tyler.durden
/
openssh-portable
mirror of https://github.com/PowerShell/openssh-portable.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
openssh-portable/acconfig.h

456 lines
12 KiB
C
Raw Normal View History

Typo fix in comment
2004-04-16 01:22:40 +02:00
/* $Id: acconfig.h,v 1.177 2004/04/15 23:22:40 dtucker Exp $ */
- (djm) Put licenses on substantial header files
2003-06-11 14:51:32 +02:00
/*
* Copyright (c) 1999-2003 Damien Miller. All rights reserved.
*
* Redistribution and use in source and binary forms, with or without
* modification, are permitted provided that the following conditions
* are met:
* 1. Redistributions of source code must retain the above copyright
* notice, this list of conditions and the following disclaimer.
* 2. Redistributions in binary form must reproduce the above copyright
* notice, this list of conditions and the following disclaimer in the
* documentation and/or other materials provided with the distribution.
*
* THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR
* IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES
* OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.
* IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT,
* INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
* NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
* DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
* THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
* (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
* THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
*/
- (djm) Add CVS Id's to files that we have missed
2001-02-09 02:55:35 +01:00
- Added support for directory-based lastlogs - Really fix typedefs, patch from Ben Taylor <bent@clark.net> - Prevent multiple inclusion of config.h and defines.h. Suggested by Andre Lucas <andre.lucas@dial.pipex.com>
2000-01-02 01:45:33 +01:00
#ifndef _CONFIG_H
#define _CONFIG_H
- Added --with-default-path to specify custom path for server - Removed #ifdef trickery from acconfig.h into defines.h
1999-12-26 23:48:56 +01:00
/* Generated automatically from acconfig.h by autoheader. */
/* Please make your changes there */
@TOP@
- Integrated patch from Dan Brosemer <odin@linuxfreak.com> - Build fixes - Autoconf - Change binary names to open* - Fixed autoconf script to detect PAM on RH6.1 - Added tests for libpwdb, and OpenBSD functions to autoconf (not used yet)
1999-10-28 05:25:17 +02:00
- (djm) Implement paranoid priv dropping checks, based on: "SetUID demystified" - Hao Chen, David Wagner and Drew Dean Proceedings of USENIX Security Symposium 2002
2003-06-05 01:53:31 +02:00
/* Define if your platform breaks doing a seteuid before a setuid */
#undef SETEUID_BREAKS_SETUID
- (dtucker) [acconfig.h configure.ac uidswap.c] Prefer setuid/setgid on AIX.
2003-09-06 08:44:39 +02:00
/* Define if your setreuid() is broken */
#undef BROKEN_SETREUID
/* Define if your setregid() is broken */
- (dtucker) [acconfig.h] Typo.
2003-09-07 03:37:27 +02:00
#undef BROKEN_SETREGID
- (dtucker) [acconfig.h configure.ac uidswap.c] Prefer setuid/setgid on AIX.
2003-09-06 08:44:39 +02:00
- (dtucker) [acconfig.h configure.ac uidswap.c] Bug #645: Check for setres[ug]id() present but not implemented (eg some Linux/glibc combinations).
2003-12-17 08:53:26 +01:00
/* Define if your setresuid() is broken */
#undef BROKEN_SETRESUID
/* Define if your setresgid() is broken */
#undef BROKEN_SETRESGID
- (stevesk) Add initial support for setproctitle(). Current support is for the HP-UX pstat(PSTAT_SETCMD, ...) method.
2000-10-18 15:11:44 +02:00
/* Define to a Set Process Title type if your system is */
/* supported by bsd-setproctitle.c */
#undef SPT_TYPE
- (djm) Replace setproctitle replacement with code derived from UCB sendmail
2003-06-03 02:14:28 +02:00
#undef SPT_PADCHAR
- (stevesk) Add initial support for setproctitle(). Current support is for the HP-UX pstat(PSTAT_SETCMD, ...) method.
2000-10-18 15:11:44 +02:00
- (bal) Build noop setgroups() for cygwin to clean up code (For other platforms without the setgroups() requirement, you MUST define SETGROUPS_NOOP in the configure.ac) Based on patch by vinschen@redhat.com
2002-06-12 18:57:14 +02:00
/* setgroups() NOOP allowed */
#undef SETGROUPS_NOOP
- (djm) Merged big SCO portability patch from Tim Rice <tim@multitalents.net>
2000-09-29 14:01:36 +02:00
/* SCO workaround */
#undef BROKEN_SYS_TERMIO_H
- (stevesk) [acconfig.h auth-passwd.c configure.ac sshd.c] HP-UX 10.26 support. bug #184. most from dcole@keysoftsys.com.
2002-04-25 20:17:04 +02:00
/* Define if you have SecureWare-based protected password database */
#undef HAVE_SECUREWARE
- (djm) Merged big SCO portability patch from Tim Rice <tim@multitalents.net>
2000-09-29 14:01:36 +02:00
- (djm) Pick up LOGIN_PROGRAM from environment or PATH if not set by headers - (djm) OpenBSD CVS updates: - deraadt@cvs.openbsd.org 2000/08/18 20:07:23 [ssh.c] accept remsh as a valid name as well; roman@buildpoint.com - deraadt@cvs.openbsd.org 2000/08/18 20:17:13 [deattack.c crc32.c packet.c] rename crc32() to ssh_crc32() to avoid zlib name clash. do not move to libz crc32 function yet, because it has ugly "long"'s in it; oneill@cs.sfu.ca - deraadt@cvs.openbsd.org 2000/08/18 20:26:08 [scp.1 scp.c] -S prog support; tv@debian.org - deraadt@cvs.openbsd.org 2000/08/18 20:50:07 [scp.c] knf - deraadt@cvs.openbsd.org 2000/08/18 20:57:33 [log-client.c] shorten - markus@cvs.openbsd.org 2000/08/19 12:48:11 [channels.c channels.h clientloop.c ssh.c ssh.h] support for ~. in ssh2 - deraadt@cvs.openbsd.org 2000/08/19 15:29:40 [crc32.h] proper prototype - markus@cvs.openbsd.org 2000/08/19 15:34:44 [authfd.c authfd.h key.c key.h ssh-add.1 ssh-add.c ssh-agent.1] [ssh-agent.c ssh-keygen.c sshconnect1.c sshconnect2.c Makefile] [fingerprint.c fingerprint.h] add SSH2/DSA support to the agent and some other DSA related cleanups. (note that we cannot talk to ssh.com's ssh2 agents) - markus@cvs.openbsd.org 2000/08/19 15:55:52 [channels.c channels.h clientloop.c] more ~ support for ssh2 - markus@cvs.openbsd.org 2000/08/19 16:21:19 [clientloop.c] oops - millert@cvs.openbsd.org 2000/08/20 12:25:53 [session.c] We have to stash the result of get_remote_name_or_ip() before we close our socket or getpeername() will get EBADF and the process will exit. Only a problem for "UseLogin yes". - millert@cvs.openbsd.org 2000/08/20 12:30:59 [session.c] Only check /etc/nologin if "UseLogin no" since login(1) may have its own policy on determining who is allowed to login when /etc/nologin is present. Also use the _PATH_NOLOGIN define. - millert@cvs.openbsd.org 2000/08/20 12:42:43 [auth1.c auth2.c session.c ssh.c] Add calls to setusercontext() and login_get*(). We basically call setusercontext() in most places where previously we did a setlogin(). Add default login.conf file and put root in the "daemon" login class. - millert@cvs.openbsd.org 2000/08/21 10:23:31 [session.c] Fix incorrect PATH setting; noted by Markus.
2000-08-23 02:46:23 +02:00
/* If your header files don't define LOGIN_PROGRAM, then use this (detected) */
/* from environment and PATH */
#undef LOGIN_PROGRAM_FALLBACK
- markus@cvs.openbsd.org 2004/01/30 09:48:57 [auth-passwd.c auth.h pathnames.h session.c] support for password change; ok dtucker@ (set password-dead=1w in login.conf to use this). In -Portable, this is currently only platforms using bsdauth.
2004-02-06 06:24:31 +01:00
/* Full path of your "passwd" program */
#undef _PATH_PASSWD_PROG
- (djm) Pick up LOGIN_PROGRAM from environment or PATH if not set by headers - (djm) OpenBSD CVS updates: - deraadt@cvs.openbsd.org 2000/08/18 20:07:23 [ssh.c] accept remsh as a valid name as well; roman@buildpoint.com - deraadt@cvs.openbsd.org 2000/08/18 20:17:13 [deattack.c crc32.c packet.c] rename crc32() to ssh_crc32() to avoid zlib name clash. do not move to libz crc32 function yet, because it has ugly "long"'s in it; oneill@cs.sfu.ca - deraadt@cvs.openbsd.org 2000/08/18 20:26:08 [scp.1 scp.c] -S prog support; tv@debian.org - deraadt@cvs.openbsd.org 2000/08/18 20:50:07 [scp.c] knf - deraadt@cvs.openbsd.org 2000/08/18 20:57:33 [log-client.c] shorten - markus@cvs.openbsd.org 2000/08/19 12:48:11 [channels.c channels.h clientloop.c ssh.c ssh.h] support for ~. in ssh2 - deraadt@cvs.openbsd.org 2000/08/19 15:29:40 [crc32.h] proper prototype - markus@cvs.openbsd.org 2000/08/19 15:34:44 [authfd.c authfd.h key.c key.h ssh-add.1 ssh-add.c ssh-agent.1] [ssh-agent.c ssh-keygen.c sshconnect1.c sshconnect2.c Makefile] [fingerprint.c fingerprint.h] add SSH2/DSA support to the agent and some other DSA related cleanups. (note that we cannot talk to ssh.com's ssh2 agents) - markus@cvs.openbsd.org 2000/08/19 15:55:52 [channels.c channels.h clientloop.c] more ~ support for ssh2 - markus@cvs.openbsd.org 2000/08/19 16:21:19 [clientloop.c] oops - millert@cvs.openbsd.org 2000/08/20 12:25:53 [session.c] We have to stash the result of get_remote_name_or_ip() before we close our socket or getpeername() will get EBADF and the process will exit. Only a problem for "UseLogin yes". - millert@cvs.openbsd.org 2000/08/20 12:30:59 [session.c] Only check /etc/nologin if "UseLogin no" since login(1) may have its own policy on determining who is allowed to login when /etc/nologin is present. Also use the _PATH_NOLOGIN define. - millert@cvs.openbsd.org 2000/08/20 12:42:43 [auth1.c auth2.c session.c ssh.c] Add calls to setusercontext() and login_get*(). We basically call setusercontext() in most places where previously we did a setlogin(). Add default login.conf file and put root in the "daemon" login class. - millert@cvs.openbsd.org 2000/08/21 10:23:31 [session.c] Fix incorrect PATH setting; noted by Markus.
2000-08-23 02:46:23 +02:00
/* Define if your password has a pw_class field */
#undef HAVE_PW_CLASS_IN_PASSWD
- (stevesk) handle systems without pw_expire and pw_change.
2001-06-22 23:14:18 +02:00
/* Define if your password has a pw_expire field */
#undef HAVE_PW_EXPIRE_IN_PASSWD
/* Define if your password has a pw_change field */
#undef HAVE_PW_CHANGE_IN_PASSWD
- (stevesk) HAVE_ACCRIGHTS_IN_MSGHDR configure support
2002-03-22 18:23:25 +01:00
/* Define if your system uses access rights style file descriptor passing */
#undef HAVE_ACCRIGHTS_IN_MSGHDR
- (stevesk) HAVE_CONTROL_IN_MSGHDR; not used right now. Future: we may want to test if fd passing works correctly.
2002-04-07 18:18:03 +02:00
/* Define if your system uses ancillary data style file descriptor passing */
#undef HAVE_CONTROL_IN_MSGHDR
- (djm) Replacement for inet_ntoa for Irix (which breaks on gcc) - (djm) Fix strerror replacement for old SunOS. Based on patch from Charles Levert <charles@comm.polymtl.ca> - (djm) Seperate arc4random into seperate file and use OpenSSL's RC4 implementation.
2000-08-16 02:35:58 +02:00
/* Define if you system's inet_ntoa is busted (e.g. Irix gcc issue) */
#undef BROKEN_INET_NTOA
- Fixes for SunOS 4.1.4 from Gordon Atwood <gordon@cs.ualberta.ca> - Include floatingpoint.h for entropy.c - strerror replacement
2000-07-15 06:59:14 +02:00
/* Define if your system defines sys_errlist[] */
#undef HAVE_SYS_ERRLIST
- (djm) Replacement for inet_ntoa for Irix (which breaks on gcc) - (djm) Fix strerror replacement for old SunOS. Based on patch from Charles Levert <charles@comm.polymtl.ca> - (djm) Seperate arc4random into seperate file and use OpenSSL's RC4 implementation.
2000-08-16 02:35:58 +02:00
/* Define if your system defines sys_nerr */
#undef HAVE_SYS_NERR
- (djm) ReliantUNIX support from Udo Schweigert <ust@cert.siemens.de>
2000-07-11 01:29:50 +02:00
/* Define if your system choked on IP TOS setting */
#undef IP_TOS_IS_BROKEN
- (djm) AIX getuserattr() session initialisation from Tom Bertelson <tbert@abac.com>
2000-07-09 15:53:07 +02:00
/* Define if you have the getuserattr function. */
#undef HAVE_GETUSERATTR
- (dtucker) [acconfig.h] Updated basename test needs HAVE_BASENAME
2003-09-19 13:25:23 +02:00
/* Define if you have the basename function. */
#undef HAVE_BASENAME
- (djm) Only enable PAM_TTY kludge for Linux. Problem report from Kevin Steves <stevesk@sweden.hp.com>
2000-07-09 13:21:52 +02:00
/* Work around problematic Linux PAM modules handling of PAM_TTY */
#undef PAM_TTY_KLUDGE
*** empty log message ***
2000-07-08 02:44:13 +02:00
/* Use PIPES instead of a socketpair() */
#undef USE_PIPES
- (djm) Added check for broken snprintf() functions which do not correctly terminate output string and attempt to use replacement.
2000-07-01 08:52:55 +02:00
/* Define if your snprintf is busted */
#undef BROKEN_SNPRINTF
- (djm) Merge cygwin support from Corinna Vinschen <vinschen@cygnus.com>
2000-09-05 07:13:06 +02:00
/* Define if you are on Cygwin */
#undef HAVE_CYGWIN
- (bal) Add support for realpath and getcwd for platforms with broken or missing realpath implementations for sftp-server. - (bal) Corrected mistake in INSTALL in regards to GNU rx library
2000-10-15 02:17:36 +02:00
/* Define if you have a broken realpath. */
#undef BROKEN_REALPATH
- (djm) Started merge of Ben Lindstrom's <mouring@pconline.com> NeXT support
2000-06-18 07:43:25 +02:00
/* Define if you are on NeXT */
#undef HAVE_NEXT
- (bal) Changed from GNU rx to PCRE on suggestion from djm. - (bal) Integrated Sony NEWS-OS patches from NAKAJI Hirouyuki <nakaji@tutrp.tut.ac.jp>
2000-10-18 02:02:25 +02:00
/* Define if you are on NEWS-OS */
#undef HAVE_NEWS4
- (djm) Make PAM support optional, enable with --with-pam - (djm) Try to use libcrypt on Linux, but link it after OpenSSL (which provides a crypt() of its own) - (djm) Avoid a warning in bsd-bindresvport.c - (djm) Try to avoid adding -I/usr/include to CPPFLAGS during SSL tests. This can cause weird segfaults errors on Solaris
2001-01-17 00:44:13 +01:00
/* Define if you want to enable PAM support */
#undef USE_PAM
- Portability fixes for Irix 5.3 (now compiles OK!) - autoconf and other misc cleanups
1999-12-28 05:09:35 +01:00
- Applied Tom Bertelson's <tbert@abac.com> AIX authentication fix
2000-05-17 14:00:02 +02:00
/* Define if you want to enable AIX4's authenticate function */
- AIX patch from Matt Richards <v2matt@btv.ibm.com> and David Rankin <drankin@bohemians.lexington.ky.us>
2000-01-23 00:32:03 +01:00
#undef WITH_AIXAUTHENTICATE
- (dtucker) [acconfig.h configure.ac port-aix.c] Older AIXes don't declare loginfailed at all, so assume 3-arg loginfailed if not declared.
2003-07-14 08:21:44 +02:00
/* Define if your AIX loginfailed() function takes 4 arguments (AIX >= 5.2) */
#undef AIX_LOGINFAILED_4ARG
- (dtucker) [acconfig.h auth-passwd.c configure.ac session.c port-aix.[ch]] Include AIX headers for authentication functions and make calls match prototypes. Test for and handle 3-args and 4-arg variants of loginfailed.
2003-07-08 12:52:12 +02:00
- (dtucker) [acconfig.h configure.ac defines.h] Bug #673: check for 4-arg skeychallenge(), eg on NetBSD. ok mouring@
2004-04-14 07:26:39 +02:00
/* Define if your skeychallenge() function takes 4 arguments (eg NetBSD) */
#undef SKEYCHALLENGE_4ARG
- (djm) Patch from Michael Stone <mstone@cs.loyola.edu> to add support for Irix 6.x array sessions, project id's, and system audit trail id.
2000-06-28 00:22:29 +02:00
/* Define if you have/want arrays (cluster-wide session managment, not C arrays) */
#undef WITH_IRIX_ARRAY
/* Define if you want IRIX project management */
#undef WITH_IRIX_PROJECT
/* Define if you want IRIX audit trails */
#undef WITH_IRIX_AUDIT
20001112 - (bal) SCO Patch to add needed libraries for configure.in. Patch by Phillips Porch <root@theporch.com> - (bal) IRIX patch to adding Job Limits. Patch by Denis Parker <dcp@sgi.com>
2000-11-12 01:04:24 +01:00
/* Define if you want IRIX kernel jobs */
#undef WITH_IRIX_JOBS
- Allow PRNGd entropy collection from localhost TCP socket. Replace "--with-egd-pool" configure option with "--with-prngd-socket" and "--with-prngd-port" options. Debugged and improved by Lutz Jaenicke <Lutz.Jaenicke@aet.TU-Cottbus.DE>
2001-03-03 14:29:20 +01:00
/* Location of PRNGD/EGD random number socket */
#undef PRNGD_SOCKET
/* Port number of PRNGD/EGD random number socket */
#undef PRNGD_PORT
- AIX patch from Matt Richards <v2matt@btv.ibm.com> and David Rankin <drankin@bohemians.lexington.ky.us>
2000-01-23 00:32:03 +01:00
- Integrate Andre Lucas' <andre.lucas@dial.pipex.com> entropy collection patch. - Adds timeout to entropy collection - Disables slow entropy sources - Load and save seed file - Changed entropy seed code to user per-user seeds only (server seed is saved in root's .ssh directory) - Use atexit() and fatal cleanups to save seed on exit
2000-04-30 01:30:44 +02:00
/* Builtin PRNG command timeout */
#undef ENTROPY_TIMEOUT_MSEC
- (stevesk) --with-privsep-user; default sshd
2002-04-07 21:22:54 +02:00
/* non-privileged user for privilege separation */
#undef SSH_PRIVSEP_USER
- Merge preformatted manpage patch from Andre Lucas <andre.lucas@dial.pipex.com>
2000-01-22 03:53:11 +01:00
/* Define if you want to install preformatted manpages.*/
#undef MANTYPE
- Integrated patch from Dan Brosemer <odin@linuxfreak.com> - Build fixes - Autoconf - Change binary names to open* - Fixed autoconf script to detect PAM on RH6.1 - Added tests for libpwdb, and OpenBSD functions to autoconf (not used yet)
1999-10-28 05:25:17 +02:00
/* Define if your ssl headers are included with #include <openssl/header.h> */
#undef HAVE_OPENSSL
- Added (untested) Entropy Gathering Daemon (EGD) support - Merged several minor fixed: - ssh-agent commandline parsing - RPM spec file now installs ssh setuid root - Makefile creates libdir - Merged beginnings of Solaris compability from Marc G. Fournier <marc.fournier@acadiau.ca>
1999-11-11 00:40:23 +01:00
- Print whether OpenSSH was compiled with RSARef, patch from Nalin Dahyabhai <nalin@thermo.stat.ncsu.edu>
1999-12-29 00:17:09 +01:00
/* Define if you are linking against RSAref. Used only to print the right
* message at run-time. */
#undef RSAREF
- (bal) utimes() support via utime() interface on machine that lack utimes().
2001-01-15 03:34:37 +01:00
/* struct timeval */
#undef HAVE_STRUCT_TIMEVAL
- Merged OpenBSD IPv6 patch: - [sshd.c sshd.8 sshconnect.c ssh.h ssh.c servconf.h servconf.c scp.1] [scp.c packet.h packet.c login.c log.c canohost.c channels.c] [hostfile.c sshd_config] ipv6 support: mostly gethostbyname->getaddrinfo/getnameinfo, new features: sshd allows multiple ListenAddress and Port options. note that libwrap is not IPv6-ready. (based on patches from fujiwara@rcac.tdi.co.jp) - [ssh.c canohost.c] more hints (hints.ai_socktype=SOCK_STREAM) for getaddrinfo, from itojun@ - [channels.c] listen on _all_ interfaces for X11-Fwd (hints.ai_flags = AI_PASSIVE) - [packet.h] allow auth-kerberos for IPv4 only - [scp.1 sshd.8 servconf.h scp.c] document -4, -6, and 'ssh -L 2022/::1/22' - [ssh.c] 'ssh @host' is illegal (null user name), from karsten@gedankenpolizei.de - [sshconnect.c] better error message - [sshd.c] allow auth-kerberos for IPv4 only - Big IPv6 merge: - Cleanup overrun in sockaddr copying on RHL 6.1 - Replacements for getaddrinfo, getnameinfo, etc based on versions from patch from KIKUCHI Takahiro <kick@kyoto.wide.ad.jp> - Replacement for missing structures on systems that lack IPv6 - record_login needed to know about AF_INET6 addresses - Borrowed more code from OpenBSD: rresvport_af and requisites
2000-01-14 05:45:46 +01:00
/* struct utmp and struct utmpx fields */
- Added (untested) Entropy Gathering Daemon (EGD) support - Merged several minor fixed: - ssh-agent commandline parsing - RPM spec file now installs ssh setuid root - Makefile creates libdir - Merged beginnings of Solaris compability from Marc G. Fournier <marc.fournier@acadiau.ca>
1999-11-11 00:40:23 +01:00
#undef HAVE_HOST_IN_UTMP
- Import of patch from Ben Taylor <bent@clark.net>: - Improved PAM support - "uninstall" rule for Makefile - utmpx support - Should fix PAM problems on Solaris
1999-12-09 00:16:54 +01:00
#undef HAVE_HOST_IN_UTMPX
- Fill in ut_utaddr utmp field. Report from Benjamin Charron <iretd@bigfoot.com>
1999-12-30 23:42:24 +01:00
#undef HAVE_ADDR_IN_UTMP
#undef HAVE_ADDR_IN_UTMPX
- Merged OpenBSD IPv6 patch: - [sshd.c sshd.8 sshconnect.c ssh.h ssh.c servconf.h servconf.c scp.1] [scp.c packet.h packet.c login.c log.c canohost.c channels.c] [hostfile.c sshd_config] ipv6 support: mostly gethostbyname->getaddrinfo/getnameinfo, new features: sshd allows multiple ListenAddress and Port options. note that libwrap is not IPv6-ready. (based on patches from fujiwara@rcac.tdi.co.jp) - [ssh.c canohost.c] more hints (hints.ai_socktype=SOCK_STREAM) for getaddrinfo, from itojun@ - [channels.c] listen on _all_ interfaces for X11-Fwd (hints.ai_flags = AI_PASSIVE) - [packet.h] allow auth-kerberos for IPv4 only - [scp.1 sshd.8 servconf.h scp.c] document -4, -6, and 'ssh -L 2022/::1/22' - [ssh.c] 'ssh @host' is illegal (null user name), from karsten@gedankenpolizei.de - [sshconnect.c] better error message - [sshd.c] allow auth-kerberos for IPv4 only - Big IPv6 merge: - Cleanup overrun in sockaddr copying on RHL 6.1 - Replacements for getaddrinfo, getnameinfo, etc based on versions from patch from KIKUCHI Takahiro <kick@kyoto.wide.ad.jp> - Replacement for missing structures on systems that lack IPv6 - record_login needed to know about AF_INET6 addresses - Borrowed more code from OpenBSD: rresvport_af and requisites
2000-01-14 05:45:46 +01:00
#undef HAVE_ADDR_V6_IN_UTMP
#undef HAVE_ADDR_V6_IN_UTMPX
- Prepare for 1.2.1pre20 19991225 - More fixes from Andre Lucas <andre.lucas@dial.pipex.com> - Cleanup of auth-passwd.c for shadow and MD5 passwords - Cleanup and bugfix of PAM authentication code 19991223 - Merged later HPUX patch from Andre Lucas <andre.lucas@dial.pipex.com> - Above patch included better utmpx support from Ben Taylor <bent@clark.net>:
1999-12-25 00:11:29 +01:00
#undef HAVE_SYSLEN_IN_UTMPX
- NetBSD login.c compile fix from David Rankin <drankin@bohemians.lexington.ky.us> - Fully set ut_tv if present in utmp or utmpx
1999-12-28 00:41:12 +01:00
#undef HAVE_PID_IN_UTMP
#undef HAVE_TYPE_IN_UTMP
- Don't touch utmp if USE_UTMPX defined
2000-05-20 06:53:09 +02:00
#undef HAVE_TYPE_IN_UTMPX
- NetBSD login.c compile fix from David Rankin <drankin@bohemians.lexington.ky.us> - Fully set ut_tv if present in utmp or utmpx
1999-12-28 00:41:12 +01:00
#undef HAVE_TV_IN_UTMP
Added new login recording code Added test program for login code (make logintest)
2000-06-03 16:57:40 +02:00
#undef HAVE_TV_IN_UTMPX
- Applied another NetBSD portability patch from David Rankin <drankin@bohemians.lexington.ky.us> - Fix --with-default-path option.
1999-12-28 16:32:22 +01:00
#undef HAVE_ID_IN_UTMP
- (djm) Login fixes from Tom Bertelson <tbert@abac.com>
2000-07-01 05:17:42 +02:00
#undef HAVE_ID_IN_UTMPX
Added new login recording code Added test program for login code (make logintest)
2000-06-03 16:57:40 +02:00
#undef HAVE_EXIT_IN_UTMP
#undef HAVE_TIME_IN_UTMP
#undef HAVE_TIME_IN_UTMPX
- Applied another NetBSD portability patch from David Rankin <drankin@bohemians.lexington.ky.us> - Fix --with-default-path option.
1999-12-28 16:32:22 +01:00
Added new login recording code Added test program for login code (make logintest)
2000-06-03 16:57:40 +02:00
/* Define if you don't want to use your system's login() call */
#undef DISABLE_LOGIN
/* Define if you don't want to use pututline() etc. to write [uw]tmp */
#undef DISABLE_PUTUTLINE
/* Define if you don't want to use pututxline() etc. to write [uw]tmpx */
#undef DISABLE_PUTUTXLINE
/* Define if you don't want to use lastlog */
#undef DISABLE_LASTLOG
Cray fixes (bug 367) based on patch from Wendy Palm @ cray. This does not include the deattack.c fixes.
2002-09-26 02:38:46 +02:00
/* Define if you don't want to use lastlog in session.c */
#undef NO_SSH_LASTLOG
Typo fix in comment
2004-04-16 01:22:40 +02:00
/* Define if have krb5_init_ets */
- (bal) [acconfig.h auth-krb5.c configure.ac gss-serv-krb5.c] Check to see if Krb5 library exports krb5_init_etc() since some OSes (like MacOS/X) are starting to restrict it as internal since it is not needed by developers any more. (Patch based on Apple tree) - (bal) [monitor.c monitor_wrap.c] monitor_wrap.c] moved zlib.h higher since krb5 on MacOS/X conflicts. There may be a better solution, but this will work for now.
2004-04-07 06:16:11 +02:00
#undef KRB5_INIT_ETS
Added new login recording code Added test program for login code (make logintest)
2000-06-03 16:57:40 +02:00
/* Define if you don't want to use utmp */
#undef DISABLE_UTMP
/* Define if you don't want to use utmpx */
#undef DISABLE_UTMPX
/* Define if you don't want to use wtmp */
#undef DISABLE_WTMP
/* Define if you don't want to use wtmpx */
#undef DISABLE_WTMPX
- (bal) UseLogin patch for Solaris/UNICOS. Patch by Wayne Davison <wayne@blorf.net>
2001-05-08 22:33:05 +02:00
/* Some systems need a utmpx entry for /bin/login to work */
#undef LOGIN_NEEDS_UTMPX
/* Some versions of /bin/login need the TERM supplied on the commandline */
#undef LOGIN_NEEDS_TERM
- (stevesk) [acconfig.h configure.ac session.c] LOGIN_NO_ENDOPT for HP-UX
2002-04-23 22:45:55 +02:00
/* Define if your login program cannot handle end of options ("--") */
#undef LOGIN_NO_ENDOPT
Added new login recording code Added test program for login code (make logintest)
2000-06-03 16:57:40 +02:00
/* Define if you want to specify the path to your lastlog file */
#undef CONF_LASTLOG_FILE
/* Define if you want to specify the path to your utmp file */
#undef CONF_UTMP_FILE
/* Define if you want to specify the path to your wtmp file */
#undef CONF_WTMP_FILE
/* Define if you want to specify the path to your utmpx file */
#undef CONF_UTMPX_FILE
/* Define if you want to specify the path to your wtmpx file */
#undef CONF_WTMPX_FILE
Made utmpx optional
1999-12-20 23:51:36 +01:00
- Merged more Solaris compability from Marc G. Fournier <marc.fournier@acadiau.ca> - Wrote autoconf tests for __progname symbol
1999-11-15 07:10:57 +01:00
/* Define if you want external askpass support */
- Merged OpenBSD CVS changes: - [ssh-add.c] change passphrase loop logic and remove ref to $DISPLAY, ok niels - Changed to ssh-add.c broke askpass support. Revised it to be a little more modular. - Revised autoconf support for enabling/disabling askpass support.
1999-11-15 04:25:30 +01:00
#undef USE_EXTERNAL_ASKPASS
- Make ssh-askpass support optional through autoconf
1999-11-12 05:46:08 +01:00
- Merged more Solaris compability from Marc G. Fournier <marc.fournier@acadiau.ca> - Wrote autoconf tests for __progname symbol
1999-11-15 07:10:57 +01:00
/* Define if libc defines __progname */
#undef HAVE___PROGNAME
- (stevesk) configure and cpp __FUNCTION__ gymnastics to handle nielsisms
2002-03-22 19:19:53 +01:00
/* Define if compiler implements __FUNCTION__ */
#undef HAVE___FUNCTION__
/* Define if compiler implements __func__ */
#undef HAVE___func__
- (dtucker) [Makefile.in acconfig.h auth-krb5.c auth-pam.c auth-pam.h configure.ac defines.h gss-serv-krb5.c session.c ssh-gss.h sshconnect1.c sshconnect2.c] Add Portable GSSAPI support, patch by Simon Wilkinson.
2003-08-26 03:58:16 +02:00
/* Define this is you want GSSAPI support in the version 2 protocol */
#undef GSSAPI
- (djm) Add KrbV support patch from Simon Wilkinson <simon@sxw.org.uk>
2002-04-13 03:04:40 +02:00
/* Define if you want Kerberos 5 support */
#undef KRB5
/* Define this if you are using the Heimdal version of Kerberos V5 */
#undef HEIMDAL
- (dtucker) [acconfig.h configure.ac includes.h servconf.c session.c] Change AFS symbol to USE_AFS to prevent namespace collisions, do not include kafs.h unless necessary. From deengert at anl.gov. For consistency, all of the libkafs bits are now inside "#if defined(KRB5) && defined(USE_AFS)".
2004-01-23 12:03:10 +01:00
/* Define this if you want to use libkafs' AFS support */
#undef USE_AFS
- (dtucker) [acconfig.h configure.ac includes.h servconf.c session.c] Only enable KerberosGetAFSToken if Heimdal's libkafs is found. with jakob@
2004-01-05 12:36:51 +01:00
- Added autoconf option to enable Kerberos 4 support (untested) - Added autoconf option to enable AFS support (untested) - Added autoconf option to enable S/Key support (untested) - Added autoconf option to enable TCP wrappers support (compiles OK)
1999-11-19 03:03:25 +01:00
/* Define if you want S/Key support */
#undef SKEY
/* Define if you want TCP Wrappers support */
#undef LIBWRAP
- Renamed BSD helper function files to bsd-* - Added tests for login and daemon and OpenBSD replacements for when they are absent.
1999-11-19 05:32:34 +01:00
/* Define if your libraries define login() */
#undef HAVE_LOGIN
/* Define if your libraries define daemon() */
#undef HAVE_DAEMON
- Check for getpagesize in libucb.a if not found in libc. Fix for old Solaris from Andre Lucas <andre.lucas@dial.pipex.com>
2000-03-05 06:22:59 +01:00
/* Define if your libraries define getpagesize() */
#undef HAVE_GETPAGESIZE
- Integration of large HPUX patch from Andre Lucas <andre.lucas@dial.pipex.com>. Integrating it had a few other benefits: - Ability to disable shadow passwords at configure time - Ability to disable lastlog support at configure time - Support for IP address in $DISPLAY
1999-12-21 01:18:08 +01:00
/* Define if xauth is found in your path */
#undef XAUTH_PATH
- Added non-PAM MD5 password support patch from Tudor Bosman <tudorb@jm.nu>
1999-11-19 05:53:20 +01:00
/* Define if you want to allow MD5 passwords */
#undef HAVE_MD5_PASSWORDS
- Integration of large HPUX patch from Andre Lucas <andre.lucas@dial.pipex.com>. Integrating it had a few other benefits: - Ability to disable shadow passwords at configure time - Ability to disable lastlog support at configure time - Support for IP address in $DISPLAY
1999-12-21 01:18:08 +01:00
/* Define if you want to disable shadow passwords */
#undef DISABLE_SHADOW
- (djm) Account expiry support from Andreas Steinmetz <ast@domdv.de> - (djm) Added password expiry checking (no password change support)
2000-06-26 03:31:33 +02:00
/* Define if you want to use shadow password expire field */
#undef HAS_SHADOW_EXPIRE
- (djm) Added patch from Chris Adams <cmadams@hiwaay.net> to add OSF SIA support. Enable using "USE_SIA=1 ./configure [options]"
2000-06-28 07:22:41 +02:00
/* Define if you have Digital Unix Security Integration Architecture */
#undef HAVE_OSF_SIA
- SunOS 4.x support from Todd C. Miller <Todd.Miller@courtesan.com>
2000-05-20 07:02:59 +02:00
/* Define if you have getpwanam(3) [SunOS 4.x] */
#undef HAVE_GETPWANAM
- Added autoconf test and macro to deal with old PAM libraries pam_strerror definition (one arg vs two).
1999-11-22 04:27:24 +01:00
/* Define if you have an old version of PAM which takes only one argument */
/* to pam_strerror */
#undef HAVE_OLD_PAM
- (djm) Workaround PAM inconsistencies between Solaris derived PAM code and Linux-PAM. Based on report and fix from Andrew Morgan <morgan@transmeta.com>
2000-12-20 03:34:48 +01:00
/* Define if you are using Solaris-derived PAM which passes pam_messages */
/* to the conversation function with an extra level of indirection */
#undef PAM_SUN_CODEBASE
- stevesk@cvs.openbsd.org 2001/02/04 08:32:27 [many files; did this manually to our top-level source dir] unexpand and remove end-of-line whitespace; ok markus@
2001-02-05 13:42:17 +01:00
- Prepare for 1.2.1pre20 19991225 - More fixes from Andre Lucas <andre.lucas@dial.pipex.com> - Cleanup of auth-passwd.c for shadow and MD5 passwords - Cleanup and bugfix of PAM authentication code 19991223 - Merged later HPUX patch from Andre Lucas <andre.lucas@dial.pipex.com> - Above patch included better utmpx support from Ben Taylor <bent@clark.net>:
1999-12-25 00:11:29 +01:00
/* Set this to your mail directory if you don't have maillock.h */
#undef MAIL_DIRECTORY
- Merged more Solaris support from Marc G. Fournier <marc.fournier@acadiau.ca> - Wrote autoconf tests for integer bit-types - Fixed enabling kerberos support
1999-11-20 02:18:40 +01:00
/* Data types */
- More OpenBSD updates: - deraadt@cvs.openbsd.org 2000/08/24 15:46:59 [scp.c] off_t in sink, to fix files > 2GB, i think, test is still running ;-) - deraadt@cvs.openbsd.org 2000/08/25 10:10:06 [session.c] Wall - markus@cvs.openbsd.org 2000/08/26 04:33:43 [compat.c] ssh.com-2.3.0 - markus@cvs.openbsd.org 2000/08/27 12:18:05 [compat.c] compatibility with future ssh.com versions - deraadt@cvs.openbsd.org 2000/08/27 21:50:55 [auth-krb4.c session.c ssh-add.c sshconnect.c uidswap.c] print uid/gid as unsigned - markus@cvs.openbsd.org 2000/08/28 13:51:00 [ssh.c] enable -n and -f for ssh2 - markus@cvs.openbsd.org 2000/08/28 14:19:53 [ssh.c] allow combination of -N and -f - markus@cvs.openbsd.org 2000/08/28 14:20:56 [util.c] util.c - markus@cvs.openbsd.org 2000/08/28 14:22:02 [util.c] undo - markus@cvs.openbsd.org 2000/08/28 14:23:38 [util.c] don't complain if setting NONBLOCK fails with ENODEV
2000-08-29 02:33:50 +02:00
#undef HAVE_U_INT
- Merged more Solaris support from Marc G. Fournier <marc.fournier@acadiau.ca> - Wrote autoconf tests for integer bit-types - Fixed enabling kerberos support
1999-11-20 02:18:40 +01:00
#undef HAVE_INTXX_T
#undef HAVE_U_INTXX_T
#undef HAVE_UINTXX_T
- (djm) Seperate tests for int64_t and u_int64_t types
2000-09-23 05:12:24 +02:00
#undef HAVE_INT64_T
#undef HAVE_U_INT64_T
- (djm) Make sure rijndael.c picks config.h - (djm) Ensure that u_char gets defined
2001-09-15 13:31:54 +02:00
#undef HAVE_U_CHAR
- Detect missing size_t and typedef it.
1999-12-29 00:36:45 +01:00
#undef HAVE_SIZE_T
- Several patches from SAKAI Kiyotaka <ksakai@kso.netwk.ntt-at.co.jp> - INSTALL typo and URL fix - Makefile fix - Solaris fixes - Checking for ssize_t and memmove. Based on patch from SAKAI Kiyotaka <ksakai@kso.netwk.ntt-at.co.jp>
2000-05-17 14:53:33 +02:00
#undef HAVE_SSIZE_T
- (bal) Detect if clock_t structure exists, if not define it. - (bal) Detect if O_NONBLOCK exists, if not define it. - (bal) removed news4-posix.h (now empty) - (bal) changed bsd-bindresvport.c and bsd-rresvport.c to use 'socklen_t' instead of 'int'
2001-01-09 01:50:29 +01:00
#undef HAVE_CLOCK_T
- (djm) Started merge of Ben Lindstrom's <mouring@pconline.com> NeXT support
2000-06-18 07:43:25 +02:00
#undef HAVE_MODE_T
#undef HAVE_PID_T
- (djm) Use sa_family_t in prototype for rresvport_af. Patch from Svante Signell <svante.signell@telia.com> - (djm) Autoconf logic to define sa_family_t if it is missing
2000-06-23 00:23:34 +02:00
#undef HAVE_SA_FAMILY_T
- Merged OpenBSD IPv6 patch: - [sshd.c sshd.8 sshconnect.c ssh.h ssh.c servconf.h servconf.c scp.1] [scp.c packet.h packet.c login.c log.c canohost.c channels.c] [hostfile.c sshd_config] ipv6 support: mostly gethostbyname->getaddrinfo/getnameinfo, new features: sshd allows multiple ListenAddress and Port options. note that libwrap is not IPv6-ready. (based on patches from fujiwara@rcac.tdi.co.jp) - [ssh.c canohost.c] more hints (hints.ai_socktype=SOCK_STREAM) for getaddrinfo, from itojun@ - [channels.c] listen on _all_ interfaces for X11-Fwd (hints.ai_flags = AI_PASSIVE) - [packet.h] allow auth-kerberos for IPv4 only - [scp.1 sshd.8 servconf.h scp.c] document -4, -6, and 'ssh -L 2022/::1/22' - [ssh.c] 'ssh @host' is illegal (null user name), from karsten@gedankenpolizei.de - [sshconnect.c] better error message - [sshd.c] allow auth-kerberos for IPv4 only - Big IPv6 merge: - Cleanup overrun in sockaddr copying on RHL 6.1 - Replacements for getaddrinfo, getnameinfo, etc based on versions from patch from KIKUCHI Takahiro <kick@kyoto.wide.ad.jp> - Replacement for missing structures on systems that lack IPv6 - record_login needed to know about AF_INET6 addresses - Borrowed more code from OpenBSD: rresvport_af and requisites
2000-01-14 05:45:46 +01:00
#undef HAVE_STRUCT_SOCKADDR_STORAGE
#undef HAVE_STRUCT_ADDRINFO
#undef HAVE_STRUCT_IN6_ADDR
#undef HAVE_STRUCT_SOCKADDR_IN6
/* Fields in struct sockaddr_storage */
#undef HAVE_SS_FAMILY_IN_SS
#undef HAVE___SS_FAMILY_IN_SS
- Merged more Solaris support from Marc G. Fournier <marc.fournier@acadiau.ca> - Wrote autoconf tests for integer bit-types - Fixed enabling kerberos support
1999-11-20 02:18:40 +01:00
- Merged more OpenBSD changes: - [atomicio.c authfd.c scp.c serverloop.c ssh.h sshconnect.c sshd.c] move atomicio into it's own file. wrap all socket write()s which were doing write(sock, buf, len) != len, with atomicio() calls. - [auth-skey.c] fd leak - [authfile.c] properly name fd variable - [channels.c] display great hatred towards strcpy - [pty.c pty.h sshd.c] use openpty() if it exists (it does on BSD4_4) - [tildexpand.c] check for ~ expansion past MAXPATHLEN - Modified helper.c to use new atomicio function. - Reformat Makefile a little - Moved RC4 routines from rc4.[ch] into helper.c - Added autoconf code to detect /dev/ptmx (Solaris) and /dev/ptc (AIX)
1999-12-07 05:38:31 +01:00
/* Define if you have /dev/ptmx */
#undef HAVE_DEV_PTMX
/* Define if you have /dev/ptc */
#undef HAVE_DEV_PTS_AND_PTC
- Integration of large HPUX patch from Andre Lucas <andre.lucas@dial.pipex.com>. Integrating it had a few other benefits: - Ability to disable shadow passwords at configure time - Ability to disable lastlog support at configure time - Support for IP address in $DISPLAY
1999-12-21 01:18:08 +01:00
/* Define if you need to use IP address instead of hostname in $DISPLAY */
#undef IPADDR_IN_DISPLAY
- Fix compilation on systems with AFS. Reported by aloomis@glue.umd.edu - Fix installation on Solaris. Reported by Gordon Rowell <gordonr@gormand.com.au> - Fix gccisms (__attribute__ and inline). Report by edgy@us.ibm.com, patch from Markus Friedl <markus.friedl@informatik.uni-erlangen.de> - Auto-locate xauth. Patch from David Agraz <dagraz@jahoopa.com> - Compile fix from David Agraz <dagraz@jahoopa.com> - Avoid compiler warning in bsd-snprintf.c - Added pam_limits.so to default PAM config. Suggested by Jim Knoble <jmknoble@pobox.com>
1999-12-12 22:27:33 +01:00
- Added --with-default-path to specify custom path for server - Removed #ifdef trickery from acconfig.h into defines.h
1999-12-26 23:48:56 +01:00
/* Specify default $PATH */
#undef USER_PATH
- Renamed --with-xauth-path to --with-xauth - Added --with-pid-dir option - Released 1.2.1pre26
2000-01-16 02:05:18 +01:00
/* Specify location of ssh.pid */
Hopefully things did not get mixed around too much. It compiles under Linux and works. So that is at least a good sign. =) 20010122 - (bal) OpenBSD Resync - markus@cvs.openbsd.org 2001/01/19 12:45:26 GMT 2001 by markus [servconf.c ssh.h sshd.c] only auth-chall.c needs #ifdef SKEY - markus@cvs.openbsd.org 2001/01/19 15:55:10 GMT 2001 by markus [auth-krb4.c auth-options.c auth-rh-rsa.c auth-rhosts.c auth-rsa.c auth1.c auth2.c channels.c clientloop.c dh.c dispatch.c nchan.c packet.c pathname.h readconf.c scp.c servconf.c serverloop.c session.c ssh-add.c ssh-keygen.c ssh-keyscan.c ssh.c ssh.h ssh1.h sshconnect1.c sshd.c ttymodes.c] move ssh1 definitions to ssh1.h, pathnames to pathnames.h - markus@cvs.openbsd.org 2001/01/19 16:48:14 [sshd.8] fix typo; from stevesk@ - markus@cvs.openbsd.org 2001/01/19 16:50:58 [ssh-dss.c] clear and free digest, make consistent with other code (use dlen); from stevesk@ - markus@cvs.openbsd.org 2001/01/20 15:55:20 GMT 2001 by markus [auth-options.c auth-options.h auth-rsa.c auth2.c] pass the filename to auth_parse_options() - markus@cvs.openbsd.org 2001/01/20 17:59:40 GMT 2001 [readconf.c] fix SIGSEGV from -o ""; problem noted by jehsom@togetherweb.com - stevesk@cvs.openbsd.org 2001/01/20 18:20:29 [sshconnect2.c] dh_new_group() does not return NULL. ok markus@ - markus@cvs.openbsd.org 2001/01/20 21:33:42 [ssh-add.c] do not loop forever if askpass does not exist; from andrew@pimlott.ne.mediaone.net - djm@cvs.openbsd.org 2001/01/20 23:00:56 [servconf.c] Check for NULL return from strdelim; ok markus - djm@cvs.openbsd.org 2001/01/20 23:02:07 [readconf.c] KNF; ok markus - jakob@cvs.openbsd.org 2001/01/21 9:00:33 [ssh-keygen.1] remove -R flag; ok markus@ - markus@cvs.openbsd.org 2001/01/21 19:05:40 [atomicio.c automicio.h auth-chall.c auth-krb4.c auth-options.c auth-options.h auth-passwd.c auth-rh-rsa.c auth-rhosts.c auth-rsa.c auth.c auth.h auth1.c auth2-chall.c auth2.c authfd.c authfile.c bufaux.c bufaux.h buffer.c canahost.c canahost.h channels.c cipher.c cli.c clientloop.c clientloop.h compat.c compress.c deattack.c dh.c dispatch.c groupaccess.c hmac.c hostfile.c kex.c key.c key.h log-client.c log-server.c log.c log.h login.c login.h match.c misc.c misc.h nchan.c packet.c pty.c radix.h readconf.c readpass.c readpass.h rsa.c scp.c servconf.c serverloop.c serverloop.h session.c sftp-server.c ssh-add.c ssh-agent.c ssh-dss.c ssh-keygen.c ssh-keyscan.c ssh-rsa.c ssh.c ssh.h sshconnect.c sshconnect.h sshconnect1.c sshconnect2.c sshd.c tildexpand.c tildexpand.h ttysmodes.c uidswap.c xmalloc.c] split ssh.h and try to cleanup the #include mess. remove unnecessary #includes. rename util.[ch] -> misc.[ch] - (bal) renamed 'PIDDIR' to '_PATH_SSH_PIDDIR' to match OpenBSD tree - (bal) Moved #ifdef KRB4 in auth-krb4.c above the #include to resolve conflict when compiling for non-kerb install - (bal) removed the #ifdef SKEY in auth1.c to match Markus' changes on 1/19.
2001-01-22 06:34:40 +01:00
#undef _PATH_SSH_PIDDIR
- Renamed --with-xauth-path to --with-xauth - Added --with-pid-dir option - Released 1.2.1pre26
2000-01-16 02:05:18 +01:00
- Don't use getaddrinfo on AIX
2000-01-20 12:38:27 +01:00
/* getaddrinfo is broken (if present) */
#undef BROKEN_GETADDRINFO
- (dtucker) [acconfig.h configure.ac defines.h] Bug #820: don't use updwtmpx() on IRIX since it seems to clobber utmp. ok djm@
2004-04-06 13:31:12 +02:00
/* updwtmpx is broken (if present) */
#undef BROKEN_UPDWTMPX
*** empty log message ***
2000-03-13 05:41:24 +01:00
/* Workaround more Linux IPv6 quirks */
- IPv6 workarounds from Hideaki YOSHIFUJI <yoshfuji@ecei.tohoku.ac.jp>
2000-03-11 10:45:40 +01:00
#undef DONT_TRY_OTHER_AF
/* Detect IPv4 in IPv6 mapped addresses and treat as IPv4 */
#undef IPV4_IN_IPV6
- (djm) Merge BSD_AUTH support from Markus Friedl and David J. MacKenzie enable with --with-bsd-auth.
2001-02-18 07:01:00 +01:00
/* Define if you have BSD auth support */
#undef BSD_AUTH
- (bal) Missed part of the UNIX sockets patch. Patch by Corinna Vinschen <vinschen@redhat.com> - (bal) Reorder where 'strftime' is detected to resolve linking issues on SCO. Patch by Tim Rice <tim@multitalents.net>
2001-02-24 22:41:10 +01:00
/* Define if X11 doesn't support AF_UNIX sockets on that system */
#undef NO_X11_UNIX_SOCKETS
- (bal) NO_IPPORT_RESERVED_CONCEPT used instead of CYGWIN so other platforms lacking that concept can share it. Patch by vinschen@redhat.com
2002-07-09 16:06:40 +02:00
/* Define if the concept of ports only accessible to superusers isn't known */
#undef NO_IPPORT_RESERVED_CONCEPT
- (djm) Some systems (SCO3, NeXT) have weird saved uid semantics. Based on patch from Tim Rice <tim@multitalents.net>
2001-02-26 10:49:58 +01:00
/* Needed for SCO and NeXT */
- (djm) Fix up POSIX saved uid support. Report from Mark Miller <markm@swoon.net> - (djm) Search for -lcrypt on FreeBSD too
2001-02-26 22:39:07 +01:00
#undef BROKEN_SAVED_UIDS
- (djm) Some systems (SCO3, NeXT) have weird saved uid semantics. Based on patch from Tim Rice <tim@multitalents.net>
2001-02-26 10:49:58 +01:00
- (djm) Add replacement glob() from OpenBSD libc if the system glob is missing or lacks the GLOB_ALTDIRFUNC extension - (djm) Remove -I$(srcdir)/openbsd-compat from CFLAGS, refer to headers relatively. Avoids conflict between glob.h and /usr/include/glob.h
2001-03-14 01:39:45 +01:00
/* Define if your system glob() function has the GLOB_ALTDIRFUNC extension */
#undef GLOB_HAS_ALTDIRFUNC
- Check for gl_matchc support in glob_t and fall back to the openbsd-compat/glob.[ch] support if it does not exist.
2001-03-17 02:15:38 +01:00
/* Define if your system glob() function has gl_matchc options in glob_t */
#undef GLOB_HAS_GL_MATCHC
- (djm) Work around Solaris' broken struct dirent. Diagnosis and suggested fix from Philippe Levan <levan@epix.net>
2001-03-28 06:35:30 +02:00
/* Define in your struct dirent expects you to allocate extra space for d_name */
#undef BROKEN_ONE_BYTE_DIRENT_D_NAME
- (dtucker) [acconfig.h configure.ac defines.h session.c] Bug #252: Retrieve PATH (or SUPATH) and UMASK from /etc/default/login on platforms that have it (eg Solaris, Reliant Unix). Patch from Robert.Dahlem at siemens.com. ok djm@
2003-09-16 03:52:19 +02:00
/* Define if your system has /etc/default/login */
#undef HAVE_ETC_DEFAULT_LOGIN
- (djm) Pull in getopt(3) from OpenBSD libc for the optreset extension.
2001-07-14 05:22:53 +02:00
/* Define if your getopt(3) defines and uses optreset */
#undef HAVE_GETOPT_OPTRESET
- (bal) QNX resync. OK tim@
2001-08-16 02:09:49 +02:00
/* Define on *nto-qnx systems */
#undef MISSING_NFDBITS
/* Define on *nto-qnx systems */
#undef MISSING_HOWMANY
/* Define on *nto-qnx systems */
#undef MISSING_FD_MASK
- (djm) Configure support for smartcards
2001-09-18 06:01:11 +02:00
/* Define if you want smartcard support */
#undef SMARTCARD
- (bal) Patch for OpenSC SmartCard library; ok markus@; patch by Juha Yrjölä <jyrjola@cc.hut.fi> - (bal) Minor documentation update to reflect smartcard library support changes.
2002-04-05 18:11:45 +02:00
/* Define if you want smartcard support using sectok */
#undef USE_SECTOK
/* Define if you want smartcard support using OpenSC */
#undef USE_OPENSC
- (djm) autoconf hacking: - We don't support --without-zlib currently, so don't allow it. - Rework cryptographic random number support detection. We now detect whether OpenSSL seeds itself. If it does, then we don't bother with the ssh-rand-helper program. You can force the use of ssh-rand-helper using the --with-rand-helper configure argument - Simplify and clean up ssh-rand-helper configuration
2002-01-22 11:57:53 +01:00
/* Define if you want to use OpenSSL's internally seeded PRNG only */
#undef OPENSSL_PRNG_ONLY
- (djm) Bug #214: Fix utmp for Irix (don't strip "tty"). Patch from Kevin Taylor <no@nowhere.org> (??) via Philipp Grau <phgrau@zedat.fu-berlin.de>
2002-04-23 15:09:19 +02:00
/* Define if you shouldn't strip 'tty' from your ttyname in [uw]tmp */
#undef WITH_ABBREV_NO_TTY
- (djm) Add --with-superuser-path=xxx configure option to specify what $PATH the superuser receives.
2002-05-13 02:56:51 +02:00
/* Define if you want a different $PATH for the superuser */
#undef SUPERUSER_PATH
- (djm) Add --with-privsep-path configure option
2002-05-13 05:15:42 +02:00
/* Path that unprivileged child will chroot() to in privep mode */
#undef PRIVSEP_PATH
[acconfig.h configure.ac sshd.c] s/BROKEN_FD_PASSING/DISABLE_FD_PASSING/
2002-07-07 22:43:36 +02:00
/* Define if your platform needs to skip post auth file descriptor passing */
#undef DISABLE_FD_PASSING
[acconfig.h configure.ac sshd.c] BROKEN_FD_PASSING fix from Markus for Cygwin, Cray, & SCO
2002-06-26 00:35:15 +02:00
- (djm) Bug #26: Use local mkstemp() rather than glibc's silly one. Fixes Can't pass KRB4 TGT passing. Fix from: jan.iven@cern.ch
2003-01-07 05:18:32 +01:00
/* Silly mkstemp() */
#undef HAVE_STRICT_MKSTEMP
- (djm) Search libposix4 and librt for nanosleep. From dtucker@zip.com.au and openssh-unix-dev@thewrittenword.com
2003-01-28 01:33:42 +01:00
/* Some systems put this outside of libc */
#undef HAVE_NANOSLEEP
- (dtucker) Bug #536: Test for and work around openpty/controlling tty problem on Linux (fixes "could not set controlling tty" errors). Also renames STREAMS_PUSH_ACQUIRES_CTTY to the more generic SSHD_ACQUIRES_CTTY and moves the Solaris-specific comments to configure.ac.
2003-05-10 09:05:46 +02:00
/* Define if sshd somehow reacquires a controlling TTY after setsid() */
#undef SSHD_ACQUIRES_CTTY
- (djm) Bug #245: TTY problems on Solaris. Fix by stevesk@ and dtucker@zip.com.au
2003-03-10 01:38:10 +01:00
- (dtucker) Bug #544: ignore invalid cmsg_type on Linux 2.0 kernels, privsep should now work.
2003-05-02 12:48:21 +02:00
/* Define if cmsg_type is not passed correctly */
#undef BROKEN_CMSG_TYPE
- (dtucker) [acconfig.h auth.c configure.ac sshd.8] Bug #422 again: deny any access to locked accounts. ok djm@
2003-08-25 03:51:19 +02:00
/* Strings used in /etc/passwd to denote locked account */
#undef LOCKED_PASSWD_STRING
#undef LOCKED_PASSWD_PREFIX
#undef LOCKED_PASSWD_SUBSTR
- (djm) Import getrrsetbyname() function from OpenBSD libc (for DNS support)
2003-05-15 04:27:08 +02:00
/* Define if getrrsetbyname() exists */
#undef HAVE_GETRRSETBYNAME
- (djm) Configure glue for DNS support (code doesn't work in portable yet)
2003-05-15 02:53:49 +02:00
[configure.ac acconfig.h openbsd-compat/getrrsetbyname.c] test for HEADER.ad in arpa/nameser.h
2003-09-08 23:35:16 +02:00
/* Define if HEADER.ad exists in arpa/nameser.h */
#undef HAVE_HEADER_AD
- (djm) OSX/Darwin needs BIND_8_COMPAT to build getrrsetbyname. Report from jakob@
2004-01-02 08:02:44 +01:00
/* Define if your resolver libs need this for getrrsetbyname */
#undef BIND_8_COMPAT
Fix inclusion of additional preprocessor directives from acconfig.h
1999-11-13 00:49:55 +01:00
@BOTTOM@
- Make ssh-askpass support optional through autoconf
1999-11-12 05:46:08 +01:00
/* ******************* Shouldn't need to edit below this line ************** */
- Merged more OpenBSD CVS changes: - [auth-krb4.c auth-passwd.c] remove x11- and krb-cleanup from fatal() + krb-cleanup cleanup - [clientloop.c log-client.c log-server.c ] [readconf.c readconf.h servconf.c servconf.h ] [ssh.1 ssh.c ssh.h sshd.8] add LogLevel {QUIET, FATAL, ERROR, INFO, CHAT, DEBUG} to ssh/sshd, obsoletes QuietMode and FascistLogging in sshd.
1999-11-11 07:57:39 +01:00
- Compile fix from Darren_Hall@progressive.com
2000-01-19 00:41:23 +01:00
#endif /* _CONFIG_H */