1 | dnl Process this file with autoconf to produce a configure script. |
1 | dnl Process this file with autoconf to produce a configure script. |
2 | |
2 | |
3 | AC_PREREQ(2.57) |
3 | AC_PREREQ([2.71]) |
4 | AC_INIT(src/vped.C) |
4 | AC_INIT([gvpe],[3.1]) |
|
|
5 | AC_CONFIG_SRCDIR([src/gvpe.C]) |
5 | AC_CANONICAL_TARGET |
6 | AC_CANONICAL_TARGET |
6 | AM_INIT_AUTOMAKE(vpe, 1.2) |
7 | AM_INIT_AUTOMAKE |
7 | AM_CONFIG_HEADER(config.h) |
8 | AC_CONFIG_HEADERS([config.h]) |
8 | AM_MAINTAINER_MODE |
9 | AM_MAINTAINER_MODE |
9 | |
10 | |
10 | AH_TOP([ |
11 | AH_TOP([ |
11 | #ifndef CONFIG_H__ |
12 | #ifndef CONFIG_H__ |
12 | #define CONFIG_H__ |
13 | #define CONFIG_H__ |
… | |
… | |
16 | #endif |
17 | #endif |
17 | |
18 | |
18 | ]) |
19 | ]) |
19 | |
20 | |
20 | AH_BOTTOM([ |
21 | AH_BOTTOM([ |
|
|
22 | typedef unsigned char u8; |
|
|
23 | typedef signed char s8; |
|
|
24 | |
21 | #if __CYGWIN__ |
25 | #if __CYGWIN__ |
22 | |
26 | |
23 | typedef unsigned char u8; |
|
|
24 | typedef unsigned short u16; |
27 | typedef unsigned short u16; |
25 | typedef unsigned int u32; |
28 | typedef unsigned int u32; |
|
|
29 | typedef signed short s16; |
|
|
30 | typedef signed int s32; |
26 | |
31 | |
27 | #else |
32 | #else |
28 | #include <inttypes.h> |
33 | #include <inttypes.h> |
29 | |
34 | |
30 | /* old modula-2 habits */ |
35 | /* old modula-2 habits */ |
31 | typedef unsigned char u8; |
|
|
32 | typedef uint16_t u16; |
36 | typedef uint16_t u16; |
33 | typedef uint32_t u32; |
37 | typedef uint32_t u32; |
|
|
38 | typedef int16_t s16; |
|
|
39 | typedef int32_t s32; |
34 | #endif |
40 | #endif |
35 | |
41 | |
36 | #endif |
42 | #endif |
37 | ]) |
|
|
38 | |
43 | |
39 | dnl Include the macros from the m4/ directory |
44 | #if HAVE_CLOCALE |
40 | AM_ACLOCAL_INCLUDE(m4) |
45 | # define CLOCALE <clocale> |
|
|
46 | #else |
|
|
47 | # define CLOCALE <locale.h> |
|
|
48 | #endif |
|
|
49 | ]) |
41 | |
50 | |
42 | AM_GNU_GETTEXT([external]) |
51 | AM_GNU_GETTEXT([external]) |
43 | AM_GNU_GETTEXT_VERSION(0.11.5) |
52 | AM_GNU_GETTEXT_VERSION(0.11.5) |
44 | |
53 | |
45 | # Enable GNU extensions. |
54 | # Enable GNU extensions. |
46 | # Define this here, not in acconfig's @TOP@ section, since definitions |
55 | # Define this here, not in acconfig's @TOP@ section, since definitions |
47 | # in the latter don't make it into the configure-time tests. |
56 | # in the latter don't make it into the configure-time tests. |
48 | AC_DEFINE([_GNU_SOURCE], 1, [Enable GNU extenstions]) |
57 | AC_DEFINE([_GNU_SOURCE], 1, [Enable GNU extensions]) |
49 | AC_DEFINE([__USE_BSD], 1, [Enable BSD extensions]) |
58 | |
|
|
59 | # do NOT define POSIX_SOURCE, sicne this clashes with many BSDs |
|
|
60 | dnl AC_DEFINE([_POSIX_SOURCE], 1, [Enable POSIX 1003.1 extensions]) |
|
|
61 | dnl AC_DEFINE([_XOPEN_SOURCE], 500, [Enable XOPEN extensions]) |
50 | |
62 | |
51 | ALL_LINGUAS="" |
63 | ALL_LINGUAS="" |
52 | |
64 | |
53 | dnl Checks for programs. |
65 | dnl Checks for programs. |
54 | AC_PROG_CC |
|
|
55 | AC_PROG_CPP |
66 | AC_PROG_CPP |
56 | AC_PROG_CXX |
67 | AC_PROG_CXX |
57 | AC_PROG_GCC_TRADITIONAL |
68 | AC_PROG_GCC_TRADITIONAL |
58 | AC_PROG_AWK |
69 | AC_PROG_AWK |
59 | AC_PROG_INSTALL |
70 | AC_PROG_INSTALL |
60 | AC_PROG_LN_S |
71 | AC_PROG_LN_S |
61 | AC_PROG_MAKE_SET |
72 | AC_PROG_MAKE_SET |
62 | AC_PROG_RANLIB |
73 | AC_PROG_RANLIB |
63 | |
74 | |
64 | AC_ISC_POSIX |
|
|
65 | |
|
|
66 | AC_ARG_ENABLE(iftype, |
75 | AC_ARG_ENABLE(iftype, |
67 | [AC_HELP_STRING(--enable-iftype[=TYPE/SUBTYPE], [ |
76 | [AS_HELP_STRING(--enable-iftype=TYPE/SUBTYPE, |
68 | Use kernel/net device interface TYPE/SUBTYPE. |
77 | Use kernel/net device interface TYPE/SUBTYPE. |
69 | Working combinations are: |
78 | Working combinations are (see doc/gvpe.osdep.5.pod): |
70 | "native/linux" "tincd/linux" "tincd/freebsd"; |
79 | "native/linux" |
|
|
80 | "tincd/linux" |
|
|
81 | "tincd/netbsd" |
|
|
82 | "tincd/freebsd" |
|
|
83 | "tincd/openbsd" |
|
|
84 | "native/darwin" |
|
|
85 | "tincd/darwin" |
|
|
86 | "native/cygwin"; |
71 | Untested combinations are: |
87 | Untested combinations are: |
72 | "tincd/netbsd" "tincd/darwin" "tincd/solaris" |
88 | "tincd/bsd" |
73 | "tincd/openbsd" "tincd/cygwin"; |
89 | "tincd/solaris" |
|
|
90 | "tincd/mingw" |
|
|
91 | "tincd/raw_socket" |
|
|
92 | "tincd/uml_socket"; |
74 | Broken combinations are: |
93 | Broken combinations are: |
75 | "native/cygwin"; |
94 | "tincd/cygwin"; |
76 | The default is to autodetect. |
95 | The default is to autodetect. |
77 | ])], |
96 | )], |
78 | [ |
97 | [ |
79 | IFTYPE=`echo $enableval | sed s%/.*%%` |
98 | IFTYPE=`echo $enableval | sed s%/.*%%` |
80 | IFSUBTYPE=`echo $enableval | sed s%.*/%%` |
99 | IFSUBTYPE=`echo $enableval | sed s%.*/%%` |
81 | ] |
100 | ] |
82 | ) |
101 | ) |
… | |
… | |
95 | IFTYPE=tincd |
114 | IFTYPE=tincd |
96 | IFSUBTYPE=freebsd |
115 | IFSUBTYPE=freebsd |
97 | AC_DEFINE(HAVE_FREEBSD, 1, [FreeBSD]) |
116 | AC_DEFINE(HAVE_FREEBSD, 1, [FreeBSD]) |
98 | ;; |
117 | ;; |
99 | *darwin*) |
118 | *darwin*) |
100 | IFTYPE=tincd |
119 | IFTYPE=native |
101 | IFSUBTYPE=darwin |
120 | IFSUBTYPE=darwin |
102 | AC_DEFINE(HAVE_DARWIN, 1, [Darwin (MacOS/X)]) |
121 | AC_DEFINE(HAVE_DARWIN, 1, [Darwin (MacOS/X)]) |
103 | ;; |
122 | ;; |
104 | *solaris*) |
123 | *solaris*) |
105 | IFTYPE=tincd |
124 | IFTYPE=tincd |
… | |
… | |
115 | IFTYPE=tincd |
134 | IFTYPE=tincd |
116 | IFSUBTYPE=netbsd |
135 | IFSUBTYPE=netbsd |
117 | AC_DEFINE(HAVE_NETBSD, 1, [NetBSD]) |
136 | AC_DEFINE(HAVE_NETBSD, 1, [NetBSD]) |
118 | ;; |
137 | ;; |
119 | *cygwin*) |
138 | *cygwin*) |
120 | IFTYPE=tincd |
139 | IFTYPE=native |
121 | IFSUBTYPE=cygwin |
140 | IFSUBTYPE=cygwin |
122 | AC_DEFINE(HAVE_CYGWIN, 1, [Cygwin]) |
141 | AC_DEFINE(HAVE_CYGWIN, 1, [Cygwin]) |
123 | ;; |
142 | ;; |
124 | *) |
143 | *) |
125 | AC_MSG_ERROR("Unknown operating system.") |
144 | AC_MSG_ERROR("Unknown operating system.") |
… | |
… | |
127 | esac |
146 | esac |
128 | fi |
147 | fi |
129 | AC_MSG_RESULT($IFTYPE/$IFSUBTYPE) |
148 | AC_MSG_RESULT($IFTYPE/$IFSUBTYPE) |
130 | AC_SUBST(IFTYPE,$IFTYPE) |
149 | AC_SUBST(IFTYPE,$IFTYPE) |
131 | AC_SUBST(IFSUBTYPE,$IFSUBTYPE) |
150 | AC_SUBST(IFSUBTYPE,$IFSUBTYPE) |
|
|
151 | AC_DEFINE_UNQUOTED(IFTYPE,"$IFTYPE",[kernel interface type]) |
|
|
152 | AC_DEFINE_UNQUOTED(IFSUBTYPE,"$IFSUBTYPE",[kernel interface subtype]) |
132 | |
153 | |
133 | AC_CACHE_SAVE |
154 | AC_CACHE_SAVE |
134 | |
155 | |
135 | dnl Checks for libraries. |
156 | dnl Checks for libraries. |
136 | |
157 | |
137 | AC_LANG(C++) |
158 | AC_LANG(C++) |
138 | AC_CHECK_HEADERS(ext/hash_map) |
159 | AC_CHECK_HEADERS(tr1/unordered_map ext/hash_map clocale) |
139 | |
160 | |
140 | dnl Checks for header files. |
161 | dnl Checks for header files. |
141 | AC_CHECK_HEADERS([fcntl.h inttypes.h limits.h malloc.h stdint.h strings.h syslog.h unistd.h \ |
162 | AC_CHECK_HEADERS([fcntl.h inttypes.h limits.h malloc.h stdint.h strings.h syslog.h unistd.h \ |
142 | sys/file.h sys/ioctl.h sys/param.h sys/time.h netinet/in_systm.h cygwin.h arpa/inet.h netinet/in.h]) |
163 | sys/file.h sys/ioctl.h sys/param.h sys/time.h netinet/in_systm.h sys/cygwin.h \ |
|
|
164 | sys/mman.h netinet/in.h]) |
143 | AC_CHECK_HEADERS([net/ethernet.h net/if.h netinet/ip.h netinet/tcp.h netinet/in_systm.h], [], [], |
165 | AC_CHECK_HEADERS([arpa/inet.h net/ethernet.h net/if.h netinet/ip.h netinet/tcp.h netinet/in_systm.h], [], [], |
144 | [ |
166 | [ |
145 | #include <sys/types.h> |
167 | #include <sys/types.h> |
146 | #include <sys/socket.h> |
168 | #include <sys/socket.h> |
147 | #ifdef HAVE_NETINET_IN_H |
169 | #ifdef HAVE_NETINET_IN_H |
148 | # include <netinet/in.h> |
170 | # include <netinet/in.h> |
… | |
… | |
157 | |
179 | |
158 | dnl Checks for typedefs, structures, and compiler characteristics. |
180 | dnl Checks for typedefs, structures, and compiler characteristics. |
159 | AC_C_CONST |
181 | AC_C_CONST |
160 | AC_TYPE_PID_T |
182 | AC_TYPE_PID_T |
161 | AC_TYPE_SIZE_T |
183 | AC_TYPE_SIZE_T |
162 | AC_HEADER_TIME |
184 | AC_CHECK_HEADERS_ONCE([sys/time.h]) |
|
|
185 | |
163 | AC_STRUCT_TM |
186 | AC_STRUCT_TM |
164 | |
187 | |
165 | AC_CACHE_CHECK([for socklen_t], ac_cv_type_socklen_t, |
188 | AC_CACHE_CHECK([for socklen_t], ac_cv_type_socklen_t, |
166 | [ |
189 | [ |
167 | AC_TRY_COMPILE( |
190 | AC_COMPILE_IFELSE([AC_LANG_PROGRAM([[#include <sys/types.h> |
168 | [#include <sys/types.h> |
191 | #include <sys/socket.h>]], [[socklen_t len = 42; return len;]])],[ac_cv_type_socklen_t=yes],[ac_cv_type_socklen_t=no]) |
169 | #include <sys/socket.h>], |
|
|
170 | [socklen_t len = 42; return len;], |
|
|
171 | ac_cv_type_socklen_t=yes, |
|
|
172 | ac_cv_type_socklen_t=no) |
|
|
173 | ]) |
192 | ]) |
174 | if test $ac_cv_type_socklen_t = yes; then |
193 | if test $ac_cv_type_socklen_t = yes; then |
175 | AC_DEFINE(HAVE_SOCKLEN_T, 1, [socklen_t available]) |
194 | AC_DEFINE(HAVE_SOCKLEN_T, 1, [socklen_t available]) |
176 | fi |
195 | fi |
177 | |
196 | |
178 | AC_CACHE_CHECK([for struct addrinfo], ac_cv_struct_addrinfo, |
197 | AC_CACHE_CHECK([for struct addrinfo], ac_cv_struct_addrinfo, |
179 | [ |
198 | [ |
180 | AC_TRY_COMPILE( |
199 | AC_COMPILE_IFELSE([AC_LANG_PROGRAM([[#include <sys/types.h> |
181 | [#include <sys/types.h> |
|
|
182 | #include <sys/socket.h> |
200 | #include <sys/socket.h> |
183 | #include <netdb.h>], |
201 | #include <netdb.h>]], [[struct addrinfo ai; ai.ai_family = AF_INET; return ai.ai_family;]])],[ac_cv_struct_addrinfo=yes],[ac_cv_struct_addrinfo=no]) |
184 | [struct addrinfo ai; ai.ai_family = AF_INET; return ai.ai_family;], |
|
|
185 | ac_cv_struct_addrinfo=yes, |
|
|
186 | ac_cv_struct_addrinfo=no) |
|
|
187 | ]) |
202 | ]) |
188 | if test $ac_cv_struct_addrinfo = yes; then |
203 | if test $ac_cv_struct_addrinfo = yes; then |
189 | AC_DEFINE(HAVE_STRUCT_ADDRINFO, 1, [struct addrinfo available]) |
204 | AC_DEFINE(HAVE_STRUCT_ADDRINFO, 1, [struct addrinfo available]) |
190 | fi |
205 | fi |
191 | |
206 | |
192 | dnl Checks for library functions. |
|
|
193 | AC_TYPE_SIGNAL |
|
|
194 | |
|
|
195 | AC_LANG_PUSH(C) |
207 | AC_LANG_PUSH(C) |
196 | |
208 | |
197 | AC_HEADER_STDC |
209 | dnl argl, could somebody catapult darwin into the 21st century??? |
198 | |
|
|
199 | AC_CHECK_FUNCS(asprintf daemon get_current_dir_name putenv select strerror strsignal strtol unsetenv mlockall) |
210 | AC_CHECK_FUNCS(asprintf daemon get_current_dir_name putenv select strerror strsignal strtol unsetenv mlockall) |
200 | |
211 | |
201 | AC_FUNC_ALLOCA |
212 | AC_FUNC_ALLOCA |
202 | |
213 | |
203 | dnl Support for SunOS |
214 | dnl Support for SunOS |
… | |
… | |
207 | ]) |
218 | ]) |
208 | AC_CHECK_FUNC(gethostbyname, [], [ |
219 | AC_CHECK_FUNC(gethostbyname, [], [ |
209 | AC_CHECK_LIB(nsl, gethostbyname) |
220 | AC_CHECK_LIB(nsl, gethostbyname) |
210 | ]) |
221 | ]) |
211 | |
222 | |
|
|
223 | dnl libev support |
|
|
224 | m4_include([libev/libev.m4]) |
|
|
225 | |
212 | AC_LANG_POP |
226 | AC_LANG_POP |
213 | |
227 | |
214 | dnl AC_CHECK_FUNCS([freeaddrinfo gai_strerror getaddrinfo getnameinfo]) |
228 | dnl AC_CHECK_FUNCS([freeaddrinfo gai_strerror getaddrinfo getnameinfo]) |
215 | |
229 | |
216 | AC_CACHE_SAVE |
230 | AC_CACHE_SAVE |
217 | |
231 | |
218 | dnl These are defined in files in m4/ |
232 | dnl These are defined in files in m4/ |
219 | tinc_TUNTAP |
233 | tinc_TUNTAP |
220 | tinc_OPENSSL |
|
|
221 | dnl tinc_ZLIB |
|
|
222 | |
234 | |
|
|
235 | PKG_CHECK_MODULES([LIBCRYPTO], [libcrypto >= 1]) |
|
|
236 | |
|
|
237 | AC_ARG_ENABLE(threads, |
|
|
238 | [AS_HELP_STRING(--enable-threads,try to use threads for long-running asynchronous operations (default enabled).)], |
|
|
239 | [try_threads=$enableval], |
|
|
240 | [try_threads=yes] |
|
|
241 | ) |
|
|
242 | |
|
|
243 | if test "x$try_threads" = xyes; then |
|
|
244 | AC_CHECK_HEADER(pthread.h,[ |
|
|
245 | LIBS="$LIBS -lpthread" |
|
|
246 | AC_COMPILE_IFELSE( |
|
|
247 | [AC_LANG_PROGRAM([#include <pthread.h>], [pthread_t id; pthread_create (&id, 0, 0, 0);])], |
|
|
248 | [AC_DEFINE_UNQUOTED(ENABLE_PTHREADS, 1, [POSIX thread support.])] |
|
|
249 | ) |
|
|
250 | ]) |
|
|
251 | fi |
|
|
252 | |
|
|
253 | AC_ARG_ENABLE(static-daemon, |
|
|
254 | [AS_HELP_STRING(--enable-static-daemon,enable statically linked daemon.)], |
|
|
255 | [LDFLAGS_DAEMON=-static] |
|
|
256 | ) |
|
|
257 | AC_SUBST(LDFLAGS_DAEMON) |
|
|
258 | |
223 | AC_ARG_ENABLE(rohc, |
259 | dnl AC_ARG_ENABLE(rohc, |
224 | [AC_HELP_STRING(--enable-rohc, [enable robust header compression (rfc3095).])], |
260 | dnl [AS_HELP_STRING(--enable-rohc,enable robust header compression (rfc3095).)], |
|
|
261 | dnl [ |
|
|
262 | dnl echo |
|
|
263 | dnl echo "**********************************************************************" |
|
|
264 | dnl echo "**********************************************************************" |
|
|
265 | dnl echo "**** --enable-rohc is highly experimental, do not use ****************" |
|
|
266 | dnl echo "**********************************************************************" |
|
|
267 | dnl echo "**********************************************************************" |
|
|
268 | dnl echo |
|
|
269 | dnl rohc=true |
|
|
270 | dnl AC_DEFINE_UNQUOTED(ENABLE_ROHC, 1, [ROHC support]) |
|
|
271 | dnl ] |
|
|
272 | dnl ) |
|
|
273 | |
|
|
274 | AM_CONDITIONAL(ROHC, test x$rohc = xtrue) |
|
|
275 | |
|
|
276 | dnl AC_ARG_ENABLE(bridging, |
|
|
277 | dnl [AS_HELP_STRING(--enable-bridging,enable bridging support (default disabled).)], |
|
|
278 | dnl AC_DEFINE_UNQUOTED(ENABLE_BRIDGING, 1, [bridging support.]) |
|
|
279 | dnl ) |
|
|
280 | |
|
|
281 | ICMP=1 |
|
|
282 | AC_ARG_ENABLE(icmp, |
|
|
283 | [AS_HELP_STRING(--disable-icmp,enable icmp protocol support (default enabled).)], |
|
|
284 | if test "x$enableval" = xno; then |
|
|
285 | ICMP=0 |
|
|
286 | fi |
|
|
287 | ) |
|
|
288 | if test "x$ICMP" = x1; then |
|
|
289 | AC_DEFINE_UNQUOTED(ENABLE_ICMP, 1, [ICMP protocol support.]) |
|
|
290 | fi |
|
|
291 | |
|
|
292 | TCP=1 |
|
|
293 | AC_ARG_ENABLE(tcp, |
|
|
294 | [AS_HELP_STRING(--disable-tcp,enable tcp protocol support (default enabled).)], |
|
|
295 | if test "x$enableval" = xno; then |
|
|
296 | TCP=0 |
|
|
297 | fi |
|
|
298 | ) |
|
|
299 | if test "x$TCP" = x1; then |
|
|
300 | AC_DEFINE_UNQUOTED(ENABLE_TCP, 1, [TCP protocol support.]) |
|
|
301 | fi |
|
|
302 | |
|
|
303 | HTTP=1 |
|
|
304 | AC_ARG_ENABLE(http-proxy, |
|
|
305 | [AS_HELP_STRING(--disable-http-proxy,enable http proxy connect support (default enabled).)], |
|
|
306 | if test "x$enableval" = xno; then |
|
|
307 | HTTP=0 |
|
|
308 | fi |
|
|
309 | ) |
|
|
310 | if test "x$HTTP" = x1; then |
|
|
311 | AC_DEFINE_UNQUOTED(ENABLE_HTTP_PROXY, 1, [http proxy connect support.]) |
|
|
312 | fi |
|
|
313 | |
|
|
314 | AC_ARG_ENABLE(dns, |
|
|
315 | [AS_HELP_STRING(--enable-dns,enable dns tunnel protocol support (default disabled).)], |
225 | [ |
316 | [ |
226 | echo |
317 | AC_CHECK_HEADER(gmp.h,,[AC_MSG_ERROR([gmp.h not found, required for --enable-dns])]) |
227 | echo "**********************************************************************" |
318 | AC_CHECK_LIB(gmp,main,,[AC_MSG_ERROR([libgmp not found, required for --enable-dns])]) |
228 | echo "**********************************************************************" |
319 | |
229 | echo "**** --enable-rohc not yet implemented *******************************" |
320 | AC_DEFINE_UNQUOTED(ENABLE_DNS, 1, [DNS tunnel protocol support.]) |
230 | echo "**********************************************************************" |
|
|
231 | echo "**** uuh sorry, I am such an ass, but I didn't find any rfc3095 (ROHC)" |
|
|
232 | echo "**** implementation to be used in GPL code on the web." |
|
|
233 | echo "**** so this option is just a fake. Please implement one and send it" |
|
|
234 | echo "**** to me ;)" |
|
|
235 | echo "**********************************************************************" |
|
|
236 | echo "**********************************************************************" |
|
|
237 | echo "**********************************************************************" |
|
|
238 | echo "**********************************************************************" |
|
|
239 | echo |
|
|
240 | ] |
321 | ] |
241 | ) |
322 | ) |
242 | |
323 | |
243 | AC_ARG_ENABLE(icmp, |
324 | RSA=3072 |
244 | [AC_HELP_STRING(--enable-icmp, [enable icmp protocol support (default disabled).])], |
325 | AC_ARG_ENABLE(rsa-length, |
245 | AC_DEFINE_UNQUOTED(ENABLE_ICMP, 1, [ICMP protocol support.]) |
326 | [AS_HELP_STRING(--enable-rsa-length=BITS,[ |
|
|
327 | use BITS rsa keys (default 3072). Allowed values are 2048-10240.])], |
|
|
328 | RSA=$enableval |
246 | ) |
329 | ) |
|
|
330 | AC_DEFINE_UNQUOTED(RSABITS, $RSA, [Size of RSA keys.]) |
247 | |
331 | |
248 | AC_ARG_ENABLE(tcp, |
332 | HMACSIZE=12 |
249 | [AC_HELP_STRING(--enable-tcp, [enable tcp protocol support (default disabled).])], |
|
|
250 | AC_DEFINE_UNQUOTED(ENABLE_TCP, 1, [TCP protocol support.]) |
|
|
251 | ) |
|
|
252 | |
|
|
253 | AC_ARG_ENABLE(http-proxy, |
|
|
254 | [AC_HELP_STRING(--enable-http-proxy, [enable http proxy connect support (default disabled).])], |
|
|
255 | AC_DEFINE_UNQUOTED(ENABLE_HTTP_PROXY, 1, [http proxy connect support.]) |
|
|
256 | ) |
|
|
257 | |
|
|
258 | HMAC=12 dnl see also the AC_HELP_STRING |
|
|
259 | AC_ARG_ENABLE(hmac-length, |
333 | AC_ARG_ENABLE(hmac-length, |
260 | [AC_HELP_STRING(--enable-hmac-length=BYTES, [use a hmac of length BYTES bytes (default 12). Allowed values are 4, 8, 12, 16.])], |
334 | [AS_HELP_STRING(--enable-hmac-length=BYTES,[ |
|
|
335 | use a hmac of length BYTES bytes (default 12). Allowed values are 4, 8, 12, 16.])], |
261 | HMAC=$enableval |
336 | HMACSIZE=$enableval |
262 | ) |
337 | ) |
263 | AC_DEFINE_UNQUOTED(HMACLENGTH, $HMAC, [Size of HMAC in each packet in bytes.]) |
338 | AC_DEFINE_UNQUOTED(HMACLENGTH, $HMACSIZE, [Size of HMAC in each packet in bytes.]) |
264 | |
339 | |
265 | RAND=8 dnl see also the AC_HELP_STRING |
340 | MTU=1500 |
266 | AC_ARG_ENABLE(rand-length, |
|
|
267 | [AC_HELP_STRING(--enable-rand-length=BYTES, [use BYTES bytes of extra randomness (default 8). Allowed values are 0, 4, 8.])], |
|
|
268 | RAND=$enableval |
|
|
269 | ) |
|
|
270 | AC_DEFINE_UNQUOTED(RAND_SIZE, $RAND, [Add this many bytes of randomness to each packet.]) |
|
|
271 | |
|
|
272 | MTU=1500 dnl see also the AC_HELP_STRING |
|
|
273 | AC_ARG_ENABLE(mtu, |
341 | AC_ARG_ENABLE(max-mtu, |
274 | [AC_HELP_STRING(--enable-max-mtu=BYTES, enable mtu sizes upto BYTES bytes (default 1500). Use 9100 for jumbogram support.)], |
342 | [AS_HELP_STRING(--enable-max-mtu=BYTES,enable mtu sizes upto BYTES bytes (default 1500). Use 9100 for jumbogram support.)], |
275 | MTU=$enableval |
343 | MTU=$enableval |
276 | ) |
344 | ) |
277 | AC_DEFINE_UNQUOTED(MAX_MTU, $MTU + 14, [Maximum MTU supported.]) |
345 | AC_DEFINE_UNQUOTED(MAX_MTU, ($MTU + 14), [Maximum MTU supported.]) |
278 | |
346 | |
279 | COMPRESS=1 |
347 | COMPRESS=1 |
280 | AC_ARG_ENABLE(compression, |
348 | AC_ARG_ENABLE(compression, |
281 | [AC_HELP_STRING(--disable-compression, Disable compression support.)], |
349 | [AS_HELP_STRING(--disable-compression,Disable compression support.)], |
282 | if test "x$enableval" = xno; then |
350 | if test "x$enableval" = xno; then |
283 | COMPRESS=0 |
351 | COMPRESS=0 |
284 | fi |
352 | fi |
285 | ) |
353 | ) |
286 | AC_DEFINE_UNQUOTED(ENABLE_COMPRESSION, $COMPRESS, [Enable compression support.]) |
354 | AC_DEFINE_UNQUOTED(ENABLE_COMPRESSION, $COMPRESS, [Enable compression support.]) |
287 | |
355 | |
288 | CIPHER=bf_cbc |
356 | CIPHER=aes_128_ctr |
289 | AC_ARG_ENABLE(cipher, |
357 | AC_ARG_ENABLE(cipher, |
290 | [AC_HELP_STRING(--enable-cipher, [ |
358 | [AS_HELP_STRING(--enable-cipher=CIPHER,[ |
291 | Select the symmetric cipher (default "bf"). Must be one of |
359 | Select the symmetric cipher (default "aes-128"). |
292 | "bf" (blowfish), "aes-128" (rijndael), "aes-192" or "aes-256".])], |
360 | Must be one of "aes-128" (rijndael), "aes-192", or "aes-256".])], |
293 | if test "x$enableval" = xbf ; then CIPHER=bf_cbc ; fi |
361 | #if test "x$enableval" = xbf ; then CIPHER=bf_ctr ; fi |
294 | if test "x$enableval" = xaes-128; then CIPHER=aes_128_cbc; fi |
362 | if test "x$enableval" = xaes-128 ; then CIPHER=aes_128_ctr ; fi |
295 | if test "x$enableval" = xaes-192; then CIPHER=aes_192_cbc; fi |
363 | if test "x$enableval" = xaes-192 ; then CIPHER=aes_192_ctr ; fi |
296 | if test "x$enableval" = xaes-256; then CIPHER=aes_256_cbc; fi |
364 | if test "x$enableval" = xaes-256 ; then CIPHER=aes_256_ctr ; fi |
|
|
365 | #if test "x$enableval" = xcamellia-128; then CIPHER=camellia_128_ctr; fi |
|
|
366 | #if test "x$enableval" = xcamellia-256; then CIPHER=camellia_256_ctr; fi |
297 | ) |
367 | ) |
298 | AC_DEFINE_UNQUOTED(ENABLE_CIPHER, EVP_${CIPHER}, [Select the symmetric cipher to use.]) |
368 | AC_DEFINE_UNQUOTED(ENABLE_CIPHER, EVP_${CIPHER}, [Select the symmetric cipher to use.]) |
299 | |
369 | |
300 | DIGEST=sha1 |
370 | HMAC=sha1 |
301 | AC_ARG_ENABLE(digest, |
371 | AC_ARG_ENABLE(hmac-digest, |
302 | [AC_HELP_STRING(--enable-digest, [ |
372 | [AS_HELP_STRING(--enable-hmac-digest=HMAC,[ |
303 | Select the digets algorithm to use (default "sha1"). Must be one of |
373 | Select the HMAC digest algorithm to use (default "sha1"). Must be one of |
304 | "sha1", "ripemd160", "md5" or "md4" (insecure).])], |
374 | "sha512", "sha256", "sha1", "ripemd160", "whirlpool".])], |
|
|
375 | if test "x$enableval" = xwhirlpool; then HMAC=whirlpool; fi |
|
|
376 | if test "x$enableval" = xsha512 ; then HMAC=sha512 ; fi |
|
|
377 | if test "x$enableval" = xsha256 ; then HMAC=sha256 ; fi |
305 | if test "x$enableval" = xsha1 ; then DIGEST=sha1 ; fi |
378 | if test "x$enableval" = xsha1 ; then HMAC=sha1 ; fi |
306 | if test "x$enableval" = xripemd160; then DIGEST=ripemd160; fi |
379 | if test "x$enableval" = xripemd160; then HMAC=ripemd160; fi |
|
|
380 | ) |
|
|
381 | AC_DEFINE_UNQUOTED(ENABLE_HMAC, EVP_${HMAC}, [Select the HMAC digest algorithm to use.]) |
|
|
382 | |
|
|
383 | AUTH=sha512 |
|
|
384 | AC_ARG_ENABLE(auth-digest, |
|
|
385 | [AS_HELP_STRING(--enable-auth-digest=DIGEST,[ |
|
|
386 | Select the hmac algorithm to use (default "sha512"). Must be one of |
|
|
387 | "sha512", "sha256", "whirlpool".])], |
|
|
388 | if test "x$enableval" = xwhirlpool; then AUTH=whirlpool; fi |
307 | if test "x$enableval" = xmd5 ; then DIGEST=md5 ; fi |
389 | if test "x$enableval" = xsha512 ; then AUTH=sha512 ; fi |
308 | if test "x$enableval" = xmd4 ; then DIGEST=md4 ; fi |
390 | if test "x$enableval" = xsha256 ; then AUTH=sha256 ; fi |
309 | ) |
391 | ) |
310 | AC_DEFINE_UNQUOTED(ENABLE_DIGEST, EVP_${DIGEST}, [Select the digest algorithm to use.]) |
392 | AC_DEFINE_UNQUOTED(ENABLE_AUTH, EVP_${AUTH}, [Select the auth digest algorithm to use.]) |
311 | |
393 | |
312 | if $CXX -v --help 2>&1 | grep -q fno-rtti; then |
394 | if $CXX -v --help 2>&1 | grep -q fno-rtti; then |
313 | CXXFLAGS="$CXXFLAGS -fno-rtti" |
395 | CXXFLAGS="$CXXFLAGS -fno-rtti" |
314 | fi |
396 | fi |
315 | |
397 | |
316 | if $CXX -v --help 2>&1 | grep -q fexceptions; then |
398 | #if $CXX -v --help 2>&1 | grep -q fexceptions; then |
317 | CXXFLAGS="$CXXFLAGS -fno-exceptions" |
399 | # CXXFLAGS="$CXXFLAGS -fno-exceptions" |
318 | fi |
400 | #fi |
319 | |
401 | |
|
|
402 | LIBS="$EXTRA_LIBS $LIBS" |
|
|
403 | |
320 | if $CXX -v --help 2>&1 | grep -q ffunction-sections; then |
404 | dnl if $CXX -v --help 2>&1 | grep -q ffunction-sections; then |
321 | CXXFLAGS="$CXXFLAGS -ffunction-sections" |
405 | dnl CXXFLAGS="$CXXFLAGS -ffunction-sections" |
322 | fi |
406 | dnl fi |
323 | |
407 | dnl |
324 | if $LD -v --help 2>&1 | grep -q gc-sections; then |
408 | dnl if $LD -v --help 2>&1 | grep -q gc-sections; then |
325 | LDFLAGS="$LDFLAGS -Wl,--gc-sections" |
409 | dnl LDFLAGS="$LDFLAGS -Wl,--gc-sections" |
326 | fi |
410 | dnl fi |
327 | |
411 | |
328 | AC_CONFIG_COMMANDS_POST([ |
412 | AC_SUBST(AM_CPPFLAGS) |
|
|
413 | |
|
|
414 | AC_CONFIG_FILES([Makefile po/Makefile.in |
|
|
415 | src/Makefile |
|
|
416 | doc/Makefile |
|
|
417 | lib/Makefile |
|
|
418 | m4/Makefile |
|
|
419 | ]) |
|
|
420 | AC_OUTPUT |
329 | |
421 | |
330 | echo |
422 | echo |
331 | echo "***" |
423 | echo "***" |
332 | echo "*** Configuration Summary" |
424 | echo "*** Configuration Summary" |
333 | echo "***" |
425 | echo "***" |
334 | echo "*** Kernel Iface: $IFTYPE/$IFSUBTYPE" |
426 | echo "*** Kernel Iface: $IFTYPE/$IFSUBTYPE" |
|
|
427 | echo "*** RSA size: $RSA" |
335 | echo "*** Cipher used: $CIPHER" |
428 | echo "*** Cipher used: $CIPHER" |
336 | echo "*** Digest used: $DIGEST" |
429 | echo "*** Digest used: $DIGEST" |
|
|
430 | echo "*** Authdigest: $AUTH" |
337 | echo "*** HMAC length: $HMAC" |
431 | echo "*** HMAC length: $HMAC" |
338 | echo "*** RAND used: $RAND" |
|
|
339 | echo "*** Max. MTU: $MTU" |
432 | echo "*** Max. MTU: $MTU" |
340 | echo "*** Compression: $COMPRESS" |
433 | |
341 | echo "***" |
434 | echo "***" |
|
|
435 | echo "*** Enable options:" |
|
|
436 | grep ENABLE_ config.h | sed -e 's/^/*** /' |
342 | |
437 | |
343 | if test "x$DIGEST" = xmd4; then |
438 | if test "$HMACSIZE" -lt 12; then |
344 | echo "*** WARNING" |
|
|
345 | echo "*** The digest you have chosen ($DIGEST) is known to be insecure" |
|
|
346 | echo "***" |
439 | echo "***" |
|
|
440 | echo "*** WARNING: The hmac length you have chosen ($HMACSIZE) is quite insecure" |
347 | fi |
441 | fi |
348 | |
442 | |
|
|
443 | echo "***" |
349 | echo |
444 | echo |
350 | |
445 | |
351 | ]) |
446 | if pkg-config --exists 'libcrypto >= 1.1 libcrypto < 2.0'; then |
|
|
447 | cat <<EOF |
|
|
448 | @<:@33m |
|
|
449 | *** |
|
|
450 | *** WARNING WARNING WARNING WARNING WARNING WARNING WARNING |
|
|
451 | *** |
|
|
452 | *** You seem to configure gvpe with OpenSSL 1.1 or newer. |
|
|
453 | *** While this probably compiles, please note that this is not only |
|
|
454 | *** unsupported, but also discouraged. |
|
|
455 | *** |
|
|
456 | *** It is recommended to use either OpenSSL 1.0, as long as that is still |
|
|
457 | *** supported, or LibreSSL (https://www.libressl.org/). |
|
|
458 | *** |
|
|
459 | *** This is not a political issue - while porting GVPE to the newer |
|
|
460 | *** OpenSSL 1.1 API, I encountered two incompatible API changes that were |
|
|
461 | *** not documented, were not caught while compiling but caused security |
|
|
462 | *** issues. When reported, the reaction of the OpenSSL developers was to |
|
|
463 | *** update the documentation. |
|
|
464 | *** |
|
|
465 | *** As a result, I lost all confidence in the ability and desire of |
|
|
466 | *** OpenSSL developers to create a safe API, and would highly recommend |
|
|
467 | *** switching to LibreSSL which explicitly avoids such braking changes. |
|
|
468 | *** |
|
|
469 | *** WARNING WARNING WARNING WARNING WARNING WARNING WARNING |
|
|
470 | *** |
|
|
471 | *** Again, do not use OpenSSL 1.1 and complain if stuff breaks. |
|
|
472 | *** You have been warned, but your choice is respected. |
|
|
473 | *** |
|
|
474 | @<:@0m |
352 | |
475 | |
353 | AC_SUBST(INCLUDES) |
476 | EOF |
|
|
477 | fi |
354 | |
478 | |
355 | AC_OUTPUT(Makefile po/Makefile.in |
479 | |
356 | src/Makefile |
|
|
357 | doc/Makefile |
|
|
358 | lib/Makefile |
|
|
359 | m4/Makefile |
|
|
360 | ) |
|
|