1 | dnl Process this file with autoconf to produce a configure script. |
1 | dnl Process this file with autoconf to produce a configure script. |
2 | |
2 | |
3 | AC_PREREQ(2.59) |
3 | AC_PREREQ(2.69) |
4 | AC_INIT |
4 | AC_INIT |
5 | AC_CONFIG_SRCDIR([src/gvpe.C]) |
5 | AC_CONFIG_SRCDIR([src/gvpe.C]) |
6 | AC_CANONICAL_TARGET |
6 | AC_CANONICAL_TARGET |
7 | AM_INIT_AUTOMAKE(gvpe, 2.22) |
7 | AM_INIT_AUTOMAKE(gvpe, 2.25) |
8 | AC_CONFIG_HEADERS([config.h]) |
8 | AC_CONFIG_HEADERS([config.h]) |
9 | AM_MAINTAINER_MODE |
9 | AM_MAINTAINER_MODE |
10 | |
10 | |
11 | AH_TOP([ |
11 | AH_TOP([ |
12 | #ifndef CONFIG_H__ |
12 | #ifndef CONFIG_H__ |
… | |
… | |
45 | # define CLOCALE <clocale> |
45 | # define CLOCALE <clocale> |
46 | #else |
46 | #else |
47 | # define CLOCALE <locale.h> |
47 | # define CLOCALE <locale.h> |
48 | #endif |
48 | #endif |
49 | ]) |
49 | ]) |
50 | |
|
|
51 | dnl Include the macros from the m4/ directory |
|
|
52 | AM_ACLOCAL_INCLUDE(m4) |
|
|
53 | |
50 | |
54 | AM_GNU_GETTEXT([external]) |
51 | AM_GNU_GETTEXT([external]) |
55 | AM_GNU_GETTEXT_VERSION(0.11.5) |
52 | AM_GNU_GETTEXT_VERSION(0.11.5) |
56 | |
53 | |
57 | # Enable GNU extensions. |
54 | # Enable GNU extensions. |
… | |
… | |
243 | if test "x$openssl_include" != x; then |
240 | if test "x$openssl_include" != x; then |
244 | CXXFLAGS="$CXXFLAGS -I$openssl_include" |
241 | CXXFLAGS="$CXXFLAGS -I$openssl_include" |
245 | fi |
242 | fi |
246 | dnl tinc_ZLIB |
243 | dnl tinc_ZLIB |
247 | |
244 | |
|
|
245 | AC_ARG_ENABLE(threads, |
|
|
246 | [AS_HELP_STRING(--enable-threads,try to use threads for long-running asynchronous operations (default enabled).)], |
|
|
247 | [try_threads=$enableval], |
|
|
248 | [try_threads=yes] |
|
|
249 | ) |
|
|
250 | |
|
|
251 | if test "x$try_threads" = xyes; then |
|
|
252 | AC_CHECK_HEADER(pthread.h,[ |
|
|
253 | LIBS="$LIBS -lpthread" |
|
|
254 | AC_COMPILE_IFELSE( |
|
|
255 | [AC_LANG_PROGRAM([#include <pthread.h>], [pthread_t id; pthread_create (&id, 0, 0, 0);])], |
|
|
256 | [AC_DEFINE_UNQUOTED(ENABLE_PTHREADS, 1, [POSIX thread support.])] |
|
|
257 | ) |
|
|
258 | ]) |
|
|
259 | fi |
|
|
260 | |
248 | AC_ARG_ENABLE(static-daemon, |
261 | AC_ARG_ENABLE(static-daemon, |
249 | [AS_HELP_STRING(--enable-static-daemon,enable statically linked daemon.)], |
262 | [AS_HELP_STRING(--enable-static-daemon,enable statically linked daemon.)], |
250 | [LDFLAGS_DAEMON=-static] |
263 | [LDFLAGS_DAEMON=-static] |
251 | ) |
264 | ) |
252 | AC_SUBST(LDFLAGS_DAEMON) |
265 | AC_SUBST(LDFLAGS_DAEMON) |
… | |
… | |
314 | |
327 | |
315 | AC_DEFINE_UNQUOTED(ENABLE_DNS, 1, [DNS tunnel protocol support.]) |
328 | AC_DEFINE_UNQUOTED(ENABLE_DNS, 1, [DNS tunnel protocol support.]) |
316 | ] |
329 | ] |
317 | ) |
330 | ) |
318 | |
331 | |
|
|
332 | RSA=3072 |
|
|
333 | AC_ARG_ENABLE(rsa-length, |
|
|
334 | [AS_HELP_STRING(--enable-rsa-length=BITS,[ |
|
|
335 | use BITS rsa keys (default 3072). Allowed values are 2048-10240.])], |
|
|
336 | RSA=$enableval |
|
|
337 | ) |
|
|
338 | AC_DEFINE_UNQUOTED(RSABITS, $RSA, [Size of RSA keys.]) |
|
|
339 | |
319 | HMAC=12 |
340 | HMACSIZE=12 |
320 | AC_ARG_ENABLE(hmac-length, |
341 | AC_ARG_ENABLE(hmac-length, |
321 | [AS_HELP_STRING(--enable-hmac-length=BYTES,[ |
342 | [AS_HELP_STRING(--enable-hmac-length=BYTES,[ |
322 | use a hmac of length BYTES bytes (default 12). Allowed values are 4, 8, 12, 16.])], |
343 | use a hmac of length BYTES bytes (default 12). Allowed values are 4, 8, 12, 16.])], |
323 | HMAC=$enableval |
344 | HMACSIZE=$enableval |
324 | ) |
345 | ) |
325 | AC_DEFINE_UNQUOTED(HMACLENGTH, $HMAC, [Size of HMAC in each packet in bytes.]) |
346 | AC_DEFINE_UNQUOTED(HMACLENGTH, $HMACSIZE, [Size of HMAC in each packet in bytes.]) |
326 | |
|
|
327 | RAND=8 |
|
|
328 | AC_ARG_ENABLE(rand-length, |
|
|
329 | [AS_HELP_STRING(--enable-rand-length=BYTES, |
|
|
330 | [use BYTES bytes of extra randomness (default 8). Allowed values are 0, 4, 8.])], |
|
|
331 | RAND=$enableval |
|
|
332 | ) |
|
|
333 | AC_DEFINE_UNQUOTED(RAND_SIZE, $RAND, [Add this many bytes of randomness to each packet.]) |
|
|
334 | |
347 | |
335 | MTU=1500 |
348 | MTU=1500 |
336 | AC_ARG_ENABLE(mtu, |
349 | AC_ARG_ENABLE(max-mtu, |
337 | [AS_HELP_STRING(--enable-max-mtu=BYTES,enable mtu sizes upto BYTES bytes (default 1500). Use 9100 for jumbogram support.)], |
350 | [AS_HELP_STRING(--enable-max-mtu=BYTES,enable mtu sizes upto BYTES bytes (default 1500). Use 9100 for jumbogram support.)], |
338 | MTU=$enableval |
351 | MTU=$enableval |
339 | ) |
352 | ) |
340 | AC_DEFINE_UNQUOTED(MAX_MTU, $MTU + 14, [Maximum MTU supported.]) |
353 | AC_DEFINE_UNQUOTED(MAX_MTU, ($MTU + 14), [Maximum MTU supported.]) |
341 | |
354 | |
342 | COMPRESS=1 |
355 | COMPRESS=1 |
343 | AC_ARG_ENABLE(compression, |
356 | AC_ARG_ENABLE(compression, |
344 | [AS_HELP_STRING(--disable-compression,Disable compression support.)], |
357 | [AS_HELP_STRING(--disable-compression,Disable compression support.)], |
345 | if test "x$enableval" = xno; then |
358 | if test "x$enableval" = xno; then |
346 | COMPRESS=0 |
359 | COMPRESS=0 |
347 | fi |
360 | fi |
348 | ) |
361 | ) |
349 | AC_DEFINE_UNQUOTED(ENABLE_COMPRESSION, $COMPRESS, [Enable compression support.]) |
362 | AC_DEFINE_UNQUOTED(ENABLE_COMPRESSION, $COMPRESS, [Enable compression support.]) |
350 | |
363 | |
351 | CIPHER=aes_128_cbc |
364 | CIPHER=aes_128_ctr |
352 | AC_ARG_ENABLE(cipher, |
365 | AC_ARG_ENABLE(cipher, |
353 | [AS_HELP_STRING(--enable-cipher=CIPHER,[ |
366 | [AS_HELP_STRING(--enable-cipher=CIPHER,[ |
354 | Select the symmetric cipher (default "aes-128"). |
367 | Select the symmetric cipher (default "aes-128"). |
355 | Must be one of "bf" (blowfish), "aes-128" (rijndael), "aes-192" or "aes-256".])], |
368 | Must be one of "aes-128" (rijndael), "aes-192", or "aes-256".])], |
356 | if test "x$enableval" = xbf ; then CIPHER=bf_cbc ; fi |
369 | #if test "x$enableval" = xbf ; then CIPHER=bf_ctr ; fi |
357 | if test "x$enableval" = xaes-128; then CIPHER=aes_128_cbc; fi |
370 | if test "x$enableval" = xaes-128 ; then CIPHER=aes_128_ctr ; fi |
358 | if test "x$enableval" = xaes-192; then CIPHER=aes_192_cbc; fi |
371 | if test "x$enableval" = xaes-192 ; then CIPHER=aes_192_ctr ; fi |
359 | if test "x$enableval" = xaes-256; then CIPHER=aes_256_cbc; fi |
372 | if test "x$enableval" = xaes-256 ; then CIPHER=aes_256_ctr ; fi |
|
|
373 | #if test "x$enableval" = xcamellia-128; then CIPHER=camellia_128_ctr; fi |
|
|
374 | #if test "x$enableval" = xcamellia-256; then CIPHER=camellia_256_ctr; fi |
360 | ) |
375 | ) |
361 | AC_DEFINE_UNQUOTED(ENABLE_CIPHER, EVP_${CIPHER}, [Select the symmetric cipher to use.]) |
376 | AC_DEFINE_UNQUOTED(ENABLE_CIPHER, EVP_${CIPHER}, [Select the symmetric cipher to use.]) |
362 | |
377 | |
363 | DIGEST=ripemd160 |
378 | HMAC=sha1 |
364 | AC_ARG_ENABLE(digest, |
379 | AC_ARG_ENABLE(hmac-digest, |
365 | [AS_HELP_STRING(--enable-digest=CIPHER,[ |
380 | [AS_HELP_STRING(--enable-hmac-digest=HMAC,[ |
366 | Select the digest algorithm to use (default "ripemd160"). Must be one of |
381 | Select the HMAC digest algorithm to use (default "sha1"). Must be one of |
367 | "sha512", "sha256", "sha1", "ripemd160", "md5" (insecure) or "md4" (insecure).])], |
382 | "sha512", "sha256", "sha1", "ripemd160", "whirlpool".])], |
|
|
383 | if test "x$enableval" = xwhirlpool; then HMAC=whirlpool; fi |
|
|
384 | if test "x$enableval" = xsha512 ; then HMAC=sha512 ; fi |
|
|
385 | if test "x$enableval" = xsha256 ; then HMAC=sha256 ; fi |
|
|
386 | if test "x$enableval" = xsha1 ; then HMAC=sha1 ; fi |
|
|
387 | if test "x$enableval" = xripemd160; then HMAC=ripemd160; fi |
|
|
388 | ) |
|
|
389 | AC_DEFINE_UNQUOTED(ENABLE_HMAC, EVP_${HMAC}, [Select the HMAC digest algorithm to use.]) |
|
|
390 | |
|
|
391 | AUTH=sha512 |
|
|
392 | AC_ARG_ENABLE(auth-digest, |
|
|
393 | [AS_HELP_STRING(--enable-auth-digest=DIGEST,[ |
|
|
394 | Select the hmac algorithm to use (default "sha512"). Must be one of |
|
|
395 | "sha512", "sha256", "whirlpool".])], |
|
|
396 | if test "x$enableval" = xwhirlpool; then AUTH=whirlpool; fi |
368 | if test "x$enableval" = xsha512 ; then DIGEST=sha512 ; fi |
397 | if test "x$enableval" = xsha512 ; then AUTH=sha512 ; fi |
369 | if test "x$enableval" = xsha256 ; then DIGEST=sha256 ; fi |
398 | if test "x$enableval" = xsha256 ; then AUTH=sha256 ; fi |
370 | if test "x$enableval" = xsha1 ; then DIGEST=sha1 ; fi |
|
|
371 | if test "x$enableval" = xripemd160; then DIGEST=ripemd160; fi |
|
|
372 | if test "x$enableval" = xmd5 ; then DIGEST=md5 ; fi |
|
|
373 | if test "x$enableval" = xmd4 ; then DIGEST=md4 ; fi |
|
|
374 | ) |
399 | ) |
375 | AC_DEFINE_UNQUOTED(ENABLE_DIGEST, EVP_${DIGEST}, [Select the digest algorithm to use.]) |
400 | AC_DEFINE_UNQUOTED(ENABLE_AUTH, EVP_${AUTH}, [Select the auth digest algorithm to use.]) |
376 | |
401 | |
377 | if $CXX -v --help 2>&1 | grep -q fno-rtti; then |
402 | if $CXX -v --help 2>&1 | grep -q fno-rtti; then |
378 | CXXFLAGS="$CXXFLAGS -fno-rtti" |
403 | CXXFLAGS="$CXXFLAGS -fno-rtti" |
379 | fi |
404 | fi |
380 | |
405 | |
… | |
… | |
385 | LIBS="$EXTRA_LIBS $LIBS" |
410 | LIBS="$EXTRA_LIBS $LIBS" |
386 | |
411 | |
387 | dnl if $CXX -v --help 2>&1 | grep -q ffunction-sections; then |
412 | dnl if $CXX -v --help 2>&1 | grep -q ffunction-sections; then |
388 | dnl CXXFLAGS="$CXXFLAGS -ffunction-sections" |
413 | dnl CXXFLAGS="$CXXFLAGS -ffunction-sections" |
389 | dnl fi |
414 | dnl fi |
390 | dnl |
415 | dnl |
391 | dnl if $LD -v --help 2>&1 | grep -q gc-sections; then |
416 | dnl if $LD -v --help 2>&1 | grep -q gc-sections; then |
392 | dnl LDFLAGS="$LDFLAGS -Wl,--gc-sections" |
417 | dnl LDFLAGS="$LDFLAGS -Wl,--gc-sections" |
393 | dnl fi |
418 | dnl fi |
394 | |
419 | |
395 | AC_SUBST(INCLUDES) |
420 | AC_SUBST(INCLUDES) |
… | |
… | |
405 | echo |
430 | echo |
406 | echo "***" |
431 | echo "***" |
407 | echo "*** Configuration Summary" |
432 | echo "*** Configuration Summary" |
408 | echo "***" |
433 | echo "***" |
409 | echo "*** Kernel Iface: $IFTYPE/$IFSUBTYPE" |
434 | echo "*** Kernel Iface: $IFTYPE/$IFSUBTYPE" |
|
|
435 | echo "*** RSA size: $RSA" |
410 | echo "*** Cipher used: $CIPHER" |
436 | echo "*** Cipher used: $CIPHER" |
411 | echo "*** Digest used: $DIGEST" |
437 | echo "*** Digest used: $DIGEST" |
|
|
438 | echo "*** Authdigest: $AUTH" |
412 | echo "*** HMAC length: $HMAC" |
439 | echo "*** HMAC length: $HMAC" |
413 | echo "*** RAND used: $RAND" |
|
|
414 | echo "*** Max. MTU: $MTU" |
440 | echo "*** Max. MTU: $MTU" |
415 | |
441 | |
416 | echo "***" |
442 | echo "***" |
417 | echo "*** Enable options:" |
443 | echo "*** Enable options:" |
418 | grep ENABLE_ config.h | sed -e 's/^/*** /' |
444 | grep ENABLE_ config.h | sed -e 's/^/*** /' |
419 | |
445 | |
420 | if test "x$DIGEST" = xmd4; then |
446 | if test "$HMACSIZE" -lt 12; then |
421 | echo "***" |
447 | echo "***" |
422 | echo "*** WARNING: The digest you have chosen ($DIGEST) is known to be insecure" |
|
|
423 | fi |
|
|
424 | |
|
|
425 | if test "$HMAC" -lt 12; then |
|
|
426 | echo "***" |
|
|
427 | echo "*** WARNING: The hmac length you have chosen ($HMAC) is probably insecure" |
448 | echo "*** WARNING: The hmac length you have chosen ($HMACSIZE) is quite insecure" |
428 | fi |
|
|
429 | |
|
|
430 | if test "$RAND" -lt 8; then |
|
|
431 | echo "***" |
|
|
432 | echo "*** WARNING: The random prefix you have chosen ($RAND) is probably insecure" |
|
|
433 | fi |
449 | fi |
434 | |
450 | |
435 | echo "***" |
451 | echo "***" |
436 | echo |
452 | echo |
437 | |
453 | |