]> git.ipfire.org Git - people/ms/strongswan.git/blob - configure.in
projects / people / ms / strongswan.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
blame | history | raw | HEAD
if end id is missing assign IP address to raw public key
[people/ms/strongswan.git] / configure.in
1 dnl configure.in for linux strongSwan
2 dnl Copyright (C) 2006 Martin Willi
3 dnl Hochschule fuer Technik Rapperswil
4 dnl
5 dnl This program is free software; you can redistribute it and/or modify it
6 dnl under the terms of the GNU General Public License as published by the
7 dnl Free Software Foundation; either version 2 of the License, or (at your
8 dnl option) any later version. See <http://www.fsf.org/copyleft/gpl.txt>.
9 dnl
10 dnl This program is distributed in the hope that it will be useful, but
11 dnl WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY
12 dnl or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License
13 dnl for more details.
14
15 dnl ===========================
16 dnl initialize & set some vars
17 dnl ===========================
18
19 AC_INIT(strongSwan,4.3.6)
20 AM_INIT_AUTOMAKE(tar-ustar)
21 AC_CONFIG_MACRO_DIR([m4/config])
22 PKG_PROG_PKG_CONFIG
23
24 dnl =================================
25 dnl check --enable-xxx & --with-xxx
26 dnl =================================
27
28 m4_include(m4/macros/with.m4)
29
30 ARG_WITH_SUBST([default-pkcs11], [/usr/lib/opensc-pkcs11.so], [set the default PKCS11 library])
31 ARG_WITH_SUBST([random-device], [/dev/random], [set the device to read real random data from])
32 ARG_WITH_SUBST([urandom-device], [/dev/urandom], [set the device to read pseudo random data from])
33 ARG_WITH_SUBST([strongswan-conf], [${sysconfdir}/strongswan.conf], [set the strongswan.conf file location])
34 ARG_WITH_SUBST([resolv-conf], [${sysconfdir}/resolv.conf], [set the file to use in DNS handler plugin])
35 ARG_WITH_SUBST([piddir], [/var/run], [set path for PID and UNIX socket files])
36 ARG_WITH_SUBST([ipsecdir], [${libexecdir%/}/ipsec], [set installation path for ipsec tools])
37 ARG_WITH_SUBST([plugindir], [${ipsecdir%/}/plugins], [set the installation path of plugins])
38 ARG_WITH_SUBST([nm-ca-dir], [/usr/share/ca-certificates], [directory the NM plugin uses to look up trusted root certificates])
39 ARG_WITH_SUBST([linux-headers], [\${top_srcdir}/src/include], [set directory of linux header files to use])
40 ARG_WITH_SUBST([routing-table], [220], [set routing table to use for IPsec routes])
41 ARG_WITH_SUBST([routing-table-prio], [220], [set priority for IPsec routing table])
42
43 ARG_WITH_SET([capabilities], [no], [set capability dropping library. Currently only the value "libcap" is supported])
44
45 AC_ARG_WITH(
46 [xauth-module],
47 AS_HELP_STRING([--with-xauth-module=lib],[set the path to the XAUTH module]),
48 [AC_DEFINE_UNQUOTED(XAUTH_DEFAULT_LIB, "$withval")],
49 )
50
51 AC_ARG_WITH(
52 [user],
53 AS_HELP_STRING([--with-user=user],[change user of the daemons to "user" after startup (default is "root").]),
54 [AC_DEFINE_UNQUOTED(IPSEC_USER, "$withval") AC_SUBST(ipsecuser, "$withval")],
55 [AC_SUBST(ipsecuser, "root")]
56 )
57
58 AC_ARG_WITH(
59 [group],
60 AS_HELP_STRING([--with-group=group],[change group of the daemons to "group" after startup (default is "root").]),
61 [AC_DEFINE_UNQUOTED(IPSEC_GROUP, "$withval") AC_SUBST(ipsecgroup, "$withval")],
62 [AC_SUBST(ipsecgroup, "root")]
63 )
64
65 m4_include(m4/macros/enable-disable.m4)
66
67 ARG_ENABL_SET([curl], [enable CURL fetcher plugin to fetch files via libcurl. Requires libcurl.])
68 ARG_ENABL_SET([ldap], [enable LDAP fetching plugin to fetch files via libldap. Requires openLDAP.])
69 ARG_DISBL_SET([aes], [disable AES software implementation plugin.])
70 ARG_DISBL_SET([des], [disable DES/3DES software implementation plugin.])
71 ARG_ENABL_SET([blowfish], [enable Blowfish software implementation plugin.])
72 ARG_ENABL_SET([md4], [enable MD4 software implementation plugin.])
73 ARG_DISBL_SET([md5], [disable MD5 software implementation plugin.])
74 ARG_DISBL_SET([sha1], [disable SHA1 software implementation plugin.])
75 ARG_DISBL_SET([sha2], [disable SHA256/SHA384/SHA512 software implementation plugin.])
76 ARG_DISBL_SET([fips-prf], [disable FIPS PRF software implementation plugin.])
77 ARG_DISBL_SET([gmp], [disable GNU MP (libgmp) based crypto implementation plugin.])
78 ARG_DISBL_SET([random], [disable RNG implementation on top of /dev/(u)random.])
79 ARG_DISBL_SET([x509], [disable X509 certificate implementation plugin.])
80 ARG_DISBL_SET([pubkey], [disable RAW public key support plugin.])
81 ARG_DISBL_SET([pkcs1], [disable PKCS1 key decoding plugin.])
82 ARG_DISBL_SET([pgp], [disable PGP key decoding plugin.])
83 ARG_DISBL_SET([dnskey], [disable DNS RR key decoding plugin.])
84 ARG_DISBL_SET([pem], [disable PEM decoding plugin.])
85 ARG_DISBL_SET([hmac], [disable HMAC crypto implementation plugin.])
86 ARG_DISBL_SET([xcbc], [disable xcbc crypto implementation plugin.])
87 ARG_ENABL_SET([test-vectors], [enable plugin providing crypto test vectors.])
88 ARG_ENABL_SET([mysql], [enable MySQL database support. Requires libmysqlclient_r.])
89 ARG_ENABL_SET([sqlite], [enable SQLite database support. Requires libsqlite3.])
90 ARG_DISBL_SET([stroke], [disable charons stroke (pluto compatibility) configuration backend.])
91 ARG_ENABL_SET([medsrv], [enable mediation server web frontend and daemon plugin.])
92 ARG_ENABL_SET([medcli], [enable mediation client configuration database plugin.])
93 ARG_ENABL_SET([smp], [enable SMP configuration and control interface. Requires libxml.])
94 ARG_ENABL_SET([sql], [enable SQL database configuration backend.])
95 ARG_ENABL_SET([smartcard], [enable smartcard support.])
96 ARG_ENABL_SET([cisco-quirks], [enable support of Cisco VPN client.])
97 ARG_ENABL_SET([leak-detective], [enable malloc hooks to find memory leaks.])
98 ARG_ENABL_SET([lock-profiler], [enable lock/mutex profiling code.])
99 ARG_ENABL_SET([unit-tests], [enable unit tests on IKEv2 daemon startup.])
100 ARG_ENABL_SET([load-tester], [enable load testing plugin for IKEv2 daemon.])
101 ARG_ENABL_SET([eap-sim], [enable SIM authenication module for EAP.])
102 ARG_ENABL_SET([eap-sim-file], [enable EAP-SIM backend based on a triplet file.])
103 ARG_ENABL_SET([eap-simaka-pseudonym], [enable EAP-SIM/AKA pseudonym storage plugin.])
104 ARG_ENABL_SET([eap-simaka-reauth], [enable EAP-SIM/AKA reauthentication data storage plugin.])
105 ARG_ENABL_SET([eap-identity], [enable EAP module providing EAP-Identity helper.])
106 ARG_ENABL_SET([eap-md5], [enable EAP MD5 (CHAP) authenication module.])
107 ARG_ENABL_SET([eap-gtc], [enable PAM based EAP GTC authenication module.])
108 ARG_ENABL_SET([eap-aka], [enable EAP AKA authentication module.])
109 ARG_ENABL_SET([eap-aka-3gpp2], [enable EAP AKA backend implementing 3GPP2 algorithms in software. Requires libgmp.])
110 ARG_ENABL_SET([eap-mschapv2], [enable EAP MS-CHAPv2 authenication module.])
111 ARG_ENABL_SET([eap-radius], [enable RADIUS proxy authenication module.])
112 ARG_DISBL_SET([kernel-netlink], [disable the netlink kernel interface.])
113 ARG_ENABL_SET([kernel-pfkey], [enable the PF_KEY kernel interface.])
114 ARG_ENABL_SET([kernel-pfroute], [enable the PF_ROUTE kernel interface.])
115 ARG_ENABL_SET([kernel-klips], [enable the KLIPS kernel interface.])
116 ARG_ENABL_SET([nat-transport], [enable NAT traversal with IPsec transport mode in pluto.])
117 ARG_DISBL_SET([vendor-id], [disable the sending of the strongSwan vendor ID in pluto.])
118 ARG_DISBL_SET([xauth-vid], [disable the sending of the XAUTH vendor ID.])
119 ARG_ENABL_SET([dumm], [enable the DUMM UML test framework.])
120 ARG_ENABL_SET([fast], [enable libfast (FastCGI Application Server w/ templates.])
121 ARG_ENABL_SET([manager], [enable web management console (proof of concept).])
122 ARG_ENABL_SET([mediation], [enable IKEv2 Mediation Extension.])
123 ARG_ENABL_SET([integrity-test], [enable integrity testing of libstrongswan and plugins.])
124 ARG_DISBL_SET([pluto], [disable the IKEv1 keying daemon pluto.])
125 ARG_DISBL_SET([threads], [disable the use of threads in pluto. Charon always uses threads.])
126 ARG_DISBL_SET([charon], [disable the IKEv2 keying daemon charon.])
127 ARG_DISBL_SET([tools], [disable additional utilities (openac, scepclient and pki).])
128 ARG_DISBL_SET([scripts], [disable additional utilities (found in directory scripts).])
129 ARG_DISBL_SET([updown], [disable updown firewall script plugin.])
130 ARG_DISBL_SET([attr], [disable strongswan.conf based configuration attribute plugin.])
131 ARG_ENABL_SET([attr-sql], [enable SQL based configuration attribute plugin.])
132 ARG_DISBL_SET([resolve], [disable resolve DNS handler plugin.])
133 ARG_ENABL_SET([padlock], [enables VIA Padlock crypto plugin.])
134 ARG_ENABL_SET([openssl], [enables the OpenSSL crypto plugin.])
135 ARG_ENABL_SET([gcrypt], [enables the libgcrypt plugin.])
136 ARG_ENABL_SET([agent], [enables the ssh-agent signing plugin.])
137 ARG_ENABL_SET([uci], [enable OpenWRT UCI configuration plugin.])
138 ARG_ENABL_SET([nm], [enable NetworkManager plugin.])
139 ARG_ENABL_SET([vstr], [enforce using the Vstr string library to replace glibc-like printf hooks.])
140
141 dnl =========================
142 dnl set up compiler and flags
143 dnl =========================
144
145 if test -z "$CFLAGS"; then
146 CFLAGS="-g -O2 -Wall -Wno-format -Wno-pointer-sign -Wno-strict-aliasing"
147 fi
148 AC_PROG_CC
149 AC_LIB_PREFIX
150 AC_C_BIGENDIAN
151
152 dnl =========================
153 dnl check required programs
154 dnl =========================
155
156 AC_PROG_INSTALL
157 AC_PROG_LIBTOOL
158 AC_PROG_EGREP
159 AC_PROG_AWK
160 AC_PROG_LEX
161 AC_PROG_YACC
162 AC_PATH_PROG([PERL], [perl], [], [$PATH:/bin:/usr/bin:/usr/local/bin])
163 AC_PATH_PROG([GPERF], [gperf], [], [$PATH:/bin:/usr/bin:/usr/local/bin])
164
165 dnl because gperf is not needed by end-users we just report it but do not abort on failure
166 AC_MSG_CHECKING([gperf version >= 3.0.0])
167 if test -x "$GPERF"; then
168 if test "`$GPERF --version | $AWK -F' ' '/^GNU gperf/ { print $3 }' | $AWK -F. '{ print $1 }'`" -ge "3"; then
169 AC_MSG_RESULT([yes])
170 else
171 AC_MSG_RESULT([no])
172 fi
173 else
174 AC_MSG_RESULT([not found])
175 fi
176
177 dnl translate user/group to numercial ids
178 AC_MSG_CHECKING([for uid of user "$ipsecuser"])
179 ipsecuid=`id -u $ipsecuser 2>/dev/null`
180 if test -n "$ipsecuid"; then
181 AC_MSG_RESULT([$ipsecuid])
182 AC_SUBST(ipsecuid)
183 else
184 AC_MSG_ERROR([not found])
185 fi
186 AC_MSG_CHECKING([for gid of group "$ipsecgroup"])
187 ipsecgid=`$EGREP "^$ipsecgroup:" /etc/group | $AWK -F: '{ print $3 }'`
188 if test -n "$ipsecgid"; then
189 AC_MSG_RESULT([$ipsecgid])
190 AC_SUBST(ipsecgid)
191 else
192 AC_MSG_ERROR([not found])
193 fi
194
195 dnl =========================
196 dnl dependency calculation
197 dnl =========================
198
199 if test x$eap_aka_3gpp2 = xtrue; then
200 gmp=true;
201 fi
202
203 if test x$eap_aka = xtrue; then
204 fips_prf=true;
205 sha1=true;
206 simaka=true;
207 fi
208
209 if test x$eap_sim = xtrue; then
210 fips_prf=true;
211 simaka=true;
212 fi
213
214 if test x$fips_prf = xtrue; then
215 sha1=true;
216 fi
217
218 if test x$smp = xtrue; then
219 xml=true
220 fi
221
222 if test x$manager = xtrue; then
223 fast=true
224 fi
225
226 if test x$medsrv = xtrue; then
227 mediation=true
228 fast=true
229 fi
230
231 if test x$medcli = xtrue; then
232 mediation=true
233 fi
234
235 dnl ===========================================
236 dnl check required libraries and header files
237 dnl ===========================================
238
239 AC_HEADER_STDBOOL
240 AC_FUNC_ALLOCA
241
242 dnl libraries needed on some platforms but not on others
243 dnl ====================================================
244 saved_LIBS=$LIBS
245
246 dnl FreeBSD and Mac OS X have dlopen integrated in libc, Linux needs libdl
247 LIBS=""
248 AC_SEARCH_LIBS(dlopen, dl, [DLLIB=$LIBS])
249 AC_SUBST(DLLIB)
250
251 dnl glibc's backtrace() can be replicated on FreeBSD with libexecinfo
252 LIBS=""
253 AC_SEARCH_LIBS(backtrace, execinfo, [BTLIB=$LIBS])
254 AC_CHECK_FUNCS(backtrace)
255 AC_SUBST(BTLIB)
256
257 dnl OpenSolaris needs libsocket and libnsl for socket()
258 LIBS=""
259 AC_SEARCH_LIBS(socket, socket, [SOCKLIB=$LIBS],
260 [AC_CHECK_LIB(nsl, socket, [SOCKLIB="-lsocket -lnsl"], [], [-lsocket])]
261 )
262 AC_SUBST(SOCKLIB)
263
264 dnl FreeBSD has clock_gettime in libc, Linux needs librt
265 LIBS=""
266 AC_SEARCH_LIBS(clock_gettime, rt, [RTLIB=$LIBS])
267 AC_CHECK_FUNCS(clock_gettime)
268 AC_SUBST(RTLIB)
269
270 LIBS=$saved_LIBS
271 dnl ======================
272
273 AC_MSG_CHECKING(for dladdr)
274 AC_TRY_COMPILE(
275 [#define _GNU_SOURCE
276 #include <dlfcn.h>],
277 [Dl_info* info = 0;
278 dladdr(0, info);],
279 [AC_MSG_RESULT([yes]); AC_DEFINE([HAVE_DLADDR])],
280 [AC_MSG_RESULT([no])]
281 )
282
283 dnl check if pthread_condattr_setclock(CLOCK_MONOTONE) is supported
284 saved_LIBS=$LIBS
285 LIBS="-lpthread"
286 AC_MSG_CHECKING([for pthread_condattr_setclock(CLOCK_MONOTONE)])
287 AC_TRY_RUN(
288 [#include <pthread.h>
289 int main() { pthread_condattr_t attr;
290 pthread_condattr_init(&attr);
291 return pthread_condattr_setclock(&attr, CLOCK_MONOTONIC);}],
292 [AC_MSG_RESULT([yes]); AC_DEFINE([HAVE_CONDATTR_CLOCK_MONOTONIC])],
293 [AC_MSG_RESULT([no])],
294 dnl Check existence of pthread_condattr_setclock if cross-compiling
295 [AC_MSG_RESULT([unknown]);
296 AC_CHECK_FUNCS(pthread_condattr_setclock,
297 [AC_DEFINE([HAVE_CONDATTR_CLOCK_MONOTONIC])]
298 )]
299 )
300
301 LIBS=$saved_LIBS
302
303 AC_CHECK_FUNCS(prctl)
304
305 AC_CHECK_HEADERS(sys/sockio.h)
306 AC_CHECK_HEADERS(net/pfkeyv2.h netipsec/ipsec.h netinet6/ipsec.h linux/udp.h)
307
308 AC_CHECK_MEMBERS([struct sockaddr.sa_len], [], [],
309 [
310 #include <sys/types.h>
311 #include <sys/socket.h>
312 ])
313
314 AC_CHECK_MEMBERS([struct sadb_x_policy.sadb_x_policy_priority], [], [],
315 [
316 #include <sys/types.h>
317 #ifdef HAVE_NET_PFKEYV2_H
318 #include <net/pfkeyv2.h>
319 #else
320 #include <stdint.h>
321 #include <linux/pfkeyv2.h>
322 #endif
323 ])
324
325 AC_MSG_CHECKING([for IPSEC_MODE_BEET])
326 AC_TRY_COMPILE(
327 [#include <sys/types.h>
328 #ifdef HAVE_NETIPSEC_IPSEC_H
329 #include <netipsec/ipsec.h>
330 #elif defined(HAVE_NETINET6_IPSEC_H)
331 #include <netinet6/ipsec.h>
332 #else
333 #include <stdint.h>
334 #include <linux/ipsec.h>
335 #endif],
336 [int mode = IPSEC_MODE_BEET;
337 return mode;],
338 [AC_MSG_RESULT([yes]); AC_DEFINE([HAVE_IPSEC_MODE_BEET])],
339 [AC_MSG_RESULT([no])]
340 )
341
342 AC_MSG_CHECKING([for IPSEC_DIR_FWD])
343 AC_TRY_COMPILE(
344 [#include <sys/types.h>
345 #ifdef HAVE_NETIPSEC_IPSEC_H
346 #include <netipsec/ipsec.h>
347 #elif defined(HAVE_NETINET6_IPSEC_H)
348 #include <netinet6/ipsec.h>
349 #else
350 #include <stdint.h>
351 #include <linux/ipsec.h>
352 #endif],
353 [int dir = IPSEC_DIR_FWD;
354 return dir;],
355 [AC_MSG_RESULT([yes]); AC_DEFINE([HAVE_IPSEC_DIR_FWD])],
356 [AC_MSG_RESULT([no])]
357 )
358
359 AC_MSG_CHECKING([for gcc atomic operations])
360 AC_TRY_RUN(
361 [
362 int main() {
363 volatile int ref = 1;
364 __sync_fetch_and_add (&ref, 1);
365 __sync_sub_and_fetch (&ref, 1);
366 /* Make sure test fails if operations are not supported */
367 __sync_val_compare_and_swap(&ref, 1, 0);
368 return ref;
369 }
370 ],
371 [AC_MSG_RESULT([yes]); AC_DEFINE(HAVE_GCC_ATOMIC_OPERATIONS)],
372 [AC_MSG_RESULT([no])],
373 [AC_MSG_RESULT([no])])
374
375 dnl check for the new register_printf_specifier function with len argument,
376 dnl or the deprecated register_printf_function without
377 AC_CHECK_FUNC(
378 [register_printf_specifier],
379 [AC_DEFINE(HAVE_PRINTF_SPECIFIER)],
380 [AC_CHECK_FUNC(
381 [register_printf_function],
382 [AC_DEFINE(HAVE_PRINTF_FUNCTION)],
383 [
384 AC_MSG_NOTICE([printf does not support custom format specifiers!])
385 vstr=true
386 ]
387 )]
388 )
389
390 if test x$vstr = xtrue; then
391 AC_HAVE_LIBRARY([vstr],[LIBS="$LIBS"],[AC_MSG_ERROR([Vstr string library not found])])
392 AC_DEFINE(USE_VSTR)
393 fi
394
395 if test x$gmp = xtrue; then
396 AC_HAVE_LIBRARY([gmp],[LIBS="$LIBS"],[AC_MSG_ERROR([GNU Multi Precision library gmp not found])])
397 AC_MSG_CHECKING([gmp.h version >= 4.1.4])
398 AC_TRY_COMPILE(
399 [#include "gmp.h"],
400 [
401 #if (__GNU_MP_VERSION*100 + __GNU_MP_VERSION_MINOR*10 + __GNU_MP_VERSION_PATCHLEVEL) < 414
402 #error bad gmp
403 #endif
404 ],
405 [AC_MSG_RESULT([yes])], [AC_MSG_RESULT([no]); AC_MSG_ERROR([No usable gmp.h found!])]
406 )
407 fi
408
409 if test x$ldap = xtrue; then
410 AC_HAVE_LIBRARY([ldap],[LIBS="$LIBS"],[AC_MSG_ERROR([LDAP library ldap not found])])
411 AC_HAVE_LIBRARY([lber],[LIBS="$LIBS"],[AC_MSG_ERROR([LDAP library lber not found])])
412 AC_CHECK_HEADER([ldap.h],,[AC_MSG_ERROR([LDAP header ldap.h not found!])])
413 fi
414
415 if test x$curl = xtrue; then
416 AC_HAVE_LIBRARY([curl],[LIBS="$LIBS"],[AC_MSG_ERROR([CURL library curl not found])])
417 AC_CHECK_HEADER([curl/curl.h],,[AC_MSG_ERROR([CURL header curl/curl.h not found!])])
418 fi
419
420 if test x$xml = xtrue; then
421 PKG_CHECK_MODULES(xml, [libxml-2.0])
422 AC_SUBST(xml_CFLAGS)
423 AC_SUBST(xml_LIBS)
424 fi
425
426 if test x$dumm = xtrue; then
427 PKG_CHECK_MODULES(gtk, [gtk+-2.0 vte])
428 AC_SUBST(gtk_CFLAGS)
429 AC_SUBST(gtk_LIBS)
430 AC_CHECK_PROGS(RUBY, ruby)
431 AC_MSG_CHECKING([for Ruby header files])
432 if test -n "$RUBY"; then
433 RUBYDIR=`($RUBY -rmkmf -e 'print Config::CONFIG[["archdir"]] || $archdir') 2>/dev/null`
434 if test -n "$RUBYDIR"; then
435 dirs="$RUBYDIR"
436 RUBYINCLUDE=none
437 for i in $dirs; do
438 if test -r $i/ruby.h; then
439 AC_MSG_RESULT([$i])
440 RUBYINCLUDE="-I$i"
441 break;
442 fi
443 done
444 if test x"$RUBYINCLUDE" = xnone; then
445 AC_MSG_ERROR([ruby.h not found])
446 fi
447 AC_SUBST(RUBYINCLUDE)
448 else
449 AC_MSG_ERROR([unable to determine ruby configuration])
450 fi
451 else
452 AC_MSG_ERROR([don't know how to run ruby])
453 fi
454 fi
455
456 if test x$fast = xtrue; then
457 AC_HAVE_LIBRARY([neo_cgi],[LIBS="$LIBS"],[AC_MSG_ERROR([ClearSilver library neo_cgi not found!])])
458 AC_HAVE_LIBRARY([neo_utl],[LIBS="$LIBS"],[AC_MSG_ERROR([ClearSilver library neo_utl not found!])])
459 AC_HAVE_LIBRARY([z],[LIBS="$LIBS"],[AC_MSG_ERROR([ClearSilver dependency zlib not found!])])
460 dnl autoconf does not like CamelCase!? How to fix this?
461 dnl AC_CHECK_HEADER([ClearSilver/ClearSilver.h],,[AC_MSG_ERROR([ClearSilver header file ClearSilver/ClearSilver.h not found!])])
462
463 AC_HAVE_LIBRARY([fcgi],[LIBS="$LIBS"],[AC_MSG_ERROR([FastCGI library fcgi not found!])])
464 AC_CHECK_HEADER([fcgiapp.h],,[AC_MSG_ERROR([FastCGI header file fcgiapp.h not found!])])
465 fi
466
467 if test x$mysql = xtrue; then
468 AC_PATH_PROG([MYSQLCONFIG], [mysql_config], [], [$PATH:/bin:/usr/bin:/usr/local/bin])
469 if test x$MYSQLCONFIG = x; then
470 AC_MSG_ERROR([mysql_config not found!])
471 fi
472 AC_SUBST(MYSQLLIB, `$MYSQLCONFIG --libs_r`)
473 AC_SUBST(MYSQLCFLAG, `$MYSQLCONFIG --cflags`)
474 fi
475
476 if test x$sqlite = xtrue; then
477 AC_HAVE_LIBRARY([sqlite3],[LIBS="$LIBS"],[AC_MSG_ERROR([SQLite library sqlite3 not found])])
478 AC_CHECK_HEADER([sqlite3.h],,[AC_MSG_ERROR([SQLite header sqlite3.h not found!])])
479 AC_MSG_CHECKING([sqlite3_prepare_v2])
480 AC_TRY_COMPILE(
481 [#include <sqlite3.h>],
482 [
483 void *test = sqlite3_prepare_v2;
484 ],
485 [AC_MSG_RESULT([yes])]; AC_DEFINE_UNQUOTED(HAVE_SQLITE3_PREPARE_V2, 1), [AC_MSG_RESULT([no])])
486 AC_MSG_CHECKING([sqlite3.h version >= 3.3.1])
487 AC_TRY_COMPILE(
488 [#include <sqlite3.h>],
489 [
490 #if SQLITE_VERSION_NUMBER < 3003001
491 #error bad sqlite
492 #endif
493 ],
494 [AC_MSG_RESULT([yes])], [AC_MSG_RESULT([no]); AC_MSG_ERROR([SQLite version >= 3.3.1 required!])])
495 fi
496
497 if test x$openssl = xtrue; then
498 AC_HAVE_LIBRARY([crypto],[LIBS="$LIBS"],[AC_MSG_ERROR([OpenSSL crypto library not found])])
499 AC_CHECK_HEADER([openssl/evp.h],,[AC_MSG_ERROR([OpenSSL header openssl/evp.h not found!])])
500 fi
501
502 if test x$gcrypt = xtrue; then
503 AC_HAVE_LIBRARY([gcrypt],[LIBS="$LIBS"],[AC_MSG_ERROR([gcrypt library not found])])
504 AC_CHECK_HEADER([gcrypt.h],,[AC_MSG_ERROR([gcrypt header gcrypt.h not found!])])
505 AC_MSG_CHECKING([gcrypt CAMELLIA cipher])
506 AC_TRY_COMPILE(
507 [#include <gcrypt.h>],
508 [enum gcry_cipher_algos alg = GCRY_CIPHER_CAMELLIA128;],
509 [AC_MSG_RESULT([yes]); AC_DEFINE([HAVE_GCRY_CIPHER_CAMELLIA])],
510 [AC_MSG_RESULT([no])]
511 )
512 fi
513
514 if test x$uci = xtrue; then
515 AC_HAVE_LIBRARY([uci],[LIBS="$LIBS"],[AC_MSG_ERROR([UCI library libuci not found])])
516 AC_CHECK_HEADER([uci.h],,[AC_MSG_ERROR([UCI header uci.h not found!])])
517 fi
518
519 if test x$nm = xtrue; then
520 PKG_CHECK_EXISTS([libnm-glib],
521 [PKG_CHECK_MODULES(nm, [NetworkManager gthread-2.0 libnm-glib libnm-glib-vpn])],
522 [PKG_CHECK_MODULES(nm, [NetworkManager gthread-2.0 libnm_glib libnm_glib_vpn])]
523 )
524 AC_SUBST(nm_CFLAGS)
525 AC_SUBST(nm_LIBS)
526 fi
527
528 if test x$eap_gtc = xtrue; then
529 AC_HAVE_LIBRARY([pam],[LIBS="$LIBS"],[AC_MSG_ERROR([PAM library not found])])
530 AC_CHECK_HEADER([security/pam_appl.h],,[AC_MSG_ERROR([PAM header security/pam_appl.h not found!])])
531 fi
532
533 if test x$capabilities = xlibcap; then
534 AC_HAVE_LIBRARY([cap],[LIBS="$LIBS"],[AC_MSG_ERROR([libcap library not found])])
535 AC_CHECK_HEADER([sys/capability.h],,[AC_MSG_ERROR([libcap header sys/capability.h not found!])])
536 fi
537
538 if test x$integrity_test = xtrue; then
539 AC_MSG_CHECKING([for dladdr()])
540 AC_TRY_COMPILE(
541 [#define _GNU_SOURCE
542 #include <dlfcn.h>],
543 [Dl_info info; dladdr(main, &info);],
544 [AC_MSG_RESULT([yes])], [AC_MSG_RESULT([no]);
545 AC_MSG_ERROR([dladdr() not supported, required by integrity-test!])]
546 )
547 AC_MSG_CHECKING([for dl_iterate_phdr()])
548 AC_TRY_COMPILE(
549 [#define _GNU_SOURCE
550 #include <link.h>],
551 [dl_iterate_phdr((void*)0, (void*)0);],
552 [AC_MSG_RESULT([yes])], [AC_MSG_RESULT([no]);
553 AC_MSG_ERROR([dl_iterate_phdr() not supported, required by integrity-test!])]
554 )
555 fi
556
557 dnl ======================================
558 dnl collect all plugins for libstrongswan
559 dnl ======================================
560
561 libstrongswan_plugins=
562 pluto_plugins=
563
564 if test x$test_vectors = xtrue; then
565 libstrongswan_plugins=${libstrongswan_plugins}" test-vectors"
566 pluto_plugins=${pluto_plugins}" test-vectors"
567 fi
568 if test x$curl = xtrue; then
569 libstrongswan_plugins=${libstrongswan_plugins}" curl"
570 pluto_plugins=${pluto_plugins}" curl"
571 fi
572 if test x$ldap = xtrue; then
573 libstrongswan_plugins=${libstrongswan_plugins}" ldap"
574 pluto_plugins=${pluto_plugins}" ldap"
575 fi
576 if test x$aes = xtrue; then
577 libstrongswan_plugins=${libstrongswan_plugins}" aes"
578 pluto_plugins=${pluto_plugins}" aes"
579 fi
580 if test x$des = xtrue; then
581 libstrongswan_plugins=${libstrongswan_plugins}" des"
582 pluto_plugins=${pluto_plugins}" des"
583 fi
584 if test x$blowfish = xtrue; then
585 libstrongswan_plugins=${libstrongswan_plugins}" blowfish"
586 pluto_plugins=${pluto_plugins}" blowfish"
587 fi
588 if test x$sha1 = xtrue; then
589 libstrongswan_plugins=${libstrongswan_plugins}" sha1"
590 pluto_plugins=${pluto_plugins}" sha1"
591 fi
592 if test x$sha2 = xtrue; then
593 libstrongswan_plugins=${libstrongswan_plugins}" sha2"
594 pluto_plugins=${pluto_plugins}" sha2"
595 fi
596 if test x$md4 = xtrue; then
597 libstrongswan_plugins=${libstrongswan_plugins}" md4"
598 fi
599 if test x$md5 = xtrue; then
600 libstrongswan_plugins=${libstrongswan_plugins}" md5"
601 pluto_plugins=${pluto_plugins}" md5"
602 fi
603 if test x$fips_prf = xtrue; then
604 libstrongswan_plugins=${libstrongswan_plugins}" fips-prf"
605 fi
606 if test x$random = xtrue; then
607 libstrongswan_plugins=${libstrongswan_plugins}" random"
608 pluto_plugins=${pluto_plugins}" random"
609 fi
610 if test x$x509 = xtrue; then
611 libstrongswan_plugins=${libstrongswan_plugins}" x509"
612 pluto_plugins=${pluto_plugins}" x509"
613 fi
614 if test x$pubkey = xtrue; then
615 libstrongswan_plugins=${libstrongswan_plugins}" pubkey"
616 pluto_plugins=${pluto_plugins}" pubkey"
617 fi
618 if test x$pkcs1 = xtrue; then
619 libstrongswan_plugins=${libstrongswan_plugins}" pkcs1"
620 pluto_plugins=${pluto_plugins}" pkcs1"
621 fi
622 if test x$pgp = xtrue; then
623 libstrongswan_plugins=${libstrongswan_plugins}" pgp"
624 pluto_plugins=${pluto_plugins}" pgp"
625 fi
626 if test x$dnskey = xtrue; then
627 libstrongswan_plugins=${libstrongswan_plugins}" dnskey"
628 pluto_plugins=${pluto_plugins}" dnskey"
629 fi
630 if test x$pem = xtrue; then
631 libstrongswan_plugins=${libstrongswan_plugins}" pem"
632 pluto_plugins=${pluto_plugins}" pem"
633 fi
634 if test x$mysql = xtrue; then
635 libstrongswan_plugins=${libstrongswan_plugins}" mysql"
636 pluto_plugins=${pluto_plugins}" mysql"
637 fi
638 if test x$sqlite = xtrue; then
639 libstrongswan_plugins=${libstrongswan_plugins}" sqlite"
640 pluto_plugins=${pluto_plugins}" sqlite"
641 fi
642 if test x$attr_sql = xtrue -o x$sql = xtrue; then
643 libstrongswan_plugins=${libstrongswan_plugins}" attr-sql"
644 pluto_plugins=${pluto_plugins}" attr-sql"
645 fi
646 if test x$padlock = xtrue; then
647 libstrongswan_plugins=${libstrongswan_plugins}" padlock"
648 fi
649 if test x$openssl = xtrue; then
650 libstrongswan_plugins=${libstrongswan_plugins}" openssl"
651 pluto_plugins=${pluto_plugins}" openssl"
652 fi
653 if test x$gcrypt = xtrue; then
654 libstrongswan_plugins=${libstrongswan_plugins}" gcrypt"
655 pluto_plugins=${pluto_plugins}" gcrypt"
656 fi
657 if test x$xcbc = xtrue; then
658 libstrongswan_plugins=${libstrongswan_plugins}" xcbc"
659 fi
660 if test x$hmac = xtrue; then
661 libstrongswan_plugins=${libstrongswan_plugins}" hmac"
662 pluto_plugins=${pluto_plugins}" hmac"
663 fi
664 if test x$agent = xtrue; then
665 libstrongswan_plugins=${libstrongswan_plugins}" agent"
666 fi
667 if test x$gmp = xtrue; then
668 libstrongswan_plugins=${libstrongswan_plugins}" gmp"
669 pluto_plugins=${pluto_plugins}" gmp"
670 fi
671
672 AC_SUBST(libstrongswan_plugins)
673 AC_SUBST(pluto_plugins)
674
675 dnl =========================
676 dnl set Makefile.am vars
677 dnl =========================
678
679 dnl libstrongswan plugins
680 dnl =====================
681 AM_CONDITIONAL(USE_TEST_VECTORS, test x$test_vectors = xtrue)
682 AM_CONDITIONAL(USE_CURL, test x$curl = xtrue)
683 AM_CONDITIONAL(USE_LDAP, test x$ldap = xtrue)
684 AM_CONDITIONAL(USE_AES, test x$aes = xtrue)
685 AM_CONDITIONAL(USE_DES, test x$des = xtrue)
686 AM_CONDITIONAL(USE_BLOWFISH, test x$blowfish = xtrue)
687 AM_CONDITIONAL(USE_MD4, test x$md4 = xtrue)
688 AM_CONDITIONAL(USE_MD5, test x$md5 = xtrue)
689 AM_CONDITIONAL(USE_SHA1, test x$sha1 = xtrue)
690 AM_CONDITIONAL(USE_SHA2, test x$sha2 = xtrue)
691 AM_CONDITIONAL(USE_FIPS_PRF, test x$fips_prf = xtrue)
692 AM_CONDITIONAL(USE_GMP, test x$gmp = xtrue)
693 AM_CONDITIONAL(USE_RANDOM, test x$random = xtrue)
694 AM_CONDITIONAL(USE_X509, test x$x509 = xtrue)
695 AM_CONDITIONAL(USE_PUBKEY, test x$pubkey = xtrue)
696 AM_CONDITIONAL(USE_PKCS1, test x$pkcs1 = xtrue)
697 AM_CONDITIONAL(USE_PGP, test x$pgp = xtrue)
698 AM_CONDITIONAL(USE_DNSKEY, test x$dnskey = xtrue)
699 AM_CONDITIONAL(USE_PEM, test x$pem = xtrue)
700 AM_CONDITIONAL(USE_HMAC, test x$hmac = xtrue)
701 AM_CONDITIONAL(USE_XCBC, test x$xcbc = xtrue)
702 AM_CONDITIONAL(USE_MYSQL, test x$mysql = xtrue)
703 AM_CONDITIONAL(USE_SQLITE, test x$sqlite = xtrue)
704 AM_CONDITIONAL(USE_ATTR_SQL, test x$attr_sql = xtrue -o x$sql = xtrue)
705 AM_CONDITIONAL(USE_PADLOCK, test x$padlock = xtrue)
706 AM_CONDITIONAL(USE_OPENSSL, test x$openssl = xtrue)
707 AM_CONDITIONAL(USE_GCRYPT, test x$gcrypt = xtrue)
708 AM_CONDITIONAL(USE_AGENT, test x$agent = xtrue)
709
710 dnl charon plugins
711 dnl ==============
712 AM_CONDITIONAL(USE_STROKE, test x$stroke = xtrue)
713 AM_CONDITIONAL(USE_MEDSRV, test x$medsrv = xtrue)
714 AM_CONDITIONAL(USE_MEDCLI, test x$medcli = xtrue)
715 AM_CONDITIONAL(USE_NM, test x$nm = xtrue)
716 AM_CONDITIONAL(USE_UCI, test x$uci = xtrue)
717 AM_CONDITIONAL(USE_SMP, test x$smp = xtrue)
718 AM_CONDITIONAL(USE_SQL, test x$sql = xtrue)
719 AM_CONDITIONAL(USE_UPDOWN, test x$updown = xtrue)
720 AM_CONDITIONAL(USE_ATTR, test x$attr = xtrue)
721 AM_CONDITIONAL(USE_RESOLVE, test x$resolve = xtrue)
722 AM_CONDITIONAL(USE_UNIT_TESTS, test x$unit_tests = xtrue)
723 AM_CONDITIONAL(USE_LOAD_TESTER, test x$load_tester = xtrue)
724 AM_CONDITIONAL(USE_EAP_SIM, test x$eap_sim = xtrue)
725 AM_CONDITIONAL(USE_EAP_SIM_FILE, test x$eap_sim_file = xtrue)
726 AM_CONDITIONAL(USE_EAP_SIMAKA_PSEUDONYM, test x$eap_simaka_pseudonym = xtrue)
727 AM_CONDITIONAL(USE_EAP_SIMAKA_REAUTH, test x$eap_simaka_reauth = xtrue)
728 AM_CONDITIONAL(USE_EAP_IDENTITY, test x$eap_identity = xtrue)
729 AM_CONDITIONAL(USE_EAP_MD5, test x$eap_md5 = xtrue)
730 AM_CONDITIONAL(USE_EAP_GTC, test x$eap_gtc = xtrue)
731 AM_CONDITIONAL(USE_EAP_AKA, test x$eap_aka = xtrue)
732 AM_CONDITIONAL(USE_EAP_AKA_3GPP2, test x$eap_aka_3gpp2 = xtrue)
733 AM_CONDITIONAL(USE_EAP_MSCHAPV2, test x$eap_mschapv2 = xtrue)
734 AM_CONDITIONAL(USE_EAP_RADIUS, test x$eap_radius = xtrue)
735 AM_CONDITIONAL(USE_KERNEL_NETLINK, test x$kernel_netlink = xtrue)
736 AM_CONDITIONAL(USE_KERNEL_PFKEY, test x$kernel_pfkey = xtrue)
737 AM_CONDITIONAL(USE_KERNEL_PFROUTE, test x$kernel_pfroute = xtrue)
738 AM_CONDITIONAL(USE_KERNEL_KLIPS, test x$kernel_klips = xtrue)
739
740 dnl other options
741 dnl =============
742 AM_CONDITIONAL(USE_SMARTCARD, test x$smartcard = xtrue)
743 AM_CONDITIONAL(USE_CISCO_QUIRKS, test x$cisco_quirks = xtrue)
744 AM_CONDITIONAL(USE_LEAK_DETECTIVE, test x$leak_detective = xtrue)
745 AM_CONDITIONAL(USE_LOCK_PROFILER, test x$lock_profiler = xtrue)
746 AM_CONDITIONAL(USE_NAT_TRANSPORT, test x$nat_transport = xtrue)
747 AM_CONDITIONAL(USE_VENDORID, test x$vendor_id = xtrue)
748 AM_CONDITIONAL(USE_XAUTH_VID, test x$xauth_vid = xtrue)
749 AM_CONDITIONAL(USE_DUMM, test x$dumm = xtrue)
750 AM_CONDITIONAL(USE_FAST, test x$fast = xtrue)
751 AM_CONDITIONAL(USE_MANAGER, test x$manager = xtrue)
752 AM_CONDITIONAL(USE_ME, test x$mediation = xtrue)
753 AM_CONDITIONAL(USE_INTEGRITY_TEST, test x$integrity_test = xtrue)
754 AM_CONDITIONAL(USE_CAPABILITIES, test x$capabilities = xlibcap)
755 AM_CONDITIONAL(USE_PLUTO, test x$pluto = xtrue)
756 AM_CONDITIONAL(USE_THREADS, test x$threads = xtrue)
757 AM_CONDITIONAL(USE_CHARON, test x$charon = xtrue)
758 AM_CONDITIONAL(USE_TOOLS, test x$tools = xtrue)
759 AM_CONDITIONAL(USE_SCRIPTS, test x$scripts = xtrue)
760 AM_CONDITIONAL(USE_LIBSTRONGSWAN, test x$charon = xtrue -o x$pluto = xtrue -o x$tools = xtrue)
761 AM_CONDITIONAL(USE_FILE_CONFIG, test x$pluto = xtrue -o x$stroke = xtrue)
762 AM_CONDITIONAL(USE_VSTR, test x$vstr = xtrue)
763 AM_CONDITIONAL(USE_SIMAKA, test x$simaka = xtrue)
764
765 dnl ==============================
766 dnl set global definitions
767 dnl ==============================
768
769 if test x$mediation = xtrue; then
770 AC_DEFINE(ME)
771 fi
772 if test x$capabilities = xlibcap; then
773 AC_DEFINE(CAPABILITIES)
774 fi
775
776 dnl ==============================
777 dnl build Makefiles
778 dnl ==============================
779
780 AC_OUTPUT(
781 Makefile
782 src/Makefile
783 src/include/Makefile
784 src/libstrongswan/Makefile
785 src/libstrongswan/plugins/aes/Makefile
786 src/libstrongswan/plugins/des/Makefile
787 src/libstrongswan/plugins/blowfish/Makefile
788 src/libstrongswan/plugins/md4/Makefile
789 src/libstrongswan/plugins/md5/Makefile
790 src/libstrongswan/plugins/sha1/Makefile
791 src/libstrongswan/plugins/sha2/Makefile
792 src/libstrongswan/plugins/fips_prf/Makefile
793 src/libstrongswan/plugins/gmp/Makefile
794 src/libstrongswan/plugins/random/Makefile
795 src/libstrongswan/plugins/hmac/Makefile
796 src/libstrongswan/plugins/xcbc/Makefile
797 src/libstrongswan/plugins/x509/Makefile
798 src/libstrongswan/plugins/pubkey/Makefile
799 src/libstrongswan/plugins/pkcs1/Makefile
800 src/libstrongswan/plugins/pgp/Makefile
801 src/libstrongswan/plugins/dnskey/Makefile
802 src/libstrongswan/plugins/pem/Makefile
803 src/libstrongswan/plugins/curl/Makefile
804 src/libstrongswan/plugins/ldap/Makefile
805 src/libstrongswan/plugins/mysql/Makefile
806 src/libstrongswan/plugins/sqlite/Makefile
807 src/libstrongswan/plugins/attr_sql/Makefile
808 src/libstrongswan/plugins/padlock/Makefile
809 src/libstrongswan/plugins/openssl/Makefile
810 src/libstrongswan/plugins/gcrypt/Makefile
811 src/libstrongswan/plugins/agent/Makefile
812 src/libstrongswan/plugins/test_vectors/Makefile
813 src/libfreeswan/Makefile
814 src/libsimaka/Makefile
815 src/pluto/Makefile
816 src/whack/Makefile
817 src/charon/Makefile
818 src/charon/plugins/eap_aka/Makefile
819 src/charon/plugins/eap_aka_3gpp2/Makefile
820 src/charon/plugins/eap_identity/Makefile
821 src/charon/plugins/eap_md5/Makefile
822 src/charon/plugins/eap_gtc/Makefile
823 src/charon/plugins/eap_sim/Makefile
824 src/charon/plugins/eap_sim_file/Makefile
825 src/charon/plugins/eap_simaka_pseudonym/Makefile
826 src/charon/plugins/eap_simaka_reauth/Makefile
827 src/charon/plugins/eap_mschapv2/Makefile
828 src/charon/plugins/eap_radius/Makefile
829 src/charon/plugins/kernel_netlink/Makefile
830 src/charon/plugins/kernel_pfkey/Makefile
831 src/charon/plugins/kernel_pfroute/Makefile
832 src/charon/plugins/kernel_klips/Makefile
833 src/charon/plugins/smp/Makefile
834 src/charon/plugins/sql/Makefile
835 src/charon/plugins/medsrv/Makefile
836 src/charon/plugins/medcli/Makefile
837 src/charon/plugins/nm/Makefile
838 src/charon/plugins/uci/Makefile
839 src/charon/plugins/stroke/Makefile
840 src/charon/plugins/updown/Makefile
841 src/charon/plugins/attr/Makefile
842 src/charon/plugins/resolve/Makefile
843 src/charon/plugins/unit_tester/Makefile
844 src/charon/plugins/load_tester/Makefile
845 src/stroke/Makefile
846 src/ipsec/Makefile
847 src/starter/Makefile
848 src/_updown/Makefile
849 src/_updown_espmark/Makefile
850 src/_copyright/Makefile
851 src/openac/Makefile
852 src/scepclient/Makefile
853 src/pki/Makefile
854 src/dumm/Makefile
855 src/dumm/ext/extconf.rb
856 src/libfast/Makefile
857 src/manager/Makefile
858 src/medsrv/Makefile
859 src/checksum/Makefile
860 scripts/Makefile
861 testing/Makefile
862 )
Michael's strongswan development tree