X-Git-Url: http://www.project-moonshot.org/gitweb/?p=openssh.git;a=blobdiff_plain;f=configure.ac;h=a3b04dc6984acc712ee443bbe43b2ad2781ad228;hp=f23784d9b5babd4507d9d1ff05c2dcefef973aef;hb=7936349b9e64ae69416d60e12997aafe997c455e;hpb=0bf87176543b3874dfd9e1a2ad928fe78388669d

diff --git a/configure.ac b/configure.ac
index f23784d..a3b04dc 100644
--- a/configure.ac
+++ b/configure.ac
@@ -514,6 +514,30 @@ main() { if (NSVersionOfRunTimeLibrary("System") >= (60 << 16))
 	    [Use tunnel device compatibility to OpenBSD])
 	AC_DEFINE(SSH_TUN_PREPEND_AF, 1,
 	    [Prepend the address family to IP tunnel traffic])
+	AC_MSG_CHECKING(if we have the Security Authorization Session API)
+	AC_TRY_COMPILE([#include <Security/AuthSession.h>],
+		[SessionCreate(0, 0);],
+		[ac_cv_use_security_session_api="yes"
+		 AC_DEFINE(USE_SECURITY_SESSION_API, 1, 
+			[platform has the Security Authorization Session API])
+		 LIBS="$LIBS -framework Security"
+		 AC_MSG_RESULT(yes)],
+		[ac_cv_use_security_session_api="no"
+		 AC_MSG_RESULT(no)])
+	AC_MSG_CHECKING(if we have an in-memory credentials cache)
+	AC_TRY_COMPILE(
+		[#include <Kerberos/Kerberos.h>],
+		[cc_context_t c;
+		 (void) cc_initialize (&c, 0, NULL, NULL);],
+		[AC_DEFINE(USE_CCAPI, 1, 
+			[platform uses an in-memory credentials cache])
+		 LIBS="$LIBS -framework Security"
+		 AC_MSG_RESULT(yes)
+		 if test "x$ac_cv_use_security_session_api" = "xno"; then
+			AC_MSG_ERROR(*** Need a security framework to use the credentials cache API ***)
+		fi],
+		[AC_MSG_RESULT(no)]
+	)
 	m4_pattern_allow(AU_IPv)
 	AC_CHECK_DECL(AU_IPv4, [], 
 	    AC_DEFINE(AU_IPv4, 0, [System only supports IPv4 audit records])
@@ -3620,7 +3644,7 @@ AC_ARG_WITH(kerberos5,
 
 		AC_CHECK_HEADERS(gssapi.h gssapi/gssapi.h)
 		AC_CHECK_HEADERS(gssapi_krb5.h gssapi/gssapi_krb5.h)
-		AC_CHECK_HEADERS(gssapi_generic.h gssapi/gssapi_generic.h)
+		AC_CHECK_HEADERS(gssapi_ext.h gssapi/gssapi_ext.h)
 
 		LIBS="$LIBS $K5LIBS"
 		AC_SEARCH_LIBS(k_hasafs, kafs, AC_DEFINE(USE_AFS, 1,