[thirdparty/cups.git] / config-scripts / cups-ssl.m4

dnl
dnl "$Id: cups-ssl.m4 11911 2014-06-10 13:54:53Z msweet $"
dnl
dnl TLS stuff for CUPS.
dnl
dnl Copyright 2007-2014 by Apple Inc.
dnl Copyright 1997-2007 by Easy Software Products, all rights reserved.
dnl
dnl These coded instructions, statements, and computer programs are the
dnl property of Apple Inc. and are protected by Federal copyright
dnl law.  Distribution and use rights are outlined in the file "LICENSE.txt"
dnl which should have been included with this file.  If this file is
dnl file is missing or damaged, see the license at "http://www.cups.org/".
dnl

AC_ARG_ENABLE(ssl, [  --disable-ssl           disable SSL/TLS support])
AC_ARG_ENABLE(cdsassl, [  --enable-cdsassl        use CDSA for SSL/TLS support, default=first])
AC_ARG_ENABLE(gnutls, [  --enable-gnutls         use GNU TLS for SSL/TLS support, default=second])

SSLFLAGS=""
SSLLIBS=""
have_ssl=0
CUPS_SERVERCERT=""
CUPS_SERVERKEY=""

if test x$enable_ssl != xno; then
    dnl Look for CDSA...
    if test $have_ssl = 0 -a "x$enable_cdsassl" != "xno"; then
	if test $uname = Darwin; then
	    AC_CHECK_HEADER(Security/SecureTransport.h, [
	    	have_ssl=1
		AC_DEFINE(HAVE_SSL)
		AC_DEFINE(HAVE_CDSASSL)
		CUPS_SERVERCERT="/Library/Keychains/System.keychain"

		dnl Check for the various security headers...
		AC_CHECK_HEADER(Security/SecureTransportPriv.h,
		    AC_DEFINE(HAVE_SECURETRANSPORTPRIV_H))
		AC_CHECK_HEADER(Security/SecCertificate.h,
		    AC_DEFINE(HAVE_SECCERTIFICATE_H))
		AC_CHECK_HEADER(Security/SecItem.h,
		    AC_DEFINE(HAVE_SECITEM_H))
		AC_CHECK_HEADER(Security/SecItemPriv.h,
		    AC_DEFINE(HAVE_SECITEMPRIV_H),,
		    [#include <Security/SecItem.h>])
		AC_CHECK_HEADER(Security/SecPolicy.h,
		    AC_DEFINE(HAVE_SECPOLICY_H))
		AC_CHECK_HEADER(Security/SecPolicyPriv.h,
		    AC_DEFINE(HAVE_SECPOLICYPRIV_H))
		AC_CHECK_HEADER(Security/SecBasePriv.h,
		    AC_DEFINE(HAVE_SECBASEPRIV_H))
		AC_CHECK_HEADER(Security/SecIdentitySearchPriv.h,
		    AC_DEFINE(HAVE_SECIDENTITYSEARCHPRIV_H))

		AC_DEFINE(HAVE_CSSMERRORSTRING)
		AC_DEFINE(HAVE_SECKEYCHAINOPEN)])
	fi
    fi

    dnl Then look for GNU TLS...
    if test $have_ssl = 0 -a "x$enable_gnutls" != "xno" -a "x$PKGCONFIG" != x; then
    	AC_PATH_TOOL(LIBGNUTLSCONFIG,libgnutls-config)
    	AC_PATH_TOOL(LIBGCRYPTCONFIG,libgcrypt-config)
	if $PKGCONFIG --exists gnutls; then
	    have_ssl=1
	    SSLLIBS=`$PKGCONFIG --libs gnutls`
	    SSLFLAGS=`$PKGCONFIG --cflags gnutls`
	    AC_DEFINE(HAVE_SSL)
	    AC_DEFINE(HAVE_GNUTLS)
	elif test "x$LIBGNUTLSCONFIG" != x; then
	    have_ssl=1
	    SSLLIBS=`$LIBGNUTLSCONFIG --libs`
	    SSLFLAGS=`$LIBGNUTLSCONFIG --cflags`
	    AC_DEFINE(HAVE_SSL)
	    AC_DEFINE(HAVE_GNUTLS)
	fi

	if test $have_ssl = 1; then
	    CUPS_SERVERCERT="ssl/server.crt"
	    CUPS_SERVERKEY="ssl/server.key"
	fi
    fi
fi

IPPALIASES="http"
if test $have_ssl = 1; then
    AC_MSG_RESULT([    Using SSLLIBS="$SSLLIBS"])
    AC_MSG_RESULT([    Using SSLFLAGS="$SSLFLAGS"])
    IPPALIASES="http https ipps"
elif test x$enable_cdsa = xyes -o x$enable_gnutls = xyes; then
    AC_MSG_ERROR([Unable to enable SSL support.])
fi

AC_SUBST(CUPS_SERVERCERT)
AC_SUBST(CUPS_SERVERKEY)
AC_SUBST(IPPALIASES)
AC_SUBST(SSLFLAGS)
AC_SUBST(SSLLIBS)

EXPORT_SSLLIBS="$SSLLIBS"
AC_SUBST(EXPORT_SSLLIBS)

dnl
dnl End of "$Id: cups-ssl.m4 11911 2014-06-10 13:54:53Z msweet $".
dnl
Commit	Line	Data
ef416fc2	1	dnl
1a18c85c	2	dnl "$Id: cups-ssl.m4 11911 2014-06-10 13:54:53Z msweet $"
ef416fc2	3	dnl
1a18c85c	4	dnl TLS stuff for CUPS.
ef416fc2	5	dnl
1a18c85c MS	6	dnl Copyright 2007-2014 by Apple Inc.
1a18c85c MS	7	dnl Copyright 1997-2007 by Easy Software Products, all rights reserved.
ef416fc2	8	dnl
1a18c85c MS	9	dnl These coded instructions, statements, and computer programs are the
	10	dnl property of Apple Inc. and are protected by Federal copyright
	11	dnl law. Distribution and use rights are outlined in the file "LICENSE.txt"
	12	dnl which should have been included with this file. If this file is
	13	dnl file is missing or damaged, see the license at "http://www.cups.org/".
ef416fc2	14	dnl
ef416fc2	15
bf3816c7	16	AC_ARG_ENABLE(ssl, [ --disable-ssl disable SSL/TLS support])
ef416fc2	17	AC_ARG_ENABLE(cdsassl, [ --enable-cdsassl use CDSA for SSL/TLS support, default=first])
ef416fc2	18	AC_ARG_ENABLE(gnutls, [ --enable-gnutls use GNU TLS for SSL/TLS support, default=second])
ef416fc2	19
	20	SSLFLAGS=""
	21	SSLLIBS=""
f8b3a85b	22	have_ssl=0
c41769ff MS	23	CUPS_SERVERCERT=""
c41769ff MS	24	CUPS_SERVERKEY=""
ef416fc2	25
	26	if test x$enable_ssl != xno; then
	27	dnl Look for CDSA...
0268488e	28	if test $have_ssl = 0 -a "x$enable_cdsassl" != "xno"; then
ef416fc2	29	if test $uname = Darwin; then
b86bc4cf	30	AC_CHECK_HEADER(Security/SecureTransport.h, [
f8b3a85b	31	have_ssl=1
b86bc4cf	32	AC_DEFINE(HAVE_SSL)
b86bc4cf	33	AC_DEFINE(HAVE_CDSASSL)
c41769ff	34	CUPS_SERVERCERT="/Library/Keychains/System.keychain"
b86bc4cf	35
b86bc4cf	36	dnl Check for the various security headers...
eac3a0a0 MS	37	AC_CHECK_HEADER(Security/SecureTransportPriv.h,
eac3a0a0 MS	38	AC_DEFINE(HAVE_SECURETRANSPORTPRIV_H))
7cf5915e MS	39	AC_CHECK_HEADER(Security/SecCertificate.h,
7cf5915e MS	40	AC_DEFINE(HAVE_SECCERTIFICATE_H))
0268488e MS	41	AC_CHECK_HEADER(Security/SecItem.h,
0268488e MS	42	AC_DEFINE(HAVE_SECITEM_H))
c7017ecc	43	AC_CHECK_HEADER(Security/SecItemPriv.h,
eac3a0a0 MS	44	AC_DEFINE(HAVE_SECITEMPRIV_H),,
eac3a0a0 MS	45	[#include <Security/SecItem.h>])
b86bc4cf	46	AC_CHECK_HEADER(Security/SecPolicy.h,
	47	AC_DEFINE(HAVE_SECPOLICY_H))
	48	AC_CHECK_HEADER(Security/SecPolicyPriv.h,
	49	AC_DEFINE(HAVE_SECPOLICYPRIV_H))
	50	AC_CHECK_HEADER(Security/SecBasePriv.h,
	51	AC_DEFINE(HAVE_SECBASEPRIV_H))
	52	AC_CHECK_HEADER(Security/SecIdentitySearchPriv.h,
	53	AC_DEFINE(HAVE_SECIDENTITYSEARCHPRIV_H))
	54
1a18c85c MS	55	AC_DEFINE(HAVE_CSSMERRORSTRING)
1a18c85c MS	56	AC_DEFINE(HAVE_SECKEYCHAINOPEN)])
ef416fc2	57	fi
	58	fi
	59
	60	dnl Then look for GNU TLS...
0268488e	61	if test $have_ssl = 0 -a "x$enable_gnutls" != "xno" -a "x$PKGCONFIG" != x; then
1a18c85c MS	62	AC_PATH_TOOL(LIBGNUTLSCONFIG,libgnutls-config)
1a18c85c MS	63	AC_PATH_TOOL(LIBGCRYPTCONFIG,libgcrypt-config)
f11a948a	64	if $PKGCONFIG --exists gnutls; then
eac3a0a0 MS	65	have_ssl=1
	66	SSLLIBS=`$PKGCONFIG --libs gnutls`
	67	SSLFLAGS=`$PKGCONFIG --cflags gnutls`
	68	AC_DEFINE(HAVE_SSL)
	69	AC_DEFINE(HAVE_GNUTLS)
c7017ecc	70	elif test "x$LIBGNUTLSCONFIG" != x; then
eac3a0a0 MS	71	have_ssl=1
	72	SSLLIBS=`$LIBGNUTLSCONFIG --libs`
	73	SSLFLAGS=`$LIBGNUTLSCONFIG --cflags`
	74	AC_DEFINE(HAVE_SSL)
	75	AC_DEFINE(HAVE_GNUTLS)
6d2f911b MS	76	fi
	77
	78	if test $have_ssl = 1; then
c41769ff MS	79	CUPS_SERVERCERT="ssl/server.crt"
c41769ff MS	80	CUPS_SERVERKEY="ssl/server.key"
f301802f	81	fi
ef416fc2	82	fi
ef416fc2	83	fi
ef416fc2	84
eac3a0a0	85	IPPALIASES="http"
f8b3a85b	86	if test $have_ssl = 1; then
f301802f	87	AC_MSG_RESULT([ Using SSLLIBS="$SSLLIBS"])
f301802f	88	AC_MSG_RESULT([ Using SSLFLAGS="$SSLFLAGS"])
eac3a0a0	89	IPPALIASES="http https ipps"
1a18c85c	90	elif test x$enable_cdsa = xyes -o x$enable_gnutls = xyes; then
0268488e	91	AC_MSG_ERROR([Unable to enable SSL support.])
f301802f	92	fi
f301802f	93
c41769ff MS	94	AC_SUBST(CUPS_SERVERCERT)
c41769ff MS	95	AC_SUBST(CUPS_SERVERKEY)
eac3a0a0	96	AC_SUBST(IPPALIASES)
ef416fc2	97	AC_SUBST(SSLFLAGS)
	98	AC_SUBST(SSLLIBS)
	99
	100	EXPORT_SSLLIBS="$SSLLIBS"
	101	AC_SUBST(EXPORT_SSLLIBS)
	102
ef416fc2	103	dnl
1a18c85c	104	dnl End of "$Id: cups-ssl.m4 11911 2014-06-10 13:54:53Z msweet $".
ef416fc2	105	dnl