
AC_ARG_WITH(password-timeout, [ --with-password-timeout passwd prompt timeout in minutes (default is 5)], |
AC_ARG_WITH(password-timeout, [ --with-password-timeout passwd prompt timeout in minutes (default is 5 minutes)], |
[case $with_password_timeout in |
[case $with_password_timeout in |
yes) AC_DEFINE(PASSWORD_TIMEOUT, 5) |
yes) ;; |
AC_MSG_RESULT(5) |
no) password_timeout=0 |
;; |
;; |
no) AC_DEFINE(PASSWORD_TIMEOUT, 0) |
[[0-9]]*) password_timeout=$with_password_timeout |
AC_MSG_RESULT([no timeout]) |
|
;; |
;; |
[[0-9]]*) AC_DEFINE_UNQUOTED(PASSWORD_TIMEOUT, $with_password_timeout) |
|
AC_MSG_RESULT([$with_password_timeout]) |
|
;; |
|
*) AC_MSG_ERROR(["you must enter the numer of minutes."]) |
*) AC_MSG_ERROR(["you must enter the numer of minutes."]) |
;; |
;; |
esac], [AC_DEFINE(PASSWORD_TIMEOUT, 5) AC_MSG_RESULT(5)]) |
esac]) |
|
AC_DEFINE_UNQUOTED(PASSWORD_TIMEOUT, $password_timeout, [The passwd prompt timeout (in minutes).]) |
|
AC_MSG_RESULT($password_timeout) |
|
|
AC_MSG_CHECKING(whether to use execvp or execv) |
|
AC_ARG_WITH(execv, [ --with-execv use execv() instead of execvp()], |
AC_ARG_WITH(execv, [ --with-execv use execv() instead of execvp()], |
[case $with_execv in |
[case $with_execv in |
yes) AC_DEFINE(USE_EXECV) |
yes) AC_MSG_CHECKING(whether to use execvp or execv) |
AC_MSG_RESULT(execv) |
AC_MSG_RESULT(execv) |
|
AC_DEFINE(USE_EXECV, 1, [Define if you wish to use execv() instead of execvp() when running programs.]) |
;; |
;; |
no) AC_MSG_RESULT(execvp) |
no) ;; |
;; |
|
*) AC_MSG_ERROR(["--with-execv does not take an argument."]) |
*) AC_MSG_ERROR(["--with-execv does not take an argument."]) |
;; |
;; |
esac], AC_MSG_RESULT(execvp)) |
esac]) |
|
|
AC_MSG_CHECKING(whether to use per-tty ticket files) |
AC_MSG_CHECKING(whether to use per-tty ticket files) |
AC_ARG_WITH(tty-tickets, [ --with-tty-tickets use a different ticket file for each tty], |
AC_ARG_WITH(tty-tickets, [ --with-tty-tickets use a different ticket file for each tty], |
[case $with_tty_tickets in |
[case $with_tty_tickets in |
yes) AC_DEFINE(USE_TTY_TICKETS) |
yes) tty_tickets=on |
AC_MSG_RESULT(yes) |
|
;; |
;; |
no) AC_MSG_RESULT(no) |
no) tty_tickets=off |
;; |
;; |
*) AC_MSG_ERROR(["--with-tty-tickets does not take an argument."]) |
*) AC_MSG_ERROR(["--with-tty-tickets does not take an argument."]) |
;; |
;; |
esac], AC_MSG_RESULT(no)) |
esac]) |
|
if test "$tty_tickets" = "on"; then |
|
AC_DEFINE(USE_TTY_TICKETS, 1, [Define if you want a different ticket file for each tty.]) |
|
AC_MSG_RESULT(yes) |
|
else |
|
AC_MSG_RESULT(no) |
|
fi |
|
|
AC_MSG_CHECKING(whether to include insults) |
AC_MSG_CHECKING(whether to include insults) |
AC_ARG_WITH(insults, [ --with-insults insult the user for entering an incorrect password], |
AC_ARG_WITH(insults, [ --with-insults insult the user for entering an incorrect password], |
[case $with_insults in |
[case $with_insults in |
yes) AC_DEFINE(USE_INSULTS) |
yes) insults=on |
AC_MSG_RESULT(yes) |
|
with_classic_insults=yes |
with_classic_insults=yes |
with_csops_insults=yes |
with_csops_insults=yes |
;; |
;; |
no) AC_MSG_RESULT(no) |
no) insults=off |
;; |
;; |
*) AC_MSG_ERROR(["--with-insults does not take an argument."]) |
*) AC_MSG_ERROR(["--with-insults does not take an argument."]) |
;; |
;; |
esac], AC_MSG_RESULT(no)) |
esac]) |
|
if test "$insults" = "on"; then |
|
AC_DEFINE(USE_INSULTS, 1, [Define if you want to insult the user for entering an incorrect password.]) |
|
AC_MSG_RESULT(yes) |
|
else |
|
AC_MSG_RESULT(no) |
|
fi |
|
|
AC_ARG_WITH(all-insults, [ --with-all-insults include all the sudo insult sets], |
AC_ARG_WITH(all-insults, [ --with-all-insults include all the sudo insult sets], |
[case $with_all_insults in |
[case $with_all_insults in |
|
|
|
|
AC_ARG_WITH(classic-insults, [ --with-classic-insults include the insults from the "classic" sudo], |
AC_ARG_WITH(classic-insults, [ --with-classic-insults include the insults from the "classic" sudo], |
[case $with_classic_insults in |
[case $with_classic_insults in |
yes) AC_DEFINE(CLASSIC_INSULTS) |
yes) AC_DEFINE(CLASSIC_INSULTS, 1, [Define if you want the insults from the "classic" version sudo.]) |
;; |
;; |
no) ;; |
no) ;; |
*) AC_MSG_ERROR(["--with-classic-insults does not take an argument."]) |
*) AC_MSG_ERROR(["--with-classic-insults does not take an argument."]) |
|
|
|
|
AC_ARG_WITH(csops-insults, [ --with-csops-insults include CSOps insults], |
AC_ARG_WITH(csops-insults, [ --with-csops-insults include CSOps insults], |
[case $with_csops_insults in |
[case $with_csops_insults in |
yes) AC_DEFINE(CSOPS_INSULTS) |
yes) AC_DEFINE(CSOPS_INSULTS, 1, [Define if you want insults culled from the twisted minds of CSOps.]) |
;; |
;; |
no) ;; |
no) ;; |
*) AC_MSG_ERROR(["--with-csops-insults does not take an argument."]) |
*) AC_MSG_ERROR(["--with-csops-insults does not take an argument."]) |
|
|
|
|
AC_ARG_WITH(hal-insults, [ --with-hal-insults include 2001-like insults], |
AC_ARG_WITH(hal-insults, [ --with-hal-insults include 2001-like insults], |
[case $with_hal_insults in |
[case $with_hal_insults in |
yes) AC_DEFINE(HAL_INSULTS) |
yes) AC_DEFINE(HAL_INSULTS, 1, [Define if you want 2001-like insults.]) |
;; |
;; |
no) ;; |
no) ;; |
*) AC_MSG_ERROR(["--with-hal-insults does not take an argument."]) |
*) AC_MSG_ERROR(["--with-hal-insults does not take an argument."]) |
;; |
;; |
esac]) |
esac]) |
|
|
AC_ARG_WITH(goons-insults, [ --with-goons-insults include the insults from the \"Goon Show\"], |
AC_ARG_WITH(goons-insults, [ --with-goons-insults include the insults from the "Goon Show"], |
[case $with_goons_insults in |
[case $with_goons_insults in |
yes) AC_DEFINE(GOONS_INSULTS) |
yes) AC_DEFINE(GOONS_INSULTS, 1, [Define if you want insults from the "Goon Show".]) |
;; |
;; |
no) ;; |
no) ;; |
*) AC_MSG_ERROR(["--with-goons-insults does not take an argument."]) |
*) AC_MSG_ERROR(["--with-goons-insults does not take an argument."]) |
|
|
esac]) |
esac]) |
|
|
dnl include all insult sets on one line |
dnl include all insult sets on one line |
if test "$with_insults" = "yes"; then |
if test "$insults" = "on"; then |
AC_MSG_CHECKING(which insult sets to include) |
AC_MSG_CHECKING(which insult sets to include) |
i="" |
i="" |
test "$with_goons_insults" = "yes" && i="goons ${i}" |
test "$with_goons_insults" = "yes" && i="goons ${i}" |
|
|
AC_MSG_CHECKING(whether to override the user's path) |
AC_MSG_CHECKING(whether to override the user's path) |
AC_ARG_WITH(secure-path, [ --with-secure-path override the user's path with a builtin one], |
AC_ARG_WITH(secure-path, [ --with-secure-path override the user's path with a builtin one], |
[case $with_secure_path in |
[case $with_secure_path in |
yes) AC_DEFINE_UNQUOTED(SECURE_PATH, "/bin:/usr/ucb:/usr/bin:/usr/sbin:/sbin:/usr/etc:/etc") |
yes) AC_DEFINE_UNQUOTED(SECURE_PATH, "/bin:/usr/ucb:/usr/bin:/usr/sbin:/sbin:/usr/etc:/etc", [Define to override the user's path with a builtin one.]) |
AC_MSG_RESULT([:/usr/ucb:/usr/bin:/usr/sbin:/sbin:/usr/etc:/etc]) |
AC_MSG_RESULT([:/usr/ucb:/usr/bin:/usr/sbin:/sbin:/usr/etc:/etc]) |
;; |
;; |
no) AC_MSG_RESULT(no) |
no) AC_MSG_RESULT(no) |
|
|
[case $with_interfaces in |
[case $with_interfaces in |
yes) AC_MSG_RESULT(yes) |
yes) AC_MSG_RESULT(yes) |
;; |
;; |
no) AC_DEFINE(STUB_LOAD_INTERFACES) |
no) AC_DEFINE(STUB_LOAD_INTERFACES, 1, [Define if the code in interfaces.c does not compile for you.]) |
AC_MSG_RESULT(no) |
AC_MSG_RESULT(no) |
;; |
;; |
*) AC_MSG_ERROR(["--with-interfaces does not take an argument."]) |
*) AC_MSG_ERROR(["--with-interfaces does not take an argument."]) |
|
|
yes) AC_MSG_RESULT(yes) |
yes) AC_MSG_RESULT(yes) |
;; |
;; |
no) AC_MSG_RESULT(no) |
no) AC_MSG_RESULT(no) |
AC_DEFINE(NO_AUTHENTICATION) |
AC_DEFINE(NO_AUTHENTICATION, 1, [Define if you don't want sudo to prompt for a password by default.]) |
;; |
;; |
*) AC_MSG_RESULT(no) |
*) AC_MSG_RESULT(no) |
echo "Ignoring unknown argument to --enable-authentication: $enableval" |
echo "Ignoring unknown argument to --enable-authentication: $enableval" |
|
|
esac |
esac |
], AC_MSG_RESULT(yes)) |
], AC_MSG_RESULT(yes)) |
|
|
|
AC_MSG_CHECKING(whether to disable running the mailer as root) |
|
AC_ARG_ENABLE(root-mailer, |
|
[ --disable-root-mailer Don't run the mailer as root, run as the user], |
|
[ case "$enableval" in |
|
yes) AC_MSG_RESULT(no) |
|
;; |
|
no) AC_MSG_RESULT(yes) |
|
AC_DEFINE(NO_ROOT_MAILER, 1, [Define to avoid runing the mailer as root.]) |
|
;; |
|
*) AC_MSG_RESULT(no) |
|
echo "Ignoring unknown argument to --enable-root-mailer: $enableval" |
|
;; |
|
esac |
|
], AC_MSG_RESULT(no)) |
|
|
|
AC_MSG_CHECKING(whether to disable use of POSIX saved ids) |
|
AC_ARG_ENABLE(saved-ids, |
|
[ --disable-saved-ids Don't try to use POSIX saved ids], |
|
[ case "$enableval" in |
|
yes) AC_MSG_RESULT(no) |
|
;; |
|
no) AC_MSG_RESULT(yes) |
|
AC_DEFINE(NO_SAVED_IDS, 1, [Define to avoid using POSIX saved ids.]) |
|
;; |
|
*) AC_MSG_RESULT(no) |
|
echo "Ignoring unknown argument to --enable-saved-ids: $enableval" |
|
;; |
|
esac |
|
], AC_MSG_RESULT(no)) |
|
|
AC_MSG_CHECKING(whether to disable shadow password support) |
AC_MSG_CHECKING(whether to disable shadow password support) |
AC_ARG_ENABLE(shadow, |
AC_ARG_ENABLE(shadow, |
[ --disable-shadow Never use shadow passwords], |
[ --disable-shadow Never use shadow passwords], |
|
|
|
|
AC_MSG_CHECKING(whether root should be allowed to use sudo) |
AC_MSG_CHECKING(whether root should be allowed to use sudo) |
AC_ARG_ENABLE(root-sudo, |
AC_ARG_ENABLE(root-sudo, |
[ --disable-root-sudo don't allow root to run sudo], |
[ --disable-root-sudo Don't allow root to run sudo], |
[ case "$enableval" in |
[ case "$enableval" in |
yes) AC_MSG_RESULT(yes) |
yes) AC_MSG_RESULT(yes) |
;; |
;; |
no) AC_DEFINE(NO_ROOT_SUDO) |
no) AC_DEFINE(NO_ROOT_SUDO, 1, [Define if root should not be allowed to use sudo.]) |
AC_MSG_RESULT(no) |
AC_MSG_RESULT(no) |
;; |
;; |
*) AC_MSG_ERROR(["--enable-root-sudo does not take an argument."]) |
*) AC_MSG_ERROR(["--enable-root-sudo does not take an argument."]) |
|
|
[ --enable-log-host Log the hostname in the log file], |
[ --enable-log-host Log the hostname in the log file], |
[ case "$enableval" in |
[ case "$enableval" in |
yes) AC_MSG_RESULT(yes) |
yes) AC_MSG_RESULT(yes) |
AC_DEFINE(HOST_IN_LOG) |
AC_DEFINE(HOST_IN_LOG, 1, [Define if you want the hostname to be entered into the log file.]) |
;; |
;; |
no) AC_MSG_RESULT(no) |
no) AC_MSG_RESULT(no) |
;; |
;; |
|
|
[ --enable-noargs-shell If sudo is given no arguments run a shell], |
[ --enable-noargs-shell If sudo is given no arguments run a shell], |
[ case "$enableval" in |
[ case "$enableval" in |
yes) AC_MSG_RESULT(yes) |
yes) AC_MSG_RESULT(yes) |
AC_DEFINE(SHELL_IF_NO_ARGS) |
AC_DEFINE(SHELL_IF_NO_ARGS, 1, [Define if you want sudo to start a shell if given no arguments.]) |
;; |
;; |
no) AC_MSG_RESULT(no) |
no) AC_MSG_RESULT(no) |
;; |
;; |
|
|
AC_MSG_CHECKING(whether to set \$HOME to target user in shell mode) |
AC_MSG_CHECKING(whether to set \$HOME to target user in shell mode) |
AC_ARG_ENABLE(shell-sets-home, |
AC_ARG_ENABLE(shell-sets-home, |
[ --enable-shell-sets-home |
[ --enable-shell-sets-home |
set \$HOME to target user in shell mode], |
set $HOME to target user in shell mode], |
[ case "$enableval" in |
[ case "$enableval" in |
yes) AC_MSG_RESULT(yes) |
yes) AC_MSG_RESULT(yes) |
AC_DEFINE(SHELL_SETS_HOME) |
AC_DEFINE(SHELL_SETS_HOME, 1, [Define if you want sudo to set $HOME in shell mode.]) |
;; |
;; |
no) AC_MSG_RESULT(no) |
no) AC_MSG_RESULT(no) |
;; |
;; |
|
|
yes) AC_MSG_RESULT(no) |
yes) AC_MSG_RESULT(no) |
;; |
;; |
no) AC_MSG_RESULT(yes) |
no) AC_MSG_RESULT(yes) |
AC_DEFINE(DONT_LEAK_PATH_INFO) |
AC_DEFINE(DONT_LEAK_PATH_INFO, 1, [Define if you want sudo to display "command not allowed" instead of "command not found" when a command cannot be found.]) |
;; |
;; |
*) AC_MSG_RESULT(no) |
*) AC_MSG_RESULT(no) |
echo "Ignoring unknown argument to --enable-path-info: $enableval" |
echo "Ignoring unknown argument to --enable-path-info: $enableval" |
|
|
fi |
fi |
|
|
dnl |
dnl |
|
dnl Prevent configure from adding the -g flag unless in devel mode |
|
dnl |
|
if test "$with_devel" != "yes"; then |
|
ac_cv_prog_cc_g=no |
|
fi |
|
|
|
dnl |
dnl C compiler checks |
dnl C compiler checks |
dnl XXX - the cross-compiler check gets false positives so we override it |
dnl XXX - the cross-compiler check gets false positives so we override it |
dnl |
dnl |
|
AC_ISC_POSIX |
ac_cv_prog_cc_cross="no" |
ac_cv_prog_cc_cross="no" |
cross_compiling="no" |
cross_compiling="no" |
AC_PROG_CC |
AC_PROG_CC_STDC |
ac_cv_prog_cc_cross="no" |
ac_cv_prog_cc_cross="no" |
cross_compiling="no" |
cross_compiling="no" |
AC_PROG_CPP |
AC_PROG_CPP |
AC_ISC_POSIX |
|
|
|
dnl |
dnl |
dnl It is now safe to modify CFLAGS and CPPFLAGS |
dnl It is now safe to modify CFLAGS and CPPFLAGS |
|
|
|
|
# check for password adjunct functions (shadow passwords) |
# check for password adjunct functions (shadow passwords) |
if test "$CHECKSHADOW" = "true"; then |
if test "$CHECKSHADOW" = "true"; then |
AC_CHECK_FUNC(getpwanam, AC_DEFINE(HAVE_GETPWANAM) AC_CHECK_FUNCS(issecure)) |
AC_CHECK_FUNCS(getpwanam issecure, , [break]) |
|
AH_TEMPLATE([HAVE_GETPWANAM], [Define if you have the `getpwanam' function. (SunOS 4.x shadow passwords)]) |
|
AH_TEMPLATE([HAVE_ISSECURE], [Define if you have the `issecure' function. (SunOS 4.x check for shadow enabled)]) |
CHECKSHADOW="false" |
CHECKSHADOW="false" |
fi |
fi |
;; |
;; |
|
|
if test "$with_AFS" = "yes"; then |
if test "$with_AFS" = "yes"; then |
AFS_LIBS="-lc -lucb" |
AFS_LIBS="-lc -lucb" |
fi |
fi |
mansectsu=1m |
test -n "$mansectsu" || mansectsu=1m |
mansectform=4 |
test -n "$mansectform" || mansectform=4 |
;; |
;; |
*-*-aix*) |
*-*-aix*) |
# To get all prototypes (so we pass -Wall) |
# To get all prototypes (so we pass -Wall) |
CPPFLAGS="${CPPFLAGS} -D_XOPEN_EXTENDED_SOURCE" |
CPPFLAGS="${CPPFLAGS} -D_XOPEN_EXTENDED_SOURCE" |
AC_DEFINE(_ALL_SOURCE) |
SUDO_DEFINE(_ALL_SOURCE) |
SUDO_LDFLAGS="${SUDO_LDFLAGS} -Wl,-bI:\$(srcdir)/aixcrypt.exp" |
SUDO_LDFLAGS="${SUDO_LDFLAGS} -Wl,-bI:\$(srcdir)/aixcrypt.exp" |
;; |
;; |
*-*-hiuxmpp*) |
*-*-hiuxmpp*) |
|
|
AC_CHECK_LIB(sec, getprpwnam, AC_DEFINE(HAVE_GETPRPWNAM) [SUDO_LIBS="${SUDO_LIBS} -lsec"; LIBS="${LIBS} -lsec"; SECUREWARE=1], AC_CHECK_LIB(security, getprpwnam, AC_DEFINE(HAVE_GETPRPWNAM) [SUDO_LIBS="${SUDO_LIBS} -lsecurity"; LIBS="${LIBS} -lsecurity"; SECUREWARE=1])) |
AC_CHECK_LIB(sec, getprpwnam, AC_DEFINE(HAVE_GETPRPWNAM) [SUDO_LIBS="${SUDO_LIBS} -lsec"; LIBS="${LIBS} -lsec"; SECUREWARE=1], AC_CHECK_LIB(security, getprpwnam, AC_DEFINE(HAVE_GETPRPWNAM) [SUDO_LIBS="${SUDO_LIBS} -lsecurity"; LIBS="${LIBS} -lsecurity"; SECUREWARE=1])) |
CHECKSHADOW="false" |
CHECKSHADOW="false" |
fi |
fi |
mansectsu=1m |
test -n "$mansectsu" || mansectsu=1m |
mansectform=4 |
test -n "$mansectform" || mansectform=4 |
;; |
;; |
*-*-hpux1[[0-9]]*) |
*-*-hpux1[[0-9]]*) |
# uncomment this for a statically linked sudo |
|
# (XXX - should be an option to configure) |
|
#STATIC_SUDO=true |
|
|
|
# If using cc, run in ANSI mode if possible |
|
if test -z "$GCC"; then |
|
$CC -Aa 2>&1 | grep 'A option is available only' >conftest.out |
|
if test ! -s conftest.out; then |
|
CPPFLAGS="${CPPFLAGS} -Aa" |
|
fi |
|
rm -f conftest.out |
|
fi |
|
|
|
# Add -D_HPUX_SOURCE so we don't get strict ANSI headers |
|
CPPFLAGS="${CPPFLAGS} -D_HPUX_SOURCE" |
|
|
|
if test "$CHECKSHADOW" = "true"; then |
if test "$CHECKSHADOW" = "true"; then |
AC_CHECK_LIB(sec, getprpwnam, AC_DEFINE(HAVE_GETPRPWNAM) AC_CHECK_LIB(sec, iscomsec, AC_DEFINE(HAVE_ISCOMSEC)) [SUDO_LIBS="${SUDO_LIBS} -lsec"; LIBS="${LIBS} -lsec"; SECUREWARE=1]) |
AC_CHECK_LIB(sec, getprpwnam, AC_DEFINE(HAVE_GETPRPWNAM) AC_CHECK_LIB(sec, iscomsec, AC_DEFINE(HAVE_ISCOMSEC, 1, [Define if you have the `iscomsec' function. (HP-UX >= 10.x check for shadow enabled)])) [SUDO_LIBS="${SUDO_LIBS} -lsec"; LIBS="${LIBS} -lsec"; SECUREWARE=1]) |
CHECKSHADOW="false" |
CHECKSHADOW="false" |
fi |
fi |
|
|
if test -n "$STATIC_SUDO"; then |
|
if test -n "$GCC"; then |
|
SUDO_LDFLAGS="${SUDO_LDFLAGS} -static" |
|
else |
|
SUDO_LDFLAGS="${SUDO_LDFLAGS} -Wl,-a,archive" |
|
fi |
|
fi |
|
|
|
# AFS support needs -lBSD |
# AFS support needs -lBSD |
if test "$with_AFS" = "yes"; then |
if test "$with_AFS" = "yes"; then |
AFS_LIBS="-lc -lBSD" |
AFS_LIBS="-lc -lBSD" |
fi |
fi |
mansectsu=1m |
test -n "$mansectsu" || mansectsu=1m |
mansectform=4 |
test -n "$mansectform" || mansectform=4 |
;; |
;; |
*-*-hpux9*) |
*-*-hpux9*) |
# uncomment this for a statically linked sudo |
AC_DEFINE(BROKEN_SYSLOG, 1, [Define if the `syslog' function returns a non-zero int to denote failure.]) |
# (XXX - should be an option to configure) |
|
#STATIC_SUDO=true |
|
|
|
# If using cc, run in ANSI mode if possible |
|
if test -z "$GCC"; then |
|
$CC -Aa 2>&1 | grep 'A option is available only' >conftest.out |
|
if test ! -s conftest.out; then |
|
CPPFLAGS="${CPPFLAGS} -Aa" |
|
fi |
|
rm -f conftest.out |
|
fi |
|
|
|
# Add -D_HPUX_SOURCE so we don't get strict ANSI headers |
|
CPPFLAGS="${CPPFLAGS} -D_HPUX_SOURCE" |
|
|
|
AC_DEFINE(BROKEN_SYSLOG) |
|
|
|
if test "$CHECKSHADOW" = "true"; then |
if test "$CHECKSHADOW" = "true"; then |
AC_CHECK_FUNCS(getspwuid) |
AC_CHECK_FUNCS(getspwuid) |
|
AH_TEMPLATE([HAVE_GETSPWUID], [Define if you have the `getspwuid' function. (HP-UX <= 9.X shadow passwords)]) |
CHECKSHADOW="false" |
CHECKSHADOW="false" |
fi |
fi |
|
|
if test -n "$STATIC_SUDO"; then |
|
if test -n "$GCC"; then |
|
SUDO_LDFLAGS="${SUDO_LDFLAGS} -static" |
|
else |
|
SUDO_LDFLAGS="${SUDO_LDFLAGS} -Wl,-a,archive" |
|
fi |
|
fi |
|
|
|
# DCE support (requires ANSI C compiler) |
# DCE support (requires ANSI C compiler) |
if test "$with_DCE" = "yes"; then |
if test "$with_DCE" = "yes"; then |
# order of libs in 9.X is important. -lc_r must be last |
# order of libs in 9.X is important. -lc_r must be last |
|
|
if test "$with_AFS" = "yes"; then |
if test "$with_AFS" = "yes"; then |
AFS_LIBS="-lc -lBSD" |
AFS_LIBS="-lc -lBSD" |
fi |
fi |
mansectsu=1m |
test -n "$mansectsu" || mansectsu=1m |
mansectform=4 |
test -n "$mansectform" || mansectform=4 |
;; |
;; |
*-*-hpux*) |
*-*-hpux*) |
|
|
AC_DEFINE(BROKEN_SYSLOG) |
AC_DEFINE(BROKEN_SYSLOG) |
|
|
# Not sure if setuid binaries are safe in < 9.x |
# Not sure if setuid binaries are safe in < 9.x |
|
|
if test "$with_AFS" = "yes"; then |
if test "$with_AFS" = "yes"; then |
AFS_LIBS="-lc -lBSD" |
AFS_LIBS="-lc -lBSD" |
fi |
fi |
mansectsu=1m |
test -n "$mansectsu" || mansectsu=1m |
mansectform=4 |
test -n "$mansectform" || mansectform=4 |
;; |
;; |
*-dec-osf*) |
*-dec-osf*) |
# ignore envariables wrt dynamic lib path |
# ignore envariables wrt dynamic lib path |
|
|
# use SIA by default, if we have it, else SecureWare |
# use SIA by default, if we have it, else SecureWare |
# unless overridden on the command line |
# unless overridden on the command line |
if test "$CHECKSIA" = "true"; then |
if test "$CHECKSIA" = "true"; then |
AC_CHECK_FUNC(sia_ses_init, AC_DEFINE(HAVE_SIA) [ |
AC_CHECK_FUNC(sia_ses_init, AC_DEFINE(HAVE_SIA, 1, [Define if you use SIA.]) [ |
if test -n "$with_skey" -o -n "$with_opie" -o -n "$with_otp_only" -o -n "$with_long_otp_prompt" -o -n "$with_SecurID" -o -n "$with_fwtk" -o -n "$with_kerb4" -o -n "$with_kerb5" -o -n "$with_pam" -o -n "$with_AFS" -o -n "$with_DCE"; then |
if test -n "$with_skey" -o -n "$with_opie" -o -n "$with_otp_only" -o -n "$with_long_otp_prompt" -o -n "$with_SecurID" -o -n "$with_fwtk" -o -n "$with_kerb4" -o -n "$with_kerb5" -o -n "$with_pam" -o -n "$with_AFS" -o -n "$with_DCE"; then |
AC_MSG_ERROR(["you cannot mix SIA and other authentication schemes. You can turn off SIA support via the --disable-sia option"]) |
AC_MSG_ERROR(["you cannot mix SIA and other authentication schemes. You can turn off SIA support via the --disable-sia option"]) |
fi]; CHECKSHADOW=false) |
fi]; CHECKSHADOW=false) |
|
|
fi |
fi |
|
|
if test -n "$SECUREWARE"; then |
if test -n "$SECUREWARE"; then |
AC_DEFINE(HAVE_GETPRPWNAM) |
AC_DEFINE(HAVE_GETPRPWNAM, 1, [Define if you have the `getprpwnam' function. (SecureWare-style shadow passwords)]) |
# -ldb includes bogus versions of snprintf/vsnprintf |
# -ldb includes bogus versions of snprintf/vsnprintf |
AC_CHECK_FUNC(snprintf, AC_DEFINE(HAVE_SNPRINTF), NEED_SNPRINTF=1) |
AC_CHECK_FUNCS(snprintf, , [NEED_SNPRINTF=1]) |
AC_CHECK_FUNC(vsnprintf, AC_DEFINE(HAVE_VSNPRINTF), NEED_SNPRINTF=1) |
AC_CHECK_FUNCS(vsnprintf, , [NEED_SNPRINTF=1]) |
# 4.x and higher need -ldb too... |
# 4.x and higher need -ldb too... |
AC_CHECK_LIB(db, dbopen, [SUDO_LIBS="${SUDO_LIBS} -lsecurity -ldb -laud -lm"; LIBS="${LIBS} -lsecurity -ldb -laud -lm"], [SUDO_LIBS="${SUDO_LIBS} -lsecurity -ldb -laud -lm"; LIBS="${LIBS} -lsecurity -ldb -laud -lm"]) |
AC_CHECK_LIB(db, dbopen, [SUDO_LIBS="${SUDO_LIBS} -lsecurity -ldb -laud -lm"; LIBS="${LIBS} -lsecurity -ldb -laud -lm"], [SUDO_LIBS="${SUDO_LIBS} -lsecurity -ldb -laud -lm"; LIBS="${LIBS} -lsecurity -ldb -laud -lm"]) |
AC_CHECK_FUNCS(dispcrypt) |
AC_CHECK_FUNCS(dispcrypt) |
|
|
[AC_MSG_RESULT([yes, fixing locally]) |
[AC_MSG_RESULT([yes, fixing locally]) |
sed 's:<acl.h>:<sys/acl.h>:g' < /usr/include/prot.h > prot.h |
sed 's:<acl.h>:<sys/acl.h>:g' < /usr/include/prot.h > prot.h |
]) |
]) |
else |
elif test "$CHECKSIA" = "true"; then |
with_passwd=no |
with_passwd=no |
AUTH_OBJS="sia.o" |
AUTH_OBJS="sia.o" |
fi |
fi |
mansectsu=8 |
test -n "$mansectsu" || mansectsu=8 |
mansectform=4 |
test -n "$mansectform" || mansectform=4 |
;; |
;; |
*-*-irix*) |
*-*-irix*) |
# configure may not think irix has stdc headers |
|
# but it's good enough for sudo |
|
AC_DEFINE(STDC_HEADERS) |
|
CPPFLAGS="${CPPFLAGS} -D_BSD_TYPES" |
CPPFLAGS="${CPPFLAGS} -D_BSD_TYPES" |
if test -z "$NROFFPROG"; then |
if test -z "$NROFFPROG"; then |
MAN_POSTINSTALL=' /bin/rm -f $(mandir8)/sudo.$(mansect8).z $(mandir8)/visudo.$(mansect8).z $(mandir5)/sudoers.$(mansect5).z ; /usr/bin/pack $(mandir8)/sudo.$(mansect8) $(mandir8)/visudo.$(mansect8) $(mandir5)/sudoers.$(mansect5)' |
MAN_POSTINSTALL=' /bin/rm -f $(mandir8)/sudo.$(mansect8).z $(mandir8)/visudo.$(mansect8).z $(mandir5)/sudoers.$(mansect5).z ; /usr/bin/pack $(mandir8)/sudo.$(mansect8) $(mandir8)/visudo.$(mansect8) $(mandir5)/sudoers.$(mansect5)' |
|
|
if test "$OSREV" -le 4; then |
if test "$OSREV" -le 4; then |
AC_CHECK_LIB(sun, getpwnam, [LIBS="${LIBS} -lsun"]) |
AC_CHECK_LIB(sun, getpwnam, [LIBS="${LIBS} -lsun"]) |
fi |
fi |
mansectsu=1m |
test -n "$mansectsu" || mansectsu=1m |
mansectform=4 |
test -n "$mansectform" || mansectform=4 |
;; |
;; |
*-*-linux*) |
*-*-linux*) |
# To get crypt(3) and vasprintf() prototypes (so we pass -Wall) |
|
AC_DEFINE(_GNU_SOURCE) |
|
|
|
# Some Linux versions need to link with -lshadow |
# Some Linux versions need to link with -lshadow |
if test "$CHECKSHADOW" = "true"; then |
if test "$CHECKSHADOW" = "true"; then |
AC_CHECK_FUNC(getspnam, AC_DEFINE(HAVE_GETSPNAM), AC_CHECK_LIB(shadow, getspnam, AC_DEFINE(HAVE_GETSPNAM) [SUDO_LIBS="${SUDO_LIBS} -lshadow"; LIBS="${LIBS} -lshadow"])) |
AC_CHECK_FUNCS(getspnam, , [AC_CHECK_LIB(shadow, getspnam, AC_DEFINE(HAVE_GETSPNAM) [SUDO_LIBS="${SUDO_LIBS} -lshadow"; LIBS="${LIBS} -lshadow"])]) |
CHECKSHADOW="false" |
CHECKSHADOW="false" |
fi |
fi |
;; |
;; |
*-convex-bsd*) |
*-convex-bsd*) |
AC_DEFINE(_CONVEX_SOURCE) |
SUDO_DEFINE(_CONVEX_SOURCE) |
if test -z "$GCC"; then |
if test -z "$GCC"; then |
CFLAGS="${CFLAGS} -D__STDC__" |
CFLAGS="${CFLAGS} -D__STDC__" |
fi |
fi |
|
|
*-*-ultrix*) |
*-*-ultrix*) |
OS="ultrix" |
OS="ultrix" |
if test "$CHECKSHADOW" = "true"; then |
if test "$CHECKSHADOW" = "true"; then |
AC_CHECK_LIB(auth, getauthuid, AC_DEFINE(HAVE_GETAUTHUID) [SUDO_LIBS="${SUDO_LIBS} -lauth"; LIBS="${LIBS} -lauth"]) |
AC_CHECK_LIB(auth, getauthuid, AC_DEFINE(HAVE_GETAUTHUID, 1, [Define if you have the `getauthuid' function. (ULTRIX 4.x shadow passwords)]) [SUDO_LIBS="${SUDO_LIBS} -lauth"; LIBS="${LIBS} -lauth"]) |
CHECKSHADOW="false" |
CHECKSHADOW="false" |
fi |
fi |
;; |
;; |
|
|
LIBS="${LIBS} -lsun -lbsd" |
LIBS="${LIBS} -lsun -lbsd" |
CPPFLAGS="${CPPFLAGS} -I/usr/include -I/usr/include/bsd" |
CPPFLAGS="${CPPFLAGS} -I/usr/include -I/usr/include/bsd" |
OSDEFS="${OSDEFS} -D_MIPS" |
OSDEFS="${OSDEFS} -D_MIPS" |
mansectsu=1m |
test -n "$mansectsu" || mansectsu=1m |
mansectform=4 |
test -n "$mansectform" || mansectform=4 |
;; |
;; |
*-*-isc*) |
*-*-isc*) |
OSDEFS="${OSDEFS} -D_ISC" |
OSDEFS="${OSDEFS} -D_ISC" |
|
|
AC_CHECK_LIB(sec, getspnam, AC_DEFINE(HAVE_GETSPNAM) [SUDO_LIBS="${SUDO_LIBS} -lsec"; LIBS="${LIBS} -lsec"]) |
AC_CHECK_LIB(sec, getspnam, AC_DEFINE(HAVE_GETSPNAM) [SUDO_LIBS="${SUDO_LIBS} -lsec"; LIBS="${LIBS} -lsec"]) |
CHECKSHADOW="false" |
CHECKSHADOW="false" |
fi |
fi |
mansectsu=1m |
test -n "$mansectsu" || mansectsu=1m |
mansectform=4 |
test -n "$mansectform" || mansectform=4 |
;; |
;; |
*-*-sco*) |
*-*-sco*|*-sco-*) |
if test "$CHECKSHADOW" = "true"; then |
if test "$CHECKSHADOW" = "true"; then |
AC_CHECK_LIB(prot, getprpwnam, AC_DEFINE(HAVE_GETPRPWNAM) [SUDO_LIBS="${SUDO_LIBS} -lprot -lx"; LIBS="${LIBS} -lprot -lx"; SECUREWARE=1], , -lx) |
AC_CHECK_LIB(prot, getprpwnam, AC_DEFINE(HAVE_GETPRPWNAM) [SUDO_LIBS="${SUDO_LIBS} -lprot -lx"; LIBS="${LIBS} -lprot -lx"; SECUREWARE=1], , -lx) |
AC_CHECK_LIB(gen, getspnam, AC_DEFINE(HAVE_GETSPNAM) [SUDO_LIBS="${SUDO_LIBS} -lgen"; LIBS="${LIBS} -lgen"]) |
AC_CHECK_LIB(gen, getspnam, AC_DEFINE(HAVE_GETSPNAM) [SUDO_LIBS="${SUDO_LIBS} -lgen"; LIBS="${LIBS} -lgen"]) |
CHECKSHADOW="false" |
CHECKSHADOW="false" |
fi |
fi |
mansectsu=1m |
test -n "$mansectsu" || mansectsu=1m |
mansectform=4 |
test -n "$mansectform" || mansectform=4 |
;; |
;; |
|
m88k-motorola-sysv*) |
|
# motorolla's cc (a variant of gcc) does -O but not -O2 |
|
CFLAGS=`echo $CFLAGS | sed 's/-O2/-O/g'` |
|
test -n "$mansectsu" || mansectsu=1m |
|
test -n "$mansectform" || mansectform=4 |
|
;; |
*-sequent-sysv*) |
*-sequent-sysv*) |
if test "$CHECKSHADOW" = "true"; then |
if test "$CHECKSHADOW" = "true"; then |
AC_CHECK_LIB(sec, getspnam, AC_DEFINE(HAVE_GETSPNAM) [SUDO_LIBS="${SUDO_LIBS} -lsec"; LIBS="${LIBS} -lsec"]) |
AC_CHECK_LIB(sec, getspnam, AC_DEFINE(HAVE_GETSPNAM) [SUDO_LIBS="${SUDO_LIBS} -lsec"; LIBS="${LIBS} -lsec"]) |
CHECKSHADOW="false" |
CHECKSHADOW="false" |
fi |
fi |
mansectsu=1m |
test -n "$mansectsu" || mansectsu=1m |
mansectform=4 |
test -n "$mansectform" || mansectform=4 |
;; |
;; |
*-ccur-sysv4|*-ccur-sysvr4) |
*-ncr-sysv4*|*-ncr-sysvr4*) |
|
AC_CHECK_LIB(c89, strcasecmp, AC_DEFINE(HAVE_STRCASECMP) [LIBS="${LIBS} -lc89"; ac_cv_func_strcasecmp=yes]) |
|
test -n "$mansectsu" || mansectsu=1m |
|
test -n "$mansectform" || mansectform=4 |
|
;; |
|
*-ccur-sysv4*|*-ccur-sysvr4*) |
LIBS="${LIBS} -lgen" |
LIBS="${LIBS} -lgen" |
SUDO_LIBS="${SUDO_LIBS} -lgen" |
SUDO_LIBS="${SUDO_LIBS} -lgen" |
mansectsu=1m |
test -n "$mansectsu" || mansectsu=1m |
mansectform=4 |
test -n "$mansectform" || mansectform=4 |
;; |
;; |
*-*-bsdi*) |
*-*-bsdi*) |
# Use shlicc for BSD/OS [23].x unless asked to do otherwise |
# Use shlicc for BSD/OS [23].x unless asked to do otherwise |
|
|
CHECKSHADOW="false" |
CHECKSHADOW="false" |
fi |
fi |
;; |
;; |
|
*-*-*openbsd*) |
|
BROKEN_SETREUID=yes |
|
if test "$CHECKSHADOW" = "true"; then |
|
CHECKSHADOW="false" |
|
fi |
|
;; |
|
*-*-*netbsd*) |
|
BROKEN_SETREUID=yes |
|
if test "$CHECKSHADOW" = "true"; then |
|
CHECKSHADOW="false" |
|
fi |
|
;; |
*-*-*bsd*) |
*-*-*bsd*) |
if test "$CHECKSHADOW" = "true"; then |
if test "$CHECKSHADOW" = "true"; then |
CHECKSHADOW="false" |
CHECKSHADOW="false" |
fi |
fi |
;; |
;; |
|
*-*-nextstep*) |
|
# lockf() on is broken on the NeXT -- use flock instead |
|
ac_cv_func_lockf=no |
|
ac_cv_func_flock=yes |
|
;; |
*-*-sysv*) |
*-*-sysv*) |
mansectsu=1m |
test -n "$mansectsu" || mansectsu=1m |
mansectform=4 |
test -n "$mansectform" || mansectform=4 |
;; |
;; |
esac |
esac |
|
|
|
|
dnl We check for SVR4-style first and then SecureWare-style. |
dnl We check for SVR4-style first and then SecureWare-style. |
dnl |
dnl |
if test "$CHECKSHADOW" = "true"; then |
if test "$CHECKSHADOW" = "true"; then |
AC_CHECK_FUNC(getspnam, AC_DEFINE(HAVE_GETSPNAM) [CHECKSHADOW="false"]) |
AC_CHECK_FUNCS(getspnam, [CHECKSHADOW="false"], [AC_CHECK_LIB(gen, getspnam, AC_DEFINE(HAVE_GETSPNAM, 1, [Define if you have the `getspnam' function (SVR4-style shadow passwords)]) [SUDO_LIBS="${SUDO_LIBS} -lgen"; LIBS="${LIBS} -lgen"])]) |
fi |
fi |
if test "$CHECKSHADOW" = "true"; then |
if test "$CHECKSHADOW" = "true"; then |
AC_CHECK_FUNC(getprpwnam, AC_DEFINE(HAVE_GETPRPWNAM) [CHECKSHADOW="false"; SECUREWARE=1], AC_CHECK_LIB(sec, getprpwnam, AC_DEFINE(HAVE_GETPRPWNAM) [CHECKSHADOW="false"; SECUREWARE=1; SUDO_LIBS="${SUDO_LIBS} -lsec"; LIBS="${LIBS} -lsec"], AC_CHECK_LIB(security, getprpwnam, AC_DEFINE(HAVE_GETPRPWNAM) [CHECKSHADOW="false"; SECUREWARE=1; SUDO_LIBS="${SUDO_LIBS} -lsecurity"; LIBS="${LIBS} -lsecurity"], AC_CHECK_LIB(prot, getprpwnam, AC_DEFINE(HAVE_GETPRPWNAM) [CHECKSHADOW="false"; SECUREWARE=1; SUDO_LIBS="${SUDO_LIBS} -lprot"; LIBS="${LIBS} -lprot"])))) |
AC_CHECK_FUNC(getprpwnam, [AC_DEFINE(HAVE_GETPRPWNAM) [CHECKSHADOW="false"; SECUREWARE=1], AC_CHECK_LIB(sec, getprpwnam, AC_DEFINE(HAVE_GETPRPWNAM) [CHECKSHADOW="false"; SECUREWARE=1; SUDO_LIBS="${SUDO_LIBS} -lsec"; LIBS="${LIBS} -lsec"], AC_CHECK_LIB(security, getprpwnam, AC_DEFINE(HAVE_GETPRPWNAM) [CHECKSHADOW="false"; SECUREWARE=1; SUDO_LIBS="${SUDO_LIBS} -lsecurity"; LIBS="${LIBS} -lsecurity"], AC_CHECK_LIB(prot, getprpwnam, AC_DEFINE(HAVE_GETPRPWNAM) [CHECKSHADOW="false"; SECUREWARE=1; SUDO_LIBS="${SUDO_LIBS} -lprot"; LIBS="${LIBS} -lprot"])))]) |
fi |
fi |
|
|
dnl |
dnl |
|
|
dnl |
dnl |
AC_PROG_GCC_TRADITIONAL |
AC_PROG_GCC_TRADITIONAL |
AC_C_CONST |
AC_C_CONST |
|
AC_C_VOLATILE |
dnl |
dnl |
dnl Program checks |
dnl Program checks |
dnl |
dnl |
AC_PROG_YACC |
AC_PROG_YACC |
|
SUDO_PROG_MV |
|
SUDO_PROG_BSHELL |
if test -z "$with_sendmail"; then |
if test -z "$with_sendmail"; then |
SUDO_PROG_SENDMAIL |
SUDO_PROG_SENDMAIL |
fi |
fi |
SUDO_PROG_MV |
if test -z "$with_editor"; then |
SUDO_PROG_BSHELL |
SUDO_PROG_VI |
SUDO_PROG_VI |
fi |
dnl |
dnl |
dnl Header file checks |
dnl Header file checks |
dnl |
dnl |
AC_HEADER_STDC |
AC_HEADER_STDC |
AC_HEADER_DIRENT |
AC_HEADER_DIRENT |
AC_CHECK_HEADERS(string.h strings.h unistd.h malloc.h paths.h utime.h netgroup.h sys/sockio.h sys/bsdtypes.h sys/select.h) |
AC_CHECK_HEADERS(malloc.h paths.h utime.h netgroup.h sys/sockio.h sys/bsdtypes.h sys/select.h) |
dnl ultrix termio/termios are broken |
dnl ultrix termio/termios are broken |
if test "$OS" != "ultrix"; then |
if test "$OS" != "ultrix"; then |
AC_CHECK_HEADERS(termio.h) |
AC_SYS_POSIX_TERMIOS |
AC_CHECK_HEADERS(termios.h, AC_CHECK_FUNCS(tcgetattr)) |
if test "$ac_cv_sys_posix_termios" = "yes"; then |
|
AC_DEFINE(HAVE_TERMIOS_H, 1, [Define if you have the <termios.h> header file and the `tcgetattr' function.]) |
|
else |
|
AC_CHECK_HEADERS(termio.h) |
|
fi |
fi |
fi |
if test "$with_logincap" = "yes"; then |
if test "$with_logincap" = "yes"; then |
AC_CHECK_HEADERS(login_cap.h) |
AC_CHECK_HEADERS(login_cap.h) |
fi |
fi |
if test "$with_bsdauth" = "yes"; then |
if test "$with_bsdauth" = "yes"; then |
AC_CHECK_HEADER(bsd_auth.h, AC_DEFINE(HAVE_BSD_AUTH_H) [with_passwd=no; AUTH_OBJS=bsdauth.o]) |
AC_CHECK_HEADER(bsd_auth.h, AC_DEFINE(HAVE_BSD_AUTH_H, 1, [Define if you use BSD authentication.]) [with_passwd=no; AUTH_OBJS=bsdauth.o]) |
fi |
fi |
|
|
dnl |
dnl |
dnl typedef checks |
dnl typedef checks |
dnl |
dnl |
AC_TYPE_MODE_T |
AC_TYPE_MODE_T |
AC_TYPE_UID_T |
AC_TYPE_UID_T |
|
AC_CHECK_TYPES([sig_atomic_t], , [AC_DEFINE(sig_atomic_t, int, [Define to `int' if <signal.h> does not define.])], [#include <sys/types.h> |
|
#include <signal.h>]) |
|
AC_CHECK_TYPES([sigaction_t], [AC_DEFINE(HAVE_SIGACTION_T, 1, [Define if <signal.h> has the sigaction_t typedef.])], ,[#include <sys/types.h> |
|
#include <signal.h>]) |
SUDO_TYPE_SIZE_T |
SUDO_TYPE_SIZE_T |
SUDO_TYPE_SSIZE_T |
SUDO_TYPE_SSIZE_T |
SUDO_TYPE_DEV_T |
SUDO_TYPE_DEV_T |
|
|
dnl |
dnl |
dnl Function checks |
dnl Function checks |
dnl |
dnl |
AC_CHECK_FUNCS(strchr strrchr memchr memcpy memset sysconf sigaction tzset seteuid strftime setrlimit initgroups fstat) |
AC_CHECK_FUNCS(strchr strrchr memchr memcpy memset sysconf tzset \ |
|
seteuid setegid strftime setrlimit initgroups fstat) |
|
if test -z "$BROKEN_SETREUID"; then |
|
AC_CHECK_FUNCS(setreuid) |
|
fi |
|
if test X"$with_interfaces" != X"no"; then |
|
AC_CHECK_FUNCS(getifaddrs) |
|
fi |
if test -n "$SECUREWARE"; then |
if test -n "$SECUREWARE"; then |
AC_CHECK_FUNCS(bigcrypt) |
AC_CHECK_FUNCS(bigcrypt set_auth_parameters initprivs) |
AC_CHECK_FUNCS(set_auth_parameters) |
|
AC_CHECK_FUNCS(initprivs) |
|
fi |
fi |
if test -z "$BROKEN_GETCWD"; then |
if test -z "$BROKEN_GETCWD"; then |
AC_CHECK_FUNC(getcwd, AC_DEFINE(HAVE_GETCWD), LIBOBJS="$LIBOBJS getcwd.o") |
AC_REPLACE_FUNCS(getcwd) |
fi |
fi |
AC_CHECK_FUNC(lockf, AC_DEFINE(HAVE_LOCKF), AC_CHECK_FUNCS(flock)) |
AC_CHECK_FUNCS(lockf flock, [break]) |
AC_CHECK_FUNC(waitpid, AC_DEFINE(HAVE_WAITPID), AC_CHECK_FUNCS(wait3)) |
AC_CHECK_FUNCS(waitpid wait3, [break]) |
AC_CHECK_FUNC(innetgr, AC_DEFINE(HAVE_INNETGR) AC_CHECK_FUNCS(getdomainname)) |
AC_CHECK_FUNCS(innetgr _innetgr, AC_CHECK_FUNCS(getdomainname) [break]) |
AC_CHECK_FUNC(lsearch, AC_DEFINE(HAVE_LSEARCH), AC_CHECK_LIB(compat, lsearch, AC_CHECK_HEADER(search.h, AC_DEFINE(HAVE_LSEARCH) [LIBS="${LIBS} -lcompat"], LIBOBJS="$LIBOBJS lsearch.o"), LIBOBJS="$LIBOBJS lsearch.o")) |
AC_CHECK_FUNCS(lsearch, , [AC_CHECK_LIB(compat, lsearch, AC_CHECK_HEADER(search.h, AC_DEFINE(HAVE_LSEARCH) [LIBS="${LIBS} -lcompat"], AC_LIBOBJ(lsearch)), AC_LIBOBJ(lsearch))]) |
AC_CHECK_FUNC(setenv, AC_DEFINE(HAVE_SETENV), AC_FUNC_CHECK(putenv, AC_DEFINE(HAVE_PUTENV), LIBOBJS="$LIBOBJS putenv.o")) |
AC_CHECK_FUNCS(utime, SUDO_FUNC_UTIME_POSIX, AC_LIBOBJ(utime)) |
AC_CHECK_FUNC(utime, AC_DEFINE(HAVE_UTIME) |
SUDO_FUNC_FNMATCH(AC_DEFINE(HAVE_FNMATCH, 1, [Define if you have the `fnmatch' function.]), AC_LIBOBJ(fnmatch)) |
SUDO_FUNC_UTIME_POSIX, LIBOBJS="$LIBOBJS utime.o") |
SUDO_FUNC_ISBLANK |
SUDO_FUNC_FNMATCH(AC_DEFINE(HAVE_FNMATCH), LIBOBJS="$LIBOBJS fnmatch.o") |
AC_REPLACE_FUNCS(strerror strcasecmp sigaction) |
AC_REPLACE_FUNCS(strerror strcasecmp) |
AC_CHECK_FUNCS(snprintf vsnprintf asprintf vasprintf, , [NEED_SNPRINTF=1]) |
AC_CHECK_FUNC(snprintf, AC_DEFINE(HAVE_SNPRINTF), NEED_SNPRINTF=1) |
|
AC_CHECK_FUNC(vsnprintf, AC_DEFINE(HAVE_VSNPRINTF), NEED_SNPRINTF=1) |
|
AC_CHECK_FUNC(asprintf, AC_DEFINE(HAVE_ASPRINTF), NEED_SNPRINTF=1) |
|
AC_CHECK_FUNC(vasprintf, AC_DEFINE(HAVE_VASPRINTF), NEED_SNPRINTF=1) |
|
dnl |
dnl |
dnl If NEED_SNPRINTF is set, add snprintf.c to LIBOBJS |
dnl If NEED_SNPRINTF is set, add snprintf.c to LIBOBJS |
dnl (it contains snprintf, vsnprintf, asprintf, and vasprintf) |
dnl (it contains snprintf, vsnprintf, asprintf, and vasprintf) |
dnl |
dnl |
if test -n "$NEED_SNPRINTF"; then |
if test -n "$NEED_SNPRINTF"; then |
LIBOBJS="$LIBOBJS snprintf.o" |
AC_LIBOBJ(snprintf) |
fi |
fi |
dnl |
dnl |
dnl if crypt(3) not in libc, look elsewhere |
dnl if crypt(3) not in libc, look elsewhere |
dnl |
dnl |
if test -z "$LIB_CRYPT"; then |
if test -z "$LIB_CRYPT"; then |
AC_CHECK_FUNC(crypt, ,AC_CHECK_LIB(crypt, crypt, [SUDO_LIBS="${SUDO_LIBS} -lcrypt"; LIBS="${LIBS} -lcrypt"], AC_CHECK_LIB(crypt_d, crypt, [SUDO_LIBS="${SUDO_LIBS} -lcrypt_d"; LIBS="${LIBS} -lcrypt_d"], AC_CHECK_LIB(ufc, crypt, [SUDO_LIBS="${SUDO_LIBS} -lufc"; LIBS="${LIBS} -lufc"])))) |
AC_CHECK_FUNC(crypt, , [AC_CHECK_LIB(crypt, crypt, [SUDO_LIBS="${SUDO_LIBS} -lcrypt"; LIBS="${LIBS} -lcrypt"], AC_CHECK_LIB(crypt_d, crypt, [SUDO_LIBS="${SUDO_LIBS} -lcrypt_d"; LIBS="${LIBS} -lcrypt_d"], AC_CHECK_LIB(ufc, crypt, [SUDO_LIBS="${SUDO_LIBS} -lufc"; LIBS="${LIBS} -lufc"])))]) |
fi |
fi |
dnl |
dnl |
dnl If socket(2) not in libc, check -lsocket and -linet |
dnl If socket(2) not in libc, check -lsocket and -linet |
dnl May need to link with *both* -lnsl and -lsocket due to unresolved symbols |
dnl May need to link with *both* -lnsl and -lsocket due to unresolved symbols |
dnl In this case we look for main(), not socket() to avoid using a cached value |
dnl In this case we look for main(), not socket() to avoid using a cached value |
dnl |
dnl |
AC_CHECK_FUNC(socket, ,AC_CHECK_LIB(socket, socket, [NET_LIBS="${NET_LIBS} -lsocket"; LIBS="${LIBS} -lsocket"], AC_CHECK_LIB(inet, socket, [NET_LIBS="${NET_LIBS} -linet"; LIBS="${LIBS} -linet"], AC_MSG_WARN(unable to find socket() trying -lsocket -lnsl) |
AC_CHECK_FUNC(socket, , [AC_CHECK_LIB(socket, socket, [NET_LIBS="${NET_LIBS} -lsocket"; LIBS="${LIBS} -lsocket"], AC_CHECK_LIB(inet, socket, [NET_LIBS="${NET_LIBS} -linet"; LIBS="${LIBS} -linet"], AC_MSG_WARN(unable to find socket() trying -lsocket -lnsl) |
AC_CHECK_LIB(socket, socket, [NET_LIBS="${NET_LIBS} -lsocket -lnsl"; LIBS="${LIBS} -lsocket -lnsl"], , -lnsl)))) |
AC_CHECK_LIB(socket, socket, [NET_LIBS="${NET_LIBS} -lsocket -lnsl"; LIBS="${LIBS} -lsocket -lnsl"], , -lnsl)))]) |
dnl |
dnl |
dnl If inet_addr(3) not in libc, check -lnsl and -linet |
dnl If inet_addr(3) not in libc, check -lnsl and -linet |
dnl May need to link with *both* -lnsl and -lsocket due to unresolved symbols |
dnl May need to link with *both* -lnsl and -lsocket due to unresolved symbols |
dnl |
dnl |
AC_CHECK_FUNC(inet_addr, , AC_CHECK_FUNC(__inet_addr, , AC_CHECK_LIB(nsl, inet_addr, [NET_LIBS="${NET_LIBS} -lnsl"; LIBS="${LIBS} -lnsl"], AC_CHECK_LIB(inet, inet_addr, [NET_LIBS="${NET_LIBS} -linet"; LIBS="${LIBS} -linet"], AC_MSG_WARN(unable to find inet_addr() trying -lsocket -lnsl) |
AC_CHECK_FUNC(inet_addr, , [AC_CHECK_FUNC(__inet_addr, , AC_CHECK_LIB(nsl, inet_addr, [NET_LIBS="${NET_LIBS} -lnsl"; LIBS="${LIBS} -lnsl"], AC_CHECK_LIB(inet, inet_addr, [NET_LIBS="${NET_LIBS} -linet"; LIBS="${LIBS} -linet"], AC_MSG_WARN(unable to find inet_addr() trying -lsocket -lnsl) |
AC_CHECK_LIB(socket, inet_addr, [NET_LIBS="${NET_LIBS} -lsocket -lnsl"; LIBS="${LIBS} -lsocket -lnsl"], , -lnsl))))) |
AC_CHECK_LIB(socket, inet_addr, [NET_LIBS="${NET_LIBS} -lsocket -lnsl"; LIBS="${LIBS} -lsocket -lnsl"], , -lnsl))))]) |
dnl |
dnl |
dnl If syslog(3) not in libc, check -lsocket, -lnsl and -linet |
dnl If syslog(3) not in libc, check -lsocket, -lnsl and -linet |
dnl |
dnl |
AC_CHECK_FUNC(syslog, ,AC_CHECK_LIB(socket, syslog, [NET_LIBS="${NET_LIBS} -lsocket"; LIBS="${LIBS} -lsocket"], AC_CHECK_LIB(nsl, syslog, [NET_LIBS="${NET_LIBS} -lnsl"; LIBS="${LIBS} -lnsl"], AC_CHECK_LIB(inet, syslog, [NET_LIBS="${NET_LIBS} -linet"; LIBS="${LIBS} -linet"])))) |
AC_CHECK_FUNC(syslog, , [AC_CHECK_LIB(socket, syslog, [NET_LIBS="${NET_LIBS} -lsocket"; LIBS="${LIBS} -lsocket"], AC_CHECK_LIB(nsl, syslog, [NET_LIBS="${NET_LIBS} -lnsl"; LIBS="${LIBS} -lnsl"], AC_CHECK_LIB(inet, syslog, [NET_LIBS="${NET_LIBS} -linet"; LIBS="${LIBS} -linet"])))]) |
dnl |
dnl |
dnl Bison and DCE use alloca(3), if not in libc, use the sudo one (from gcc) |
dnl Bison and DCE use alloca(3), if not in libc, use the sudo one (from gcc) |
dnl (gcc includes its own alloca(3) but other compilers may not) |
dnl (gcc includes its own alloca(3) but other compilers may not) |
|
|
dnl Kerberos 5 |
dnl Kerberos 5 |
dnl |
dnl |
if test "$with_kerb5" = "yes"; then |
if test "$with_kerb5" = "yes"; then |
AC_DEFINE(HAVE_KERB5) |
AC_DEFINE(HAVE_KERB5, 1, [Define if you use Kerberos V.]) |
if test -f "/usr/local/include/krb5.h"; then |
if test -f "/usr/local/include/krb5.h"; then |
CPPFLAGS="$CPPFLAGS -I/usr/local/include" |
CPPFLAGS="$CPPFLAGS -I/usr/local/include" |
elif test -f "/usr/local/kerberos/include/krb5.h"; then |
elif test -f "/usr/local/kerberos/include/krb5.h"; then |
CPPFLAGS="$CPPFLAGS -I/usr/local/kerberos/include" |
CPPFLAGS="$CPPFLAGS -I/usr/local/kerberos/include" |
|
elif test -f "/usr/krb5/include/krb5.h"; then |
|
CPPFLAGS="$CPPFLAGS -I/usr/krb5/include" |
elif test -f "/usr/local/krb5/include/krb5.h"; then |
elif test -f "/usr/local/krb5/include/krb5.h"; then |
CPPFLAGS="$CPPFLAGS -I/usr/local/krb5/include" |
CPPFLAGS="$CPPFLAGS -I/usr/local/krb5/include" |
else |
else |
|
|
SUDO_LDFLAGS="${SUDO_LDFLAGS} -L/usr/local/lib" |
SUDO_LDFLAGS="${SUDO_LDFLAGS} -L/usr/local/lib" |
elif test -f "/usr/local/kerberos/lib/libkrb5.a"; then |
elif test -f "/usr/local/kerberos/lib/libkrb5.a"; then |
SUDO_LDFLAGS="${SUDO_LDFLAGS} -L/usr/local/kerberos/lib" |
SUDO_LDFLAGS="${SUDO_LDFLAGS} -L/usr/local/kerberos/lib" |
|
elif test -f "/usr/krb5/lib/libkrb5.a"; then |
|
SUDO_LDFLAGS="${SUDO_LDFLAGS} -L/usr/krb5/lib" |
elif test -f "/usr/local/krb5/lib/libkrb5.a"; then |
elif test -f "/usr/local/krb5/lib/libkrb5.a"; then |
SUDO_LDFLAGS="${SUDO_LDFLAGS} -L/usr/local/krb5/lib" |
SUDO_LDFLAGS="${SUDO_LDFLAGS} -L/usr/local/krb5/lib" |
else |
else |
|
|
dnl Find kerberos 4 includes and libs or complain |
dnl Find kerberos 4 includes and libs or complain |
dnl |
dnl |
if test "$with_kerb4" = "yes"; then |
if test "$with_kerb4" = "yes"; then |
AC_DEFINE(HAVE_KERB4) |
AC_DEFINE(HAVE_KERB4, 1, [Define if you use Kerberos IV.]) |
if test -f "/usr/include/kerberosIV/krb.h"; then |
if test -f "/usr/include/kerberosIV/krb.h"; then |
CPPFLAGS="${CPPFLAGS} -I/usr/include/kerberosIV" |
CPPFLAGS="${CPPFLAGS} -I/usr/include/kerberosIV" |
elif test -f "/usr/local/include/kerberosIV/krb.h"; then |
elif test -f "/usr/local/include/kerberosIV/krb.h"; then |
|
|
else |
else |
echo 'Unable to locate libskey.a and/or skey.h, you will have to edit the Makefile and add -L/path/to/skey/lib to SUDO_LDFLAGS and/or -I/path/to/skey.h to CPPFLAGS' |
echo 'Unable to locate libskey.a and/or skey.h, you will have to edit the Makefile and add -L/path/to/skey/lib to SUDO_LDFLAGS and/or -I/path/to/skey.h to CPPFLAGS' |
fi |
fi |
|
AC_CHECK_LIB(skey, skeyaccess, AC_DEFINE(HAVE_SKEYACCESS, 1, [Define if your S/Key library has skeyaccess().])) |
fi |
fi |
|
|
dnl |
dnl |
|
|
dnl Use passwd (and secureware) auth modules? |
dnl Use passwd (and secureware) auth modules? |
dnl |
dnl |
if test "$with_passwd" = "no"; then |
if test "$with_passwd" = "no"; then |
AC_DEFINE(WITHOUT_PASSWD) |
AC_DEFINE(WITHOUT_PASSWD, 1. [Define to avoid using the passwd/shadow file for authentication.]) |
if test -z "$AUTH_OBJS"; then |
if test -z "$AUTH_OBJS"; then |
AC_MSG_ERROR([no authentication methods defined.]) |
AC_MSG_ERROR([no authentication methods defined.]) |
fi |
fi |
|
|
esac |
esac |
echo "" |
echo "" |
fi |
fi |
|
|
|
dnl |
|
dnl Special bits for autoheader |
|
dnl |
|
AH_VERBATIM([_GNU_SOURCE], |
|
[/* Enable GNU extensions on systems that have them. */ |
|
#ifndef _GNU_SOURCE |
|
# define _GNU_SOURCE 1 |
|
#endif]) |
|
|
|
AH_VERBATIM([_ALL_SOURCE], |
|
[/* Enable non-POSIX extensions on AIX. */ |
|
#ifndef _ALL_SOURCE |
|
# undef _ALL_SOURCE |
|
#endif]) |
|
|
|
AH_VERBATIM([_CONVEX_SOURCE], |
|
[/* Enable non-POSIX extensions on ConvexOS. */ |
|
#ifndef _CONVEX_SOURCE |
|
# undef _CONVEX_SOURCE |
|
#endif]) |
|
|
|
AH_TOP([#ifndef _SUDO_CONFIG_H |
|
#define _SUDO_CONFIG_H]) |
|
|
|
AH_BOTTOM([/* |
|
* Emulate a subset of waitpid() if we don't have it. |
|
*/ |
|
#ifdef HAVE_WAITPID |
|
# define sudo_waitpid(p, s, o) waitpid(p, s, o) |
|
#else |
|
# ifdef HAVE_WAIT3 |
|
# define sudo_waitpid(p, s, o) wait3(s, o, NULL) |
|
# endif |
|
#endif |
|
|
|
/* Solaris doesn't use const qualifiers in PAM. */ |
|
#ifdef sun |
|
# define PAM_CONST |
|
#else |
|
# define PAM_CONST const |
|
#endif |
|
|
|
#ifdef USE_EXECV |
|
# define EXEC execv |
|
#else |
|
# define EXEC execvp |
|
#endif /* USE_EXECV */ |
|
|
|
/* New ANSI-style OS defs for HP-UX and ConvexOS. */ |
|
#if defined(hpux) && !defined(__hpux) |
|
# define __hpux 1 |
|
#endif /* hpux */ |
|
|
|
#if defined(convex) && !defined(__convex__) |
|
# define __convex__ 1 |
|
#endif /* convex */ |
|
|
|
/* BSD compatibility on some SVR4 systems. */ |
|
#ifdef __svr4__ |
|
# define BSD_COMP |
|
#endif /* __svr4__ */ |
|
|
|
#endif /* _SUDO_CONFIG_H */]) |