]> git.ipfire.org Git - people/ms/strongswan.git/blob - configure.in
projects / people / ms / strongswan.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
blame | history | raw | HEAD
support generation of EC certificates
[people/ms/strongswan.git] / configure.in
1 dnl configure.in for linux strongSwan
2 dnl Copyright (C) 2006 Martin Willi
3 dnl Hochschule fuer Technik Rapperswil
4 dnl
5 dnl This program is free software; you can redistribute it and/or modify it
6 dnl under the terms of the GNU General Public License as published by the
7 dnl Free Software Foundation; either version 2 of the License, or (at your
8 dnl option) any later version. See <http://www.fsf.org/copyleft/gpl.txt>.
9 dnl
10 dnl This program is distributed in the hope that it will be useful, but
11 dnl WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY
12 dnl or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License
13 dnl for more details.
14
15 dnl ===========================
16 dnl initialize & set some vars
17 dnl ===========================
18
19 AC_INIT(strongSwan,4.3.5)
20 AM_INIT_AUTOMAKE(tar-ustar)
21 AC_SUBST(confdir, '${sysconfdir}')
22 PKG_PROG_PKG_CONFIG
23
24 dnl =================================
25 dnl check --enable-xxx & --with-xxx
26 dnl =================================
27
28 AC_ARG_WITH(
29 [default-pkcs11],
30 AS_HELP_STRING([--with-default-pkcs11=lib],[set the default PKCS11 library other than "/usr/lib/opensc-pkcs11.so"]),
31 [AC_DEFINE_UNQUOTED(PKCS11_DEFAULT_LIB, "$withval")],
32 [AC_DEFINE_UNQUOTED(PKCS11_DEFAULT_LIB, "/usr/lib/opensc-pkcs11.so")]
33 )
34
35 AC_ARG_WITH(
36 [xauth-module],
37 AS_HELP_STRING([--with-xauth-module=lib],[set the path to the XAUTH module]),
38 [AC_DEFINE_UNQUOTED(XAUTH_DEFAULT_LIB, "$withval")],
39 )
40
41 AC_ARG_WITH(
42 [random-device],
43 AS_HELP_STRING([--with-random-device=dev],[set the device for real random data other than "/dev/random"]),
44 [AC_DEFINE_UNQUOTED(DEV_RANDOM, "$withval")],
45 [AC_DEFINE_UNQUOTED(DEV_RANDOM, "/dev/random")]
46 )
47 AC_ARG_WITH(
48 [resolv-conf],
49 AS_HELP_STRING([--with-resolv-conf=file],[set the file to use in DNS handler plugin other than "sysconfdir/resolv.conf"]),
50 [AC_SUBST(resolv_conf, "$withval")],
51 [AC_SUBST(resolv_conf, "${sysconfdir}/resolv.conf")]
52 )
53
54 AC_ARG_WITH(
55 [strongswan-conf],
56 AS_HELP_STRING([--with-strongswan-conf=file],[strongswan.conf file other than "sysconfdir/strongswan.conf"]),
57 [AC_SUBST(strongswan_conf, "$withval")],
58 [AC_SUBST(strongswan_conf, "${sysconfdir}/strongswan.conf")]
59 )
60
61 AC_ARG_WITH(
62 [urandom-device],
63 AS_HELP_STRING([--with-urandom-device=dev],[set the device for pseudo random data other than "/dev/urandom"]),
64 [AC_DEFINE_UNQUOTED(DEV_URANDOM, "$withval")],
65 [AC_DEFINE_UNQUOTED(DEV_URANDOM, "/dev/urandom")]
66 )
67
68 AC_ARG_WITH(
69 [piddir],
70 AS_HELP_STRING([--with-piddir=dir],[path for PID and UNIX socket files other than "/var/run"]),
71 [AC_SUBST(piddir, "$withval")],
72 [AC_SUBST(piddir, "/var/run")]
73 )
74
75 AC_ARG_WITH(
76 [ipsecdir],
77 AS_HELP_STRING([--with-ipsecdir=dir],[installation path for ipsec tools other than "libexecdir/ipsec"]),
78 [AC_SUBST(ipsecdir, "$withval")],
79 [AC_SUBST(ipsecdir, "${libexecdir%/}/ipsec")]
80 )
81 AC_SUBST(plugindir, "${ipsecdir%/}/plugins")
82
83 AC_ARG_WITH(
84 [plugindir],
85 AS_HELP_STRING([--with-plugindir=dir],[installation path for plugins other than "ipsecdir/plugins"]),
86 [AC_SUBST(plugindir, "$withval")],
87 [AC_SUBST(plugindir, "${ipsecdir%/}/plugins")]
88 )
89
90 AC_ARG_WITH(
91 [sim-reader],
92 AS_HELP_STRING([--with-sim-reader=library.so],[library containing the sim_run_alg()/sim_get_triplet() function for EAP-SIM]),
93 [AC_SUBST(simreader, "$withval")],
94 [AC_SUBST(simreader, "${plugindir%/}/libeapsim-file.so")]
95 )
96
97 AC_ARG_WITH(
98 [linux-headers],
99 AS_HELP_STRING([--with-linux-headers=dir],[use the linux header files in dir instead of the supplied ones in "src/include"]),
100 [AC_SUBST(linuxdir, "$withval")], [AC_SUBST(linuxdir, "\${top_srcdir}/src/include")]
101 )
102 AC_SUBST(LINUX_HEADERS)
103
104 AC_ARG_WITH(
105 [routing-table],
106 AS_HELP_STRING([--with-routing-table=num],[use routing table for IPsec routes (default: 220)]),
107 [AC_DEFINE_UNQUOTED(IPSEC_ROUTING_TABLE, $withval) AC_SUBST(IPSEC_ROUTING_TABLE, "$withval")],
108 [AC_DEFINE_UNQUOTED(IPSEC_ROUTING_TABLE, 220) AC_SUBST(IPSEC_ROUTING_TABLE, "220")]
109 )
110
111 AC_ARG_WITH(
112 [routing-table-prio],
113 AS_HELP_STRING([--with-routing-table-prio=prio],[priority for IPsec routing table (default: 220)]),
114 [AC_DEFINE_UNQUOTED(IPSEC_ROUTING_TABLE_PRIO, $withval) AC_SUBST(IPSEC_ROUTING_TABLE_PRIO, "$withval")],
115 [AC_DEFINE_UNQUOTED(IPSEC_ROUTING_TABLE_PRIO, 220) AC_SUBST(IPSEC_ROUTING_TABLE_PRIO, "220")]
116 )
117
118 AC_ARG_WITH(
119 [uid],,[AC_MSG_ERROR([--with-uid is gone, use --with-user instead!])]
120 )
121
122 AC_ARG_WITH(
123 [gid],,[AC_MSG_ERROR([--with-gid is gone, use --with-group instead!])]
124 )
125
126 AC_ARG_WITH(
127 [user],
128 AS_HELP_STRING([--with-user=user],[change user of the daemons to "user" after startup (default is "root").]),
129 [AC_DEFINE_UNQUOTED(IPSEC_USER, "$withval") AC_SUBST(ipsecuser, "$withval")],
130 [AC_SUBST(ipsecuser, "root")]
131 )
132
133 AC_ARG_WITH(
134 [group],
135 AS_HELP_STRING([--with-group=group],[change group of the daemons to "group" after startup (default is "root").]),
136 [AC_DEFINE_UNQUOTED(IPSEC_GROUP, "$withval") AC_SUBST(ipsecgroup, "$withval")],
137 [AC_SUBST(ipsecgroup, "root")]
138 )
139
140 dnl Will be extended to --with-capabilities=libcap|libcap2
141 AC_ARG_WITH(
142 [capabilities],
143 AS_HELP_STRING([--with-capabilities=libcap],[capability dropping using libcap. Currenlty only the value "libcap" is supported (default is NO).]),
144 [capabilities="$withval"],
145 [capabilities=no]
146 )
147
148 AC_ARG_ENABLE(
149 [curl],
150 AS_HELP_STRING([--enable-curl],[enable CURL fetcher plugin to fetch files via libcurl (default is NO). Requires libcurl.]),
151 [if test x$enableval = xyes; then
152 curl=true
153 fi]
154 )
155
156 AC_ARG_ENABLE(
157 [ldap],
158 AS_HELP_STRING([--enable-ldap],[enable LDAP fetching plugin to fetch files via libldap (default is NO). Requires openLDAP.]),
159 [if test x$enableval = xyes; then
160 ldap=true
161 fi]
162 )
163
164 AC_ARG_ENABLE(
165 [aes],
166 AS_HELP_STRING([--disable-aes],[disable own AES software implementation plugin. (default is NO).]),
167 [if test x$enableval = xyes; then
168 aes=true
169 else
170 aes=false
171 fi],
172 aes=true
173 )
174
175 AC_ARG_ENABLE(
176 [des],
177 AS_HELP_STRING([--disable-des],[disable own DES/3DES software implementation plugin. (default is NO).]),
178 [if test x$enableval = xyes; then
179 des=true
180 else
181 des=false
182 fi],
183 des=true
184 )
185
186 AC_ARG_ENABLE(
187 [blowfish],
188 AS_HELP_STRING([--enable-blowfish],[enable Blowfish software implementation plugin (default is NO).]),
189 [if test x$enableval = xyes; then
190 blowfish=true
191 fi]
192 )
193
194 AC_ARG_ENABLE(
195 [md4],
196 AS_HELP_STRING([--enable-md4],[enable MD4 software implementation plugin (default is NO).]),
197 [if test x$enableval = xyes; then
198 md4=true
199 fi]
200 )
201
202 AC_ARG_ENABLE(
203 [md5],
204 AS_HELP_STRING([--disable-md5],[disable own MD5 software implementation plugin. (default is NO).]),
205 [if test x$enableval = xyes; then
206 md5=true
207 else
208 md5=false
209 fi],
210 md5=true
211 )
212
213 AC_ARG_ENABLE(
214 [sha1],
215 AS_HELP_STRING([--disable-sha1],[disable own SHA1 software implementation plugin. (default is NO).]),
216 [if test x$enableval = xyes; then
217 sha1=true
218 else
219 sha1=false
220 fi],
221 sha1=true
222 )
223
224 AC_ARG_ENABLE(
225 [sha2],
226 AS_HELP_STRING([--disable-sha2],[disable own SHA256/SHA384/SHA512 software implementation plugin. (default is NO).]),
227 [if test x$enableval = xyes; then
228 sha2=true
229 else
230 sha2=false
231 fi],
232 sha2=true
233 )
234
235 AC_ARG_ENABLE(
236 [fips-prf],
237 AS_HELP_STRING([--disable-fips-prf],[disable FIPS PRF software implementation plugin. (default is NO).]),
238 [if test x$enableval = xyes; then
239 fips_prf=true
240 else
241 fips_prf=false
242 fi],
243 fips_prf=true
244 )
245
246 AC_ARG_ENABLE(
247 [gmp],
248 AS_HELP_STRING([--disable-gmp],[disable own GNU MP (libgmp) based crypto implementation plugin. (default is NO).]),
249 [if test x$enableval = xyes; then
250 gmp=true
251 else
252 gmp=false
253 fi],
254 gmp=true
255 )
256
257 AC_ARG_ENABLE(
258 [random],
259 AS_HELP_STRING([--disable-random],[disable RNG implementation on top of /dev/(u)random. (default is NO).]),
260 [if test x$enableval = xyes; then
261 random=true
262 else
263 random=false
264 fi],
265 random=true
266 )
267
268 AC_ARG_ENABLE(
269 [x509],
270 AS_HELP_STRING([--disable-x509],[disable own X509 certificate implementation plugin. (default is NO).]),
271 [if test x$enableval = xyes; then
272 x509=true
273 else
274 x509=false
275 fi],
276 x509=true
277 )
278
279 AC_ARG_ENABLE(
280 [pubkey],
281 AS_HELP_STRING([--disable-pubkey],[disable RAW public key support plugin. (default is NO).]),
282 [if test x$enableval = xyes; then
283 pubkey=true
284 else
285 pubkey=false
286 fi],
287 pubkey=true
288 )
289
290 AC_ARG_ENABLE(
291 [pkcs1],
292 AS_HELP_STRING([--disable-pkcs1],[disable PKCS1 key decoding plugin. (default is NO).]),
293 [if test x$enableval = xyes; then
294 pkcs1=true
295 else
296 pkcs1=false
297 fi],
298 pkcs1=true
299 )
300
301 AC_ARG_ENABLE(
302 [pgp],
303 AS_HELP_STRING([--disable-pgp],[disable PGP key decoding plugin. (default is NO).]),
304 [if test x$enableval = xyes; then
305 pgp=true
306 else
307 pgp=false
308 fi],
309 pgp=true
310 )
311
312 AC_ARG_ENABLE(
313 [dnskey],
314 AS_HELP_STRING([--disable-dnskey],[disable DNS RR key decoding plugin. (default is NO).]),
315 [if test x$enableval = xyes; then
316 dnskey=true
317 else
318 dnskey=false
319 fi],
320 dnskey=true
321 )
322
323 AC_ARG_ENABLE(
324 [pem],
325 AS_HELP_STRING([--disable-pem],[disable PEM decoding plugin. (default is NO).]),
326 [if test x$enableval = xyes; then
327 pem=true
328 else
329 pem=false
330 fi],
331 pem=true
332 )
333
334 AC_ARG_ENABLE(
335 [hmac],
336 AS_HELP_STRING([--disable-hmac],[disable HMAC crypto implementation plugin. (default is NO).]),
337 [if test x$enableval = xyes; then
338 hmac=true
339 else
340 hmac=false
341 fi],
342 hmac=true
343 )
344
345 AC_ARG_ENABLE(
346 [xcbc],
347 AS_HELP_STRING([--disable-xcbc],[disable xcbc crypto implementation plugin. (default is NO).]),
348 [if test x$enableval = xyes; then
349 xcbc=true
350 else
351 xcbc=false
352 fi],
353 xcbc=true
354 )
355
356 AC_ARG_ENABLE(
357 [test-vectors],
358 AS_HELP_STRING([--enable-test-vectors],[enable plugin providing crypto test vectors (default is NO).]),
359 [if test x$enableval = xyes; then
360 test_vectors=true
361 fi]
362 )
363
364 AC_ARG_ENABLE(
365 [mysql],
366 AS_HELP_STRING([--enable-mysql],[enable MySQL database support (default is NO). Requires libmysqlclient_r.]),
367 [if test x$enableval = xyes; then
368 mysql=true
369 fi]
370 )
371
372 AC_ARG_ENABLE(
373 [sqlite],
374 AS_HELP_STRING([--enable-sqlite],[enable SQLite database support (default is NO). Requires libsqlite3.]),
375 [if test x$enableval = xyes; then
376 sqlite=true
377 fi]
378 )
379
380 AC_ARG_ENABLE(
381 [stroke],
382 AS_HELP_STRING([--disable-stroke],[disable charons stroke (pluto compatibility) configuration backend. (default is NO).]),
383 [if test x$enableval = xyes; then
384 stroke=true
385 else
386 stroke=false
387 fi],
388 stroke=true
389 )
390
391 AC_ARG_ENABLE(
392 [medsrv],
393 AS_HELP_STRING([--enable-medsrv],[enable mediation server web frontend and daemon plugin (default is NO).]),
394 [if test x$enableval = xyes; then
395 medsrv=true
396 fi]
397 )
398
399 AC_ARG_ENABLE(
400 [medcli],
401 AS_HELP_STRING([--enable-medcli],[enable mediation client configuration database plugin (default is NO).]),
402 [if test x$enableval = xyes; then
403 medcli=true
404 fi]
405 )
406
407 AC_ARG_ENABLE(
408 [smp],
409 AS_HELP_STRING([--enable-smp],[enable SMP configuration and control interface (default is NO). Requires libxml.]),
410 [if test x$enableval = xyes; then
411 smp=true
412 fi]
413 )
414
415 AC_ARG_ENABLE(
416 [sql],
417 AS_HELP_STRING([--enable-sql],[enable SQL database configuration backend (default is NO).]),
418 [if test x$enableval = xyes; then
419 sql=true
420 fi]
421 )
422
423 AC_ARG_ENABLE(
424 [smartcard],
425 AS_HELP_STRING([--enable-smartcard],[enable smartcard support (default is NO).]),
426 [if test x$enableval = xyes; then
427 smartcard=true
428 fi]
429 )
430
431 AC_ARG_ENABLE(
432 [cisco-quirks],
433 AS_HELP_STRING([--enable-cisco-quirks],[enable support of Cisco VPN client (default is NO).]),
434 [if test x$enableval = xyes; then
435 cisco_quirks=true
436 fi]
437 )
438
439 AC_ARG_ENABLE(
440 [leak-detective],
441 AS_HELP_STRING([--enable-leak-detective],[enable malloc hooks to find memory leaks (default is NO).]),
442 [if test x$enableval = xyes; then
443 leak_detective=true
444 fi]
445 )
446
447 AC_ARG_ENABLE(
448 [lock-profiler],
449 AS_HELP_STRING([--enable-lock-profiler],[enable lock/mutex profiling code (default is NO).]),
450 [if test x$enableval = xyes; then
451 lock_profiler=true
452 fi]
453 )
454
455 AC_ARG_ENABLE(
456 [unit-tests],
457 AS_HELP_STRING([--enable-unit-tests],[enable unit tests on IKEv2 daemon startup (default is NO).]),
458 [if test x$enableval = xyes; then
459 unittest=true
460 fi]
461 )
462
463 AC_ARG_ENABLE(
464 [load-tests],
465 AS_HELP_STRING([--enable-load-tests],[enable load testing plugin for IKEv2 daemon (default is NO).]),
466 [if test x$enableval = xyes; then
467 loadtest=true
468 fi]
469 )
470
471 AC_ARG_ENABLE(
472 [eap-sim],
473 AS_HELP_STRING([--enable-eap-sim],[build SIM authenication module for EAP (default is NO).]),
474 [if test x$enableval = xyes; then
475 eap_sim=true
476 fi]
477 )
478
479 AC_ARG_ENABLE(
480 [eap-sim-file],
481 AS_HELP_STRING([--enable-eap-sim-file],[build EAP-SIM backend based on a triplet file (default is NO).]),
482 [if test x$enableval = xyes; then
483 eap_sim_file=true
484 fi]
485 )
486
487 AC_ARG_ENABLE(
488 [eap-identity],
489 AS_HELP_STRING([--enable-eap-identity],[build EAP module providing EAP-Identity helper (default is NO).]),
490 [if test x$enableval = xyes; then
491 eap_identity=true
492 fi]
493 )
494
495 AC_ARG_ENABLE(
496 [eap-md5],
497 AS_HELP_STRING([--enable-eap-md5],[build MD5 (CHAP) authenication module for EAP (default is NO).]),
498 [if test x$enableval = xyes; then
499 eap_md5=true
500 fi]
501 )
502
503 AC_ARG_ENABLE(
504 [eap-gtc],
505 AS_HELP_STRING([--enable-eap-gtc],[build PAM based GTC authenication module for EAP (default is NO).]),
506 [if test x$enableval = xyes; then
507 eap_gtc=true
508 fi]
509 )
510
511 AC_ARG_ENABLE(
512 [eap-aka],
513 AS_HELP_STRING([--enable-eap-aka],[build AKA authentication module for EAP (default is NO).]),
514 [if test x$enableval = xyes; then
515 eap_aka=true
516 fi]
517 )
518
519 AC_ARG_ENABLE(
520 [eap-mschapv2],
521 AS_HELP_STRING([--enable-eap-mschapv2],[build MS-CHAPv2 authenication module for EAP (default is NO).]),
522 [if test x$enableval = xyes; then
523 eap_mschapv2=true
524 fi]
525 )
526
527 AC_ARG_ENABLE(
528 [eap-radius],
529 AS_HELP_STRING([--enable-eap-radius],[build RADIUS proxy authenication module for EAP (default is NO).]),
530 [if test x$enableval = xyes; then
531 eap_radius=true
532 fi]
533 )
534
535 AC_ARG_ENABLE(
536 [kernel-netlink],
537 AS_HELP_STRING([--disable-kernel-netlink],[disable the netlink kernel interface. (default is NO).]),
538 [if test x$enableval = xyes; then
539 kernel_netlink=true
540 else
541 kernel_netlink=false
542 fi],
543 kernel_netlink=true
544 )
545
546 AC_ARG_ENABLE(
547 [kernel-pfkey],
548 AS_HELP_STRING([--enable-kernel-pfkey],[enable the PF_KEY kernel interface. (default is NO).]),
549 [if test x$enableval = xyes; then
550 kernel_pfkey=true
551 fi]
552 )
553
554 AC_ARG_ENABLE(
555 [kernel-pfroute],
556 AS_HELP_STRING([--enable-kernel-pfroute],[enable the PF_ROUTE kernel interface. (default is NO).]),
557 [if test x$enableval = xyes; then
558 kernel_pfroute=true
559 fi]
560 )
561
562 AC_ARG_ENABLE(
563 [kernel-klips],
564 AS_HELP_STRING([--enable-kernel-klips],[enable the KLIPS kernel interface. (default is NO).]),
565 [if test x$enableval = xyes; then
566 kernel_klips=true
567 fi]
568 )
569
570 AC_ARG_ENABLE(
571 [nat-transport],
572 AS_HELP_STRING([--enable-nat-transport],[enable NAT traversal with IPsec transport mode (default is NO).]),
573 [if test x$enableval = xyes; then
574 nat_transport=true
575 fi]
576 )
577
578 AC_ARG_ENABLE(
579 [vendor-id],
580 AS_HELP_STRING([--disable-vendor-id],[disable the sending of the strongSwan vendor ID (default is NO).]),
581 [if test x$enableval = xyes; then
582 vendor_id=true
583 else
584 vendor_id=false
585 fi],
586 vendor_id=true
587 )
588
589 AC_ARG_ENABLE(
590 [xauth-vid],
591 AS_HELP_STRING([--disable-xauth-vid],[disable the sending of the XAUTH vendor ID (default is NO).]),
592 [if test x$enableval = xyes; then
593 xauth_vid=true
594 else
595 xauth_vid=false
596 fi],
597 xauth_vid=true
598 )
599
600 AC_ARG_ENABLE(
601 [dumm],
602 AS_HELP_STRING([--enable-dumm],[build the DUMM UML test framework (default is NO).]),
603 [if test x$enableval = xyes; then
604 dumm=true
605 fi]
606 )
607
608 AC_ARG_ENABLE(
609 [fast],
610 AS_HELP_STRING([--enable-fast],[build libfast (FastCGI Application Server w/ templates (default is NO).]),
611 [if test x$enableval = xyes; then
612 fast=true
613 fi]
614 )
615
616 AC_ARG_ENABLE(
617 [manager],
618 AS_HELP_STRING([--enable-manager],[build web management console (default is NO).]),
619 [if test x$enableval = xyes; then
620 manager=true
621 xml=true
622 fi]
623 )
624
625 AC_ARG_ENABLE(
626 [mediation],
627 AS_HELP_STRING([--enable-mediation],[enable IKEv2 Mediation Extension (default is NO).]),
628 [if test x$enableval = xyes; then
629 me=true
630 fi]
631 )
632
633 AC_ARG_ENABLE(
634 [integrity-test],
635 AS_HELP_STRING([--enable-integrity-test],[enable integrity testing of libstrongswan and plugins (default is NO).]),
636 [if test x$enableval = xyes; then
637 integrity_test=true
638 fi]
639 )
640
641 AC_ARG_ENABLE(
642 [pluto],
643 AS_HELP_STRING([--disable-pluto],[disable the IKEv1 keying daemon pluto. (default is NO).]),
644 [if test x$enableval = xyes; then
645 pluto=true
646 else
647 pluto=false
648 fi],
649 pluto=true
650 )
651
652 AC_ARG_ENABLE(
653 [threads],
654 AS_HELP_STRING([--disable-threads],[disable the use of threads in pluto. Charon always uses threads. (default is NO).]),
655 [if test x$enableval = xyes; then
656 threads=true
657 else
658 threads=false
659 fi],
660 threads=true
661 )
662
663 AC_ARG_ENABLE(
664 [charon],
665 AS_HELP_STRING([--disable-charon],[disable the IKEv2 keying daemon charon. (default is NO).]),
666 [if test x$enableval = xyes; then
667 charon=true
668 else
669 charon=false
670 fi],
671 charon=true
672 )
673
674 AC_ARG_ENABLE(
675 [tools],
676 AS_HELP_STRING([--disable-tools],[disable additional utilities (openac, scepclient and pki). (default is NO).]),
677 [if test x$enableval = xyes; then
678 tools=true
679 else
680 tools=false
681 fi],
682 tools=true
683 )
684
685 AC_ARG_ENABLE(
686 [scripts],
687 AS_HELP_STRING([--disable-scripts],[disable additional utilities (found in directory scripts). (default is NO).]),
688 [if test x$enableval = xyes; then
689 scripts=true
690 else
691 scripts=false
692 fi],
693 scripts=true
694 )
695
696 AC_ARG_ENABLE(
697 [updown],
698 AS_HELP_STRING([--disable-updown],[disable updown firewall script plugin. (default is NO).]),
699 [if test x$enableval = xyes; then
700 updown=true
701 else
702 updown=false
703 fi],
704 updown=true
705 )
706
707 AC_ARG_ENABLE(
708 [attr],
709 AS_HELP_STRING([--disable-attr],[disable strongswan.conf based configuration attribute plugin. (default is NO).]),
710 [if test x$enableval = xyes; then
711 attr=true
712 else
713 attr=false
714 fi],
715 attr=true
716 )
717
718 AC_ARG_ENABLE(
719 [resolv-conf],
720 AS_HELP_STRING([--disable-resolv-conf],[disable resolv.conf DNS handler plugin. (default is NO).]),
721 [if test x$enableval = xyes; then
722 resolvconf=true
723 else
724 resolvconf=false
725 fi],
726 resolvconf=true
727 )
728
729 AC_ARG_ENABLE(
730 [padlock],
731 AS_HELP_STRING([--enable-padlock],[enables VIA Padlock crypto plugin. (default is NO).]),
732 [if test x$enableval = xyes; then
733 padlock=true
734 else
735 padlock=false
736 fi],
737 )
738
739 AC_ARG_ENABLE(
740 [openssl],
741 AS_HELP_STRING([--enable-openssl],[enables the OpenSSL crypto plugin. (default is NO).]),
742 [if test x$enableval = xyes; then
743 openssl=true
744 else
745 openssl=false
746 fi],
747 )
748
749 AC_ARG_ENABLE(
750 [gcrypt],
751 AS_HELP_STRING([--enable-gcrypt],[enables the libgcrypt plugin. (default is NO).]),
752 [if test x$enableval = xyes; then
753 gcrypt=true
754 else
755 gcrypt=false
756 fi],
757 )
758
759 AC_ARG_ENABLE(
760 [agent],
761 AS_HELP_STRING([--enable-agent],[enables the ssh-agent signing plugin. (default is NO).]),
762 [if test x$enableval = xyes; then
763 agent=true
764 else
765 agent=false
766 fi],
767 )
768
769 AC_ARG_ENABLE(
770 [uci],
771 AS_HELP_STRING([--enable-uci],[enable OpenWRT UCI configuration plugin (default is NO).]),
772 [if test x$enableval = xyes; then
773 uci=true
774 fi]
775 )
776
777 AC_ARG_ENABLE(
778 [nm],
779 AS_HELP_STRING([--enable-nm],[enable NetworkManager plugin (default is NO).]),
780 [if test x$enableval = xyes; then
781 nm=true
782 fi]
783 )
784
785 AC_ARG_ENABLE(
786 [vstr],
787 AS_HELP_STRING([--enable-vstr],[enforce using the Vstr string library to replace glibc-like printf hooks (default is NO).]),
788 [if test x$enableval = xyes; then
789 vstr=true
790 fi]
791 )
792
793 dnl =========================
794 dnl set up compiler and flags
795 dnl =========================
796
797 if test -z "$CFLAGS"; then
798 CFLAGS="-g -O2 -Wall -Wno-format -Wno-pointer-sign -Wno-strict-aliasing"
799 fi
800 AC_PROG_CC
801 AC_LIB_PREFIX
802 AC_C_BIGENDIAN
803
804 dnl =========================
805 dnl check required programs
806 dnl =========================
807
808 AC_PROG_INSTALL
809 AC_PROG_LIBTOOL
810 AC_PROG_EGREP
811 AC_PROG_AWK
812 AC_PROG_LEX
813 AC_PROG_YACC
814 AC_PATH_PROG([PERL], [perl], [], [$PATH:/bin:/usr/bin:/usr/local/bin])
815 AC_PATH_PROG([GPERF], [gperf], [], [$PATH:/bin:/usr/bin:/usr/local/bin])
816
817 dnl because gperf is not needed by end-users we just report it but do not abort on failure
818 AC_MSG_CHECKING([gperf version >= 3.0.0])
819 if test -x "$GPERF"; then
820 if test "`$GPERF --version | $AWK -F' ' '/^GNU gperf/ { print $3 }' | $AWK -F. '{ print $1 }'`" -ge "3"; then
821 AC_MSG_RESULT([yes])
822 else
823 AC_MSG_RESULT([no])
824 fi
825 else
826 AC_MSG_RESULT([not found])
827 fi
828
829 dnl translate user/group to numercial ids
830 AC_MSG_CHECKING([for uid of user "$ipsecuser"])
831 ipsecuid=`id -u $ipsecuser 2>/dev/null`
832 if test -n "$ipsecuid"; then
833 AC_MSG_RESULT([$ipsecuid])
834 AC_SUBST(ipsecuid)
835 else
836 AC_MSG_ERROR([not found])
837 fi
838 AC_MSG_CHECKING([for gid of group "$ipsecgroup"])
839 ipsecgid=`$EGREP "^$ipsecgroup:" /etc/group | $AWK -F: '{ print $3 }'`
840 if test -n "$ipsecgid"; then
841 AC_MSG_RESULT([$ipsecgid])
842 AC_SUBST(ipsecgid)
843 else
844 AC_MSG_ERROR([not found])
845 fi
846
847 dnl =========================
848 dnl dependency calculation
849 dnl =========================
850
851 if test x$eap_aka = xtrue; then
852 gmp=true;
853 fips_prf=true;
854 sha1=true;
855 fi
856
857 if test x$eap_sim = xtrue; then
858 fips_prf=true;
859 fi
860
861 if test x$fips_prf = xtrue; then
862 sha1=true;
863 fi
864
865 if test x$smp = xtrue; then
866 xml=true
867 fi
868
869 if test x$manager = xtrue; then
870 fast=true
871 fi
872
873 if test x$medsrv = xtrue; then
874 me=true
875 fast=true
876 fi
877
878 if test x$medcli = xtrue; then
879 me=true
880 fi
881
882 dnl ===========================================
883 dnl check required libraries and header files
884 dnl ===========================================
885
886 AC_HEADER_STDBOOL
887 AC_FUNC_ALLOCA
888
889 dnl libraries needed on some platforms but not on others
890 dnl ====================================================
891 saved_LIBS=$LIBS
892
893 dnl FreeBSD and Mac OS X have dlopen integrated in libc, Linux needs libdl
894 LIBS=""
895 AC_SEARCH_LIBS(dlopen, dl, [DLLIB=$LIBS])
896 AC_SUBST(DLLIB)
897
898 dnl glibc's backtrace() can be replicated on FreeBSD with libexecinfo
899 LIBS=""
900 AC_SEARCH_LIBS(backtrace, execinfo, [BTLIB=$LIBS])
901 AC_CHECK_FUNCS(backtrace)
902 AC_SUBST(BTLIB)
903
904 dnl OpenSolaris needs libsocket and libnsl for socket()
905 LIBS=""
906 AC_SEARCH_LIBS(socket, socket, [SOCKLIB=$LIBS],
907 [AC_CHECK_LIB(nsl, socket, [SOCKLIB="-lsocket -lnsl"], [], [-lsocket])]
908 )
909 AC_SUBST(SOCKLIB)
910
911 LIBS=$saved_LIBS
912 dnl ======================
913
914 AC_MSG_CHECKING(for dladdr)
915 AC_TRY_COMPILE(
916 [#define _GNU_SOURCE
917 #include <dlfcn.h>],
918 [Dl_info* info = 0;
919 dladdr(0, info);],
920 [AC_MSG_RESULT([yes]); AC_DEFINE([HAVE_DLADDR])],
921 [AC_MSG_RESULT([no])]
922 )
923
924 AC_CHECK_FUNCS(prctl)
925
926 AC_CHECK_HEADERS(sys/sockio.h)
927 AC_CHECK_HEADERS(net/pfkeyv2.h netipsec/ipsec.h netinet6/ipsec.h linux/udp.h)
928
929 AC_CHECK_MEMBERS([struct sockaddr.sa_len], [], [],
930 [
931 #include <sys/types.h>
932 #include <sys/socket.h>
933 ])
934
935 AC_CHECK_MEMBERS([struct sadb_x_policy.sadb_x_policy_priority], [], [],
936 [
937 #include <sys/types.h>
938 #ifdef HAVE_NET_PFKEYV2_H
939 #include <net/pfkeyv2.h>
940 #else
941 #include <stdint.h>
942 #include <linux/pfkeyv2.h>
943 #endif
944 ])
945
946 AC_MSG_CHECKING([for IPSEC_MODE_BEET])
947 AC_TRY_COMPILE(
948 [#include <sys/types.h>
949 #ifdef HAVE_NETIPSEC_IPSEC_H
950 #include <netipsec/ipsec.h>
951 #elif defined(HAVE_NETINET6_IPSEC_H)
952 #include <netinet6/ipsec.h>
953 #else
954 #include <stdint.h>
955 #include <linux/ipsec.h>
956 #endif],
957 [int mode = IPSEC_MODE_BEET;
958 return mode;],
959 [AC_MSG_RESULT([yes]); AC_DEFINE([HAVE_IPSEC_MODE_BEET])],
960 [AC_MSG_RESULT([no])]
961 )
962
963 AC_MSG_CHECKING([for IPSEC_DIR_FWD])
964 AC_TRY_COMPILE(
965 [#include <sys/types.h>
966 #ifdef HAVE_NETIPSEC_IPSEC_H
967 #include <netipsec/ipsec.h>
968 #elif defined(HAVE_NETINET6_IPSEC_H)
969 #include <netinet6/ipsec.h>
970 #else
971 #include <stdint.h>
972 #include <linux/ipsec.h>
973 #endif],
974 [int dir = IPSEC_DIR_FWD;
975 return dir;],
976 [AC_MSG_RESULT([yes]); AC_DEFINE([HAVE_IPSEC_DIR_FWD])],
977 [AC_MSG_RESULT([no])]
978 )
979
980 AC_MSG_CHECKING([for gcc atomic operations])
981 AC_TRY_RUN(
982 [
983 int main() {
984 volatile int ref = 1;
985 __sync_fetch_and_add (&ref, 1);
986 __sync_sub_and_fetch (&ref, 1);
987 /* Make sure test fails if operations are not supported */
988 __sync_val_compare_and_swap(&ref, 1, 0);
989 return ref;
990 }
991 ],
992 [AC_MSG_RESULT([yes]); AC_DEFINE(HAVE_GCC_ATOMIC_OPERATIONS)],
993 [AC_MSG_RESULT([no])],
994 [AC_MSG_RESULT([no])])
995
996 AC_CHECK_FUNC(
997 [register_printf_function],
998 [AC_DEFINE(HAVE_PRINTF_HOOKS)],
999 [
1000 AC_MSG_NOTICE([printf does not support custom format specifiers!])
1001 vstr=true
1002 ]
1003 )
1004
1005 if test x$vstr = xtrue; then
1006 AC_HAVE_LIBRARY([vstr],[LIBS="$LIBS"],[AC_MSG_ERROR([Vstr string library not found])])
1007 AC_DEFINE(USE_VSTR)
1008 fi
1009
1010 if test x$gmp = xtrue; then
1011 AC_HAVE_LIBRARY([gmp],[LIBS="$LIBS"],[AC_MSG_ERROR([GNU Multi Precision library gmp not found])])
1012 AC_MSG_CHECKING([gmp.h version >= 4.1.4])
1013 AC_TRY_COMPILE(
1014 [#include "gmp.h"],
1015 [
1016 #if (__GNU_MP_VERSION*100 + __GNU_MP_VERSION_MINOR*10 + __GNU_MP_VERSION_PATCHLEVEL) < 414
1017 #error bad gmp
1018 #endif
1019 ],
1020 [AC_MSG_RESULT([yes])], [AC_MSG_RESULT([no]); AC_MSG_ERROR([No usable gmp.h found!])]
1021 )
1022 fi
1023
1024 if test x$ldap = xtrue; then
1025 AC_HAVE_LIBRARY([ldap],[LIBS="$LIBS"],[AC_MSG_ERROR([LDAP library ldap not found])])
1026 AC_HAVE_LIBRARY([lber],[LIBS="$LIBS"],[AC_MSG_ERROR([LDAP library lber not found])])
1027 AC_CHECK_HEADER([ldap.h],,[AC_MSG_ERROR([LDAP header ldap.h not found!])])
1028 fi
1029
1030 if test x$curl = xtrue; then
1031 AC_HAVE_LIBRARY([curl],[LIBS="$LIBS"],[AC_MSG_ERROR([CURL library curl not found])])
1032 AC_CHECK_HEADER([curl/curl.h],,[AC_MSG_ERROR([CURL header curl/curl.h not found!])])
1033 fi
1034
1035 if test x$xml = xtrue; then
1036 PKG_CHECK_MODULES(xml, [libxml-2.0])
1037 AC_SUBST(xml_CFLAGS)
1038 AC_SUBST(xml_LIBS)
1039 fi
1040
1041 if test x$dumm = xtrue; then
1042 PKG_CHECK_MODULES(gtk, [gtk+-2.0 vte])
1043 AC_SUBST(gtk_CFLAGS)
1044 AC_SUBST(gtk_LIBS)
1045 AC_CHECK_PROGS(RUBY, ruby)
1046 AC_MSG_CHECKING([for Ruby header files])
1047 if test -n "$RUBY"; then
1048 RUBYDIR=`($RUBY -rmkmf -e 'print Config::CONFIG[["archdir"]] || $archdir') 2>/dev/null`
1049 if test -n "$RUBYDIR"; then
1050 dirs="$RUBYDIR"
1051 RUBYINCLUDE=none
1052 for i in $dirs; do
1053 if test -r $i/ruby.h; then
1054 AC_MSG_RESULT([$i])
1055 RUBYINCLUDE="-I$i"
1056 break;
1057 fi
1058 done
1059 if test x"$RUBYINCLUDE" = xnone; then
1060 AC_MSG_ERROR([ruby.h not found])
1061 fi
1062 AC_SUBST(RUBYINCLUDE)
1063 else
1064 AC_MSG_ERROR([unable to determine ruby configuration])
1065 fi
1066 else
1067 AC_MSG_ERROR([don't know how to run ruby])
1068 fi
1069 fi
1070
1071 if test x$fast = xtrue; then
1072 AC_HAVE_LIBRARY([neo_cgi],[LIBS="$LIBS"],[AC_MSG_ERROR([ClearSilver library neo_cgi not found!])])
1073 AC_HAVE_LIBRARY([neo_utl],[LIBS="$LIBS"],[AC_MSG_ERROR([ClearSilver library neo_utl not found!])])
1074 AC_HAVE_LIBRARY([z],[LIBS="$LIBS"],[AC_MSG_ERROR([ClearSilver dependency zlib not found!])])
1075 dnl autoconf does not like CamelCase!? How to fix this?
1076 dnl AC_CHECK_HEADER([ClearSilver/ClearSilver.h],,[AC_MSG_ERROR([ClearSilver header file ClearSilver/ClearSilver.h not found!])])
1077
1078 AC_HAVE_LIBRARY([fcgi],[LIBS="$LIBS"],[AC_MSG_ERROR([FastCGI library fcgi not found!])])
1079 AC_CHECK_HEADER([fcgiapp.h],,[AC_MSG_ERROR([FastCGI header file fcgiapp.h not found!])])
1080 fi
1081
1082 if test x$mysql = xtrue; then
1083 AC_HAVE_LIBRARY([mysqlclient_r],[LIBS="$LIBS"],[AC_MSG_ERROR([MySQL library mysqlclient_r not found])])
1084 AC_CHECK_HEADER([mysql/mysql.h],,[AC_MSG_ERROR([MySQL header mysql/mysql.h not found!])])
1085 fi
1086
1087 if test x$sqlite = xtrue; then
1088 AC_HAVE_LIBRARY([sqlite3],[LIBS="$LIBS"],[AC_MSG_ERROR([SQLite library sqlite3 not found])])
1089 AC_CHECK_HEADER([sqlite3.h],,[AC_MSG_ERROR([SQLite header sqlite3.h not found!])])
1090 AC_MSG_CHECKING([sqlite3_prepare_v2])
1091 AC_TRY_COMPILE(
1092 [#include <sqlite3.h>],
1093 [
1094 void *test = sqlite3_prepare_v2;
1095 ],
1096 [AC_MSG_RESULT([yes])]; AC_DEFINE_UNQUOTED(HAVE_SQLITE3_PREPARE_V2, 1), [AC_MSG_RESULT([no])])
1097 AC_MSG_CHECKING([sqlite3.h version >= 3.3.1])
1098 AC_TRY_COMPILE(
1099 [#include <sqlite3.h>],
1100 [
1101 #if SQLITE_VERSION_NUMBER < 3003001
1102 #error bad sqlite
1103 #endif
1104 ],
1105 [AC_MSG_RESULT([yes])], [AC_MSG_RESULT([no]); AC_MSG_ERROR([SQLite version >= 3.3.1 required!])])
1106 fi
1107
1108 if test x$openssl = xtrue; then
1109 AC_HAVE_LIBRARY([crypto],[LIBS="$LIBS"],[AC_MSG_ERROR([OpenSSL crypto library not found])])
1110 AC_CHECK_HEADER([openssl/evp.h],,[AC_MSG_ERROR([OpenSSL header openssl/evp.h not found!])])
1111 fi
1112
1113 if test x$gcrypt = xtrue; then
1114 AM_PATH_LIBGCRYPT(,,[AC_MSG_ERROR([libgcrypt not found!])])
1115 AC_MSG_CHECKING([gcrypt CAMELLIA cipher])
1116 AC_TRY_COMPILE(
1117 [#include <gcrypt.h>],
1118 [enum gcry_cipher_algos alg = GCRY_CIPHER_CAMELLIA128;],
1119 [AC_MSG_RESULT([yes]); AC_DEFINE([HAVE_GCRY_CIPHER_CAMELLIA])],
1120 [AC_MSG_RESULT([no])]
1121 )
1122 fi
1123
1124 if test x$uci = xtrue; then
1125 AC_HAVE_LIBRARY([uci],[LIBS="$LIBS"],[AC_MSG_ERROR([UCI library libuci not found])])
1126 AC_CHECK_HEADER([uci.h],,[AC_MSG_ERROR([UCI header uci.h not found!])])
1127 fi
1128
1129 if test x$nm = xtrue; then
1130 PKG_CHECK_MODULES(nm, [NetworkManager libnm_glib_vpn gthread-2.0])
1131 AC_SUBST(nm_CFLAGS)
1132 AC_SUBST(nm_LIBS)
1133 fi
1134
1135 if test x$eap_gtc = xtrue; then
1136 AC_HAVE_LIBRARY([pam],[LIBS="$LIBS"],[AC_MSG_ERROR([PAM library not found])])
1137 AC_CHECK_HEADER([security/pam_appl.h],,[AC_MSG_ERROR([PAM header security/pam_appl.h not found!])])
1138 fi
1139
1140 if test x$capabilities = xlibcap; then
1141 AC_HAVE_LIBRARY([cap],[LIBS="$LIBS"],[AC_MSG_ERROR([libcap library not found])])
1142 AC_CHECK_HEADER([sys/capability.h],,[AC_MSG_ERROR([libcap header sys/capability.h not found!])])
1143 fi
1144
1145 if test x$integrity_test = xtrue; then
1146 AC_MSG_CHECKING([for dladdr()])
1147 AC_TRY_COMPILE(
1148 [#define _GNU_SOURCE
1149 #include <dlfcn.h>],
1150 [Dl_info info; dladdr(main, &info);],
1151 [AC_MSG_RESULT([yes])], [AC_MSG_RESULT([no]);
1152 AC_MSG_ERROR([dladdr() not supported, required by integrity-test!])]
1153 )
1154 AC_MSG_CHECKING([for dl_iterate_phdr()])
1155 AC_TRY_COMPILE(
1156 [#define _GNU_SOURCE
1157 #include <link.h>],
1158 [dl_iterate_phdr((void*)0, (void*)0);],
1159 [AC_MSG_RESULT([yes])], [AC_MSG_RESULT([no]);
1160 AC_MSG_ERROR([dl_iterate_phdr() not supported, required by integrity-test!])]
1161 )
1162 fi
1163
1164 dnl ======================================
1165 dnl collect all plugins for libstrongswan
1166 dnl ======================================
1167
1168 libstrongswan_plugins=
1169 pluto_plugins=
1170
1171 if test x$test_vectors = xtrue; then
1172 libstrongswan_plugins=${libstrongswan_plugins}" test-vectors"
1173 pluto_plugins=${pluto_plugins}" test-vectors"
1174 fi
1175 if test x$curl = xtrue; then
1176 libstrongswan_plugins=${libstrongswan_plugins}" curl"
1177 pluto_plugins=${pluto_plugins}" curl"
1178 fi
1179 if test x$ldap = xtrue; then
1180 libstrongswan_plugins=${libstrongswan_plugins}" ldap"
1181 pluto_plugins=${pluto_plugins}" ldap"
1182 fi
1183 if test x$aes = xtrue; then
1184 libstrongswan_plugins=${libstrongswan_plugins}" aes"
1185 pluto_plugins=${pluto_plugins}" aes"
1186 fi
1187 if test x$des = xtrue; then
1188 libstrongswan_plugins=${libstrongswan_plugins}" des"
1189 pluto_plugins=${pluto_plugins}" des"
1190 fi
1191 if test x$blowfish = xtrue; then
1192 libstrongswan_plugins=${libstrongswan_plugins}" blowfish"
1193 pluto_plugins=${pluto_plugins}" blowfish"
1194 fi
1195 if test x$sha1 = xtrue; then
1196 libstrongswan_plugins=${libstrongswan_plugins}" sha1"
1197 pluto_plugins=${pluto_plugins}" sha1"
1198 fi
1199 if test x$sha2 = xtrue; then
1200 libstrongswan_plugins=${libstrongswan_plugins}" sha2"
1201 pluto_plugins=${pluto_plugins}" sha2"
1202 fi
1203 if test x$md4 = xtrue; then
1204 libstrongswan_plugins=${libstrongswan_plugins}" md4"
1205 fi
1206 if test x$md5 = xtrue; then
1207 libstrongswan_plugins=${libstrongswan_plugins}" md5"
1208 pluto_plugins=${pluto_plugins}" md5"
1209 fi
1210 if test x$fips_prf = xtrue; then
1211 libstrongswan_plugins=${libstrongswan_plugins}" fips-prf"
1212 fi
1213 if test x$random = xtrue; then
1214 libstrongswan_plugins=${libstrongswan_plugins}" random"
1215 pluto_plugins=${pluto_plugins}" random"
1216 fi
1217 if test x$x509 = xtrue; then
1218 libstrongswan_plugins=${libstrongswan_plugins}" x509"
1219 fi
1220 if test x$pubkey = xtrue; then
1221 libstrongswan_plugins=${libstrongswan_plugins}" pubkey"
1222 pluto_plugins=${pluto_plugins}" pubkey"
1223 fi
1224 if test x$pkcs1 = xtrue; then
1225 libstrongswan_plugins=${libstrongswan_plugins}" pkcs1"
1226 pluto_plugins=${pluto_plugins}" pkcs1"
1227 fi
1228 if test x$pgp = xtrue; then
1229 libstrongswan_plugins=${libstrongswan_plugins}" pgp"
1230 pluto_plugins=${pluto_plugins}" pgp"
1231 fi
1232 if test x$dnskey = xtrue; then
1233 libstrongswan_plugins=${libstrongswan_plugins}" dnskey"
1234 pluto_plugins=${pluto_plugins}" dnskey"
1235 fi
1236 if test x$pem = xtrue; then
1237 libstrongswan_plugins=${libstrongswan_plugins}" pem"
1238 pluto_plugins=${pluto_plugins}" pem"
1239 fi
1240 if test x$mysql = xtrue; then
1241 libstrongswan_plugins=${libstrongswan_plugins}" mysql"
1242 fi
1243 if test x$sqlite = xtrue; then
1244 libstrongswan_plugins=${libstrongswan_plugins}" sqlite"
1245 fi
1246 if test x$padlock = xtrue; then
1247 libstrongswan_plugins=${libstrongswan_plugins}" padlock"
1248 fi
1249 if test x$openssl = xtrue; then
1250 libstrongswan_plugins=${libstrongswan_plugins}" openssl"
1251 pluto_plugins=${pluto_plugins}" openssl"
1252 fi
1253 if test x$gcrypt = xtrue; then
1254 libstrongswan_plugins=${libstrongswan_plugins}" gcrypt"
1255 pluto_plugins=${pluto_plugins}" gcrypt"
1256 fi
1257 if test x$xcbc = xtrue; then
1258 libstrongswan_plugins=${libstrongswan_plugins}" xcbc"
1259 fi
1260 if test x$hmac = xtrue; then
1261 libstrongswan_plugins=${libstrongswan_plugins}" hmac"
1262 pluto_plugins=${pluto_plugins}" hmac"
1263 fi
1264 if test x$agent = xtrue; then
1265 libstrongswan_plugins=${libstrongswan_plugins}" agent"
1266 fi
1267 if test x$gmp = xtrue; then
1268 libstrongswan_plugins=${libstrongswan_plugins}" gmp"
1269 pluto_plugins=${pluto_plugins}" gmp"
1270 fi
1271
1272 AC_SUBST(libstrongswan_plugins)
1273 AC_SUBST(pluto_plugins)
1274
1275 dnl =========================
1276 dnl set Makefile.am vars
1277 dnl =========================
1278
1279 dnl libstrongswan plugins
1280 dnl =====================
1281 AM_CONDITIONAL(USE_TEST_VECTORS, test x$test_vectors = xtrue)
1282 AM_CONDITIONAL(USE_CURL, test x$curl = xtrue)
1283 AM_CONDITIONAL(USE_LDAP, test x$ldap = xtrue)
1284 AM_CONDITIONAL(USE_AES, test x$aes = xtrue)
1285 AM_CONDITIONAL(USE_DES, test x$des = xtrue)
1286 AM_CONDITIONAL(USE_BLOWFISH, test x$blowfish = xtrue)
1287 AM_CONDITIONAL(USE_MD4, test x$md4 = xtrue)
1288 AM_CONDITIONAL(USE_MD5, test x$md5 = xtrue)
1289 AM_CONDITIONAL(USE_SHA1, test x$sha1 = xtrue)
1290 AM_CONDITIONAL(USE_SHA2, test x$sha2 = xtrue)
1291 AM_CONDITIONAL(USE_FIPS_PRF, test x$fips_prf = xtrue)
1292 AM_CONDITIONAL(USE_GMP, test x$gmp = xtrue)
1293 AM_CONDITIONAL(USE_RANDOM, test x$random = xtrue)
1294 AM_CONDITIONAL(USE_X509, test x$x509 = xtrue)
1295 AM_CONDITIONAL(USE_PUBKEY, test x$pubkey = xtrue)
1296 AM_CONDITIONAL(USE_PKCS1, test x$pkcs1 = xtrue)
1297 AM_CONDITIONAL(USE_PGP, test x$pgp = xtrue)
1298 AM_CONDITIONAL(USE_DNSKEY, test x$dnskey = xtrue)
1299 AM_CONDITIONAL(USE_PEM, test x$pem = xtrue)
1300 AM_CONDITIONAL(USE_HMAC, test x$hmac = xtrue)
1301 AM_CONDITIONAL(USE_XCBC, test x$xcbc = xtrue)
1302 AM_CONDITIONAL(USE_MYSQL, test x$mysql = xtrue)
1303 AM_CONDITIONAL(USE_SQLITE, test x$sqlite = xtrue)
1304 AM_CONDITIONAL(USE_PADLOCK, test x$padlock = xtrue)
1305 AM_CONDITIONAL(USE_OPENSSL, test x$openssl = xtrue)
1306 AM_CONDITIONAL(USE_GCRYPT, test x$gcrypt = xtrue)
1307 AM_CONDITIONAL(USE_AGENT, test x$agent = xtrue)
1308
1309 dnl charon plugins
1310 dnl ==============
1311 AM_CONDITIONAL(USE_STROKE, test x$stroke = xtrue)
1312 AM_CONDITIONAL(USE_MEDSRV, test x$medsrv = xtrue)
1313 AM_CONDITIONAL(USE_MEDCLI, test x$medcli = xtrue)
1314 AM_CONDITIONAL(USE_NM, test x$nm = xtrue)
1315 AM_CONDITIONAL(USE_UCI, test x$uci = xtrue)
1316 AM_CONDITIONAL(USE_SMP, test x$smp = xtrue)
1317 AM_CONDITIONAL(USE_SQL, test x$sql = xtrue)
1318 AM_CONDITIONAL(USE_UPDOWN, test x$updown = xtrue)
1319 AM_CONDITIONAL(USE_ATTR, test x$attr = xtrue)
1320 AM_CONDITIONAL(USE_RESOLV_CONF, test x$resolvconf = xtrue)
1321 AM_CONDITIONAL(USE_UNIT_TESTS, test x$unittest = xtrue)
1322 AM_CONDITIONAL(USE_LOAD_TESTS, test x$loadtest = xtrue)
1323 AM_CONDITIONAL(USE_EAP_SIM, test x$eap_sim = xtrue)
1324 AM_CONDITIONAL(USE_EAP_SIM_FILE, test x$eap_sim_file = xtrue)
1325 AM_CONDITIONAL(USE_EAP_IDENTITY, test x$eap_identity = xtrue)
1326 AM_CONDITIONAL(USE_EAP_MD5, test x$eap_md5 = xtrue)
1327 AM_CONDITIONAL(USE_EAP_GTC, test x$eap_gtc = xtrue)
1328 AM_CONDITIONAL(USE_EAP_AKA, test x$eap_aka = xtrue)
1329 AM_CONDITIONAL(USE_EAP_MSCHAPV2, test x$eap_mschapv2 = xtrue)
1330 AM_CONDITIONAL(USE_EAP_RADIUS, test x$eap_radius = xtrue)
1331 AM_CONDITIONAL(USE_KERNEL_NETLINK, test x$kernel_netlink = xtrue)
1332 AM_CONDITIONAL(USE_KERNEL_PFKEY, test x$kernel_pfkey = xtrue)
1333 AM_CONDITIONAL(USE_KERNEL_PFROUTE, test x$kernel_pfroute = xtrue)
1334 AM_CONDITIONAL(USE_KERNEL_KLIPS, test x$kernel_klips = xtrue)
1335
1336 dnl other options
1337 dnl =============
1338 AM_CONDITIONAL(USE_SMARTCARD, test x$smartcard = xtrue)
1339 AM_CONDITIONAL(USE_CISCO_QUIRKS, test x$cisco_quirks = xtrue)
1340 AM_CONDITIONAL(USE_LEAK_DETECTIVE, test x$leak_detective = xtrue)
1341 AM_CONDITIONAL(USE_LOCK_PROFILER, test x$lock_profiler = xtrue)
1342 AM_CONDITIONAL(USE_NAT_TRANSPORT, test x$nat_transport = xtrue)
1343 AM_CONDITIONAL(USE_VENDORID, test x$vendor_id = xtrue)
1344 AM_CONDITIONAL(USE_XAUTH_VID, test x$xauth_vid = xtrue)
1345 AM_CONDITIONAL(USE_DUMM, test x$dumm = xtrue)
1346 AM_CONDITIONAL(USE_FAST, test x$fast = xtrue)
1347 AM_CONDITIONAL(USE_MANAGER, test x$manager = xtrue)
1348 AM_CONDITIONAL(USE_ME, test x$me = xtrue)
1349 AM_CONDITIONAL(USE_INTEGRITY_TEST, test x$integrity_test = xtrue)
1350 AM_CONDITIONAL(USE_CAPABILITIES, test x$capabilities = xlibcap)
1351 AM_CONDITIONAL(USE_PLUTO, test x$pluto = xtrue)
1352 AM_CONDITIONAL(USE_THREADS, test x$threads = xtrue)
1353 AM_CONDITIONAL(USE_CHARON, test x$charon = xtrue)
1354 AM_CONDITIONAL(USE_TOOLS, test x$tools = xtrue)
1355 AM_CONDITIONAL(USE_SCRIPTS, test x$scripts = xtrue)
1356 AM_CONDITIONAL(USE_LIBSTRONGSWAN, test x$charon = xtrue -o x$pluto = xtrue -o x$tools = xtrue)
1357 AM_CONDITIONAL(USE_FILE_CONFIG, test x$pluto = xtrue -o x$stroke = xtrue)
1358 AM_CONDITIONAL(USE_VSTR, test x$vstr = xtrue)
1359
1360 dnl ==============================
1361 dnl set global definitions
1362 dnl ==============================
1363
1364 if test x$me = xtrue; then
1365 AC_DEFINE(ME)
1366 fi
1367 if test x$capabilities = xlibcap; then
1368 AC_DEFINE(CAPABILITIES)
1369 fi
1370
1371 dnl ==============================
1372 dnl build Makefiles
1373 dnl ==============================
1374
1375 AC_OUTPUT(
1376 Makefile
1377 src/Makefile
1378 src/include/Makefile
1379 src/libstrongswan/Makefile
1380 src/libstrongswan/plugins/aes/Makefile
1381 src/libstrongswan/plugins/des/Makefile
1382 src/libstrongswan/plugins/blowfish/Makefile
1383 src/libstrongswan/plugins/md4/Makefile
1384 src/libstrongswan/plugins/md5/Makefile
1385 src/libstrongswan/plugins/sha1/Makefile
1386 src/libstrongswan/plugins/sha2/Makefile
1387 src/libstrongswan/plugins/fips_prf/Makefile
1388 src/libstrongswan/plugins/gmp/Makefile
1389 src/libstrongswan/plugins/random/Makefile
1390 src/libstrongswan/plugins/hmac/Makefile
1391 src/libstrongswan/plugins/xcbc/Makefile
1392 src/libstrongswan/plugins/x509/Makefile
1393 src/libstrongswan/plugins/pubkey/Makefile
1394 src/libstrongswan/plugins/pkcs1/Makefile
1395 src/libstrongswan/plugins/pgp/Makefile
1396 src/libstrongswan/plugins/dnskey/Makefile
1397 src/libstrongswan/plugins/pem/Makefile
1398 src/libstrongswan/plugins/curl/Makefile
1399 src/libstrongswan/plugins/ldap/Makefile
1400 src/libstrongswan/plugins/mysql/Makefile
1401 src/libstrongswan/plugins/sqlite/Makefile
1402 src/libstrongswan/plugins/padlock/Makefile
1403 src/libstrongswan/plugins/openssl/Makefile
1404 src/libstrongswan/plugins/gcrypt/Makefile
1405 src/libstrongswan/plugins/agent/Makefile
1406 src/libstrongswan/plugins/test_vectors/Makefile
1407 src/libfreeswan/Makefile
1408 src/pluto/Makefile
1409 src/whack/Makefile
1410 src/charon/Makefile
1411 src/charon/plugins/eap_aka/Makefile
1412 src/charon/plugins/eap_identity/Makefile
1413 src/charon/plugins/eap_md5/Makefile
1414 src/charon/plugins/eap_gtc/Makefile
1415 src/charon/plugins/eap_sim/Makefile
1416 src/charon/plugins/eap_sim_file/Makefile
1417 src/charon/plugins/eap_mschapv2/Makefile
1418 src/charon/plugins/eap_radius/Makefile
1419 src/charon/plugins/kernel_netlink/Makefile
1420 src/charon/plugins/kernel_pfkey/Makefile
1421 src/charon/plugins/kernel_pfroute/Makefile
1422 src/charon/plugins/kernel_klips/Makefile
1423 src/charon/plugins/smp/Makefile
1424 src/charon/plugins/sql/Makefile
1425 src/charon/plugins/medsrv/Makefile
1426 src/charon/plugins/medcli/Makefile
1427 src/charon/plugins/nm/Makefile
1428 src/charon/plugins/uci/Makefile
1429 src/charon/plugins/stroke/Makefile
1430 src/charon/plugins/updown/Makefile
1431 src/charon/plugins/attr/Makefile
1432 src/charon/plugins/resolv_conf/Makefile
1433 src/charon/plugins/unit_tester/Makefile
1434 src/charon/plugins/load_tester/Makefile
1435 src/stroke/Makefile
1436 src/ipsec/Makefile
1437 src/starter/Makefile
1438 src/_updown/Makefile
1439 src/_updown_espmark/Makefile
1440 src/_copyright/Makefile
1441 src/openac/Makefile
1442 src/scepclient/Makefile
1443 src/pki/Makefile
1444 src/dumm/Makefile
1445 src/dumm/ext/extconf.rb
1446 src/libfast/Makefile
1447 src/manager/Makefile
1448 src/medsrv/Makefile
1449 src/checksum/Makefile
1450 scripts/Makefile
1451 testing/Makefile
1452 )
Michael's strongswan development tree