[ViewVC] Diff of: cvs/gvpe/configure.ac

Comparing gvpe/configure.ac (file contents):
Revision 1.34 by pcg, Fri Mar 4 03:43:09 2005 UTC vs.
Revision 1.68 by root, Thu Oct 6 03:25:53 2022 UTC

…		…
1	dnl Process this file with autoconf to produce a configure script.	1	dnl Process this file with autoconf to produce a configure script.
2		2
3	AC_PREREQ(2.59)	3	AC_PREREQ([2.71])
4	AC_INIT	4	AC_INIT([gvpe],[3.1])
5	AC_CONFIG_SRCDIR([src/vped.C])	5	AC_CONFIG_SRCDIR([src/gvpe.C])
6	AC_CANONICAL_TARGET	6	AC_CANONICAL_TARGET
7	AM_INIT_AUTOMAKE(gvpe, 1.7)	7	AM_INIT_AUTOMAKE
8	AC_CONFIG_HEADERS([config.h])	8	AC_CONFIG_HEADERS([config.h])
9	AM_MAINTAINER_MODE	9	AM_MAINTAINER_MODE
10		10
11	AH_TOP([	11	AH_TOP([
12	#ifndef CONFIG_H__	12	#ifndef CONFIG_H__
38	typedef int16_t s16;	38	typedef int16_t s16;
39	typedef int32_t s32;	39	typedef int32_t s32;
40	#endif	40	#endif
41		41
42	#endif	42	#endif
43	])
44		43
45	dnl Include the macros from the m4/ directory	44	#if HAVE_CLOCALE
46	AM_ACLOCAL_INCLUDE(m4)	45	# define CLOCALE <clocale>
		46	#else
		47	# define CLOCALE <locale.h>
		48	#endif
		49	])
47		50
48	AM_GNU_GETTEXT([external])	51	AM_GNU_GETTEXT([external])
49	AM_GNU_GETTEXT_VERSION(0.11.5)	52	AM_GNU_GETTEXT_VERSION(0.11.5)
50		53
51	# Enable GNU extensions.	54	# Enable GNU extensions.
52	# Define this here, not in acconfig's @TOP@ section, since definitions	55	# Define this here, not in acconfig's @TOP@ section, since definitions
53	# in the latter don't make it into the configure-time tests.	56	# in the latter don't make it into the configure-time tests.
54	AC_DEFINE([_GNU_SOURCE], 1, [Enable GNU extenstions])	57	AC_DEFINE([_GNU_SOURCE], 1, [Enable GNU extensions])
55		58
56	# do NOT define POSIX_SOURCE, sicne this clashes with many BSDs	59	# do NOT define POSIX_SOURCE, sicne this clashes with many BSDs
57	dnl AC_DEFINE([_POSIX_SOURCE], 1, [Enable POSIX 1003.1 extensions])	60	dnl AC_DEFINE([_POSIX_SOURCE], 1, [Enable POSIX 1003.1 extensions])
58	dnl AC_DEFINE([_XOPEN_SOURCE], 500, [Enable XOPEN extensions])	61	dnl AC_DEFINE([_XOPEN_SOURCE], 500, [Enable XOPEN extensions])
59		62
60	ALL_LINGUAS=""	63	ALL_LINGUAS=""
61		64
62	dnl Checks for programs.	65	dnl Checks for programs.
63	AC_PROG_CC
64	AC_PROG_CPP	66	AC_PROG_CPP
65	AC_PROG_CXX	67	AC_PROG_CXX
66	AC_PROG_GCC_TRADITIONAL	68	AC_PROG_GCC_TRADITIONAL
67	AC_PROG_AWK	69	AC_PROG_AWK
68	AC_PROG_INSTALL	70	AC_PROG_INSTALL
…		…
71	AC_PROG_RANLIB	73	AC_PROG_RANLIB
72		74
73	AC_ARG_ENABLE(iftype,	75	AC_ARG_ENABLE(iftype,
74	[AS_HELP_STRING(--enable-iftype=TYPE/SUBTYPE,	76	[AS_HELP_STRING(--enable-iftype=TYPE/SUBTYPE,
75	Use kernel/net device interface TYPE/SUBTYPE.	77	Use kernel/net device interface TYPE/SUBTYPE.
76	Working combinations are:	78	Working combinations are (see doc/gvpe.osdep.5.pod):
77	"native/linux"	79	"native/linux"
78	"tincd/linux"	80	"tincd/linux"
		81	"tincd/netbsd"
79	"tincd/freebsd"	82	"tincd/freebsd"
80	"tincd/openbsd"	83	"tincd/openbsd"
		84	"native/darwin"
81	"tincd/darwin"	85	"tincd/darwin"
82	"native/cygwin";	86	"native/cygwin";
83	Untested combinations are:	87	Untested combinations are:
84	"tincd/netbsd"	88	"tincd/bsd"
85	"tincd/solaris"	89	"tincd/solaris"
86	"tincd/mingw";	90	"tincd/mingw"
		91	"tincd/raw_socket"
		92	"tincd/uml_socket";
87	Broken combinations are:	93	Broken combinations are:
88	"tincd/cygwin";	94	"tincd/cygwin";
89	The default is to autodetect.	95	The default is to autodetect.
90	)],	96	)],
91	[	97	[
…		…
108	IFTYPE=tincd	114	IFTYPE=tincd
109	IFSUBTYPE=freebsd	115	IFSUBTYPE=freebsd
110	AC_DEFINE(HAVE_FREEBSD, 1, [FreeBSD])	116	AC_DEFINE(HAVE_FREEBSD, 1, [FreeBSD])
111	;;	117	;;
112	darwin)	118	darwin)
113	IFTYPE=tincd	119	IFTYPE=native
114	IFSUBTYPE=darwin	120	IFSUBTYPE=darwin
115	AC_DEFINE(HAVE_DARWIN, 1, [Darwin (MacOS/X)])	121	AC_DEFINE(HAVE_DARWIN, 1, [Darwin (MacOS/X)])
116	;;	122	;;
117	solaris)	123	solaris)
118	IFTYPE=tincd	124	IFTYPE=tincd
…		…
148	AC_CACHE_SAVE	154	AC_CACHE_SAVE
149		155
150	dnl Checks for libraries.	156	dnl Checks for libraries.
151		157
152	AC_LANG(C++)	158	AC_LANG(C++)
153	AC_CHECK_HEADERS(ext/hash_map)	159	AC_CHECK_HEADERS(tr1/unordered_map ext/hash_map clocale)
154		160
155	dnl Checks for header files.	161	dnl Checks for header files.
156	AC_CHECK_HEADERS([fcntl.h inttypes.h limits.h malloc.h stdint.h strings.h syslog.h unistd.h \	162	AC_CHECK_HEADERS([fcntl.h inttypes.h limits.h malloc.h stdint.h strings.h syslog.h unistd.h \
157	sys/file.h sys/ioctl.h sys/param.h sys/time.h netinet/in_systm.h sys/cygwin.h \	163	sys/file.h sys/ioctl.h sys/param.h sys/time.h netinet/in_systm.h sys/cygwin.h \
158	sys/mman.h netinet/in.h])	164	sys/mman.h netinet/in.h])
…		…
173		179
174	dnl Checks for typedefs, structures, and compiler characteristics.	180	dnl Checks for typedefs, structures, and compiler characteristics.
175	AC_C_CONST	181	AC_C_CONST
176	AC_TYPE_PID_T	182	AC_TYPE_PID_T
177	AC_TYPE_SIZE_T	183	AC_TYPE_SIZE_T
178	AC_HEADER_TIME	184	AC_CHECK_HEADERS_ONCE([sys/time.h])
		185
179	AC_STRUCT_TM	186	AC_STRUCT_TM
180		187
181	AC_CACHE_CHECK([for socklen_t], ac_cv_type_socklen_t,	188	AC_CACHE_CHECK([for socklen_t], ac_cv_type_socklen_t,
182	[	189	[
183	AC_COMPILE_IFELSE([AC_LANG_PROGRAM([[#include <sys/types.h>	190	AC_COMPILE_IFELSE([AC_LANG_PROGRAM([[#include <sys/types.h>
…		…
195	])	202	])
196	if test $ac_cv_struct_addrinfo = yes; then	203	if test $ac_cv_struct_addrinfo = yes; then
197	AC_DEFINE(HAVE_STRUCT_ADDRINFO, 1, [struct addrinfo available])	204	AC_DEFINE(HAVE_STRUCT_ADDRINFO, 1, [struct addrinfo available])
198	fi	205	fi
199		206
200	dnl Checks for library functions.
201	AC_TYPE_SIGNAL
202
203	AC_LANG_PUSH(C)	207	AC_LANG_PUSH(C)
204
205	AC_HEADER_STDC
206		208
207	dnl argl, could somebody catapult darwin into the 21st century???	209	dnl argl, could somebody catapult darwin into the 21st century???
208	AC_CHECK_FUNCS(asprintf daemon get_current_dir_name putenv select strerror strsignal strtol unsetenv mlockall)	210	AC_CHECK_FUNCS(asprintf daemon get_current_dir_name putenv select strerror strsignal strtol unsetenv mlockall)
209		211
210	AC_FUNC_ALLOCA	212	AC_FUNC_ALLOCA
…		…
216	])	218	])
217	AC_CHECK_FUNC(gethostbyname, [], [	219	AC_CHECK_FUNC(gethostbyname, [], [
218	AC_CHECK_LIB(nsl, gethostbyname)	220	AC_CHECK_LIB(nsl, gethostbyname)
219	])	221	])
220		222
		223	dnl libev support
		224	m4_include([libev/libev.m4])
		225
221	AC_LANG_POP	226	AC_LANG_POP
222		227
223	dnl AC_CHECK_FUNCS([freeaddrinfo gai_strerror getaddrinfo getnameinfo])	228	dnl AC_CHECK_FUNCS([freeaddrinfo gai_strerror getaddrinfo getnameinfo])
224		229
225	AC_CACHE_SAVE	230	AC_CACHE_SAVE
226		231
227	dnl These are defined in files in m4/	232	dnl These are defined in files in m4/
228	tinc_TUNTAP	233	tinc_TUNTAP
229		234
230	tinc_OPENSSL	235	PKG_CHECK_MODULES([LIBCRYPTO], [libcrypto >= 1])
231	if test "x$openssl_include" != x; then	236
232	CXXFLAGS="$CXXFLAGS -I$openssl_include"	237	AC_ARG_ENABLE(threads,
		238	[AS_HELP_STRING(--enable-threads,try to use threads for long-running asynchronous operations (default enabled).)],
		239	[try_threads=$enableval],
		240	[try_threads=yes]
		241	)
		242
		243	if test "x$try_threads" = xyes; then
		244	AC_CHECK_HEADER(pthread.h,[
		245	LIBS="$LIBS -lpthread"
		246	AC_COMPILE_IFELSE(
		247	[AC_LANG_PROGRAM([#include <pthread.h>], [pthread_t id; pthread_create (&id, 0, 0, 0);])],
		248	[AC_DEFINE_UNQUOTED(ENABLE_PTHREADS, 1, [POSIX thread support.])]
		249	)
		250	])
233	fi	251	fi
234	dnl tinc_ZLIB
235		252
236	AC_ARG_ENABLE(static-daemon,	253	AC_ARG_ENABLE(static-daemon,
237	[AS_HELP_STRING(--enable-static-daemon,enable statically linked daemon.)],	254	[AS_HELP_STRING(--enable-static-daemon,enable statically linked daemon.)],
238	[LDFLAGS_DAEMON=-static]	255	[LDFLAGS_DAEMON=-static]
239	)	256	)
240	AC_SUBST(LDFLAGS_DAEMON)	257	AC_SUBST(LDFLAGS_DAEMON)
241		258
242	AC_ARG_ENABLE(rohc,	259	dnl AC_ARG_ENABLE(rohc,
243	[AS_HELP_STRING(--enable-rohc,enable robust header compression (rfc3095).)],	260	dnl [AS_HELP_STRING(--enable-rohc,enable robust header compression (rfc3095).)],
244	[	261	dnl [
245	echo	262	dnl echo
246	echo "**********************************************************************"	263	dnl echo "**********************************************************************"
247	echo "**********************************************************************"	264	dnl echo "**********************************************************************"
248	echo "** --enable-rohc is highly experimental, do not use **************"	265	dnl echo "** --enable-rohc is highly experimental, do not use **************"
249	echo "**********************************************************************"	266	dnl echo "**********************************************************************"
250	echo "**********************************************************************"	267	dnl echo "**********************************************************************"
251	echo	268	dnl echo
252	rohc=true	269	dnl rohc=true
253	AC_DEFINE_UNQUOTED(ENABLE_ROHC, 1, [ROHC support])	270	dnl AC_DEFINE_UNQUOTED(ENABLE_ROHC, 1, [ROHC support])
254	]	271	dnl ]
255	)	272	dnl )
256		273
257	AM_CONDITIONAL(ROHC, test x$rohc = xtrue)	274	AM_CONDITIONAL(ROHC, test x$rohc = xtrue)
258		275
		276	dnl AC_ARG_ENABLE(bridging,
		277	dnl [AS_HELP_STRING(--enable-bridging,enable bridging support (default disabled).)],
		278	dnl AC_DEFINE_UNQUOTED(ENABLE_BRIDGING, 1, [bridging support.])
		279	dnl )
		280
		281	ICMP=1
259	AC_ARG_ENABLE(icmp,	282	AC_ARG_ENABLE(icmp,
260	[AS_HELP_STRING(--enable-icmp,enable icmp protocol support (default disabled).)],	283	[AS_HELP_STRING(--disable-icmp,enable icmp protocol support (default enabled).)],
		284	if test "x$enableval" = xno; then
		285	ICMP=0
		286	fi
		287	)
		288	if test "x$ICMP" = x1; then
261	AC_DEFINE_UNQUOTED(ENABLE_ICMP, 1, [ICMP protocol support.])	289	AC_DEFINE_UNQUOTED(ENABLE_ICMP, 1, [ICMP protocol support.])
262	)	290	fi
263		291
		292	TCP=1
264	AC_ARG_ENABLE(tcp,	293	AC_ARG_ENABLE(tcp,
265	[AS_HELP_STRING(--enable-tcp,enable tcp protocol support (default disabled).)],	294	[AS_HELP_STRING(--disable-tcp,enable tcp protocol support (default enabled).)],
		295	if test "x$enableval" = xno; then
		296	TCP=0
		297	fi
		298	)
		299	if test "x$TCP" = x1; then
266	AC_DEFINE_UNQUOTED(ENABLE_TCP, 1, [TCP protocol support.])	300	AC_DEFINE_UNQUOTED(ENABLE_TCP, 1, [TCP protocol support.])
		301	fi
		302
		303	HTTP=1
		304	AC_ARG_ENABLE(http-proxy,
		305	[AS_HELP_STRING(--disable-http-proxy,enable http proxy connect support (default enabled).)],
		306	if test "x$enableval" = xno; then
		307	HTTP=0
		308	fi
267	)	309	)
		310	if test "x$HTTP" = x1; then
		311	AC_DEFINE_UNQUOTED(ENABLE_HTTP_PROXY, 1, [http proxy connect support.])
		312	fi
268		313
269	AC_ARG_ENABLE(dns,	314	AC_ARG_ENABLE(dns,
270	[AS_HELP_STRING(--enable-dns,enable dns tunnel protocol support (DOES NOT WORK).)],	315	[AS_HELP_STRING(--enable-dns,enable dns tunnel protocol support (default disabled).)],
271	[	316	[
272	AC_CHECK_HEADER(gmp.h,,[AC_MSG_ERROR([gmp.h not found, required for --enable-dns])])	317	AC_CHECK_HEADER(gmp.h,,[AC_MSG_ERROR([gmp.h not found, required for --enable-dns])])
273	AC_CHECK_LIB(gmp,main,,[AC_MSG_ERROR([libgmp not found, required for --enable-dns])])	318	AC_CHECK_LIB(gmp,main,,[AC_MSG_ERROR([libgmp not found, required for --enable-dns])])
274		319
275	AC_DEFINE_UNQUOTED(ENABLE_DNS, 1, [DNS tunnel protocol support.])	320	AC_DEFINE_UNQUOTED(ENABLE_DNS, 1, [DNS tunnel protocol support.])
276	]	321	]
277	)	322	)
278		323
279	AC_ARG_ENABLE(http-proxy,	324	RSA=3072
280	[AS_HELP_STRING(--enable-http-proxy,enable http proxy connect support (default disabled).)],	325	AC_ARG_ENABLE(rsa-length,
281	AC_DEFINE_UNQUOTED(ENABLE_HTTP_PROXY, 1, [http proxy connect support.])	326	[AS_HELP_STRING(--enable-rsa-length=BITS,[
		327	use BITS rsa keys (default 3072). Allowed values are 2048-10240.])],
		328	RSA=$enableval
282	)	329	)
		330	AC_DEFINE_UNQUOTED(RSABITS, $RSA, [Size of RSA keys.])
283		331
284	HMAC=12	332	HMACSIZE=12
285	AC_ARG_ENABLE(hmac-length,	333	AC_ARG_ENABLE(hmac-length,
286	[AS_HELP_STRING(--enable-hmac-length=BYTES,[	334	[AS_HELP_STRING(--enable-hmac-length=BYTES,[
287	use a hmac of length BYTES bytes (default 12). Allowed values are 4, 8, 12, 16.])],	335	use a hmac of length BYTES bytes (default 12). Allowed values are 4, 8, 12, 16.])],
288	HMAC=$enableval	336	HMACSIZE=$enableval
289	)	337	)
290	AC_DEFINE_UNQUOTED(HMACLENGTH, $HMAC, [Size of HMAC in each packet in bytes.])	338	AC_DEFINE_UNQUOTED(HMACLENGTH, $HMACSIZE, [Size of HMAC in each packet in bytes.])
291
292	RAND=8
293	AC_ARG_ENABLE(rand-length,
294	[AS_HELP_STRING(--enable-rand-length=BYTES,
295	[use BYTES bytes of extra randomness (default 8). Allowed values are 0, 4, 8.])],
296	RAND=$enableval
297	)
298	AC_DEFINE_UNQUOTED(RAND_SIZE, $RAND, [Add this many bytes of randomness to each packet.])
299		339
300	MTU=1500	340	MTU=1500
301	AC_ARG_ENABLE(mtu,	341	AC_ARG_ENABLE(max-mtu,
302	[AS_HELP_STRING(--enable-max-mtu=BYTES,enable mtu sizes upto BYTES bytes (default 1500). Use 9100 for jumbogram support.)],	342	[AS_HELP_STRING(--enable-max-mtu=BYTES,enable mtu sizes upto BYTES bytes (default 1500). Use 9100 for jumbogram support.)],
303	MTU=$enableval	343	MTU=$enableval
304	)	344	)
305	AC_DEFINE_UNQUOTED(MAX_MTU, $MTU + 14, [Maximum MTU supported.])	345	AC_DEFINE_UNQUOTED(MAX_MTU, ($MTU + 14), [Maximum MTU supported.])
306		346
307	COMPRESS=1	347	COMPRESS=1
308	AC_ARG_ENABLE(compression,	348	AC_ARG_ENABLE(compression,
309	[AS_HELP_STRING(--disable-compression,Disable compression support.)],	349	[AS_HELP_STRING(--disable-compression,Disable compression support.)],
310	if test "x$enableval" = xno; then	350	if test "x$enableval" = xno; then
311	COMPRESS=0	351	COMPRESS=0
312	fi	352	fi
313	)	353	)
314	AC_DEFINE_UNQUOTED(ENABLE_COMPRESSION, $COMPRESS, [Enable compression support.])	354	AC_DEFINE_UNQUOTED(ENABLE_COMPRESSION, $COMPRESS, [Enable compression support.])
315		355
316	CIPHER=bf_cbc	356	CIPHER=aes_128_ctr
317	AC_ARG_ENABLE(cipher,	357	AC_ARG_ENABLE(cipher,
318	[AS_HELP_STRING(--enable-cipher,[	358	[AS_HELP_STRING(--enable-cipher=CIPHER,[
319	Select the symmetric cipher (default "bf").	359	Select the symmetric cipher (default "aes-128").
320	Must be one of "bf" (blowfish), "aes-128" (rijndael), "aes-192" or "aes-256".])],	360	Must be one of "aes-128" (rijndael), "aes-192", or "aes-256".])],
321	if test "x$enableval" = xbf ; then CIPHER=bf_cbc ; fi	361	#if test "x$enableval" = xbf ; then CIPHER=bf_ctr ; fi
322	if test "x$enableval" = xaes-128; then CIPHER=aes_128_cbc; fi	362	if test "x$enableval" = xaes-128 ; then CIPHER=aes_128_ctr ; fi
323	if test "x$enableval" = xaes-192; then CIPHER=aes_192_cbc; fi	363	if test "x$enableval" = xaes-192 ; then CIPHER=aes_192_ctr ; fi
324	if test "x$enableval" = xaes-256; then CIPHER=aes_256_cbc; fi	364	if test "x$enableval" = xaes-256 ; then CIPHER=aes_256_ctr ; fi
		365	#if test "x$enableval" = xcamellia-128; then CIPHER=camellia_128_ctr; fi
		366	#if test "x$enableval" = xcamellia-256; then CIPHER=camellia_256_ctr; fi
325	)	367	)
326	AC_DEFINE_UNQUOTED(ENABLE_CIPHER, EVP_${CIPHER}, [Select the symmetric cipher to use.])	368	AC_DEFINE_UNQUOTED(ENABLE_CIPHER, EVP_${CIPHER}, [Select the symmetric cipher to use.])
327		369
328	DIGEST=sha1	370	HMAC=sha1
329	AC_ARG_ENABLE(digest,	371	AC_ARG_ENABLE(hmac-digest,
330	[AS_HELP_STRING(--enable-digest,[	372	[AS_HELP_STRING(--enable-hmac-digest=HMAC,[
331	Select the digets algorithm to use (default "sha1"). Must be one of	373	Select the HMAC digest algorithm to use (default "sha1"). Must be one of
332	"sha1", "ripemd160", "md5" or "md4" (insecure).])],	374	"sha512", "sha256", "sha1", "ripemd160", "whirlpool".])],
		375	if test "x$enableval" = xwhirlpool; then HMAC=whirlpool; fi
		376	if test "x$enableval" = xsha512 ; then HMAC=sha512 ; fi
		377	if test "x$enableval" = xsha256 ; then HMAC=sha256 ; fi
333	if test "x$enableval" = xsha1 ; then DIGEST=sha1 ; fi	378	if test "x$enableval" = xsha1 ; then HMAC=sha1 ; fi
334	if test "x$enableval" = xripemd160; then DIGEST=ripemd160; fi	379	if test "x$enableval" = xripemd160; then HMAC=ripemd160; fi
		380	)
		381	AC_DEFINE_UNQUOTED(ENABLE_HMAC, EVP_${HMAC}, [Select the HMAC digest algorithm to use.])
		382
		383	AUTH=sha512
		384	AC_ARG_ENABLE(auth-digest,
		385	[AS_HELP_STRING(--enable-auth-digest=DIGEST,[
		386	Select the hmac algorithm to use (default "sha512"). Must be one of
		387	"sha512", "sha256", "whirlpool".])],
		388	if test "x$enableval" = xwhirlpool; then AUTH=whirlpool; fi
335	if test "x$enableval" = xmd5 ; then DIGEST=md5 ; fi	389	if test "x$enableval" = xsha512 ; then AUTH=sha512 ; fi
336	if test "x$enableval" = xmd4 ; then DIGEST=md4 ; fi	390	if test "x$enableval" = xsha256 ; then AUTH=sha256 ; fi
337	)	391	)
338	AC_DEFINE_UNQUOTED(ENABLE_DIGEST, EVP_${DIGEST}, [Select the digest algorithm to use.])	392	AC_DEFINE_UNQUOTED(ENABLE_AUTH, EVP_${AUTH}, [Select the auth digest algorithm to use.])
339		393
340	if $CXX -v --help 2>&1 \| grep -q fno-rtti; then	394	if $CXX -v --help 2>&1 \| grep -q fno-rtti; then
341	CXXFLAGS="$CXXFLAGS -fno-rtti"	395	CXXFLAGS="$CXXFLAGS -fno-rtti"
342	fi	396	fi
343		397
344	if $CXX -v --help 2>&1 \| grep -q fexceptions; then	398	#if $CXX -v --help 2>&1 \| grep -q fexceptions; then
345	CXXFLAGS="$CXXFLAGS -fno-exceptions"	399	# CXXFLAGS="$CXXFLAGS -fno-exceptions"
346	fi	400	#fi
		401
		402	LIBS="$EXTRA_LIBS $LIBS"
347		403
348	dnl if $CXX -v --help 2>&1 \| grep -q ffunction-sections; then	404	dnl if $CXX -v --help 2>&1 \| grep -q ffunction-sections; then
349	dnl CXXFLAGS="$CXXFLAGS -ffunction-sections"	405	dnl CXXFLAGS="$CXXFLAGS -ffunction-sections"
350	dnl fi	406	dnl fi
351	dnl	407	dnl
352	dnl if $LD -v --help 2>&1 \| grep -q gc-sections; then	408	dnl if $LD -v --help 2>&1 \| grep -q gc-sections; then
353	dnl LDFLAGS="$LDFLAGS -Wl,--gc-sections"	409	dnl LDFLAGS="$LDFLAGS -Wl,--gc-sections"
354	dnl fi	410	dnl fi
355		411
356	AC_CONFIG_COMMANDS_POST([	412	AC_SUBST(AM_CPPFLAGS)
		413
		414	AC_CONFIG_FILES([Makefile po/Makefile.in
		415	src/Makefile
		416	doc/Makefile
		417	lib/Makefile
		418	m4/Makefile
		419	])
		420	AC_OUTPUT
357		421
358	echo	422	echo
359	echo "***"	423	echo "***"
360	echo "*** Configuration Summary"	424	echo "*** Configuration Summary"
361	echo "***"	425	echo "***"
362	echo "*** Kernel Iface: $IFTYPE/$IFSUBTYPE"	426	echo "*** Kernel Iface: $IFTYPE/$IFSUBTYPE"
		427	echo "*** RSA size: $RSA"
363	echo "*** Cipher used: $CIPHER"	428	echo "*** Cipher used: $CIPHER"
364	echo "*** Digest used: $DIGEST"	429	echo "*** Digest used: $DIGEST"
		430	echo "*** Authdigest: $AUTH"
365	echo "*** HMAC length: $HMAC"	431	echo "*** HMAC length: $HMAC"
366	echo "*** RAND used: $RAND"
367	echo "*** Max. MTU: $MTU"	432	echo "*** Max. MTU: $MTU"
368	echo "*** Compression: $COMPRESS"
369		433
370	if test "x$DIGEST" = xmd4; then
371	echo "***"	434	echo "***"
372	echo "*** WARNING: The digest you have chosen ($DIGEST) is known to be insecure"	435	echo "*** Enable options:"
373	fi	436	grep ENABLE_ config.h \| sed -e 's/^/*** /'
374		437
375	if test "$HMAC" -lt 12; then	438	if test "$HMACSIZE" -lt 12; then
376	echo "***"	439	echo "***"
377	echo "*** WARNING: The hmac length you have chosen ($HMAC) is probably insecure"	440	echo "*** WARNING: The hmac length you have chosen ($HMACSIZE) is quite insecure"
378	fi	441	fi
379		442
380	if test "$RAND" -lt 8; then
381	echo "***"	443	echo "***"
382	echo "*** WARNING: The random prefix you have chosen ($RAND) is probably insecure"
383	fi
384
385	echo "***"
386
387	echo	444	echo
388		445
389	])	446	if pkg-config --exists 'libcrypto >= 1.1 libcrypto < 2.0'; then
		447	cat <<EOF
		448	@<:@33m
		449	***
		450	*** WARNING WARNING WARNING WARNING WARNING WARNING WARNING
		451	***
		452	*** You seem to configure gvpe with OpenSSL 1.1 or newer.
		453	*** While this probably compiles, please note that this is not only
		454	*** unsupported, but also discouraged.
		455	***
		456	*** It is recommended to use either OpenSSL 1.0, as long as that is still
		457	*** supported, or LibreSSL (https://www.libressl.org/).
		458	***
		459	*** This is not a political issue - while porting GVPE to the newer
		460	*** OpenSSL 1.1 API, I encountered two incompatible API changes that were
		461	*** not documented, were not caught while compiling but caused security
		462	*** issues. When reported, the reaction of the OpenSSL developers was to
		463	*** update the documentation.
		464	***
		465	*** As a result, I lost all confidence in the ability and desire of
		466	*** OpenSSL developers to create a safe API, and would highly recommend
		467	*** switching to LibreSSL which explicitly avoids such braking changes.
		468	***
		469	*** WARNING WARNING WARNING WARNING WARNING WARNING WARNING
		470	***
		471	*** Again, do not use OpenSSL 1.1 and complain if stuff breaks.
		472	*** You have been warned, but your choice is respected.
		473	***
		474	@<:@0m
390		475
391	AC_SUBST(INCLUDES)	476	EOF
		477	fi
392		478
393	AC_CONFIG_FILES([Makefile po/Makefile.in	479
394	src/Makefile
395	doc/Makefile
396	lib/Makefile
397	m4/Makefile
398	])
399	AC_OUTPUT

Diff Legend

-–
+Removed lines
-+
+Added lines
-<
+Changed lines
->
+Changed lines

Comparing gvpe/configure.ac (file contents): Revision 1.34 by pcg, Fri Mar 4 03:43:09 2005 UTC vs. Revision 1.68 by root, Thu Oct 6 03:25:53 2022 UTC

Diff Legend

Comparing gvpe/configure.ac (file contents):
Revision 1.34 by pcg, Fri Mar 4 03:43:09 2005 UTC vs.
Revision 1.68 by root, Thu Oct 6 03:25:53 2022 UTC