[ViewVC] Diff of: cvs/gvpe/configure.ac

Comparing gvpe/configure.ac (file contents):
Revision 1.31 by pcg, Fri Jun 11 15:56:10 2004 UTC vs.
Revision 1.66 by root, Thu Oct 25 04:32:26 2018 UTC

…		…
1	dnl Process this file with autoconf to produce a configure script.	1	dnl Process this file with autoconf to produce a configure script.
2		2
3	AC_PREREQ(2.59)	3	AC_PREREQ(2.69)
4	AC_INIT	4	AC_INIT
5	AC_CONFIG_SRCDIR([src/vped.C])	5	AC_CONFIG_SRCDIR([src/gvpe.C])
6	AC_CANONICAL_TARGET	6	AC_CANONICAL_TARGET
7	AM_INIT_AUTOMAKE(gvpe, 1.7)	7	AM_INIT_AUTOMAKE(gvpe, 3.1)
8	AC_CONFIG_HEADERS([config.h])	8	AC_CONFIG_HEADERS([config.h])
9	AM_MAINTAINER_MODE	9	AM_MAINTAINER_MODE
10		10
11	AH_TOP([	11	AH_TOP([
12	#ifndef CONFIG_H__	12	#ifndef CONFIG_H__
17	#endif	17	#endif
18		18
19	])	19	])
20		20
21	AH_BOTTOM([	21	AH_BOTTOM([
		22	typedef unsigned char u8;
		23	typedef signed char s8;
		24
22	#if __CYGWIN__	25	#if __CYGWIN__
23		26
24	typedef unsigned char u8;
25	typedef unsigned short u16;	27	typedef unsigned short u16;
26	typedef unsigned int u32;	28	typedef unsigned int u32;
		29	typedef signed short s16;
		30	typedef signed int s32;
27		31
28	#else	32	#else
29	#include <inttypes.h>	33	#include <inttypes.h>
30		34
31	/* old modula-2 habits */	35	/* old modula-2 habits */
32	typedef unsigned char u8;
33	typedef uint16_t u16;	36	typedef uint16_t u16;
34	typedef uint32_t u32;	37	typedef uint32_t u32;
		38	typedef int16_t s16;
		39	typedef int32_t s32;
35	#endif	40	#endif
36		41
37	#endif	42	#endif
38	])
39		43
40	dnl Include the macros from the m4/ directory	44	#if HAVE_CLOCALE
41	AM_ACLOCAL_INCLUDE(m4)	45	# define CLOCALE <clocale>
		46	#else
		47	# define CLOCALE <locale.h>
		48	#endif
		49	])
42		50
43	AM_GNU_GETTEXT([external])	51	AM_GNU_GETTEXT([external])
44	AM_GNU_GETTEXT_VERSION(0.11.5)	52	AM_GNU_GETTEXT_VERSION(0.11.5)
45		53
46	# Enable GNU extensions.	54	# Enable GNU extensions.
47	# Define this here, not in acconfig's @TOP@ section, since definitions	55	# Define this here, not in acconfig's @TOP@ section, since definitions
48	# in the latter don't make it into the configure-time tests.	56	# in the latter don't make it into the configure-time tests.
49	AC_DEFINE([_GNU_SOURCE], 1, [Enable GNU extenstions])	57	AC_DEFINE([_GNU_SOURCE], 1, [Enable GNU extensions])
50		58
51	# do NOT define POSIX_SOURCE, sicne this clashes with many BSDs	59	# do NOT define POSIX_SOURCE, sicne this clashes with many BSDs
52	dnl AC_DEFINE([_POSIX_SOURCE], 1, [Enable POSIX 1003.1 extensions])	60	dnl AC_DEFINE([_POSIX_SOURCE], 1, [Enable POSIX 1003.1 extensions])
53	dnl AC_DEFINE([_XOPEN_SOURCE], 500, [Enable XOPEN extensions])	61	dnl AC_DEFINE([_XOPEN_SOURCE], 500, [Enable XOPEN extensions])
54		62
55	ALL_LINGUAS=""	63	ALL_LINGUAS=""
56		64
57	dnl Checks for programs.	65	dnl Checks for programs.
58	AC_PROG_CC
59	AC_PROG_CPP	66	AC_PROG_CPP
60	AC_PROG_CXX	67	AC_PROG_CXX
61	AC_PROG_GCC_TRADITIONAL	68	AC_PROG_GCC_TRADITIONAL
62	AC_PROG_AWK	69	AC_PROG_AWK
63	AC_PROG_INSTALL	70	AC_PROG_INSTALL
…		…
66	AC_PROG_RANLIB	73	AC_PROG_RANLIB
67		74
68	AC_ARG_ENABLE(iftype,	75	AC_ARG_ENABLE(iftype,
69	[AS_HELP_STRING(--enable-iftype=TYPE/SUBTYPE,	76	[AS_HELP_STRING(--enable-iftype=TYPE/SUBTYPE,
70	Use kernel/net device interface TYPE/SUBTYPE.	77	Use kernel/net device interface TYPE/SUBTYPE.
71	Working combinations are:	78	Working combinations are (see doc/gvpe.osdep.5.pod):
72	"native/linux"	79	"native/linux"
73	"tincd/linux"	80	"tincd/linux"
		81	"tincd/netbsd"
74	"tincd/freebsd"	82	"tincd/freebsd"
75	"tincd/openbsd"	83	"tincd/openbsd"
		84	"native/darwin"
76	"tincd/darwin"	85	"tincd/darwin"
77	"native/cygwin";	86	"native/cygwin";
78	Untested combinations are:	87	Untested combinations are:
79	"tincd/netbsd"	88	"tincd/bsd"
80	"tincd/solaris"	89	"tincd/solaris"
81	"tincd/mingw";	90	"tincd/mingw"
		91	"tincd/raw_socket"
		92	"tincd/uml_socket";
82	Broken combinations are:	93	Broken combinations are:
83	"tincd/cygwin";	94	"tincd/cygwin";
84	The default is to autodetect.	95	The default is to autodetect.
85	)],	96	)],
86	[	97	[
…		…
103	IFTYPE=tincd	114	IFTYPE=tincd
104	IFSUBTYPE=freebsd	115	IFSUBTYPE=freebsd
105	AC_DEFINE(HAVE_FREEBSD, 1, [FreeBSD])	116	AC_DEFINE(HAVE_FREEBSD, 1, [FreeBSD])
106	;;	117	;;
107	darwin)	118	darwin)
108	IFTYPE=tincd	119	IFTYPE=native
109	IFSUBTYPE=darwin	120	IFSUBTYPE=darwin
110	AC_DEFINE(HAVE_DARWIN, 1, [Darwin (MacOS/X)])	121	AC_DEFINE(HAVE_DARWIN, 1, [Darwin (MacOS/X)])
111	;;	122	;;
112	solaris)	123	solaris)
113	IFTYPE=tincd	124	IFTYPE=tincd
…		…
143	AC_CACHE_SAVE	154	AC_CACHE_SAVE
144		155
145	dnl Checks for libraries.	156	dnl Checks for libraries.
146		157
147	AC_LANG(C++)	158	AC_LANG(C++)
148	AC_CHECK_HEADERS(ext/hash_map)	159	AC_CHECK_HEADERS(tr1/unordered_map ext/hash_map clocale)
149		160
150	dnl Checks for header files.	161	dnl Checks for header files.
151	AC_CHECK_HEADERS([fcntl.h inttypes.h limits.h malloc.h stdint.h strings.h syslog.h unistd.h \	162	AC_CHECK_HEADERS([fcntl.h inttypes.h limits.h malloc.h stdint.h strings.h syslog.h unistd.h \
152	sys/file.h sys/ioctl.h sys/param.h sys/time.h netinet/in_systm.h sys/cygwin.h \	163	sys/file.h sys/ioctl.h sys/param.h sys/time.h netinet/in_systm.h sys/cygwin.h \
153	sys/mman.h netinet/in.h])	164	sys/mman.h netinet/in.h])
…		…
211	])	222	])
212	AC_CHECK_FUNC(gethostbyname, [], [	223	AC_CHECK_FUNC(gethostbyname, [], [
213	AC_CHECK_LIB(nsl, gethostbyname)	224	AC_CHECK_LIB(nsl, gethostbyname)
214	])	225	])
215		226
		227	dnl libev support
		228	m4_include([libev/libev.m4])
		229
216	AC_LANG_POP	230	AC_LANG_POP
217		231
218	dnl AC_CHECK_FUNCS([freeaddrinfo gai_strerror getaddrinfo getnameinfo])	232	dnl AC_CHECK_FUNCS([freeaddrinfo gai_strerror getaddrinfo getnameinfo])
219		233
220	AC_CACHE_SAVE	234	AC_CACHE_SAVE
221		235
222	dnl These are defined in files in m4/	236	dnl These are defined in files in m4/
223	tinc_TUNTAP	237	tinc_TUNTAP
224		238
225	tinc_OPENSSL	239	PKG_CHECK_MODULES([LIBCRYPTO], [libcrypto >= 1])
226	if test "x$openssl_include" != x; then	240
227	CXXFLAGS="$CXXFLAGS -I$openssl_include"	241	AC_ARG_ENABLE(threads,
		242	[AS_HELP_STRING(--enable-threads,try to use threads for long-running asynchronous operations (default enabled).)],
		243	[try_threads=$enableval],
		244	[try_threads=yes]
		245	)
		246
		247	if test "x$try_threads" = xyes; then
		248	AC_CHECK_HEADER(pthread.h,[
		249	LIBS="$LIBS -lpthread"
		250	AC_COMPILE_IFELSE(
		251	[AC_LANG_PROGRAM([#include <pthread.h>], [pthread_t id; pthread_create (&id, 0, 0, 0);])],
		252	[AC_DEFINE_UNQUOTED(ENABLE_PTHREADS, 1, [POSIX thread support.])]
		253	)
		254	])
228	fi	255	fi
229	dnl tinc_ZLIB
230		256
231	AC_ARG_ENABLE(static-daemon,	257	AC_ARG_ENABLE(static-daemon,
232	[AS_HELP_STRING(--enable-static-daemon,enable statically linked daemon.)],	258	[AS_HELP_STRING(--enable-static-daemon,enable statically linked daemon.)],
233	[LDFLAGS_DAEMON=-static]	259	[LDFLAGS_DAEMON=-static]
234	)	260	)
235	AC_SUBST(LDFLAGS_DAEMON)	261	AC_SUBST(LDFLAGS_DAEMON)
236		262
237	AC_ARG_ENABLE(rohc,	263	dnl AC_ARG_ENABLE(rohc,
238	[AS_HELP_STRING(--enable-rohc,enable robust header compression (rfc3095).)],	264	dnl [AS_HELP_STRING(--enable-rohc,enable robust header compression (rfc3095).)],
		265	dnl [
		266	dnl echo
		267	dnl echo "**********************************************************************"
		268	dnl echo "**********************************************************************"
		269	dnl echo "** --enable-rohc is highly experimental, do not use **************"
		270	dnl echo "**********************************************************************"
		271	dnl echo "**********************************************************************"
		272	dnl echo
		273	dnl rohc=true
		274	dnl AC_DEFINE_UNQUOTED(ENABLE_ROHC, 1, [ROHC support])
		275	dnl ]
		276	dnl )
		277
		278	AM_CONDITIONAL(ROHC, test x$rohc = xtrue)
		279
		280	dnl AC_ARG_ENABLE(bridging,
		281	dnl [AS_HELP_STRING(--enable-bridging,enable bridging support (default disabled).)],
		282	dnl AC_DEFINE_UNQUOTED(ENABLE_BRIDGING, 1, [bridging support.])
		283	dnl )
		284
		285	ICMP=1
		286	AC_ARG_ENABLE(icmp,
		287	[AS_HELP_STRING(--disable-icmp,enable icmp protocol support (default enabled).)],
		288	if test "x$enableval" = xno; then
		289	ICMP=0
		290	fi
		291	)
		292	if test "x$ICMP" = x1; then
		293	AC_DEFINE_UNQUOTED(ENABLE_ICMP, 1, [ICMP protocol support.])
		294	fi
		295
		296	TCP=1
		297	AC_ARG_ENABLE(tcp,
		298	[AS_HELP_STRING(--disable-tcp,enable tcp protocol support (default enabled).)],
		299	if test "x$enableval" = xno; then
		300	TCP=0
		301	fi
		302	)
		303	if test "x$TCP" = x1; then
		304	AC_DEFINE_UNQUOTED(ENABLE_TCP, 1, [TCP protocol support.])
		305	fi
		306
		307	HTTP=1
		308	AC_ARG_ENABLE(http-proxy,
		309	[AS_HELP_STRING(--disable-http-proxy,enable http proxy connect support (default enabled).)],
		310	if test "x$enableval" = xno; then
		311	HTTP=0
		312	fi
		313	)
		314	if test "x$HTTP" = x1; then
		315	AC_DEFINE_UNQUOTED(ENABLE_HTTP_PROXY, 1, [http proxy connect support.])
		316	fi
		317
		318	AC_ARG_ENABLE(dns,
		319	[AS_HELP_STRING(--enable-dns,enable dns tunnel protocol support (default disabled).)],
239	[	320	[
240	echo	321	AC_CHECK_HEADER(gmp.h,,[AC_MSG_ERROR([gmp.h not found, required for --enable-dns])])
241	echo "**********************************************************************"	322	AC_CHECK_LIB(gmp,main,,[AC_MSG_ERROR([libgmp not found, required for --enable-dns])])
242	echo "**********************************************************************"	323
243	echo "** --enable-rohc is highly experimental, do not use **************"	324	AC_DEFINE_UNQUOTED(ENABLE_DNS, 1, [DNS tunnel protocol support.])
244	echo "**********************************************************************"
245	echo "**********************************************************************"
246	echo
247	rohc=true
248	AC_DEFINE_UNQUOTED(ENABLE_ROHC, 1, [ROHC support])
249	]	325	]
250	)	326	)
251		327
252	AM_CONDITIONAL(ROHC, test x$rohc = xtrue)	328	RSA=3072
253		329	AC_ARG_ENABLE(rsa-length,
254	AC_ARG_ENABLE(icmp,	330	[AS_HELP_STRING(--enable-rsa-length=BITS,[
255	[AS_HELP_STRING(--enable-icmp,enable icmp protocol support (default disabled).)],	331	use BITS rsa keys (default 3072). Allowed values are 2048-10240.])],
256	AC_DEFINE_UNQUOTED(ENABLE_ICMP, 1, [ICMP protocol support.])	332	RSA=$enableval
257	)	333	)
		334	AC_DEFINE_UNQUOTED(RSABITS, $RSA, [Size of RSA keys.])
258		335
259	AC_ARG_ENABLE(tcp,
260	[AS_HELP_STRING(--enable-tcp,enable tcp protocol support (default disabled).)],
261	AC_DEFINE_UNQUOTED(ENABLE_TCP, 1, [TCP protocol support.])
262	)
263
264	AC_ARG_ENABLE(dns,
265	[AS_HELP_STRING(--enable-dns,enable dns tunnel protocol support (DOES NOT WORK).)],
266	AC_DEFINE_UNQUOTED(ENABLE_DNS, 1, [DNS tunnel protocol support.])
267	)
268
269	AC_ARG_ENABLE(http-proxy,
270	[AS_HELP_STRING(--enable-http-proxy,enable http proxy connect support (default disabled).)],
271	AC_DEFINE_UNQUOTED(ENABLE_HTTP_PROXY, 1, [http proxy connect support.])
272	)
273
274	HMAC=12	336	HMACSIZE=12
275	AC_ARG_ENABLE(hmac-length,	337	AC_ARG_ENABLE(hmac-length,
276	[AS_HELP_STRING(--enable-hmac-length=BYTES,[	338	[AS_HELP_STRING(--enable-hmac-length=BYTES,[
277	use a hmac of length BYTES bytes (default 12). Allowed values are 4, 8, 12, 16.])],	339	use a hmac of length BYTES bytes (default 12). Allowed values are 4, 8, 12, 16.])],
278	HMAC=$enableval	340	HMACSIZE=$enableval
279	)	341	)
280	AC_DEFINE_UNQUOTED(HMACLENGTH, $HMAC, [Size of HMAC in each packet in bytes.])	342	AC_DEFINE_UNQUOTED(HMACLENGTH, $HMACSIZE, [Size of HMAC in each packet in bytes.])
281
282	RAND=8
283	AC_ARG_ENABLE(rand-length,
284	[AS_HELP_STRING(--enable-rand-length=BYTES,
285	[use BYTES bytes of extra randomness (default 8). Allowed values are 0, 4, 8.])],
286	RAND=$enableval
287	)
288	AC_DEFINE_UNQUOTED(RAND_SIZE, $RAND, [Add this many bytes of randomness to each packet.])
289		343
290	MTU=1500	344	MTU=1500
291	AC_ARG_ENABLE(mtu,	345	AC_ARG_ENABLE(max-mtu,
292	[AS_HELP_STRING(--enable-max-mtu=BYTES,enable mtu sizes upto BYTES bytes (default 1500). Use 9100 for jumbogram support.)],	346	[AS_HELP_STRING(--enable-max-mtu=BYTES,enable mtu sizes upto BYTES bytes (default 1500). Use 9100 for jumbogram support.)],
293	MTU=$enableval	347	MTU=$enableval
294	)	348	)
295	AC_DEFINE_UNQUOTED(MAX_MTU, $MTU + 14, [Maximum MTU supported.])	349	AC_DEFINE_UNQUOTED(MAX_MTU, ($MTU + 14), [Maximum MTU supported.])
296		350
297	COMPRESS=1	351	COMPRESS=1
298	AC_ARG_ENABLE(compression,	352	AC_ARG_ENABLE(compression,
299	[AS_HELP_STRING(--disable-compression,Disable compression support.)],	353	[AS_HELP_STRING(--disable-compression,Disable compression support.)],
300	if test "x$enableval" = xno; then	354	if test "x$enableval" = xno; then
301	COMPRESS=0	355	COMPRESS=0
302	fi	356	fi
303	)	357	)
304	AC_DEFINE_UNQUOTED(ENABLE_COMPRESSION, $COMPRESS, [Enable compression support.])	358	AC_DEFINE_UNQUOTED(ENABLE_COMPRESSION, $COMPRESS, [Enable compression support.])
305		359
306	CIPHER=bf_cbc	360	CIPHER=aes_128_ctr
307	AC_ARG_ENABLE(cipher,	361	AC_ARG_ENABLE(cipher,
308	[AS_HELP_STRING(--enable-cipher,[	362	[AS_HELP_STRING(--enable-cipher=CIPHER,[
309	Select the symmetric cipher (default "bf").	363	Select the symmetric cipher (default "aes-128").
310	Must be one of "bf" (blowfish), "aes-128" (rijndael), "aes-192" or "aes-256".])],	364	Must be one of "aes-128" (rijndael), "aes-192", or "aes-256".])],
311	if test "x$enableval" = xbf ; then CIPHER=bf_cbc ; fi	365	#if test "x$enableval" = xbf ; then CIPHER=bf_ctr ; fi
312	if test "x$enableval" = xaes-128; then CIPHER=aes_128_cbc; fi	366	if test "x$enableval" = xaes-128 ; then CIPHER=aes_128_ctr ; fi
313	if test "x$enableval" = xaes-192; then CIPHER=aes_192_cbc; fi	367	if test "x$enableval" = xaes-192 ; then CIPHER=aes_192_ctr ; fi
314	if test "x$enableval" = xaes-256; then CIPHER=aes_256_cbc; fi	368	if test "x$enableval" = xaes-256 ; then CIPHER=aes_256_ctr ; fi
		369	#if test "x$enableval" = xcamellia-128; then CIPHER=camellia_128_ctr; fi
		370	#if test "x$enableval" = xcamellia-256; then CIPHER=camellia_256_ctr; fi
315	)	371	)
316	AC_DEFINE_UNQUOTED(ENABLE_CIPHER, EVP_${CIPHER}, [Select the symmetric cipher to use.])	372	AC_DEFINE_UNQUOTED(ENABLE_CIPHER, EVP_${CIPHER}, [Select the symmetric cipher to use.])
317		373
318	DIGEST=sha1	374	HMAC=sha1
319	AC_ARG_ENABLE(digest,	375	AC_ARG_ENABLE(hmac-digest,
320	[AS_HELP_STRING(--enable-digest,[	376	[AS_HELP_STRING(--enable-hmac-digest=HMAC,[
321	Select the digets algorithm to use (default "sha1"). Must be one of	377	Select the HMAC digest algorithm to use (default "sha1"). Must be one of
322	"sha1", "ripemd160", "md5" or "md4" (insecure).])],	378	"sha512", "sha256", "sha1", "ripemd160", "whirlpool".])],
		379	if test "x$enableval" = xwhirlpool; then HMAC=whirlpool; fi
		380	if test "x$enableval" = xsha512 ; then HMAC=sha512 ; fi
		381	if test "x$enableval" = xsha256 ; then HMAC=sha256 ; fi
323	if test "x$enableval" = xsha1 ; then DIGEST=sha1 ; fi	382	if test "x$enableval" = xsha1 ; then HMAC=sha1 ; fi
324	if test "x$enableval" = xripemd160; then DIGEST=ripemd160; fi	383	if test "x$enableval" = xripemd160; then HMAC=ripemd160; fi
		384	)
		385	AC_DEFINE_UNQUOTED(ENABLE_HMAC, EVP_${HMAC}, [Select the HMAC digest algorithm to use.])
		386
		387	AUTH=sha512
		388	AC_ARG_ENABLE(auth-digest,
		389	[AS_HELP_STRING(--enable-auth-digest=DIGEST,[
		390	Select the hmac algorithm to use (default "sha512"). Must be one of
		391	"sha512", "sha256", "whirlpool".])],
		392	if test "x$enableval" = xwhirlpool; then AUTH=whirlpool; fi
325	if test "x$enableval" = xmd5 ; then DIGEST=md5 ; fi	393	if test "x$enableval" = xsha512 ; then AUTH=sha512 ; fi
326	if test "x$enableval" = xmd4 ; then DIGEST=md4 ; fi	394	if test "x$enableval" = xsha256 ; then AUTH=sha256 ; fi
327	)	395	)
328	AC_DEFINE_UNQUOTED(ENABLE_DIGEST, EVP_${DIGEST}, [Select the digest algorithm to use.])	396	AC_DEFINE_UNQUOTED(ENABLE_AUTH, EVP_${AUTH}, [Select the auth digest algorithm to use.])
329		397
330	if $CXX -v --help 2>&1 \| grep -q fno-rtti; then	398	if $CXX -v --help 2>&1 \| grep -q fno-rtti; then
331	CXXFLAGS="$CXXFLAGS -fno-rtti"	399	CXXFLAGS="$CXXFLAGS -fno-rtti"
332	fi	400	fi
333		401
334	if $CXX -v --help 2>&1 \| grep -q fexceptions; then	402	#if $CXX -v --help 2>&1 \| grep -q fexceptions; then
335	CXXFLAGS="$CXXFLAGS -fno-exceptions"	403	# CXXFLAGS="$CXXFLAGS -fno-exceptions"
336	fi	404	#fi
		405
		406	LIBS="$EXTRA_LIBS $LIBS"
337		407
338	dnl if $CXX -v --help 2>&1 \| grep -q ffunction-sections; then	408	dnl if $CXX -v --help 2>&1 \| grep -q ffunction-sections; then
339	dnl CXXFLAGS="$CXXFLAGS -ffunction-sections"	409	dnl CXXFLAGS="$CXXFLAGS -ffunction-sections"
340	dnl fi	410	dnl fi
341	dnl	411	dnl
342	dnl if $LD -v --help 2>&1 \| grep -q gc-sections; then	412	dnl if $LD -v --help 2>&1 \| grep -q gc-sections; then
343	dnl LDFLAGS="$LDFLAGS -Wl,--gc-sections"	413	dnl LDFLAGS="$LDFLAGS -Wl,--gc-sections"
344	dnl fi	414	dnl fi
345		415
346	AC_CONFIG_COMMANDS_POST([	416	AC_SUBST(INCLUDES)
		417
		418	AC_CONFIG_FILES([Makefile po/Makefile.in
		419	src/Makefile
		420	doc/Makefile
		421	lib/Makefile
		422	m4/Makefile
		423	])
		424	AC_OUTPUT
347		425
348	echo	426	echo
349	echo "***"	427	echo "***"
350	echo "*** Configuration Summary"	428	echo "*** Configuration Summary"
351	echo "***"	429	echo "***"
352	echo "*** Kernel Iface: $IFTYPE/$IFSUBTYPE"	430	echo "*** Kernel Iface: $IFTYPE/$IFSUBTYPE"
		431	echo "*** RSA size: $RSA"
353	echo "*** Cipher used: $CIPHER"	432	echo "*** Cipher used: $CIPHER"
354	echo "*** Digest used: $DIGEST"	433	echo "*** Digest used: $DIGEST"
		434	echo "*** Authdigest: $AUTH"
355	echo "*** HMAC length: $HMAC"	435	echo "*** HMAC length: $HMAC"
356	echo "*** RAND used: $RAND"
357	echo "*** Max. MTU: $MTU"	436	echo "*** Max. MTU: $MTU"
358	echo "*** Compression: $COMPRESS"
359		437
360	if test "x$DIGEST" = xmd4; then
361	echo "***"	438	echo "***"
362	echo "*** WARNING: The digest you have chosen ($DIGEST) is known to be insecure"	439	echo "*** Enable options:"
363	fi	440	grep ENABLE_ config.h \| sed -e 's/^/*** /'
364		441
365	if test "$HMAC" -lt 12; then	442	if test "$HMACSIZE" -lt 12; then
366	echo "***"	443	echo "***"
367	echo "*** WARNING: The hmac length you have chosen ($HMAC) is probably insecure"	444	echo "*** WARNING: The hmac length you have chosen ($HMACSIZE) is quite insecure"
368	fi	445	fi
369		446
370	if test "$RAND" -lt 8; then
371	echo "***"	447	echo "***"
372	echo "*** WARNING: The random prefix you have chosen ($RAND) is probably insecure"
373	fi
374
375	echo "***"
376
377	echo	448	echo
378		449
379	])	450	if pkg-config --exists 'libcrypto >= 1.1 libcrypto < 2.0'; then
		451	cat <<EOF
		452	@<:@33m
		453	***
		454	*** WARNING WARNING WARNING WARNING WARNING WARNING WARNING
		455	***
		456	*** You seem to configure gvpe with OpenSSL 1.1 or newer.
		457	*** While this probably compiles, please note that this is not only
		458	*** unsupported, but also discouraged.
		459	***
		460	*** It is recommended to use either OpenSSL 1.0, as long as that is still
		461	*** supported, or LibreSSL (https://www.libressl.org/).
		462	***
		463	*** This is not a political issue - while porting GVPE to the newer
		464	*** OpenSSL 1.1 API, I encountered two incompatible API changes that were
		465	*** not documented, were not caught while compiling but caused security
		466	*** issues. When reported, the reaction of the OpenSSL developers was to
		467	*** update the documentation.
		468	***
		469	*** As a result, I lost all confidence in the ability and desire of
		470	*** OpenSSL developers to create a safe API, and would highly recommend
		471	*** switching to LibreSSL which explicitly avoids such braking changes.
		472	***
		473	*** WARNING WARNING WARNING WARNING WARNING WARNING WARNING
		474	***
		475	*** Again, do not use OpenSSL 1.1 and complain if stuff breaks.
		476	*** You have been warned, but your choice is respected.
		477	***
		478	@<:@0m
380		479
381	AC_SUBST(INCLUDES)	480	EOF
		481	fi
382		482
383	AC_CONFIG_FILES([Makefile po/Makefile.in	483
384	src/Makefile
385	src/rohc/Makefile
386	doc/Makefile
387	lib/Makefile
388	m4/Makefile
389	])
390	AC_OUTPUT

Diff Legend

-–
+Removed lines
-+
+Added lines
-<
+Changed lines
->
+Changed lines

Comparing gvpe/configure.ac (file contents): Revision 1.31 by pcg, Fri Jun 11 15:56:10 2004 UTC vs. Revision 1.66 by root, Thu Oct 25 04:32:26 2018 UTC

Diff Legend

Comparing gvpe/configure.ac (file contents):
Revision 1.31 by pcg, Fri Jun 11 15:56:10 2004 UTC vs.
Revision 1.66 by root, Thu Oct 25 04:32:26 2018 UTC