ViewVC Help
View File | Revision Log | Show Annotations | Download File
/cvs/gvpe/configure.ac
(Generate patch)

Comparing gvpe/configure.ac (file contents):
Revision 1.59 by root, Tue Oct 18 13:24:01 2011 UTC vs.
Revision 1.62 by root, Tue Jul 16 16:44:36 2013 UTC

1dnl Process this file with autoconf to produce a configure script. 1dnl Process this file with autoconf to produce a configure script.
2 2
3AC_PREREQ(2.59) 3AC_PREREQ(2.69)
4AC_INIT 4AC_INIT
5AC_CONFIG_SRCDIR([src/gvpe.C]) 5AC_CONFIG_SRCDIR([src/gvpe.C])
6AC_CANONICAL_TARGET 6AC_CANONICAL_TARGET
7AM_INIT_AUTOMAKE(gvpe, 2.24) 7AM_INIT_AUTOMAKE(gvpe, 2.25)
8AC_CONFIG_HEADERS([config.h]) 8AC_CONFIG_HEADERS([config.h])
9AM_MAINTAINER_MODE 9AM_MAINTAINER_MODE
10 10
11AH_TOP([ 11AH_TOP([
12#ifndef CONFIG_H__ 12#ifndef CONFIG_H__
45# define CLOCALE <clocale> 45# define CLOCALE <clocale>
46#else 46#else
47# define CLOCALE <locale.h> 47# define CLOCALE <locale.h>
48#endif 48#endif
49]) 49])
50
51dnl Include the macros from the m4/ directory
52AM_ACLOCAL_INCLUDE(m4)
53 50
54AM_GNU_GETTEXT([external]) 51AM_GNU_GETTEXT([external])
55AM_GNU_GETTEXT_VERSION(0.11.5) 52AM_GNU_GETTEXT_VERSION(0.11.5)
56 53
57# Enable GNU extensions. 54# Enable GNU extensions.
330 327
331 AC_DEFINE_UNQUOTED(ENABLE_DNS, 1, [DNS tunnel protocol support.]) 328 AC_DEFINE_UNQUOTED(ENABLE_DNS, 1, [DNS tunnel protocol support.])
332 ] 329 ]
333) 330)
334 331
332RSA=3072
333AC_ARG_ENABLE(rsa-length,
334 [AS_HELP_STRING(--enable-rsa-length=BITS,[
335 use BITS rsa keys (default 3072). Allowed values are 2048-10240.])],
336 RSA=$enableval
337)
338AC_DEFINE_UNQUOTED(RSABITS, $RSA, [Size of RSA keys.])
339
335HMAC=12 340HMAC=12
336AC_ARG_ENABLE(hmac-length, 341AC_ARG_ENABLE(hmac-length,
337 [AS_HELP_STRING(--enable-hmac-length=BYTES,[ 342 [AS_HELP_STRING(--enable-hmac-length=BYTES,[
338 use a hmac of length BYTES bytes (default 12). Allowed values are 4, 8, 12, 16.])], 343 use a hmac of length BYTES bytes (default 12). Allowed values are 4, 8, 12, 16.])],
339 HMAC=$enableval 344 HMAC=$enableval
366 371
367CIPHER=aes_128_cbc 372CIPHER=aes_128_cbc
368AC_ARG_ENABLE(cipher, 373AC_ARG_ENABLE(cipher,
369 [AS_HELP_STRING(--enable-cipher=CIPHER,[ 374 [AS_HELP_STRING(--enable-cipher=CIPHER,[
370 Select the symmetric cipher (default "aes-128"). 375 Select the symmetric cipher (default "aes-128").
371 Must be one of "bf" (blowfish), "aes-128" (rijndael), "aes-192" or "aes-256".])], 376 Must be one of "bf" (blowfish), "aes-128" (rijndael), "aes-192", "aes-256", "camellia-128" or "camellia-256".])],
372 if test "x$enableval" = xbf ; then CIPHER=bf_cbc ; fi 377 if test "x$enableval" = xbf ; then CIPHER=bf_cbc ; fi
373 if test "x$enableval" = xaes-128; then CIPHER=aes_128_cbc; fi 378 if test "x$enableval" = xaes-128 ; then CIPHER=aes_128_cbc ; fi
374 if test "x$enableval" = xaes-192; then CIPHER=aes_192_cbc; fi 379 if test "x$enableval" = xaes-192 ; then CIPHER=aes_192_cbc ; fi
375 if test "x$enableval" = xaes-256; then CIPHER=aes_256_cbc; fi 380 if test "x$enableval" = xaes-256 ; then CIPHER=aes_256_cbc ; fi
381 if test "x$enableval" = xcamellia-128; then CIPHER=camellia_128_cbc; fi
382 if test "x$enableval" = xcamellia-256; then CIPHER=camellia_256_cbc; fi
376) 383)
377AC_DEFINE_UNQUOTED(ENABLE_CIPHER, EVP_${CIPHER}, [Select the symmetric cipher to use.]) 384AC_DEFINE_UNQUOTED(ENABLE_CIPHER, EVP_${CIPHER}, [Select the symmetric cipher to use.])
378 385
379DIGEST=ripemd160 386DIGEST=sha1
380AC_ARG_ENABLE(digest, 387AC_ARG_ENABLE(digest,
381 [AS_HELP_STRING(--enable-digest=CIPHER,[ 388 [AS_HELP_STRING(--enable-digest=DIGEST,[
382 Select the digest algorithm to use (default "ripemd160"). Must be one of 389 Select the digest algorithm to use (default "sha1"). Must be one of
383 "sha512", "sha256", "sha1" (somewhat insecure), "ripemd160", "md5" (insecure) or "md4" (insecure).])], 390 "sha512", "sha256", "sha1", "ripemd160", "whirlpool".])],
391 if test "x$enableval" = xwhirlpool; then DIGEST=whirlpool; fi
384 if test "x$enableval" = xsha512 ; then DIGEST=sha512 ; fi 392 if test "x$enableval" = xsha512 ; then DIGEST=sha512 ; fi
385 if test "x$enableval" = xsha256 ; then DIGEST=sha256 ; fi 393 if test "x$enableval" = xsha256 ; then DIGEST=sha256 ; fi
386 if test "x$enableval" = xsha1 ; then DIGEST=sha1 ; fi 394 if test "x$enableval" = xsha1 ; then DIGEST=sha1 ; fi
387 if test "x$enableval" = xripemd160; then DIGEST=ripemd160; fi 395 if test "x$enableval" = xripemd160; then DIGEST=ripemd160; fi
388 if test "x$enableval" = xmd5 ; then DIGEST=md5 ; fi
389 if test "x$enableval" = xmd4 ; then DIGEST=md4 ; fi
390) 396)
391AC_DEFINE_UNQUOTED(ENABLE_DIGEST, EVP_${DIGEST}, [Select the digest algorithm to use.]) 397AC_DEFINE_UNQUOTED(ENABLE_DIGEST, EVP_${DIGEST}, [Select the digest algorithm to use.])
398
399AUTH=sha512
400AC_ARG_ENABLE(auth-digest,
401 [AS_HELP_STRING(--enable-auth-digest=DIGEST,[
402 Select the hmac algorithm to use (default "sha512"). Must be one of
403 "sha512", "sha256", "whirlpool".])],
404 if test "x$enableval" = xwhirlpool; then AUTH=whirlpool; fi
405 if test "x$enableval" = xsha512 ; then AUTH=sha512 ; fi
406 if test "x$enableval" = xsha256 ; then AUTH=sha256 ; fi
407)
408AC_DEFINE_UNQUOTED(ENABLE_AUTH, EVP_${AUTH}, [Select the auth digest algorithm to use.])
392 409
393if $CXX -v --help 2>&1 | grep -q fno-rtti; then 410if $CXX -v --help 2>&1 | grep -q fno-rtti; then
394 CXXFLAGS="$CXXFLAGS -fno-rtti" 411 CXXFLAGS="$CXXFLAGS -fno-rtti"
395fi 412fi
396 413
421echo 438echo
422echo "***" 439echo "***"
423echo "*** Configuration Summary" 440echo "*** Configuration Summary"
424echo "***" 441echo "***"
425echo "*** Kernel Iface: $IFTYPE/$IFSUBTYPE" 442echo "*** Kernel Iface: $IFTYPE/$IFSUBTYPE"
443echo "*** RSA size: $RSA"
426echo "*** Cipher used: $CIPHER" 444echo "*** Cipher used: $CIPHER"
427echo "*** Digest used: $DIGEST" 445echo "*** Digest used: $DIGEST"
446echo "*** Authdigest: $AUTH"
428echo "*** HMAC length: $HMAC" 447echo "*** HMAC length: $HMAC"
429echo "*** RAND used: $RAND" 448echo "*** RAND used: $RAND"
430echo "*** Max. MTU: $MTU" 449echo "*** Max. MTU: $MTU"
431 450
432echo "***" 451echo "***"
433echo "*** Enable options:" 452echo "*** Enable options:"
434grep ENABLE_ config.h | sed -e 's/^/*** /' 453grep ENABLE_ config.h | sed -e 's/^/*** /'
435 454
436if test "x$DIGEST" = xmd4; then
437echo "***"
438echo "*** WARNING: The digest you have chosen ($DIGEST) is known to be insecure"
439fi
440
441if test "x$DIGEST" = xmd5; then
442echo "***"
443echo "*** WARNING: The digest you have chosen ($DIGEST) is probably insecure"
444fi
445
446if test "$HMAC" -lt 12; then 455if test "$HMAC" -lt 12; then
447echo "***" 456echo "***"
448echo "*** WARNING: The hmac length you have chosen ($HMAC) is probably insecure" 457echo "*** WARNING: The hmac length you have chosen ($HMAC) is quite insecure"
449fi 458fi
450 459
451if test "$RAND" -lt 8; then 460if test "$RAND" -lt 8; then
452echo "***" 461echo "***"
453echo "*** WARNING: The random prefix you have chosen ($RAND) is probably insecure" 462echo "*** WARNING: The random prefix you have chosen ($RAND) is probably insecure"

Diff Legend

Removed lines
+ Added lines
< Changed lines
> Changed lines