1 | dnl Process this file with autoconf to produce a configure script. |
1 | dnl Process this file with autoconf to produce a configure script. |
2 | |
2 | |
3 | AC_PREREQ(2.57) |
3 | AC_PREREQ(2.59) |
4 | AC_INIT(src/vped.C) |
4 | AC_INIT |
|
|
5 | AC_CONFIG_SRCDIR([src/vped.C]) |
5 | AC_CANONICAL_TARGET |
6 | AC_CANONICAL_TARGET |
6 | AM_INIT_AUTOMAKE(vpe, 1.0) |
7 | AM_INIT_AUTOMAKE(gvpe, 1.8) |
7 | AM_CONFIG_HEADER(config.h) |
8 | AC_CONFIG_HEADERS([config.h]) |
8 | AM_MAINTAINER_MODE |
9 | AM_MAINTAINER_MODE |
9 | |
10 | |
10 | AH_TOP([ |
11 | AH_TOP([ |
11 | #ifndef CONFIG_H__ |
12 | #ifndef CONFIG_H__ |
12 | #define CONFIG_H__ |
13 | #define CONFIG_H__ |
… | |
… | |
16 | #endif |
17 | #endif |
17 | |
18 | |
18 | ]) |
19 | ]) |
19 | |
20 | |
20 | AH_BOTTOM([ |
21 | AH_BOTTOM([ |
|
|
22 | typedef unsigned char u8; |
|
|
23 | typedef signed char s8; |
|
|
24 | |
21 | #if __CYGWIN__ |
25 | #if __CYGWIN__ |
22 | |
26 | |
23 | typedef unsigned char u8; |
|
|
24 | typedef unsigned short u16; |
27 | typedef unsigned short u16; |
25 | typedef unsigned int u32; |
28 | typedef unsigned int u32; |
|
|
29 | typedef signed short s16; |
|
|
30 | typedef signed int s32; |
26 | |
31 | |
27 | #else |
32 | #else |
28 | #include <inttypes.h> |
33 | #include <inttypes.h> |
29 | |
34 | |
30 | /* old modula-2 habits */ |
35 | /* old modula-2 habits */ |
31 | typedef unsigned char u8; |
|
|
32 | typedef uint16_t u16; |
36 | typedef uint16_t u16; |
33 | typedef uint32_t u32; |
37 | typedef uint32_t u32; |
|
|
38 | typedef int16_t s16; |
|
|
39 | typedef int32_t s32; |
34 | #endif |
40 | #endif |
35 | |
41 | |
36 | #endif |
42 | #endif |
37 | ]) |
43 | ]) |
38 | |
44 | |
… | |
… | |
44 | |
50 | |
45 | # Enable GNU extensions. |
51 | # Enable GNU extensions. |
46 | # Define this here, not in acconfig's @TOP@ section, since definitions |
52 | # Define this here, not in acconfig's @TOP@ section, since definitions |
47 | # in the latter don't make it into the configure-time tests. |
53 | # in the latter don't make it into the configure-time tests. |
48 | AC_DEFINE([_GNU_SOURCE], 1, [Enable GNU extenstions]) |
54 | AC_DEFINE([_GNU_SOURCE], 1, [Enable GNU extenstions]) |
49 | AC_DEFINE([__USE_BSD], 1, [Enable BSD extensions]) |
55 | |
|
|
56 | # do NOT define POSIX_SOURCE, sicne this clashes with many BSDs |
|
|
57 | dnl AC_DEFINE([_POSIX_SOURCE], 1, [Enable POSIX 1003.1 extensions]) |
|
|
58 | dnl AC_DEFINE([_XOPEN_SOURCE], 500, [Enable XOPEN extensions]) |
50 | |
59 | |
51 | ALL_LINGUAS="" |
60 | ALL_LINGUAS="" |
52 | |
61 | |
53 | dnl Checks for programs. |
62 | dnl Checks for programs. |
54 | AC_PROG_CC |
63 | AC_PROG_CC |
… | |
… | |
59 | AC_PROG_INSTALL |
68 | AC_PROG_INSTALL |
60 | AC_PROG_LN_S |
69 | AC_PROG_LN_S |
61 | AC_PROG_MAKE_SET |
70 | AC_PROG_MAKE_SET |
62 | AC_PROG_RANLIB |
71 | AC_PROG_RANLIB |
63 | |
72 | |
64 | AC_ISC_POSIX |
73 | AC_ARG_ENABLE(iftype, |
|
|
74 | [AS_HELP_STRING(--enable-iftype=TYPE/SUBTYPE, |
|
|
75 | Use kernel/net device interface TYPE/SUBTYPE. |
|
|
76 | Working combinations are: |
|
|
77 | "native/linux" |
|
|
78 | "tincd/linux" |
|
|
79 | "tincd/freebsd" |
|
|
80 | "tincd/openbsd" |
|
|
81 | "tincd/darwin" |
|
|
82 | "native/cygwin"; |
|
|
83 | Untested combinations are: |
|
|
84 | "tincd/netbsd" |
|
|
85 | "tincd/solaris" |
|
|
86 | "tincd/mingw" |
|
|
87 | "tincd/raw_socket" |
|
|
88 | "tincd/uml_socket"; |
|
|
89 | Broken combinations are: |
|
|
90 | "tincd/cygwin"; |
|
|
91 | The default is to autodetect. |
|
|
92 | )], |
|
|
93 | [ |
|
|
94 | IFTYPE=`echo $enableval | sed s%/.*%%` |
|
|
95 | IFSUBTYPE=`echo $enableval | sed s%.*/%%` |
|
|
96 | ] |
|
|
97 | ) |
65 | |
98 | |
66 | m4_if([ |
|
|
67 | dnl Check and set OS |
99 | dnl Check and set OS |
|
|
100 | AC_MSG_CHECKING(for kernel networking interface type) |
68 | |
101 | |
|
|
102 | if test "x$IFTYPE" = "x"; then |
69 | case $target_os in |
103 | case $target_os in |
70 | *linux*) |
104 | *linux*) |
|
|
105 | IFTYPE=native |
|
|
106 | IFSUBTYPE=linux |
71 | AC_DEFINE(HAVE_LINUX, 1, [Linux]) |
107 | AC_DEFINE(HAVE_LINUX, 1, [Linux]) |
72 | [ rm -f src/device.c; ln -sf linux/device.c src/device.c ] |
108 | ;; |
73 | ;; |
|
|
74 | *freebsd*) |
109 | *freebsd*) |
|
|
110 | IFTYPE=tincd |
|
|
111 | IFSUBTYPE=freebsd |
75 | AC_DEFINE(HAVE_FREEBSD, 1, [FreeBSD]) |
112 | AC_DEFINE(HAVE_FREEBSD, 1, [FreeBSD]) |
76 | [ rm -f src/device.c; ln -sf freebsd/device.c src/device.c ] |
113 | ;; |
77 | ;; |
|
|
78 | *darwin*) |
114 | *darwin*) |
|
|
115 | IFTYPE=tincd |
|
|
116 | IFSUBTYPE=darwin |
79 | AC_DEFINE(HAVE_DARWIN, 1, [Darwin (MacOS/X)]) |
117 | AC_DEFINE(HAVE_DARWIN, 1, [Darwin (MacOS/X)]) |
80 | [ rm -f src/device.c; ln -sf darwin/device.c src/device.c ] |
118 | ;; |
81 | ;; |
|
|
82 | *solaris*) |
119 | *solaris*) |
|
|
120 | IFTYPE=tincd |
|
|
121 | IFSUBTYPE=solaris |
83 | AC_DEFINE(HAVE_SOLARIS, 1, [Solaris/SunOS]) |
122 | AC_DEFINE(HAVE_SOLARIS, 1, [Solaris/SunOS]) |
84 | [ rm -f src/device.c; ln -sf solaris/device.c src/device.c ] |
123 | ;; |
85 | ;; |
|
|
86 | *openbsd*) |
124 | *openbsd*) |
|
|
125 | IFTYPE=tincd |
|
|
126 | IFSUBTYPE=openbsd |
87 | AC_DEFINE(HAVE_OPENBSD, 1, [OpenBSD]) |
127 | AC_DEFINE(HAVE_OPENBSD, 1, [OpenBSD]) |
88 | [ rm -f src/device.c; ln -sf openbsd/device.c src/device.c ] |
128 | ;; |
89 | ;; |
|
|
90 | *netbsd*) |
129 | *netbsd*) |
|
|
130 | IFTYPE=tincd |
|
|
131 | IFSUBTYPE=netbsd |
91 | AC_DEFINE(HAVE_NETBSD, 1, [NetBSD]) |
132 | AC_DEFINE(HAVE_NETBSD, 1, [NetBSD]) |
92 | [ rm -f src/device.c; ln -sf netbsd/device.c src/device.c ] |
133 | ;; |
93 | ;; |
|
|
94 | *cygwin*) |
134 | *cygwin*) |
|
|
135 | IFTYPE=native |
|
|
136 | IFSUBTYPE=cygwin |
95 | AC_DEFINE(HAVE_CYGWIN, 1, [Cygwin]) |
137 | AC_DEFINE(HAVE_CYGWIN, 1, [Cygwin]) |
96 | [ rm -f src/device.c; ln -sf cygwin/device.c src/device.c ] |
138 | ;; |
97 | ;; |
139 | *) |
98 | *) |
|
|
99 | AC_MSG_ERROR("Unknown operating system.") |
140 | AC_MSG_ERROR("Unknown operating system.") |
100 | ;; |
141 | ;; |
101 | esac |
142 | esac |
102 | ]) |
143 | fi |
|
|
144 | AC_MSG_RESULT($IFTYPE/$IFSUBTYPE) |
|
|
145 | AC_SUBST(IFTYPE,$IFTYPE) |
|
|
146 | AC_SUBST(IFSUBTYPE,$IFSUBTYPE) |
|
|
147 | AC_DEFINE_UNQUOTED(IFTYPE,"$IFTYPE",[kernel interface type]) |
|
|
148 | AC_DEFINE_UNQUOTED(IFSUBTYPE,"$IFSUBTYPE",[kernel interface subtype]) |
103 | |
149 | |
104 | AC_CACHE_SAVE |
150 | AC_CACHE_SAVE |
105 | |
151 | |
106 | dnl Checks for libraries. |
152 | dnl Checks for libraries. |
107 | |
153 | |
108 | AC_LANG(C++) |
154 | AC_LANG(C++) |
109 | AC_CHECK_HEADERS(ext/hash_map) |
155 | AC_CHECK_HEADERS(ext/hash_map) |
110 | |
156 | |
111 | dnl Checks for header files. |
157 | dnl Checks for header files. |
112 | AC_CHECK_HEADERS([fcntl.h inttypes.h limits.h malloc.h stdint.h strings.h syslog.h unistd.h \ |
158 | AC_CHECK_HEADERS([fcntl.h inttypes.h limits.h malloc.h stdint.h strings.h syslog.h unistd.h \ |
113 | sys/file.h sys/ioctl.h sys/param.h sys/time.h netinet/in_systm.h cygwin.h]) |
159 | sys/file.h sys/ioctl.h sys/param.h sys/time.h netinet/in_systm.h sys/cygwin.h \ |
|
|
160 | sys/mman.h netinet/in.h]) |
114 | AC_CHECK_HEADERS([net/ethernet.h net/if.h netinet/ip.h netinet/tcp.h], [], [], |
161 | AC_CHECK_HEADERS([arpa/inet.h net/ethernet.h net/if.h netinet/ip.h netinet/tcp.h netinet/in_systm.h], [], [], |
|
|
162 | [ |
115 | [#include <sys/types.h> |
163 | #include <sys/types.h> |
116 | #include <sys/socket.h> |
164 | #include <sys/socket.h> |
|
|
165 | #ifdef HAVE_NETINET_IN_H |
|
|
166 | # include <netinet/in.h> |
|
|
167 | #endif |
|
|
168 | #ifdef HAVE_ARPA_INET_H |
|
|
169 | # include <arpa/inet.h> |
|
|
170 | #endif |
117 | #ifdef HAVE_NETINET_IN_SYSTM_H |
171 | #ifdef HAVE_NETINET_IN_SYSTM_H |
118 | #include <netinet/in_systm.h> |
172 | # include <netinet/in_systm.h> |
119 | #endif]) |
173 | #endif |
|
|
174 | ]) |
120 | |
175 | |
121 | dnl Checks for typedefs, structures, and compiler characteristics. |
176 | dnl Checks for typedefs, structures, and compiler characteristics. |
122 | AC_C_CONST |
177 | AC_C_CONST |
123 | AC_TYPE_PID_T |
178 | AC_TYPE_PID_T |
124 | AC_TYPE_SIZE_T |
179 | AC_TYPE_SIZE_T |
125 | AC_HEADER_TIME |
180 | AC_HEADER_TIME |
126 | AC_STRUCT_TM |
181 | AC_STRUCT_TM |
127 | |
182 | |
128 | AC_CACHE_CHECK([for socklen_t], ac_cv_type_socklen_t, |
183 | AC_CACHE_CHECK([for socklen_t], ac_cv_type_socklen_t, |
129 | [ |
184 | [ |
130 | AC_TRY_COMPILE( |
185 | AC_COMPILE_IFELSE([AC_LANG_PROGRAM([[#include <sys/types.h> |
131 | [#include <sys/types.h> |
186 | #include <sys/socket.h>]], [[socklen_t len = 42; return len;]])],[ac_cv_type_socklen_t=yes],[ac_cv_type_socklen_t=no]) |
132 | #include <sys/socket.h>], |
|
|
133 | [socklen_t len = 42; return len;], |
|
|
134 | ac_cv_type_socklen_t=yes, |
|
|
135 | ac_cv_type_socklen_t=no) |
|
|
136 | ]) |
187 | ]) |
137 | if test $ac_cv_type_socklen_t = yes; then |
188 | if test $ac_cv_type_socklen_t = yes; then |
138 | AC_DEFINE(HAVE_SOCKLEN_T, 1, [socklen_t available]) |
189 | AC_DEFINE(HAVE_SOCKLEN_T, 1, [socklen_t available]) |
139 | fi |
190 | fi |
140 | |
191 | |
141 | AC_CACHE_CHECK([for struct addrinfo], ac_cv_struct_addrinfo, |
192 | AC_CACHE_CHECK([for struct addrinfo], ac_cv_struct_addrinfo, |
142 | [ |
193 | [ |
143 | AC_TRY_COMPILE( |
194 | AC_COMPILE_IFELSE([AC_LANG_PROGRAM([[#include <sys/types.h> |
144 | [#include <sys/types.h> |
|
|
145 | #include <sys/socket.h> |
195 | #include <sys/socket.h> |
146 | #include <netdb.h>], |
196 | #include <netdb.h>]], [[struct addrinfo ai; ai.ai_family = AF_INET; return ai.ai_family;]])],[ac_cv_struct_addrinfo=yes],[ac_cv_struct_addrinfo=no]) |
147 | [struct addrinfo ai; ai.ai_family = AF_INET; return ai.ai_family;], |
|
|
148 | ac_cv_struct_addrinfo=yes, |
|
|
149 | ac_cv_struct_addrinfo=no) |
|
|
150 | ]) |
197 | ]) |
151 | if test $ac_cv_struct_addrinfo = yes; then |
198 | if test $ac_cv_struct_addrinfo = yes; then |
152 | AC_DEFINE(HAVE_STRUCT_ADDRINFO, 1, [struct addrinfo available]) |
199 | AC_DEFINE(HAVE_STRUCT_ADDRINFO, 1, [struct addrinfo available]) |
153 | fi |
200 | fi |
154 | |
201 | |
… | |
… | |
157 | |
204 | |
158 | AC_LANG_PUSH(C) |
205 | AC_LANG_PUSH(C) |
159 | |
206 | |
160 | AC_HEADER_STDC |
207 | AC_HEADER_STDC |
161 | |
208 | |
|
|
209 | dnl argl, could somebody catapult darwin into the 21st century??? |
162 | AC_CHECK_FUNCS(asprintf daemon get_current_dir_name putenv select strerror strsignal strtol unsetenv mlockall) |
210 | AC_CHECK_FUNCS(asprintf daemon get_current_dir_name putenv select strerror strsignal strtol unsetenv mlockall) |
163 | |
211 | |
164 | AC_FUNC_ALLOCA |
212 | AC_FUNC_ALLOCA |
165 | |
213 | |
166 | dnl Support for SunOS |
214 | dnl Support for SunOS |
… | |
… | |
178 | |
226 | |
179 | AC_CACHE_SAVE |
227 | AC_CACHE_SAVE |
180 | |
228 | |
181 | dnl These are defined in files in m4/ |
229 | dnl These are defined in files in m4/ |
182 | tinc_TUNTAP |
230 | tinc_TUNTAP |
|
|
231 | |
183 | tinc_OPENSSL |
232 | tinc_OPENSSL |
|
|
233 | if test "x$openssl_include" != x; then |
|
|
234 | CXXFLAGS="$CXXFLAGS -I$openssl_include" |
|
|
235 | fi |
184 | dnl tinc_ZLIB |
236 | dnl tinc_ZLIB |
185 | |
237 | |
|
|
238 | AC_ARG_ENABLE(static-daemon, |
|
|
239 | [AS_HELP_STRING(--enable-static-daemon,enable statically linked daemon.)], |
|
|
240 | [LDFLAGS_DAEMON=-static] |
|
|
241 | ) |
|
|
242 | AC_SUBST(LDFLAGS_DAEMON) |
|
|
243 | |
186 | AC_ARG_ENABLE(rohc, |
244 | AC_ARG_ENABLE(rohc, |
187 | [AC_HELP_STRING(--enable-rohc, [enable robust header compression (rfc3095).])], |
245 | [AS_HELP_STRING(--enable-rohc,enable robust header compression (rfc3095).)], |
188 | [ |
246 | [ |
189 | echo |
247 | echo |
190 | echo "**********************************************************************" |
248 | echo "**********************************************************************" |
191 | echo "**********************************************************************" |
249 | echo "**********************************************************************" |
192 | echo "**** --enable-rohc not yet implemented *******************************" |
250 | echo "**** --enable-rohc is highly experimental, do not use ****************" |
193 | echo "**********************************************************************" |
|
|
194 | echo "**** uuh sorry, I am such an ass, but I didn't find any rfc3095 (ROHC)" |
|
|
195 | echo "**** implementation to be used in GPL code on the web." |
|
|
196 | echo "**** so this option is just a fake. Please implement one and send it" |
|
|
197 | echo "**** to me ;)" |
|
|
198 | echo "**********************************************************************" |
|
|
199 | echo "**********************************************************************" |
|
|
200 | echo "**********************************************************************" |
251 | echo "**********************************************************************" |
201 | echo "**********************************************************************" |
252 | echo "**********************************************************************" |
202 | echo |
253 | echo |
|
|
254 | rohc=true |
|
|
255 | AC_DEFINE_UNQUOTED(ENABLE_ROHC, 1, [ROHC support]) |
203 | ] |
256 | ] |
204 | ) |
257 | ) |
205 | |
258 | |
|
|
259 | AM_CONDITIONAL(ROHC, test x$rohc = xtrue) |
|
|
260 | |
206 | AC_ARG_ENABLE(icmp, |
261 | AC_ARG_ENABLE(icmp, |
207 | [AC_HELP_STRING(--enable-icmp, [enable icmp protocol support.])], |
262 | [AS_HELP_STRING(--enable-icmp,enable icmp protocol support (default disabled).)], |
208 | AC_DEFINE_UNQUOTED(ENABLE_ICMP, 1, [ICMP protocol support.]) |
263 | AC_DEFINE_UNQUOTED(ENABLE_ICMP, 1, [ICMP protocol support.]) |
209 | ) |
264 | ) |
210 | |
265 | |
211 | AC_ARG_ENABLE(tcp, |
266 | AC_ARG_ENABLE(tcp, |
212 | [AC_HELP_STRING(--enable-tcp, [enable tcp protocol support.])], |
267 | [AS_HELP_STRING(--enable-tcp,enable tcp protocol support (default disabled).)], |
213 | AC_DEFINE_UNQUOTED(ENABLE_TCP, 1, [TCP protocol support.]) |
268 | AC_DEFINE_UNQUOTED(ENABLE_TCP, 1, [TCP protocol support.]) |
214 | ) |
269 | ) |
215 | |
270 | |
|
|
271 | AC_ARG_ENABLE(dns, |
|
|
272 | [AS_HELP_STRING(--enable-dns,enable dns tunnel protocol support (DOES NOT WORK).)], |
|
|
273 | [ |
|
|
274 | AC_CHECK_HEADER(gmp.h,,[AC_MSG_ERROR([gmp.h not found, required for --enable-dns])]) |
|
|
275 | AC_CHECK_LIB(gmp,main,,[AC_MSG_ERROR([libgmp not found, required for --enable-dns])]) |
|
|
276 | |
|
|
277 | AC_DEFINE_UNQUOTED(ENABLE_DNS, 1, [DNS tunnel protocol support.]) |
|
|
278 | ] |
|
|
279 | ) |
|
|
280 | |
216 | AC_ARG_ENABLE(http-proxy, |
281 | AC_ARG_ENABLE(http-proxy, |
217 | [AC_HELP_STRING(--enable-http-proxy, [enable http proxy connect support.])], |
282 | [AS_HELP_STRING(--enable-http-proxy,enable http proxy connect support (default disabled).)], |
218 | AC_DEFINE_UNQUOTED(ENABLE_HTTP_PROXY, 1, [http proxy connect support.]) |
283 | AC_DEFINE_UNQUOTED(ENABLE_HTTP_PROXY, 1, [http proxy connect support.]) |
219 | ) |
284 | ) |
220 | |
285 | |
221 | HMAC=16 dnl see also the AC_HELP_STRING |
286 | HMAC=12 |
222 | AC_ARG_ENABLE(hmac-length, |
287 | AC_ARG_ENABLE(hmac-length, |
223 | [AC_HELP_STRING(--enable-hmac-length=BYTES, [use a hmac of length BYTES bytes (default 16). Allowed values are 4, 8, 12, 16.])], |
288 | [AS_HELP_STRING(--enable-hmac-length=BYTES,[ |
|
|
289 | use a hmac of length BYTES bytes (default 12). Allowed values are 4, 8, 12, 16.])], |
224 | HMAC=$enableval |
290 | HMAC=$enableval |
225 | ) |
291 | ) |
226 | AC_DEFINE_UNQUOTED(HMACLENGTH, $HMAC, [Size of HMAC in each packet in bytes.]) |
292 | AC_DEFINE_UNQUOTED(HMACLENGTH, $HMAC, [Size of HMAC in each packet in bytes.]) |
227 | |
293 | |
228 | RAND=8 dnl see also the AC_HELP_STRING |
294 | RAND=8 |
229 | AC_ARG_ENABLE(rand-length, |
295 | AC_ARG_ENABLE(rand-length, |
230 | [AC_HELP_STRING(--enable-rand-length=BYTES, [use BYTES bytes of extra randomness (default 8). Allowed values are 0, 4, 8.])], |
296 | [AS_HELP_STRING(--enable-rand-length=BYTES, |
|
|
297 | [use BYTES bytes of extra randomness (default 8). Allowed values are 0, 4, 8.])], |
231 | RAND=$enableval |
298 | RAND=$enableval |
232 | ) |
299 | ) |
233 | AC_DEFINE_UNQUOTED(RAND_SIZE, $RAND, [Add this many bytes of randomness to each packet.]) |
300 | AC_DEFINE_UNQUOTED(RAND_SIZE, $RAND, [Add this many bytes of randomness to each packet.]) |
234 | |
301 | |
235 | MTU=1500 dnl see also the AC_HELP_STRING |
302 | MTU=1500 |
236 | AC_ARG_ENABLE(mtu, |
303 | AC_ARG_ENABLE(mtu, |
237 | [AC_HELP_STRING(--enable-max-mtu=BYTES, enable mtu sizes upto BYTES bytes (default 1500). Use 9100 for jumbogram support.)], |
304 | [AS_HELP_STRING(--enable-max-mtu=BYTES,enable mtu sizes upto BYTES bytes (default 1500). Use 9100 for jumbogram support.)], |
238 | MTU=$enableval |
305 | MTU=$enableval |
239 | ) |
306 | ) |
240 | AC_DEFINE_UNQUOTED(MAX_MTU, $MTU + 14, [Maximum MTU supported.]) |
307 | AC_DEFINE_UNQUOTED(MAX_MTU, $MTU + 14, [Maximum MTU supported.]) |
241 | |
308 | |
242 | COMPRESS=1 |
309 | COMPRESS=1 |
243 | AC_ARG_ENABLE(compression, |
310 | AC_ARG_ENABLE(compression, |
244 | [AC_HELP_STRING(--disable-compression, Disable compression support.)], |
311 | [AS_HELP_STRING(--disable-compression,Disable compression support.)], |
245 | if test "x$enableval" = xno; then |
312 | if test "x$enableval" = xno; then |
246 | COMPRESS=0 |
313 | COMPRESS=0 |
247 | fi |
314 | fi |
248 | ) |
315 | ) |
249 | AC_DEFINE_UNQUOTED(ENABLE_COMPRESSION, $COMPRESS, [Enable compression support.]) |
316 | AC_DEFINE_UNQUOTED(ENABLE_COMPRESSION, $COMPRESS, [Enable compression support.]) |
250 | |
317 | |
251 | CIPHER=bf_cbc |
318 | CIPHER=bf_cbc |
252 | AC_ARG_ENABLE(cipher, |
319 | AC_ARG_ENABLE(cipher, |
253 | [AC_HELP_STRING(--enable-cipher, [ |
320 | [AS_HELP_STRING(--enable-cipher,[ |
254 | Select the symmetric cipher (default "bf"). Must be one of |
321 | Select the symmetric cipher (default "bf"). |
255 | "bf" (blowfish), "aes-128", "aes-192" or "aes-256".])], |
322 | Must be one of "bf" (blowfish), "aes-128" (rijndael), "aes-192" or "aes-256".])], |
256 | if test "x$enableval" = xbf ; then CIPHER=bf_cbc ; fi |
323 | if test "x$enableval" = xbf ; then CIPHER=bf_cbc ; fi |
257 | if test "x$enableval" = xaes-128; then CIPHER=aes_128_cbc; fi |
324 | if test "x$enableval" = xaes-128; then CIPHER=aes_128_cbc; fi |
258 | if test "x$enableval" = xaes-192; then CIPHER=aes_192_cbc; fi |
325 | if test "x$enableval" = xaes-192; then CIPHER=aes_192_cbc; fi |
259 | if test "x$enableval" = xaes-256; then CIPHER=aes_256_cbc; fi |
326 | if test "x$enableval" = xaes-256; then CIPHER=aes_256_cbc; fi |
260 | ) |
327 | ) |
261 | AC_DEFINE_UNQUOTED(ENABLE_CIPHER, EVP_${CIPHER}, [Select the symmetric cipher to use.]) |
328 | AC_DEFINE_UNQUOTED(ENABLE_CIPHER, EVP_${CIPHER}, [Select the symmetric cipher to use.]) |
262 | |
329 | |
263 | DIGEST=sha1 |
330 | DIGEST=sha1 |
264 | AC_ARG_ENABLE(digest, |
331 | AC_ARG_ENABLE(digest, |
265 | [AC_HELP_STRING(--enable-digest, [ |
332 | [AS_HELP_STRING(--enable-digest,[ |
266 | Select the digets algorithm to use (default "sha1"). Must be one of |
333 | Select the digets algorithm to use (default "sha1"). Must be one of |
267 | "sha1", "ripemd160", "md4" or "md5".])], |
334 | "sha1", "ripemd160", "md5" or "md4" (insecure).])], |
268 | if test "x$enableval" = xsha1 ; then DIGEST=sha1 ; fi |
335 | if test "x$enableval" = xsha1 ; then DIGEST=sha1 ; fi |
269 | if test "x$enableval" = xripemd160; then DIGEST=ripemd160; fi |
336 | if test "x$enableval" = xripemd160; then DIGEST=ripemd160; fi |
|
|
337 | if test "x$enableval" = xmd5 ; then DIGEST=md5 ; fi |
270 | if test "x$enableval" = xmd4 ; then DIGEST=md4 ; fi |
338 | if test "x$enableval" = xmd4 ; then DIGEST=md4 ; fi |
271 | if test "x$enableval" = xmd5 ; then DIGEST=md5 ; fi |
|
|
272 | ) |
339 | ) |
273 | AC_DEFINE_UNQUOTED(ENABLE_DIGEST, EVP_${DIGEST}, [Select the digest algorithm to use.]) |
340 | AC_DEFINE_UNQUOTED(ENABLE_DIGEST, EVP_${DIGEST}, [Select the digest algorithm to use.]) |
274 | |
|
|
275 | TRUST=1 |
|
|
276 | m4_if([ |
|
|
277 | AC_ARG_ENABLE(trust, |
|
|
278 | [AC_HELP_STRING(--enable-trust, [ |
|
|
279 | Make authentication faster but allow decoding by all hosts of a VPN. |
|
|
280 | Use this when the VPN hosts DO trust each other and you don't care |
|
|
281 | wether man-in-the-middle sniffing attacks are possible by admins |
|
|
282 | of other VPN hosts. On pentiums or similar machines this can cut down |
|
|
283 | the time for reconnects by 0.4 seconds or more.])], |
|
|
284 | if test "x$enableval" = xyes; then |
|
|
285 | TRUST=1 |
|
|
286 | fi |
|
|
287 | ) |
|
|
288 | ]) |
|
|
289 | AC_DEFINE_UNQUOTED(ENABLE_TRUST, $TRUST, [Faster, but VPN hosts may sniff each others data.]) |
|
|
290 | |
341 | |
291 | if $CXX -v --help 2>&1 | grep -q fno-rtti; then |
342 | if $CXX -v --help 2>&1 | grep -q fno-rtti; then |
292 | CXXFLAGS="$CXXFLAGS -fno-rtti" |
343 | CXXFLAGS="$CXXFLAGS -fno-rtti" |
293 | fi |
344 | fi |
294 | |
345 | |
295 | if $CXX -v --help 2>&1 | grep -q fexceptions; then |
346 | if $CXX -v --help 2>&1 | grep -q fexceptions; then |
296 | CXXFLAGS="$CXXFLAGS -fno-exceptions" |
347 | CXXFLAGS="$CXXFLAGS -fno-exceptions" |
297 | fi |
348 | fi |
298 | |
349 | |
299 | if $CXX -v --help 2>&1 | grep -q ffunction-sections; then |
350 | dnl if $CXX -v --help 2>&1 | grep -q ffunction-sections; then |
300 | CXXFLAGS="$CXXFLAGS -ffunction-sections" |
351 | dnl CXXFLAGS="$CXXFLAGS -ffunction-sections" |
301 | fi |
352 | dnl fi |
302 | |
353 | dnl |
303 | if $LD -v --help 2>&1 | grep -q gc-sections; then |
354 | dnl if $LD -v --help 2>&1 | grep -q gc-sections; then |
304 | LDFLAGS="$LDFLAGS -Wl,--gc-sections" |
355 | dnl LDFLAGS="$LDFLAGS -Wl,--gc-sections" |
305 | fi |
356 | dnl fi |
306 | |
357 | |
307 | AC_CONFIG_COMMANDS_POST([ |
358 | AC_CONFIG_COMMANDS_POST([ |
308 | |
359 | |
309 | echo |
360 | echo |
310 | echo "***" |
361 | echo "***" |
311 | echo "*** Configuration Summary" |
362 | echo "*** Configuration Summary" |
312 | echo "***" |
363 | echo "***" |
|
|
364 | echo "*** Kernel Iface: $IFTYPE/$IFSUBTYPE" |
313 | echo "*** Cipher used: $CIPHER" |
365 | echo "*** Cipher used: $CIPHER" |
314 | echo "*** Digest used: $DIGEST" |
366 | echo "*** Digest used: $DIGEST" |
315 | echo "*** HMAC length: $HMAC" |
367 | echo "*** HMAC length: $HMAC" |
316 | echo "*** RAND used: $RAND" |
368 | echo "*** RAND used: $RAND" |
317 | echo "*** Max. MTU: $MTU" |
369 | echo "*** Max. MTU: $MTU" |
318 | echo "*** Compression: $COMPRESS" |
370 | echo "*** Compression: $COMPRESS" |
319 | dnl echo "*** Trusted Mode: $TRUST" |
371 | |
|
|
372 | if test "x$DIGEST" = xmd4; then |
320 | echo "***" |
373 | echo "***" |
|
|
374 | echo "*** WARNING: The digest you have chosen ($DIGEST) is known to be insecure" |
|
|
375 | fi |
|
|
376 | |
|
|
377 | if test "$HMAC" -lt 12; then |
|
|
378 | echo "***" |
|
|
379 | echo "*** WARNING: The hmac length you have chosen ($HMAC) is probably insecure" |
|
|
380 | fi |
|
|
381 | |
|
|
382 | if test "$RAND" -lt 8; then |
|
|
383 | echo "***" |
|
|
384 | echo "*** WARNING: The random prefix you have chosen ($RAND) is probably insecure" |
|
|
385 | fi |
|
|
386 | |
|
|
387 | echo "***" |
|
|
388 | |
321 | echo |
389 | echo |
322 | |
390 | |
323 | ]) |
391 | ]) |
324 | |
392 | |
325 | AC_SUBST(INCLUDES) |
393 | AC_SUBST(INCLUDES) |
326 | |
394 | |
327 | AC_OUTPUT(Makefile po/Makefile.in |
395 | AC_CONFIG_FILES([Makefile po/Makefile.in |
328 | src/Makefile |
396 | src/Makefile |
329 | doc/Makefile |
397 | doc/Makefile |
330 | lib/Makefile |
398 | lib/Makefile |
331 | m4/Makefile |
399 | m4/Makefile |
332 | ) |
400 | ]) |
|
|
401 | AC_OUTPUT |