]> git.ipfire.org Git - thirdparty/strongswan.git/blob - configure.ac
projects / thirdparty / strongswan.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
history | raw | HEAD
pki: Load pubkey plugin to print public keys
[thirdparty/strongswan.git] / configure.ac
1 #
2 # Copyright (C) 2007-2017 Tobias Brunner
3 # Copyright (C) 2006-2016 Andreas Steffen
4 # Copyright (C) 2006-2014 Martin Willi
5 # HSR Hochschule fuer Technik Rapperswil
6 #
7 # This program is free software; you can redistribute it and/or modify it
8 # under the terms of the GNU General Public License as published by the
9 # Free Software Foundation; either version 2 of the License, or (at your
10 # option) any later version. See <http://www.fsf.org/copyleft/gpl.txt>.
11 #
12 # This program is distributed in the hope that it will be useful, but
13 # WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY
14 # or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License
15 # for more details.
16 #
17
18 # ============================
19 # initialize & set some vars
20 # ============================
21
22 AC_INIT([strongSwan],[5.5.3])
23 AM_INIT_AUTOMAKE(m4_esyscmd([
24 echo tar-ustar
25 echo subdir-objects
26 case `automake --version | head -n 1` in
27 *" 1.9"*);;
28 *" 1.10"*);;
29 *" 1.11"*);;
30 # don't use parallel test harness in 1.12 and up
31 *) echo serial-tests;;
32 esac
33 ]))
34 m4_ifdef([AM_SILENT_RULES], [AM_SILENT_RULES])
35 AC_CONFIG_MACRO_DIR([m4/config])
36 AC_CONFIG_HEADERS([config.h])
37 AC_DEFINE([CONFIG_H_INCLUDED], [], [defined if config.h included])
38 AC_DISABLE_STATIC
39 PKG_PROG_PKG_CONFIG
40
41 m4_include(m4/macros/split-package-version.m4)
42 SPLIT_PACKAGE_VERSION
43
44 # =================================
45 # check --enable-xxx & --with-xxx
46 # =================================
47
48 m4_include(m4/macros/with.m4)
49
50 ARG_WITH_SUBST([random-device], [/dev/random], [set the device to read real random data from])
51 ARG_WITH_SUBST([urandom-device], [/dev/urandom], [set the device to read pseudo random data from])
52 ARG_WITH_SUBST([strongswan-conf], [${sysconfdir}/strongswan.conf], [set the strongswan.conf file location])
53 ARG_WITH_SUBST([resolv-conf], [${sysconfdir}/resolv.conf], [set the file to use in DNS handler plugin])
54 ARG_WITH_SUBST([piddir], [/var/run], [set path for PID and UNIX socket files])
55 ARG_WITH_SUBST([ipsecdir], [${libexecdir%/}/ipsec], [set installation path for ipsec tools])
56 ARG_WITH_SUBST([ipseclibdir], [${libdir%/}/ipsec], [set installation path for ipsec libraries])
57 ARG_WITH_SUBST([plugindir], [${ipseclibdir%/}/plugins], [set the installation path of plugins])
58 ARG_WITH_SUBST([imcvdir], [${ipseclibdir%/}/imcvs], [set the installation path of IMC and IMV dynamic librariers])
59 ARG_WITH_SUBST([nm-ca-dir], [/usr/share/ca-certificates], [directory the NM backend uses to look up trusted root certificates])
60 ARG_WITH_SUBST([swanctldir], [${sysconfdir}/swanctl], [base directory for swanctl configuration files and credentials])
61 ARG_WITH_SUBST([linux-headers], [\${top_srcdir}/src/include], [set directory of linux header files to use])
62 ARG_WITH_SUBST([routing-table], [220], [set routing table to use for IPsec routes])
63 ARG_WITH_SUBST([routing-table-prio], [220], [set priority for IPsec routing table])
64 ARG_WITH_SUBST([ipsec-script], [ipsec], [change the name of the ipsec script])
65 ARG_WITH_SUBST([fips-mode], [0], [set openssl FIPS mode: disabled(0), enabled(1), Suite B enabled(2)])
66 ARG_WITH_SUBST([libfuzzer], [], [path to libFuzzer.a])
67 ARG_WITH_SET([capabilities], [no], [set capability dropping library. Currently supported values are "libcap" and "native"])
68 ARG_WITH_SET([mpz_powm_sec], [yes], [use the more side-channel resistant mpz_powm_sec in libgmp, if available])
69 ARG_WITH_SET([dev-headers], [no], [install strongSwan development headers to directory.])
70 ARG_WITH_SET([printf-hooks], [auto], [force the use of a specific printf hook implementation (auto, builtin, glibc, vstr).])
71 ARG_WITH_SET([rubygemdir], ["gem environment gemdir"], [path to install ruby gems to])
72 ARG_WITH_SET([pythoneggdir], ["main site-packages directory"], [path to install python eggs to to])
73
74 if test -n "$PKG_CONFIG"; then
75 systemdsystemunitdir_default=$($PKG_CONFIG --variable=systemdsystemunitdir systemd)
76 fi
77 ARG_WITH_SET([systemdsystemunitdir], [$systemdsystemunitdir_default], [directory for systemd service files])
78 AC_SUBST(systemdsystemunitdir)
79
80 AC_ARG_WITH(
81 [user],
82 AS_HELP_STRING([--with-user=user],[change user of the daemons to "user" after startup (default is "root").]),
83 [AC_DEFINE_UNQUOTED([IPSEC_USER], "$withval", [username to run daemon with])
84 AC_SUBST(ipsecuser, "$withval")],
85 [AC_SUBST(ipsecuser, "root")]
86 )
87
88 AC_ARG_WITH(
89 [group],
90 AS_HELP_STRING([--with-group=group],[change group of the daemons to "group" after startup (default is "root").]),
91 [AC_DEFINE_UNQUOTED(IPSEC_GROUP, "$withval", [groupname to run daemon with])
92 AC_SUBST(ipsecgroup, "$withval")],
93 [AC_SUBST(ipsecgroup, "root")]
94 )
95
96 AC_ARG_WITH(
97 [charon-udp-port],
98 AS_HELP_STRING([--with-charon-udp-port=port],[UDP port used by charon locally (default 500). Set to 0 to allocate randomly.]),
99 [AC_DEFINE_UNQUOTED(CHARON_UDP_PORT, [$withval], [UDP port used by charon locally])
100 AC_SUBST(charon_udp_port, [$withval])],
101 [AC_SUBST(charon_udp_port, 500)]
102 )
103
104 AC_ARG_WITH(
105 [charon-natt-port],
106 AS_HELP_STRING([--with-charon-natt-port=port],[UDP port used by charon locally in case a NAT is detected (must be different from charon-udp-port, default 4500). Set to 0 to allocate randomly.]),
107 [AC_DEFINE_UNQUOTED(CHARON_NATT_PORT, [$withval], [UDP post used by charon locally in case a NAT is detected])
108 AC_SUBST(charon_natt_port, [$withval])],
109 [AC_SUBST(charon_natt_port, 4500)]
110 )
111
112 AC_MSG_CHECKING([configured UDP ports ($charon_udp_port, $charon_natt_port)])
113 if test x$charon_udp_port != x0 -a x$charon_udp_port = x$charon_natt_port; then
114 AC_MSG_ERROR(the ports have to be different)
115 else
116 AC_MSG_RESULT(ok)
117 fi
118
119 # convert script name to uppercase
120 AC_SUBST(ipsec_script_upper, [`echo -n "$ipsec_script" | tr a-z A-Z`])
121
122 m4_include(m4/macros/enable-disable.m4)
123
124 # crypto plugins
125 ARG_DISBL_SET([aes], [disable AES software implementation plugin.])
126 ARG_ENABL_SET([af-alg], [enable AF_ALG crypto interface to Linux Crypto API.])
127 ARG_ENABL_SET([bliss], [enable BLISS software implementation plugin.])
128 ARG_ENABL_SET([blowfish], [enable Blowfish software implementation plugin.])
129 ARG_ENABL_SET([ccm], [enables the CCM AEAD wrapper crypto plugin.])
130 ARG_ENABL_SET([chapoly], [enables the ChaCha20/Poly1305 AEAD plugin.])
131 ARG_DISBL_SET([cmac], [disable CMAC crypto implementation plugin.])
132 ARG_ENABL_SET([ctr], [enables the Counter Mode wrapper crypto plugin.])
133 ARG_DISBL_SET([des], [disable DES/3DES software implementation plugin.])
134 ARG_DISBL_SET([fips-prf], [disable FIPS PRF software implementation plugin.])
135 ARG_ENABL_SET([gcm], [enables the GCM AEAD wrapper crypto plugin.])
136 ARG_ENABL_SET([gcrypt], [enables the libgcrypt plugin.])
137 ARG_DISBL_SET([gmp], [disable GNU MP (libgmp) based crypto implementation plugin.])
138 ARG_DISBL_SET([curve25519], [disable Curve25519 Diffie-Hellman plugin.])
139 ARG_DISBL_SET([hmac], [disable HMAC crypto implementation plugin.])
140 ARG_ENABL_SET([md4], [enable MD4 software implementation plugin.])
141 ARG_DISBL_SET([md5], [disable MD5 software implementation plugin.])
142 ARG_ENABL_SET([mgf1], [enable the MGF1 software implementation plugin.])
143 ARG_ENABL_SET([newhope], [enable New Hope crypto plugin.])
144 ARG_DISBL_SET([nonce], [disable nonce generation plugin.])
145 ARG_ENABL_SET([ntru], [enables the NTRU crypto plugin.])
146 ARG_ENABL_SET([openssl], [enables the OpenSSL crypto plugin.])
147 ARG_ENABL_SET([padlock], [enables VIA Padlock crypto plugin.])
148 ARG_DISBL_SET([random], [disable RNG implementation on top of /dev/(u)random.])
149 ARG_DISBL_SET([rc2], [disable RC2 software implementation plugin.])
150 ARG_ENABL_SET([rdrand], [enable Intel RDRAND random generator plugin.])
151 ARG_ENABL_SET([aesni], [enable Intel AES-NI crypto plugin.])
152 ARG_DISBL_SET([sha1], [disable SHA1 software implementation plugin.])
153 ARG_DISBL_SET([sha2], [disable SHA256/SHA384/SHA512 software implementation plugin.])
154 ARG_ENABL_SET([sha3], [enable SHA3_224/SHA3_256/SHA3_384/SHA3_512 software implementation plugin.])
155 ARG_DISBL_SET([xcbc], [disable xcbc crypto implementation plugin.])
156 # encoding/decoding plugins
157 ARG_DISBL_SET([dnskey], [disable DNS RR key decoding plugin.])
158 ARG_DISBL_SET([pem], [disable PEM decoding plugin.])
159 ARG_DISBL_SET([pgp], [disable PGP key decoding plugin.])
160 ARG_DISBL_SET([pkcs1], [disable PKCS1 key decoding plugin.])
161 ARG_DISBL_SET([pkcs7], [disable PKCS7 container support plugin.])
162 ARG_DISBL_SET([pkcs8], [disable PKCS8 private key decoding plugin.])
163 ARG_DISBL_SET([pkcs12], [disable PKCS12 container support plugin.])
164 ARG_DISBL_SET([pubkey], [disable RAW public key support plugin.])
165 ARG_DISBL_SET([sshkey], [disable SSH key decoding plugin.])
166 ARG_DISBL_SET([x509], [disable X509 certificate implementation plugin.])
167 # fetcher/resolver plugins
168 ARG_ENABL_SET([curl], [enable CURL fetcher plugin to fetch files via libcurl. Requires libcurl.])
169 ARG_ENABL_SET([files], [enable simple file:// URI fetcher.])
170 ARG_ENABL_SET([ldap], [enable LDAP fetching plugin to fetch files via libldap. Requires openLDAP.])
171 ARG_ENABL_SET([soup], [enable soup fetcher plugin to fetch from HTTP via libsoup. Requires libsoup.])
172 ARG_ENABL_SET([unbound], [enable UNBOUND resolver plugin to perform DNS queries via libunbound. Requires libldns and libunbound.])
173 ARG_ENABL_SET([winhttp], [enable WinHTTP based HTTP/HTTPS fetching plugin.])
174 # database plugins
175 ARG_ENABL_SET([mysql], [enable MySQL database support. Requires libmysqlclient_r.])
176 ARG_ENABL_SET([sqlite], [enable SQLite database support. Requires libsqlite3.])
177 # authentication/credential plugins
178 ARG_ENABL_SET([addrblock], [enables RFC 3779 address block constraint support.])
179 ARG_ENABL_SET([acert], [enable X509 attribute certificate checking plugin.])
180 ARG_ENABL_SET([agent], [enables the ssh-agent signing plugin.])
181 ARG_DISBL_SET([constraints], [disable advanced X509 constraint checking plugin.])
182 ARG_ENABL_SET([coupling], [enable IKEv2 plugin to couple peer certificates permanently to authentication.])
183 ARG_ENABL_SET([dnscert], [enable DNSCERT authentication plugin.])
184 ARG_ENABL_SET([eap-sim], [enable SIM authentication module for EAP.])
185 ARG_ENABL_SET([eap-sim-file], [enable EAP-SIM backend based on a triplet file.])
186 ARG_ENABL_SET([eap-sim-pcsc], [enable EAP-SIM backend based on a smartcard reader. Requires libpcsclite.])
187 ARG_ENABL_SET([eap-aka], [enable EAP AKA authentication module.])
188 ARG_ENABL_SET([eap-aka-3gpp], [enable EAP AKA backend implementing 3GPP MILENAGE algorithms in software.])
189 ARG_ENABL_SET([eap-aka-3gpp2], [enable EAP AKA backend implementing 3GPP2 algorithms in software. Requires libgmp.])
190 ARG_ENABL_SET([eap-simaka-sql], [enable EAP-SIM/AKA backend based on a triplet/quintuplet SQL database.])
191 ARG_ENABL_SET([eap-simaka-pseudonym], [enable EAP-SIM/AKA pseudonym storage plugin.])
192 ARG_ENABL_SET([eap-simaka-reauth], [enable EAP-SIM/AKA reauthentication data storage plugin.])
193 ARG_ENABL_SET([eap-identity], [enable EAP module providing EAP-Identity helper.])
194 ARG_ENABL_SET([eap-md5], [enable EAP MD5 (CHAP) authentication module.])
195 ARG_ENABL_SET([eap-gtc], [enable EAP GTC authentication module.])
196 ARG_ENABL_SET([eap-mschapv2], [enable EAP MS-CHAPv2 authentication module.])
197 ARG_ENABL_SET([eap-tls], [enable EAP TLS authentication module.])
198 ARG_ENABL_SET([eap-ttls], [enable EAP TTLS authentication module.])
199 ARG_ENABL_SET([eap-peap], [enable EAP PEAP authentication module.])
200 ARG_ENABL_SET([eap-tnc], [enable EAP TNC trusted network connect module.])
201 ARG_ENABL_SET([eap-dynamic], [enable dynamic EAP proxy module.])
202 ARG_ENABL_SET([eap-radius], [enable RADIUS proxy authentication module.])
203 ARG_ENABL_SET([ext-auth], [enable plugin calling an external authorization script.])
204 ARG_ENABL_SET([ipseckey], [enable IPSECKEY authentication plugin.])
205 ARG_ENABL_SET([keychain], [enables OS X Keychain Services credential set.])
206 ARG_ENABL_SET([pkcs11], [enables the PKCS11 token support plugin.])
207 ARG_ENABL_SET([tpm], [enables the TPM plugin.])
208 ARG_DISBL_SET([revocation], [disable X509 CRL/OCSP revocation check plugin.])
209 ARG_ENABL_SET([whitelist], [enable peer identity whitelisting plugin.])
210 ARG_DISBL_SET([xauth-generic], [disable generic XAuth backend.])
211 ARG_ENABL_SET([xauth-eap], [enable XAuth backend using EAP methods to verify passwords.])
212 ARG_ENABL_SET([xauth-pam], [enable XAuth backend using PAM to verify passwords.])
213 ARG_ENABL_SET([xauth-noauth], [enable XAuth pseudo-backend that does not actually verify or even request any credentials.])
214 # kernel interfaces / sockets
215 ARG_DISBL_SET([kernel-netlink], [disable the netlink kernel interface.])
216 ARG_ENABL_SET([kernel-pfkey], [enable the PF_KEY kernel interface.])
217 ARG_ENABL_SET([kernel-pfroute], [enable the PF_ROUTE kernel interface.])
218 ARG_ENABL_SET([kernel-iph], [enable the Windows IP Helper based networking backend.])
219 ARG_ENABL_SET([kernel-libipsec],[enable the libipsec kernel interface.])
220 ARG_ENABL_SET([kernel-wfp], [enable the Windows Filtering Platform IPsec backend.])
221 ARG_DISBL_SET([socket-default], [disable default socket implementation for charon.])
222 ARG_ENABL_SET([socket-dynamic], [enable dynamic socket implementation for charon])
223 ARG_ENABL_SET([socket-win], [enable Winsock2 based socket implementation for charon])
224 # configuration/control plugins
225 ARG_DISBL_SET([stroke], [disable charons stroke configuration backend.])
226 ARG_ENABL_SET([smp], [enable SMP configuration and control interface. Requires libxml.])
227 ARG_ENABL_SET([sql], [enable SQL database configuration backend.])
228 ARG_ENABL_SET([uci], [enable OpenWRT UCI configuration plugin.])
229 ARG_DISBL_SET([vici], [disable strongSwan IKE generic IPC interface plugin.])
230 # attribute provider/consumer plugins
231 ARG_ENABL_SET([android-dns], [enable Android specific DNS handler.])
232 ARG_DISBL_SET([attr], [disable strongswan.conf based configuration attribute plugin.])
233 ARG_ENABL_SET([attr-sql], [enable SQL based configuration attribute plugin.])
234 ARG_ENABL_SET([dhcp], [enable DHCP based attribute provider plugin.])
235 ARG_ENABL_SET([osx-attr], [enable OS X SystemConfiguration attribute handler.])
236 ARG_ENABL_SET([p-cscf], [enable plugin to request P-CSCF server addresses from an ePDG.])
237 ARG_DISBL_SET([resolve], [disable resolve DNS handler plugin.])
238 ARG_ENABL_SET([unity], [enables Cisco Unity extension plugin.])
239 # TNC modules/plugins
240 ARG_ENABL_SET([imc-test], [enable IMC test module.])
241 ARG_ENABL_SET([imv-test], [enable IMV test module.])
242 ARG_ENABL_SET([imc-scanner], [enable IMC port scanner module.])
243 ARG_ENABL_SET([imv-scanner], [enable IMV port scanner module.])
244 ARG_ENABL_SET([imc-os], [enable IMC operating system module.])
245 ARG_ENABL_SET([imv-os], [enable IMV operating system module.])
246 ARG_ENABL_SET([imc-attestation],[enable IMC attestation module.])
247 ARG_ENABL_SET([imv-attestation],[enable IMV attestation module.])
248 ARG_ENABL_SET([imc-swid], [enable IMC swid module.])
249 ARG_ENABL_SET([imv-swid], [enable IMV swid module.])
250 ARG_ENABL_SET([imc-hcd], [enable IMC hcd module.])
251 ARG_ENABL_SET([imv-hcd], [enable IMV hcd module.])
252 ARG_ENABL_SET([tnc-ifmap], [enable TNC IF-MAP module. Requires libxml])
253 ARG_ENABL_SET([tnc-imc], [enable TNC IMC module.])
254 ARG_ENABL_SET([tnc-imv], [enable TNC IMV module.])
255 ARG_ENABL_SET([tnc-pdp], [enable TNC policy decision point module.])
256 ARG_ENABL_SET([tnccs-11], [enable TNCCS 1.1 protocol module. Requires libxml])
257 ARG_ENABL_SET([tnccs-20], [enable TNCCS 2.0 protocol module.])
258 ARG_ENABL_SET([tnccs-dynamic], [enable dynamic TNCCS protocol discovery module.])
259 # misc plugins
260 ARG_ENABL_SET([android-log], [enable Android specific logger plugin.])
261 ARG_ENABL_SET([bypass-lan], [enable plugin to install bypass policies for local subnets.])
262 ARG_ENABL_SET([certexpire], [enable CSV export of expiration dates of used certificates.])
263 ARG_ENABL_SET([connmark], [enable connmark plugin using conntrack based marks to select return path SA.])
264 ARG_ENABL_SET([forecast], [enable forecast plugin forwarding broadcast/multicast messages.])
265 ARG_ENABL_SET([duplicheck], [advanced duplicate checking plugin using liveness checks.])
266 ARG_ENABL_SET([error-notify], [enable error notification plugin.])
267 ARG_ENABL_SET([farp], [enable ARP faking plugin that responds to ARP requests to peers virtual IP])
268 ARG_ENABL_SET([ha], [enable high availability cluster plugin.])
269 ARG_ENABL_SET([led], [enable plugin to control LEDs on IKEv2 activity using the Linux kernel LED subsystem.])
270 ARG_ENABL_SET([load-tester], [enable load testing plugin for IKEv2 daemon.])
271 ARG_ENABL_SET([lookip], [enable fast virtual IP lookup and notification plugin.])
272 ARG_ENABL_SET([radattr], [enable plugin to inject and process custom RADIUS attributes as IKEv2 client.])
273 ARG_ENABL_SET([systime-fix], [enable plugin to handle cert lifetimes with invalid system time gracefully.])
274 ARG_ENABL_SET([test-vectors], [enable plugin providing crypto test vectors.])
275 ARG_DISBL_SET([updown], [disable updown firewall script plugin.])
276 # programs/components
277 ARG_ENABL_SET([aikgen], [enable AIK generator for TPM 1.2.])
278 ARG_DISBL_SET([charon], [disable the IKEv1/IKEv2 keying daemon charon.])
279 ARG_ENABL_SET([cmd], [enable the command line IKE client charon-cmd.])
280 ARG_ENABL_SET([conftest], [enforce Suite B conformance test framework.])
281 ARG_ENABL_SET([dumm], [enable the DUMM UML test framework.])
282 ARG_ENABL_SET([fast], [enable libfast (FastCGI Application Server w/ templates.])
283 ARG_ENABL_SET([fuzzing], [enable fuzzing scripts (found in directory fuzz).])
284 ARG_ENABL_SET([libipsec], [enable user space IPsec implementation.])
285 ARG_ENABL_SET([manager], [enable web management console (proof of concept).])
286 ARG_ENABL_SET([medcli], [enable mediation client configuration database plugin.])
287 ARG_ENABL_SET([medsrv], [enable mediation server web frontend and daemon plugin.])
288 ARG_ENABL_SET([nm], [enable NetworkManager backend.])
289 ARG_DISBL_SET([pki], [disable pki certificate utility.])
290 ARG_DISBL_SET([scepclient], [disable SCEP client tool.])
291 ARG_DISBL_SET([scripts], [disable additional utilities (found in directory scripts).])
292 ARG_ENABL_SET([svc], [enable charon Windows service.])
293 ARG_ENABL_SET([systemd], [enable systemd specific IKE daemon charon-systemd.])
294 ARG_DISBL_SET([swanctl], [disable swanctl configuration and control tool.])
295 ARG_ENABL_SET([tkm], [enable Trusted Key Manager support.])
296 # optional features
297 ARG_ENABL_SET([bfd-backtraces], [use binutils libbfd to resolve backtraces for memory leaks and segfaults.])
298 ARG_ENABL_SET([dbghelp-backtraces],[use dbghlp.dll on Windows to create and print backtraces for memory leaks and segfaults.])
299 ARG_DISBL_SET([ikev1], [disable IKEv1 protocol support in charon.])
300 ARG_DISBL_SET([ikev2], [disable IKEv2 protocol support in charon.])
301 ARG_ENABL_SET([integrity-test], [enable integrity testing of libstrongswan and plugins.])
302 ARG_DISBL_SET([load-warning], [disable the charon plugin load option warning in starter.])
303 ARG_ENABL_SET([mediation], [enable IKEv2 Mediation Extension.])
304 ARG_ENABL_SET([unwind-backtraces],[use libunwind to create backtraces for memory leaks and segfaults.])
305 ARG_ENABL_SET([ruby-gems], [enable build of provided ruby gems.])
306 ARG_ENABL_SET([ruby-gems-install],[enable installation of provided ruby gems.])
307 ARG_ENABL_SET([python-eggs], [enable build of provided python eggs.])
308 ARG_ENABL_SET([python-eggs-install],[enable installation of provided python eggs.])
309 ARG_ENABL_SET([perl-cpan], [enable build of provided perl CPAN module.])
310 ARG_ENABL_SET([perl-cpan-install],[enable installation of provided CPAN module.])
311 ARG_ENABL_SET([tss-trousers], [enable the use of the TrouSerS Trusted Software Stack])
312 ARG_ENABL_SET([tss-tss2], [enable the use of the TSS 2.0 Trusted Software Stack])
313
314 # compile options
315 ARG_ENABL_SET([coverage], [enable lcov coverage report generation.])
316 ARG_ENABL_SET([leak-detective], [enable malloc hooks to find memory leaks.])
317 ARG_ENABL_SET([lock-profiler], [enable lock/mutex profiling code.])
318 ARG_ENABL_SET([log-thread-ids], [use thread ID, if available, instead of an incremented value starting from 1, to identify threads.])
319 ARG_ENABL_SET([monolithic], [build monolithic version of libstrongswan that includes all enabled plugins. Similarly, the plugins of charon are assembled in libcharon.])
320
321 # ===================================
322 # option to disable default options
323 # ===================================
324
325 ARG_DISBL_SET([defaults], [disable all default plugins (they can be enabled with their respective --enable options)])
326
327 if test x$defaults = xfalse; then
328 for option in $enabled_by_default; do
329 eval test x\${${option}_given} = xtrue && continue
330 eval $option=false
331 done
332 fi
333
334 # ==============================
335 # option to enable all options
336 # ==============================
337
338 ARG_ENABL_SET([all], [enable all plugins and features (they can be disabled with their respective --disable options). Mainly for testing.])
339
340 if test x$all_given = xtrue; then
341 for option in $disabled_by_default; do
342 eval test x\${${option}_given} = xtrue && continue
343 eval $option=true
344 done
345 fi
346
347 # ===========================
348 # set up compiler and flags
349 # ===========================
350
351 if test -z "$CFLAGS"; then
352 CFLAGS="-g -O2 -Wall -Wno-format -Wno-format-security -Wno-pointer-sign"
353 fi
354 AC_SUBST(PLUGIN_CFLAGS)
355 AC_PROG_CC
356 AM_PROG_CC_C_O
357
358 AC_LIB_PREFIX
359 AC_C_BIGENDIAN
360
361 # =========================
362 # check required programs
363 # =========================
364
365 LT_INIT
366 AC_PROG_INSTALL
367 AC_PROG_EGREP
368 AC_PROG_AWK
369 AC_PROG_LEX
370 AC_PROG_YACC
371 AM_PATH_PYTHON(,,[:])
372 AC_PATH_PROG([PERL], [perl], [], [$PATH:/bin:/usr/bin:/usr/local/bin])
373 AC_PATH_PROG([GPERF], [gperf], [], [$PATH:/bin:/usr/bin:/usr/local/bin])
374
375 # because gperf is not needed by end-users we just report it but do not abort on failure
376 AC_MSG_CHECKING([gperf version >= 3.0.0])
377 if test -x "$GPERF"; then
378 if test "`$GPERF --version | $AWK -F' ' '/^GNU gperf/ { print $3 }' | $AWK -F. '{ print $1 }'`" -ge "3"; then
379 AC_MSG_RESULT([yes])
380 else
381 AC_MSG_RESULT([no])
382 fi
383 else
384 AC_MSG_RESULT([not found])
385 fi
386
387 # ========================
388 # dependency calculation
389 # ========================
390
391 if test x$xauth_generic_given = xfalse -a x$ikev1 = xfalse; then
392 xauth_generic=false;
393 fi
394
395 if test x$kernel_libipsec = xtrue; then
396 libipsec=true;
397 fi
398
399 if test x$eap_aka_3gpp2 = xtrue; then
400 gmp=true;
401 fi
402
403 if test x$eap_aka = xtrue; then
404 fips_prf=true;
405 simaka=true;
406 fi
407
408 if test x$eap_sim = xtrue; then
409 fips_prf=true;
410 simaka=true;
411 fi
412
413 if test x$eap_radius = xtrue -o x$radattr = xtrue -o x$tnc_pdp = xtrue; then
414 radius=true;
415 fi
416
417 if test x$tnc_imc = xtrue -o x$tnc_imv = xtrue -o x$tnccs_11 = xtrue -o x$tnccs_11 = xtrue -o x$tnccs_dynamic = xtrue -o x$eap_tnc = xtrue; then
418 tnc_tnccs=true;
419 fi
420
421 if test x$eap_tls = xtrue -o x$eap_ttls = xtrue -o x$eap_peap = xtrue -o x$tnc_tnccs = xtrue; then
422 tls=true;
423 fi
424
425 if test x$imc_test = xtrue -o x$imv_test = xtrue -o x$imc_scanner = xtrue -o x$imv_scanner = xtrue -o x$imc_os = xtrue -o x$imv_os = xtrue -o x$imc_attestation = xtrue -o x$imv_attestation = xtrue -o x$imc_swid = xtrue -o x$imv_swid = xtrue -o x$imc_hcd = xtrue -o x$imv_hcd = xtrue; then
426 imcv=true;
427 fi
428
429 if test x$fips_prf = xtrue; then
430 if test x$openssl = xfalse; then
431 sha1=true;
432 fi
433 fi
434
435 if test x$swanctl = xtrue; then
436 vici=true
437 fi
438
439 if test x$smp = xtrue -o x$tnccs_11 = xtrue -o x$tnc_ifmap = xtrue; then
440 xml=true
441 fi
442
443 if test x$manager = xtrue; then
444 fast=true
445 fi
446
447 if test x$medsrv = xtrue; then
448 mediation=true
449 fast=true
450 fi
451
452 if test x$medcli = xtrue; then
453 mediation=true
454 fi
455
456 if test x$ruby_gems_install = xtrue; then
457 ruby_gems=true
458 fi
459
460 if test x$python_eggs_install = xtrue; then
461 python_eggs=true
462 fi
463
464 if test x$perl_cpan_install = xtrue; then
465 perl_cpan=true
466 fi
467
468 if test x$aikgen = xtrue; then
469 tss_trousers=true
470 fi
471
472 if test x$ntru = xtrue -o x$bliss = xtrue; then
473 mgf1=true
474 fi
475
476 # ===========================================
477 # check required libraries and header files
478 # ===========================================
479
480 AC_HEADER_STDBOOL
481 AC_FUNC_ALLOCA
482 AC_FUNC_STRERROR_R
483
484 # libraries needed on some platforms but not on others
485 # ------------------------------------------------------
486 saved_LIBS=$LIBS
487
488 # FreeBSD and Mac OS X have dlopen integrated in libc, Linux needs libdl
489 LIBS=""
490 AC_SEARCH_LIBS(dlopen, dl, [DLLIB=$LIBS])
491 AC_SUBST(DLLIB)
492
493 # glibc's backtrace() can be replicated on FreeBSD with libexecinfo
494 LIBS=""
495 AC_SEARCH_LIBS(backtrace, execinfo, [BTLIB=$LIBS])
496 AC_CHECK_FUNCS(backtrace)
497 AC_SUBST(BTLIB)
498
499 # OpenSolaris needs libsocket and libnsl for socket()
500 LIBS=""
501 AC_SEARCH_LIBS(socket, socket, [SOCKLIB=$LIBS],
502 [AC_CHECK_LIB(nsl, socket, [SOCKLIB="-lsocket -lnsl"], [], [-lsocket])]
503 )
504 AC_SUBST(SOCKLIB)
505
506 # Android has pthread_* functions in bionic (libc), others need libpthread
507 LIBS=$DLLIB
508 AC_SEARCH_LIBS(pthread_create, pthread, [PTHREADLIB=$LIBS])
509 AC_SUBST(PTHREADLIB)
510
511 # Some architectures require explicit -latomic for __atomic_* operations
512 # AC_SEARCH_LIBS() does not work when checking built-ins due to conflicting types
513 LIBS=""
514 AC_MSG_CHECKING(for library containing __atomic_and_fetch)
515 AC_LINK_IFELSE(
516 [AC_LANG_PROGRAM([[]], [[int x; __atomic_and_fetch(&x, 1, __ATOMIC_RELAXED);]])],
517 [AC_MSG_RESULT([none required])],
518 [LIBS="-latomic";
519 AC_LINK_IFELSE(
520 [AC_LANG_PROGRAM([[]], [[int x; __atomic_and_fetch(&x, 1, __ATOMIC_RELAXED);]])],
521 [AC_MSG_RESULT([-latomic]); ATOMICLIB=$LIBS],
522 [AC_MSG_RESULT([no])])
523 ]
524 )
525 AC_SUBST(ATOMICLIB)
526
527 LIBS=$saved_LIBS
528 # ------------------------------------------------------
529
530 AC_MSG_CHECKING(for dladdr)
531 AC_COMPILE_IFELSE(
532 [AC_LANG_PROGRAM(
533 [[#define _GNU_SOURCE
534 #include <dlfcn.h>]],
535 [[Dl_info* info = 0;
536 dladdr(0, info);]])],
537 [AC_MSG_RESULT([yes]); AC_DEFINE([HAVE_DLADDR], [], [have dladdr()])],
538 [AC_MSG_RESULT([no])]
539 )
540
541 # check if pthread_condattr_setclock(CLOCK_MONOTONIC) is supported
542 saved_LIBS=$LIBS
543 LIBS=$PTHREADLIB
544 AC_MSG_CHECKING([for pthread_condattr_setclock(CLOCK_MONOTONIC)])
545 AC_RUN_IFELSE(
546 [AC_LANG_SOURCE(
547 [[#include <pthread.h>
548 int main() { pthread_condattr_t attr;
549 pthread_condattr_init(&attr);
550 return pthread_condattr_setclock(&attr, CLOCK_MONOTONIC);}]])],
551 [AC_MSG_RESULT([yes]);
552 AC_DEFINE([HAVE_CONDATTR_CLOCK_MONOTONIC], [],
553 [pthread_condattr_setclock supports CLOCK_MONOTONIC])],
554 [AC_MSG_RESULT([no])],
555 # Check existence of pthread_condattr_setclock if cross-compiling
556 [AC_MSG_RESULT([unknown]);
557 AC_CHECK_FUNCS(pthread_condattr_setclock,
558 [AC_DEFINE([HAVE_CONDATTR_CLOCK_MONOTONIC], [],
559 [have pthread_condattr_setclock()])]
560 )]
561 )
562 # check if we actually are able to configure attributes on cond vars
563 AC_CHECK_FUNCS(pthread_condattr_init)
564 # instead of pthread_condattr_setclock Android has this function
565 AC_CHECK_FUNCS(pthread_cond_timedwait_monotonic)
566 # check if we can cancel threads
567 AC_CHECK_FUNCS(pthread_cancel)
568 # check if native rwlocks are available
569 AC_CHECK_FUNCS(pthread_rwlock_init)
570 # check if pthread spinlocks are available
571 AC_CHECK_FUNCS(pthread_spin_init)
572 # check if we have POSIX semaphore functions, including timed-wait
573 AC_CHECK_FUNCS(sem_timedwait)
574 LIBS=$saved_LIBS
575
576 AC_CHECK_FUNC(
577 [gettid],
578 [AC_DEFINE([HAVE_GETTID], [], [have gettid()])],
579 [AC_MSG_CHECKING([for SYS_gettid])
580 AC_COMPILE_IFELSE(
581 [AC_LANG_PROGRAM(
582 [[#define _GNU_SOURCE
583 #include <unistd.h>
584 #include <sys/syscall.h>]],
585 [[int main() {
586 return syscall(SYS_gettid);}]])],
587 [AC_MSG_RESULT([yes]);
588 AC_DEFINE([HAVE_GETTID], [], [have gettid()])
589 AC_DEFINE([HAVE_SYS_GETTID], [], [have syscall(SYS_gettid)])],
590 [AC_MSG_RESULT([no])]
591 )]
592 )
593
594 AC_CHECK_FUNC(
595 [qsort_r],
596 [
597 AC_DEFINE([HAVE_QSORT_R], [], [have qsort_r()])
598 # set -Werror so that we get an error for "argument ... has
599 # incompatible pointer type" warnings
600 save_CFLAGS="$CFLAGS"
601 CFLAGS="$CFLAGS -Werror -Wno-unused-parameter"
602 AC_MSG_CHECKING([for GNU-style qsort_r])
603 AC_COMPILE_IFELSE(
604 [AC_LANG_PROGRAM(
605 [[#define _GNU_SOURCE
606 #include <stdlib.h>
607 int cmp (const void *a, const void *b, void *x) { return 0; }]],
608 [[int arr[] = { 0, 1 };
609 qsort_r(arr, 2, sizeof(int), cmp, arr);]])],
610 [AC_MSG_RESULT([yes]);
611 AC_DEFINE([HAVE_QSORT_R_GNU], [], [have GNU-style qsort_r()])],
612 [
613 AC_MSG_RESULT([no]);
614 AC_MSG_CHECKING([for BSD-style qsort_r])
615 AC_COMPILE_IFELSE(
616 [AC_LANG_PROGRAM(
617 [[#include <stdlib.h>
618 int cmp (void *x, const void *a, const void *b) { return 0; }]],
619 [[int arr[] = { 0, 1 };
620 qsort_r(arr, 2, sizeof(int), arr, cmp);]])],
621 [AC_MSG_RESULT([yes]);
622 AC_DEFINE([HAVE_QSORT_R_BSD], [], [have BSD-style qsort_r()])],
623 [AC_MSG_RESULT([no]);
624 AC_MSG_FAILURE([qsort_r has unknown semantics])])
625 ])
626 CFLAGS="$save_CFLAGS"
627 ]
628 )
629
630 AC_CHECK_FUNCS(prctl mallinfo getpass closefrom getpwnam_r getgrnam_r getpwuid_r)
631 AC_CHECK_FUNCS(fmemopen funopen mmap memrchr setlinebuf strptime dirfd sigwaitinfo)
632
633 AC_CHECK_FUNC([syslog], [
634 AC_DEFINE([HAVE_SYSLOG], [], [have syslog(3) and friends])
635 syslog=true
636 ])
637 AM_CONDITIONAL(USE_SYSLOG, [test "x$syslog" = xtrue])
638
639 AC_CHECK_HEADERS(sys/sockio.h sys/syscall.h sys/param.h glob.h net/if_tun.h)
640 AC_CHECK_HEADERS(net/pfkeyv2.h netipsec/ipsec.h netinet6/ipsec.h linux/udp.h)
641 AC_CHECK_HEADERS([netinet/ip6.h linux/fib_rules.h], [], [],
642 [
643 #include <sys/types.h>
644 #include <netinet/in.h>
645 ])
646
647 AC_CHECK_MEMBERS([struct sockaddr.sa_len], [], [],
648 [
649 #include <sys/types.h>
650 #include <sys/socket.h>
651 ])
652
653 AC_CHECK_MEMBERS([struct sadb_x_policy.sadb_x_policy_priority], [], [],
654 [
655 #include <sys/types.h>
656 #ifdef HAVE_NET_PFKEYV2_H
657 #include <net/pfkeyv2.h>
658 #else
659 #include <stdint.h>
660 #include <linux/pfkeyv2.h>
661 #endif
662 ])
663
664 AC_MSG_CHECKING([for in6addr_any])
665 AC_COMPILE_IFELSE(
666 [AC_LANG_PROGRAM(
667 [[#include <sys/types.h>
668 #include <sys/socket.h>
669 #include <netinet/in.h>]],
670 [[struct in6_addr in6 __attribute__((unused));
671 in6 = in6addr_any;]])],
672 [AC_MSG_RESULT([yes]);
673 AC_DEFINE([HAVE_IN6ADDR_ANY], [], [have struct in6_addr in6addr_any])],
674 [AC_MSG_RESULT([no])]
675 )
676
677 AC_MSG_CHECKING([for in6_pktinfo])
678 AC_COMPILE_IFELSE(
679 [AC_LANG_PROGRAM(
680 [[#define _GNU_SOURCE
681 #include <sys/types.h>
682 #include <sys/socket.h>
683 #include <netinet/in.h>]],
684 [[struct in6_pktinfo pi;
685 if (pi.ipi6_ifindex)
686 {
687 return 0;
688 }]])],
689 [AC_MSG_RESULT([yes]);
690 AC_DEFINE([HAVE_IN6_PKTINFO], [], [have struct in6_pktinfo.ipi6_ifindex])],
691 [AC_MSG_RESULT([no])]
692 )
693
694 AC_MSG_CHECKING([for RTM_IFANNOUNCE])
695 AC_COMPILE_IFELSE(
696 [AC_LANG_PROGRAM(
697 [[#include <sys/socket.h>
698 #include <net/if.h>
699 #include <net/route.h>]],
700 [[return RTM_IFANNOUNCE;]])],
701 [AC_MSG_RESULT([yes]);
702 AC_DEFINE([HAVE_RTM_IFANNOUNCE], [], [have PF_ROUTE RTM_IFANNOUNCE defined])],
703 [AC_MSG_RESULT([no])]
704 )
705
706 AC_MSG_CHECKING([for IPSEC_MODE_BEET])
707 AC_COMPILE_IFELSE(
708 [AC_LANG_PROGRAM(
709 [[#include <sys/types.h>
710 #ifdef HAVE_NETIPSEC_IPSEC_H
711 #include <netipsec/ipsec.h>
712 #elif defined(HAVE_NETINET6_IPSEC_H)
713 #include <netinet6/ipsec.h>
714 #else
715 #include <stdint.h>
716 #include <linux/ipsec.h>
717 #endif]],
718 [[int mode = IPSEC_MODE_BEET;
719 return mode;]])],
720 [AC_MSG_RESULT([yes]);
721 AC_DEFINE([HAVE_IPSEC_MODE_BEET], [], [have IPSEC_MODE_BEET defined])],
722 [AC_MSG_RESULT([no])]
723 )
724
725 AC_MSG_CHECKING([for IPSEC_DIR_FWD])
726 AC_COMPILE_IFELSE(
727 [AC_LANG_PROGRAM(
728 [[#include <sys/types.h>
729 #ifdef HAVE_NETIPSEC_IPSEC_H
730 #include <netipsec/ipsec.h>
731 #elif defined(HAVE_NETINET6_IPSEC_H)
732 #include <netinet6/ipsec.h>
733 #else
734 #include <stdint.h>
735 #include <linux/ipsec.h>
736 #endif]],
737 [[int dir = IPSEC_DIR_FWD;
738 return dir;]])],
739 [AC_MSG_RESULT([yes]);
740 AC_DEFINE([HAVE_IPSEC_DIR_FWD], [], [have IPSEC_DIR_FWD defined])],
741 [AC_MSG_RESULT([no])]
742 )
743
744 AC_MSG_CHECKING([for RTA_TABLE])
745 AC_COMPILE_IFELSE(
746 [AC_LANG_PROGRAM(
747 [[#include <sys/socket.h>
748 #include <linux/netlink.h>
749 #include <linux/rtnetlink.h>]],
750 [[int rta_type = RTA_TABLE;
751 return rta_type;]])],
752 [AC_MSG_RESULT([yes]);
753 AC_DEFINE([HAVE_RTA_TABLE], [], [have netlink RTA_TABLE defined])],
754 [AC_MSG_RESULT([no])]
755 )
756
757 AC_MSG_CHECKING([for __int128])
758 AC_COMPILE_IFELSE(
759 [AC_LANG_PROGRAM(
760 [[#include <sys/types.h>]],
761 [[__int128 x = 0;
762 return x;]])],
763 [AC_MSG_RESULT([yes]);
764 AC_DEFINE([HAVE_INT128], [], [have __int128 type support])],
765 [AC_MSG_RESULT([no])]
766 )
767
768 AC_MSG_CHECKING([for GCC __sync operations])
769 AC_RUN_IFELSE([AC_LANG_SOURCE(
770 [[
771 int main() {
772 int ref = 1;
773 __sync_fetch_and_add (&ref, 1);
774 __sync_sub_and_fetch (&ref, 1);
775 __sync_val_compare_and_swap(&ref, 1, 0);
776 return ref;
777 }
778 ]])],
779 [AC_MSG_RESULT([yes]);
780 AC_DEFINE([HAVE_GCC_SYNC_OPERATIONS], [],
781 [have GCC __sync_* operations])],
782 [AC_MSG_RESULT([no])],
783 [AC_MSG_RESULT([no])]
784 )
785
786 case "$printf_hooks" in
787 auto|builtin|glibc|vstr)
788 ;;
789 *)
790 AC_MSG_NOTICE([invalid printf hook implementation, defaulting to 'auto'])
791 printf_hooks=auto
792 ;;
793 esac
794
795 if test x$printf_hooks = xauto -o x$printf_hooks = xglibc; then
796 # check for the new register_printf_specifier function with len argument,
797 # or the deprecated register_printf_function without
798 AC_CHECK_FUNC(
799 [register_printf_specifier],
800 [AC_DEFINE([HAVE_PRINTF_SPECIFIER], [], [have register_printf_specifier()])],
801 [AC_CHECK_FUNC(
802 [register_printf_function],
803 [AC_DEFINE([HAVE_PRINTF_FUNCTION], [], [have register_printf_function()])],
804 [
805 AC_MSG_NOTICE([printf(3) does not support custom format specifiers!])
806 if test x$printf_hooks = xglibc; then
807 AC_MSG_ERROR([please select a different printf hook implementation])
808 else
809 # fallback to builtin printf hook implementation
810 printf_hooks=builtin
811 fi
812 ]
813 )]
814 )
815 fi
816
817 AC_MSG_CHECKING([for Windows target])
818 AC_COMPILE_IFELSE(
819 [AC_LANG_PROGRAM(
820 [[#include <windows.h>]],
821 [[#ifndef WIN32
822 # error WIN32 undefined
823 #endif
824 ]])],
825 [
826 AC_MSG_RESULT([yes])
827 windows=true
828 openssl_lib=eay32
829 AC_SUBST(PTHREADLIB, "")
830 # explicitly disable ms-bitfields, as it breaks __attribute__((packed))
831 case "$CFLAGS" in
832 *ms-bitfields*) ;;
833 *) CFLAGS="$CFLAGS -mno-ms-bitfields" ;;
834 esac
835 ],
836 [
837 AC_MSG_RESULT([no])
838 openssl_lib=crypto
839
840 # check for clock_gettime() on non-Windows only. Otherwise this
841 # check might find clock_gettime() in libwinpthread, but we don't want
842 # to link against it.
843 saved_LIBS=$LIBS
844 # FreeBSD has clock_gettime in libc, Linux needs librt
845 LIBS=""
846 AC_SEARCH_LIBS(clock_gettime, rt, [RTLIB=$LIBS])
847 AC_CHECK_FUNCS(clock_gettime)
848 AC_SUBST(RTLIB)
849 LIBS=$saved_LIBS
850 ]
851 )
852 AC_SUBST(OPENSSL_LIB, [-l$openssl_lib])
853 AM_CONDITIONAL(USE_WINDOWS, [test "x$windows" = xtrue])
854
855 AC_MSG_CHECKING([for working __attribute__((packed))])
856 AC_COMPILE_IFELSE(
857 [AC_LANG_PROGRAM([], [[
858 struct test { char a; short b; } __attribute__((packed));
859 char x[sizeof(struct test) == sizeof(char) + sizeof(short) ? 1 : -1]
860 __attribute__((unused));
861 return 0;
862 ]])],
863 [AC_MSG_RESULT([yes])],
864 [AC_MSG_RESULT([no]); AC_MSG_ERROR([__attribute__((packed)) does not work])]
865 )
866
867 AC_MSG_CHECKING([clang])
868 AC_COMPILE_IFELSE(
869 [AC_LANG_PROGRAM(
870 [], [[
871 #ifndef __clang__
872 # error not using LLVM clang
873 #endif
874 ]])],
875 [
876 AC_MSG_RESULT([yes])
877 ],
878 [
879 AC_MSG_RESULT([no])
880 # GCC, but not MinGW requires -rdynamic for plugins
881 if test x$windows != xtrue; then
882 PLUGIN_CFLAGS="$PLUGIN_CFLAGS -rdynamic"
883 fi
884 ]
885 )
886
887 AC_MSG_CHECKING([x86/x64 target])
888 AC_COMPILE_IFELSE(
889 [AC_LANG_PROGRAM(
890 [], [[
891 #if !defined(__i386__) && !defined(__x86_64__)
892 # error not on x86/x64
893 #endif
894 ]])],
895 [
896 x86x64=true
897 AC_MSG_RESULT([yes])
898 ],
899 [AC_MSG_RESULT([no])]
900 )
901 AM_CONDITIONAL(USE_X86X64, [test "x$x86x64" = xtrue])
902
903 if test x$printf_hooks = xvstr; then
904 AC_CHECK_LIB([vstr],[vstr_init],[LIBS="$LIBS"],[AC_MSG_ERROR([Vstr string library not found])],[])
905 AC_DEFINE([USE_VSTR], [], [use Vstr string library for printf hooks])
906 fi
907
908 if test x$printf_hooks = xbuiltin; then
909 AC_DEFINE([USE_BUILTIN_PRINTF], [], [using builtin printf for printf hooks])
910 fi
911
912 if test x$gmp = xtrue; then
913 saved_LIBS=$LIBS
914 AC_CHECK_LIB([gmp],[__gmpz_init],[],[AC_MSG_ERROR([GNU Multi Precision library gmp not found])],[])
915 AC_MSG_CHECKING([mpz_powm_sec])
916 if test x$mpz_powm_sec = xyes; then
917 AC_COMPILE_IFELSE(
918 [AC_LANG_PROGRAM(
919 [[#include "gmp.h"]],
920 [[void *x = mpz_powm_sec;]])],
921 [AC_MSG_RESULT([yes]);
922 AC_DEFINE([HAVE_MPZ_POWM_SEC], [], [have mpz_mown_sec()])],
923 [AC_MSG_RESULT([no])]
924 )
925 else
926 AC_MSG_RESULT([disabled])
927 fi
928 LIBS=$saved_LIBS
929 AC_MSG_CHECKING([gmp.h version >= 4.1.4])
930 AC_COMPILE_IFELSE(
931 [AC_LANG_PROGRAM(
932 [[#include "gmp.h"]],
933 [[
934 #if (__GNU_MP_VERSION*100 + __GNU_MP_VERSION_MINOR*10 + __GNU_MP_VERSION_PATCHLEVEL) < 414
935 #error bad gmp
936 #endif]])],
937 [AC_MSG_RESULT([yes])],
938 [AC_MSG_RESULT([no]); AC_MSG_ERROR([No usable gmp.h found!])]
939 )
940 fi
941
942 if test x$ldap = xtrue; then
943 AC_CHECK_LIB([ldap],[ldap_init],[LIBS="$LIBS"],[AC_MSG_ERROR([LDAP library ldap not found])],[])
944 AC_CHECK_LIB([lber],[ber_free],[LIBS="$LIBS"],[AC_MSG_ERROR([LDAP library lber not found])],[])
945 AC_CHECK_HEADER([ldap.h],,[AC_MSG_ERROR([LDAP header ldap.h not found!])])
946 fi
947
948 if test x$curl = xtrue; then
949 AC_CHECK_LIB([curl],[curl_global_init],[LIBS="$LIBS"],[AC_MSG_ERROR([CURL library curl not found])],[])
950 AC_CHECK_HEADER([curl/curl.h],,[AC_MSG_ERROR([CURL header curl/curl.h not found!])])
951 fi
952
953 if test x$unbound = xtrue; then
954 AC_CHECK_LIB([ldns],[ldns_rr_get_type],[LIBS="$LIBS"],[AC_MSG_ERROR([UNBOUND library ldns not found])],[])
955 AC_CHECK_HEADER([ldns/ldns.h],,[AC_MSG_ERROR([UNBOUND header ldns/ldns.h not found!])])
956 AC_CHECK_LIB([unbound],[ub_ctx_create],[LIBS="$LIBS"],[AC_MSG_ERROR([UNBOUND library libunbound not found])],[])
957 AC_CHECK_HEADER([unbound.h],,[AC_MSG_ERROR([UNBOUND header unbound.h not found!])])
958 fi
959
960 if test x$soup = xtrue; then
961 PKG_CHECK_MODULES(soup, [libsoup-2.4])
962 AC_SUBST(soup_CFLAGS)
963 AC_SUBST(soup_LIBS)
964 fi
965
966 if test x$xml = xtrue; then
967 PKG_CHECK_MODULES(xml, [libxml-2.0])
968 AC_SUBST(xml_CFLAGS)
969 AC_SUBST(xml_LIBS)
970 fi
971
972 if test x$systemd = xtrue; then
973 AC_MSG_CHECKING([for systemd system unit directory])
974 if test -n "$systemdsystemunitdir" -a "x$systemdsystemunitdir" != xno; then
975 AC_MSG_RESULT([$systemdsystemunitdir])
976 else
977 AC_MSG_ERROR([not found (try --with-systemdsystemunitdir)])
978 fi
979
980 PKG_CHECK_MODULES(systemd, [libsystemd >= 209],
981 [AC_SUBST(systemd_CFLAGS)
982 AC_SUBST(systemd_LIBS)],
983 [PKG_CHECK_MODULES(systemd_daemon, [libsystemd-daemon])
984 AC_SUBST(systemd_daemon_CFLAGS)
985 AC_SUBST(systemd_daemon_LIBS)
986 PKG_CHECK_MODULES(systemd_journal, [libsystemd-journal])
987 AC_SUBST(systemd_journal_CFLAGS)
988 AC_SUBST(systemd_journal_LIBS)]
989 )
990 fi
991
992 if test x$tss_trousers = xtrue; then
993 AC_CHECK_LIB([tspi],[Tspi_Context_Create],[LIBS="$LIBS"],[AC_MSG_ERROR([TrouSerS library libtspi not found])],[])
994 AC_CHECK_HEADER([trousers/tss.h],,[AC_MSG_ERROR([TrouSerS header trousers/tss.h not found!])])
995 AC_DEFINE([TSS_TROUSERS], [], [use TrouSerS library libtspi])
996 fi
997
998 if test x$tss_tss2 = xtrue; then
999 PKG_CHECK_MODULES(tss2, [tcti-socket], [AC_DEFINE([TSS_TSS2], [], [use TSS 2.0 libraries])])
1000 AC_SUBST(tss2_CFLAGS)
1001 AC_SUBST(tss2_LIBS)
1002 fi
1003
1004 if test x$imv_swid = xtrue; then
1005 PKG_CHECK_MODULES(json, [json-c], [],
1006 [PKG_CHECK_MODULES(json, [json])])
1007 AC_SUBST(json_CFLAGS)
1008 AC_SUBST(json_LIBS)
1009 fi
1010
1011 if test x$dumm = xtrue; then
1012 PKG_CHECK_MODULES(gtk, [gtk+-2.0 vte])
1013 AC_SUBST(gtk_CFLAGS)
1014 AC_SUBST(gtk_LIBS)
1015 AC_CHECK_PROGS(RUBY, ruby)
1016 PKG_CHECK_MODULES(ruby, [ruby])
1017 saved_LIBS=$LIBS
1018 LIBS=$ruby_LIBS
1019 AC_CHECK_FUNCS(rb_errinfo)
1020 LIBS=$saved_LIBS
1021 fi
1022
1023 if test x$fast = xtrue; then
1024 AC_CHECK_LIB([neo_utl],[hdf_init],[LIBS="$LIBS"],[AC_MSG_ERROR([ClearSilver library neo_utl not found!])],[])
1025 AC_MSG_CHECKING([for -lneo_cgi and dependencies])
1026 saved_CFLAGS=$CFLAGS
1027 saved_LIBS=$LIBS
1028 LIBS="-lneo_cgi -lneo_cs -lneo_utl"
1029 CFLAGS="-I/usr/include/ClearSilver"
1030 AC_LINK_IFELSE(
1031 [AC_LANG_PROGRAM(
1032 [[#include <cgi/cgi.h>]],
1033 [[NEOERR *err = cgi_display(NULL, NULL);]])],
1034 [AC_MSG_RESULT([yes])],
1035 [LIBS="$LIBS -lz";
1036 AC_LINK_IFELSE(
1037 [AC_LANG_PROGRAM(
1038 [[#include <cgi/cgi.h>]],
1039 [[NEOERR *err = cgi_display(NULL, NULL);]])],
1040 [AC_MSG_RESULT([yes, zlib required])],
1041 [AC_MSG_ERROR([not found])]
1042 )]
1043 )
1044 clearsilver_LIBS="$LIBS"
1045 AC_SUBST(clearsilver_LIBS)
1046 LIBS=$saved_LIBS
1047 CFLAGS=$saved_CFLAGS
1048
1049 AC_CHECK_LIB([fcgi],[FCGX_Init],[LIBS="$LIBS"],[AC_MSG_ERROR([FastCGI library fcgi not found!])],[])
1050 AC_CHECK_HEADER([fcgiapp.h],,[AC_MSG_ERROR([FastCGI header file fcgiapp.h not found!])])
1051 fi
1052
1053 if test x$mysql = xtrue; then
1054 if test "x$windows" = xtrue; then
1055 AC_CHECK_HEADER([mysql.h],,[AC_MSG_ERROR([MySQL header file mysql.h not found!])])
1056 AC_CHECK_LIB([mysql],[mysql_database_init],[LIBS="$LIBS"],[AC_MSG_ERROR([MySQL library not found!])],[])
1057 AC_SUBST(MYSQLLIB, -lmysql)
1058 else
1059 AC_PATH_PROG([MYSQLCONFIG], [mysql_config], [], [$PATH:/bin:/usr/bin:/usr/local/bin])
1060 if test x$MYSQLCONFIG = x; then
1061 AC_MSG_ERROR([mysql_config not found!])
1062 fi
1063 AC_SUBST(MYSQLLIB, `$MYSQLCONFIG --libs_r`)
1064 AC_SUBST(MYSQLCFLAG, `$MYSQLCONFIG --cflags`)
1065 fi
1066 fi
1067
1068 if test x$sqlite = xtrue; then
1069 AC_CHECK_LIB([sqlite3],[sqlite3_open],[LIBS="$LIBS"],[AC_MSG_ERROR([SQLite library sqlite3 not found])],[])
1070 AC_CHECK_HEADER([sqlite3.h],,[AC_MSG_ERROR([SQLite header sqlite3.h not found!])])
1071 AC_MSG_CHECKING([sqlite3_prepare_v2])
1072 AC_COMPILE_IFELSE(
1073 [AC_LANG_PROGRAM(
1074 [[#include <sqlite3.h>]],
1075 [[void *test = sqlite3_prepare_v2;]])],
1076 [AC_MSG_RESULT([yes]);
1077 AC_DEFINE([HAVE_SQLITE3_PREPARE_V2], [], [have sqlite3_prepare_v2()])],
1078 [AC_MSG_RESULT([no])]
1079 )
1080 AC_MSG_CHECKING([sqlite3.h version >= 3.3.1])
1081 AC_COMPILE_IFELSE(
1082 [AC_LANG_PROGRAM(
1083 [[#include <sqlite3.h>]],
1084 [[
1085 #if SQLITE_VERSION_NUMBER < 3003001
1086 #error bad sqlite
1087 #endif]])],
1088 [AC_MSG_RESULT([yes])],
1089 [AC_MSG_RESULT([no]); AC_MSG_ERROR([SQLite version >= 3.3.1 required!])]
1090 )
1091 fi
1092
1093 if test x$openssl = xtrue; then
1094 AC_CHECK_LIB([$openssl_lib],[EVP_CIPHER_CTX_new],[LIBS="$LIBS"],
1095 [AC_MSG_ERROR([OpenSSL lib$openssl_lib not found])],[$DLLIB])
1096 AC_CHECK_HEADER([openssl/evp.h],,[AC_MSG_ERROR([OpenSSL header openssl/evp.h not found!])])
1097 fi
1098
1099 if test x$gcrypt = xtrue; then
1100 AC_CHECK_LIB([gcrypt],[gcry_control],[LIBS="$LIBS"],[AC_MSG_ERROR([gcrypt library not found])],[-lgpg-error])
1101 AC_CHECK_HEADER([gcrypt.h],,[AC_MSG_ERROR([gcrypt header gcrypt.h not found!])])
1102 AC_MSG_CHECKING([gcrypt CAMELLIA cipher])
1103 AC_COMPILE_IFELSE(
1104 [AC_LANG_PROGRAM(
1105 [[#include <gcrypt.h>]],
1106 [[enum gcry_cipher_algos alg = GCRY_CIPHER_CAMELLIA128;]])],
1107 [AC_MSG_RESULT([yes]);
1108 AC_DEFINE([HAVE_GCRY_CIPHER_CAMELLIA], [], [have GCRY_CIPHER_CAMELLIA128])],
1109 [AC_MSG_RESULT([no])]
1110 )
1111 fi
1112
1113 if test x$uci = xtrue; then
1114 AC_CHECK_LIB([uci],[uci_alloc_context],[LIBS="$LIBS"],[AC_MSG_ERROR([UCI library libuci not found])],[])
1115 AC_CHECK_HEADER([uci.h],,[AC_MSG_ERROR([UCI header uci.h not found!])])
1116 fi
1117
1118 if test x$android_dns = xtrue; then
1119 AC_CHECK_LIB([cutils],[property_get],[LIBS="$LIBS"],[AC_MSG_ERROR([Android library libcutils not found])],[])
1120 AC_CHECK_HEADER([cutils/properties.h],,[AC_MSG_ERROR([Android header cutils/properties.h not found!])])
1121 # we have to force the use of libdl here because the autodetection
1122 # above does not work correctly when cross-compiling for android.
1123 DLLIB="-ldl"
1124 AC_SUBST(DLLIB)
1125 fi
1126
1127 if test x$eap_sim_pcsc = xtrue; then
1128 PKG_CHECK_MODULES(pcsclite, [libpcsclite])
1129 AC_SUBST(pcsclite_CFLAGS)
1130 AC_SUBST(pcsclite_LIBS)
1131 fi
1132
1133 if test x$nm = xtrue; then
1134 PKG_CHECK_EXISTS([libnm-glib],
1135 [PKG_CHECK_MODULES(nm, [NetworkManager gthread-2.0 libnm-util libnm-glib libnm-glib-vpn])],
1136 [PKG_CHECK_MODULES(nm, [NetworkManager gthread-2.0 libnm_util libnm_glib libnm_glib_vpn])]
1137 )
1138 AC_SUBST(nm_CFLAGS)
1139 AC_SUBST(nm_LIBS)
1140 fi
1141
1142 if test x$xauth_pam = xtrue; then
1143 AC_CHECK_LIB([pam],[pam_start],[LIBS="$LIBS"],[AC_MSG_ERROR([PAM library not found])],[])
1144 AC_CHECK_HEADER([security/pam_appl.h],,[AC_MSG_ERROR([PAM header security/pam_appl.h not found!])])
1145 fi
1146
1147 if test x$connmark = xtrue -o x$forecast = xtrue; then
1148 PKG_CHECK_MODULES(libiptc, [libiptc])
1149 AC_SUBST(libiptc_CFLAGS)
1150 AC_SUBST(libiptc_LIBS)
1151 fi
1152
1153 if test x$capabilities = xnative; then
1154 AC_MSG_NOTICE([Usage of the native Linux capabilities interface is deprecated, use libcap instead])
1155 # Linux requires the following for capset(), Android does not have it,
1156 # but defines capset() in unistd.h instead.
1157 AC_CHECK_HEADERS([sys/capability.h])
1158 AC_CHECK_FUNC(capset,,[AC_MSG_ERROR([capset() not found!])])
1159 AC_DEFINE([CAPABILITIES_NATIVE], [], [have native linux capset()])
1160 fi
1161
1162 if test x$capabilities = xlibcap; then
1163 AC_CHECK_LIB([cap],[cap_init],[LIBS="$LIBS"],[AC_MSG_ERROR([libcap library not found])],[])
1164 AC_CHECK_HEADER([sys/capability.h],
1165 [AC_DEFINE([HAVE_SYS_CAPABILITY_H], [], [have sys/capability.h])],
1166 [AC_MSG_ERROR([libcap header sys/capability.h not found!])])
1167 AC_DEFINE([CAPABILITIES_LIBCAP], [], [have libpcap library])
1168 fi
1169
1170 if test x$integrity_test = xtrue; then
1171 AC_MSG_CHECKING([for dladdr()])
1172 AC_COMPILE_IFELSE(
1173 [AC_LANG_PROGRAM(
1174 [[#define _GNU_SOURCE
1175 #include <dlfcn.h>]],
1176 [[Dl_info info; dladdr(main, &info);]])],
1177 [AC_MSG_RESULT([yes])],
1178 [AC_MSG_RESULT([no]);
1179 AC_MSG_ERROR([dladdr() not supported, required by integrity-test!])]
1180 )
1181 AC_MSG_CHECKING([for dl_iterate_phdr()])
1182 AC_COMPILE_IFELSE(
1183 [AC_LANG_PROGRAM(
1184 [[#define _GNU_SOURCE
1185 #include <link.h>]],
1186 [[dl_iterate_phdr((void*)0, (void*)0);]])],
1187 [AC_MSG_RESULT([yes])],
1188 [AC_MSG_RESULT([no]);
1189 AC_MSG_ERROR([dl_iterate_phdr() not supported, required by integrity-test!])]
1190 )
1191 fi
1192
1193 if test x$bfd_backtraces = xtrue; then
1194 AC_CHECK_LIB([bfd],[bfd_init],[LIBS="$LIBS"],[AC_MSG_ERROR([binutils libbfd not found!])],[])
1195 AC_CHECK_HEADER([bfd.h],[AC_DEFINE([HAVE_BFD_H],,[have binutils bfd.h])],
1196 [AC_MSG_ERROR([binutils bfd.h header not found!])])
1197 BFDLIB="-lbfd"
1198 AC_SUBST(BFDLIB)
1199 fi
1200
1201 if test x$unwind_backtraces = xtrue; then
1202 AC_CHECK_LIB([unwind],[unw_backtrace],[LIBS="$LIBS"],[AC_MSG_ERROR([libunwind not found!])],[])
1203 AC_CHECK_HEADER([libunwind.h],[AC_DEFINE([HAVE_LIBUNWIND_H],,[have libunwind.h])],
1204 [AC_MSG_ERROR([libunwind.h header not found!])])
1205 UNWINDLIB="-lunwind"
1206 AC_SUBST(UNWINDLIB)
1207 fi
1208
1209 AM_CONDITIONAL(USE_DEV_HEADERS, [test "x$dev_headers" != xno])
1210 if test x$dev_headers = xyes; then
1211 dev_headers="$includedir/strongswan"
1212 fi
1213 AC_SUBST(dev_headers)
1214
1215 CFLAGS="$CFLAGS -include `pwd`/config.h"
1216
1217 if test x$tkm = xtrue; then
1218 AC_PATH_PROG([GPRBUILD], [gprbuild], [], [$PATH:/bin:/usr/bin:/usr/local/bin])
1219 if test x$GPRBUILD = x; then
1220 AC_MSG_ERROR([gprbuild not found])
1221 fi
1222 fi
1223
1224 if test x$coverage = xtrue; then
1225 AC_PATH_PROG([LCOV], [lcov], [], [$PATH:/bin:/usr/bin:/usr/local/bin])
1226 if test x$LCOV = x; then
1227 AC_MSG_ERROR([lcov not found])
1228 fi
1229 AC_PATH_PROG([GENHTML], [genhtml], [], [$PATH:/bin:/usr/bin:/usr/local/bin])
1230 if test x$GENHTML = x; then
1231 AC_MSG_ERROR([genhtml not found])
1232 fi
1233
1234 COVERAGE_CFLAGS="-fprofile-arcs -ftest-coverage"
1235 COVERAGE_LDFLAGS="-fprofile-arcs"
1236 AC_SUBST(COVERAGE_CFLAGS)
1237 AC_SUBST(COVERAGE_LDFLAGS)
1238 PLUGIN_CFLAGS="$PLUGIN_CFLAGS $COVERAGE_CFLAGS"
1239
1240 AC_MSG_NOTICE([coverage enabled, adding "-g -O0" to CFLAGS])
1241 CFLAGS="${CFLAGS} -g -O0"
1242 fi
1243
1244 if test x$ruby_gems = xtrue; then
1245 AC_PATH_PROG([GEM], [gem], [], [$PATH:/bin:/usr/bin:/usr/local/bin])
1246 if test x$GEM = x; then
1247 AC_MSG_ERROR(RubyGems package manager not found)
1248 fi
1249 if test "x$rubygemdir" = "xgem environment gemdir"; then
1250 rubygemdir=$($GEM environment gemdir)
1251 fi
1252 AC_SUBST(RUBYGEMDIR, "$rubygemdir")
1253 fi
1254 AM_CONDITIONAL(RUBY_GEMS_INSTALL, [test "x$ruby_gems_install" = xtrue])
1255
1256 if test x$python_eggs = xtrue; then
1257 PYTHON_PACKAGE_VERSION=`echo "$PACKAGE_VERSION" | $SED 's/dr/dev/'`
1258 AC_SUBST([PYTHON_PACKAGE_VERSION])
1259 if test x$python_eggs_install = xtrue; then
1260 AC_PATH_PROG([EASY_INSTALL], [easy_install], [], [$PATH:/bin:/usr/bin:/usr/local/bin])
1261 if test x$EASY_INSTALL = x; then
1262 AC_MSG_ERROR(Python easy_install not found)
1263 fi
1264 fi
1265 if test "x$pythoneggdir" = "xmain site-packages directory"; then
1266 AC_SUBST(PYTHONEGGINSTALLDIR, "")
1267 else
1268 AC_SUBST(PYTHONEGGINSTALLDIR, "--install-dir $pythoneggdir")
1269 fi
1270 AC_PATH_PROG([PY_TEST], [py.test], [], [$PATH:/bin:/usr/bin:/usr/local/bin])
1271 fi
1272 AM_CONDITIONAL(PYTHON_EGGS_INSTALL, [test "x$python_eggs_install" = xtrue])
1273
1274 AM_CONDITIONAL(PERL_CPAN_INSTALL, [test "x$perl_cpan_install" = xtrue])
1275
1276 AC_CACHE_CHECK(
1277 [if plugin constructors should be resolved statically],
1278 [ss_cv_static_plugin_constructors],
1279 [if test x$monolithic = xtrue -a x$enable_static = xyes; then
1280 ss_cv_static_plugin_constructors=yes
1281 else
1282 ss_cv_static_plugin_constructors="no (enabled for static, monolithic builds)"
1283 fi]
1284 )
1285 if test "x$ss_cv_static_plugin_constructors" = xyes; then
1286 static_plugin_constructors=true
1287 fi
1288
1289 # ===============================================
1290 # collect plugin list for strongSwan components
1291 # ===============================================
1292
1293 m4_include(m4/macros/add-plugin.m4)
1294
1295 # plugin lists for all components
1296 charon_plugins=
1297 starter_plugins=
1298 pool_plugins=
1299 attest_plugins=
1300 scepclient_plugins=
1301 pki_plugins=
1302 scripts_plugins=
1303 fuzz_plugins=
1304 manager_plugins=
1305 medsrv_plugins=
1306 nm_plugins=
1307 cmd_plugins=
1308 aikgen_plugins=
1309
1310 # location specific lists for checksumming,
1311 # for src/libcharon, src/libstrongswan, src/libtnccs and src/libtpmtss
1312 c_plugins=
1313 s_plugins=
1314 t_plugins=
1315 p_plugins=
1316
1317 ADD_PLUGIN([test-vectors], [s charon scepclient pki])
1318 ADD_PLUGIN([unbound], [s charon scripts])
1319 ADD_PLUGIN([ldap], [s charon scepclient scripts nm cmd])
1320 ADD_PLUGIN([pkcs11], [s charon pki nm cmd])
1321 ADD_PLUGIN([tpm], [p charon pki nm cmd])
1322 ADD_PLUGIN([aesni], [s charon scepclient pki scripts medsrv attest nm cmd aikgen])
1323 ADD_PLUGIN([aes], [s charon scepclient pki scripts nm cmd])
1324 ADD_PLUGIN([des], [s charon scepclient pki scripts nm cmd])
1325 ADD_PLUGIN([blowfish], [s charon scepclient pki scripts nm cmd])
1326 ADD_PLUGIN([rc2], [s charon scepclient pki scripts nm cmd])
1327 ADD_PLUGIN([sha2], [s charon scepclient pki scripts medsrv attest nm cmd aikgen fuzz])
1328 ADD_PLUGIN([sha3], [s charon scepclient pki scripts medsrv attest nm cmd aikgen fuzz])
1329 ADD_PLUGIN([sha1], [s charon scepclient pki scripts manager medsrv attest nm cmd aikgen fuzz])
1330 ADD_PLUGIN([md4], [s charon scepclient pki nm cmd])
1331 ADD_PLUGIN([md5], [s charon scepclient pki scripts attest nm cmd aikgen])
1332 ADD_PLUGIN([mgf1], [s charon scepclient pki scripts medsrv attest nm cmd aikgen])
1333 ADD_PLUGIN([rdrand], [s charon scepclient pki scripts medsrv attest nm cmd aikgen])
1334 ADD_PLUGIN([random], [s charon scepclient pki scripts manager medsrv attest nm cmd aikgen])
1335 ADD_PLUGIN([nonce], [s charon nm cmd aikgen])
1336 ADD_PLUGIN([x509], [s charon scepclient pki scripts attest nm cmd aikgen fuzz])
1337 ADD_PLUGIN([revocation], [s charon pki nm cmd])
1338 ADD_PLUGIN([constraints], [s charon nm cmd])
1339 ADD_PLUGIN([acert], [s charon])
1340 ADD_PLUGIN([pubkey], [s charon pki cmd aikgen])
1341 ADD_PLUGIN([pkcs1], [s charon scepclient pki scripts manager medsrv attest nm cmd aikgen fuzz])
1342 ADD_PLUGIN([pkcs7], [s charon scepclient pki scripts nm cmd])
1343 ADD_PLUGIN([pkcs8], [s charon scepclient pki scripts manager medsrv attest nm cmd])
1344 ADD_PLUGIN([pkcs12], [s charon scepclient pki scripts cmd])
1345 ADD_PLUGIN([pgp], [s charon])
1346 ADD_PLUGIN([dnskey], [s charon pki])
1347 ADD_PLUGIN([sshkey], [s charon pki nm cmd])
1348 ADD_PLUGIN([dnscert], [c charon])
1349 ADD_PLUGIN([ipseckey], [c charon])
1350 ADD_PLUGIN([pem], [s charon scepclient pki scripts manager medsrv attest nm cmd aikgen fuzz])
1351 ADD_PLUGIN([padlock], [s charon])
1352 ADD_PLUGIN([openssl], [s charon scepclient pki scripts manager medsrv attest nm cmd aikgen])
1353 ADD_PLUGIN([gcrypt], [s charon scepclient pki scripts manager medsrv attest nm cmd aikgen])
1354 ADD_PLUGIN([af-alg], [s charon scepclient pki scripts medsrv attest nm cmd aikgen])
1355 ADD_PLUGIN([fips-prf], [s charon nm cmd])
1356 ADD_PLUGIN([gmp], [s charon scepclient pki scripts manager medsrv attest nm cmd aikgen fuzz])
1357 ADD_PLUGIN([curve25519], [s charon pki scripts nm cmd])
1358 ADD_PLUGIN([agent], [s charon nm cmd])
1359 ADD_PLUGIN([keychain], [s charon cmd])
1360 ADD_PLUGIN([chapoly], [s charon scripts nm cmd])
1361 ADD_PLUGIN([xcbc], [s charon nm cmd])
1362 ADD_PLUGIN([cmac], [s charon nm cmd])
1363 ADD_PLUGIN([hmac], [s charon pki scripts nm cmd])
1364 ADD_PLUGIN([ctr], [s charon scripts nm cmd])
1365 ADD_PLUGIN([ccm], [s charon scripts nm cmd])
1366 ADD_PLUGIN([gcm], [s charon scripts nm cmd])
1367 ADD_PLUGIN([ntru], [s charon scripts nm cmd])
1368 ADD_PLUGIN([newhope], [s charon scripts nm cmd])
1369 ADD_PLUGIN([bliss], [s charon pki scripts nm cmd])
1370 ADD_PLUGIN([curl], [s charon scepclient pki scripts nm cmd])
1371 ADD_PLUGIN([files], [s charon scepclient pki scripts nm cmd])
1372 ADD_PLUGIN([winhttp], [s charon pki scripts])
1373 ADD_PLUGIN([soup], [s charon pki scripts nm cmd])
1374 ADD_PLUGIN([mysql], [s charon pool manager medsrv attest])
1375 ADD_PLUGIN([sqlite], [s charon pool manager medsrv attest])
1376 ADD_PLUGIN([attr], [c charon])
1377 ADD_PLUGIN([attr-sql], [c charon])
1378 ADD_PLUGIN([load-tester], [c charon])
1379 ADD_PLUGIN([kernel-libipsec], [c charon cmd])
1380 ADD_PLUGIN([kernel-wfp], [c charon])
1381 ADD_PLUGIN([kernel-iph], [c charon])
1382 ADD_PLUGIN([kernel-pfkey], [c charon starter nm cmd])
1383 ADD_PLUGIN([kernel-pfroute], [c charon starter nm cmd])
1384 ADD_PLUGIN([kernel-netlink], [c charon starter nm cmd])
1385 ADD_PLUGIN([resolve], [c charon cmd])
1386 ADD_PLUGIN([socket-default], [c charon nm cmd])
1387 ADD_PLUGIN([socket-dynamic], [c charon cmd])
1388 ADD_PLUGIN([socket-win], [c charon])
1389 ADD_PLUGIN([bypass-lan], [c charon nm cmd])
1390 ADD_PLUGIN([connmark], [c charon])
1391 ADD_PLUGIN([forecast], [c charon])
1392 ADD_PLUGIN([farp], [c charon])
1393 ADD_PLUGIN([stroke], [c charon])
1394 ADD_PLUGIN([vici], [c charon])
1395 ADD_PLUGIN([smp], [c charon])
1396 ADD_PLUGIN([sql], [c charon])
1397 ADD_PLUGIN([updown], [c charon])
1398 ADD_PLUGIN([eap-identity], [c charon nm cmd])
1399 ADD_PLUGIN([eap-sim], [c charon])
1400 ADD_PLUGIN([eap-sim-file], [c charon])
1401 ADD_PLUGIN([eap-sim-pcsc], [c charon])
1402 ADD_PLUGIN([eap-aka], [c charon])
1403 ADD_PLUGIN([eap-aka-3gpp], [c charon])
1404 ADD_PLUGIN([eap-aka-3gpp2], [c charon])
1405 ADD_PLUGIN([eap-simaka-sql], [c charon])
1406 ADD_PLUGIN([eap-simaka-pseudonym], [c charon])
1407 ADD_PLUGIN([eap-simaka-reauth], [c charon])
1408 ADD_PLUGIN([eap-md5], [c charon nm cmd])
1409 ADD_PLUGIN([eap-gtc], [c charon nm cmd])
1410 ADD_PLUGIN([eap-mschapv2], [c charon nm cmd])
1411 ADD_PLUGIN([eap-dynamic], [c charon])
1412 ADD_PLUGIN([eap-radius], [c charon])
1413 ADD_PLUGIN([eap-tls], [c charon nm cmd])
1414 ADD_PLUGIN([eap-ttls], [c charon nm cmd])
1415 ADD_PLUGIN([eap-peap], [c charon nm cmd])
1416 ADD_PLUGIN([eap-tnc], [c charon])
1417 ADD_PLUGIN([xauth-generic], [c charon cmd])
1418 ADD_PLUGIN([xauth-eap], [c charon])
1419 ADD_PLUGIN([xauth-pam], [c charon])
1420 ADD_PLUGIN([xauth-noauth], [c charon])
1421 ADD_PLUGIN([tnc-ifmap], [c charon])
1422 ADD_PLUGIN([tnc-pdp], [c charon])
1423 ADD_PLUGIN([tnc-imc], [t charon])
1424 ADD_PLUGIN([tnc-imv], [t charon])
1425 ADD_PLUGIN([tnc-tnccs], [t charon])
1426 ADD_PLUGIN([tnccs-20], [t charon])
1427 ADD_PLUGIN([tnccs-11], [t charon])
1428 ADD_PLUGIN([tnccs-dynamic], [t charon])
1429 ADD_PLUGIN([medsrv], [c charon])
1430 ADD_PLUGIN([medcli], [c charon])
1431 ADD_PLUGIN([dhcp], [c charon])
1432 ADD_PLUGIN([osx-attr], [c charon cmd])
1433 ADD_PLUGIN([p-cscf], [c charon cmd])
1434 ADD_PLUGIN([android-dns], [c charon])
1435 ADD_PLUGIN([android-log], [c charon])
1436 ADD_PLUGIN([ha], [c charon])
1437 ADD_PLUGIN([whitelist], [c charon])
1438 ADD_PLUGIN([ext-auth], [c charon])
1439 ADD_PLUGIN([lookip], [c charon])
1440 ADD_PLUGIN([error-notify], [c charon])
1441 ADD_PLUGIN([certexpire], [c charon])
1442 ADD_PLUGIN([systime-fix], [c charon])
1443 ADD_PLUGIN([led], [c charon])
1444 ADD_PLUGIN([duplicheck], [c charon])
1445 ADD_PLUGIN([coupling], [c charon])
1446 ADD_PLUGIN([radattr], [c charon])
1447 ADD_PLUGIN([uci], [c charon])
1448 ADD_PLUGIN([addrblock], [c charon])
1449 ADD_PLUGIN([unity], [c charon])
1450
1451 AC_SUBST(charon_plugins)
1452 AC_SUBST(starter_plugins)
1453 AC_SUBST(pool_plugins)
1454 AC_SUBST(attest_plugins)
1455 AC_SUBST(scepclient_plugins)
1456 AC_SUBST(pki_plugins)
1457 AC_SUBST(scripts_plugins)
1458 AC_SUBST(fuzz_plugins)
1459 AC_SUBST(manager_plugins)
1460 AC_SUBST(medsrv_plugins)
1461 AC_SUBST(nm_plugins)
1462 AC_SUBST(cmd_plugins)
1463 AC_SUBST(aikgen_plugins)
1464
1465 AC_SUBST(c_plugins)
1466 AC_SUBST(p_plugins)
1467 AC_SUBST(s_plugins)
1468 AC_SUBST(t_plugins)
1469
1470 # ======================
1471 # set Makefile.am vars
1472 # ======================
1473
1474 # libstrongswan plugins
1475 # -----------------------
1476 AM_CONDITIONAL(USE_TEST_VECTORS, test x$test_vectors = xtrue)
1477 AM_CONDITIONAL(USE_CURL, test x$curl = xtrue)
1478 AM_CONDITIONAL(USE_FILES, test x$files = xtrue)
1479 AM_CONDITIONAL(USE_WINHTTP, test x$winhttp = xtrue)
1480 AM_CONDITIONAL(USE_UNBOUND, test x$unbound = xtrue)
1481 AM_CONDITIONAL(USE_SOUP, test x$soup = xtrue)
1482 AM_CONDITIONAL(USE_LDAP, test x$ldap = xtrue)
1483 AM_CONDITIONAL(USE_AES, test x$aes = xtrue)
1484 AM_CONDITIONAL(USE_DES, test x$des = xtrue)
1485 AM_CONDITIONAL(USE_BLOWFISH, test x$blowfish = xtrue)
1486 AM_CONDITIONAL(USE_RC2, test x$rc2 = xtrue)
1487 AM_CONDITIONAL(USE_MD4, test x$md4 = xtrue)
1488 AM_CONDITIONAL(USE_MD5, test x$md5 = xtrue)
1489 AM_CONDITIONAL(USE_SHA1, test x$sha1 = xtrue)
1490 AM_CONDITIONAL(USE_SHA2, test x$sha2 = xtrue)
1491 AM_CONDITIONAL(USE_SHA3, test x$sha3 = xtrue)
1492 AM_CONDITIONAL(USE_MGF1, test x$mgf1 = xtrue)
1493 AM_CONDITIONAL(USE_FIPS_PRF, test x$fips_prf = xtrue)
1494 AM_CONDITIONAL(USE_GMP, test x$gmp = xtrue)
1495 AM_CONDITIONAL(USE_CURVE25519, test x$curve25519 = xtrue)
1496 AM_CONDITIONAL(USE_RDRAND, test x$rdrand = xtrue)
1497 AM_CONDITIONAL(USE_AESNI, test x$aesni = xtrue)
1498 AM_CONDITIONAL(USE_RANDOM, test x$random = xtrue)
1499 AM_CONDITIONAL(USE_NONCE, test x$nonce = xtrue)
1500 AM_CONDITIONAL(USE_X509, test x$x509 = xtrue)
1501 AM_CONDITIONAL(USE_REVOCATION, test x$revocation = xtrue)
1502 AM_CONDITIONAL(USE_CONSTRAINTS, test x$constraints = xtrue)
1503 AM_CONDITIONAL(USE_ACERT, test x$acert = xtrue)
1504 AM_CONDITIONAL(USE_PUBKEY, test x$pubkey = xtrue)
1505 AM_CONDITIONAL(USE_PKCS1, test x$pkcs1 = xtrue)
1506 AM_CONDITIONAL(USE_PKCS7, test x$pkcs7 = xtrue)
1507 AM_CONDITIONAL(USE_PKCS8, test x$pkcs8 = xtrue)
1508 AM_CONDITIONAL(USE_PKCS12, test x$pkcs12 = xtrue)
1509 AM_CONDITIONAL(USE_PGP, test x$pgp = xtrue)
1510 AM_CONDITIONAL(USE_DNSKEY, test x$dnskey = xtrue)
1511 AM_CONDITIONAL(USE_SSHKEY, test x$sshkey = xtrue)
1512 AM_CONDITIONAL(USE_PEM, test x$pem = xtrue)
1513 AM_CONDITIONAL(USE_HMAC, test x$hmac = xtrue)
1514 AM_CONDITIONAL(USE_CMAC, test x$cmac = xtrue)
1515 AM_CONDITIONAL(USE_XCBC, test x$xcbc = xtrue)
1516 AM_CONDITIONAL(USE_MYSQL, test x$mysql = xtrue)
1517 AM_CONDITIONAL(USE_SQLITE, test x$sqlite = xtrue)
1518 AM_CONDITIONAL(USE_PADLOCK, test x$padlock = xtrue)
1519 AM_CONDITIONAL(USE_OPENSSL, test x$openssl = xtrue)
1520 AM_CONDITIONAL(USE_GCRYPT, test x$gcrypt = xtrue)
1521 AM_CONDITIONAL(USE_AGENT, test x$agent = xtrue)
1522 AM_CONDITIONAL(USE_KEYCHAIN, test x$keychain = xtrue)
1523 AM_CONDITIONAL(USE_PKCS11, test x$pkcs11 = xtrue)
1524 AM_CONDITIONAL(USE_TPM, test x$tpm = xtrue)
1525 AM_CONDITIONAL(USE_CHAPOLY, test x$chapoly = xtrue)
1526 AM_CONDITIONAL(USE_CTR, test x$ctr = xtrue)
1527 AM_CONDITIONAL(USE_CCM, test x$ccm = xtrue)
1528 AM_CONDITIONAL(USE_GCM, test x$gcm = xtrue)
1529 AM_CONDITIONAL(USE_AF_ALG, test x$af_alg = xtrue)
1530 AM_CONDITIONAL(USE_NTRU, test x$ntru = xtrue)
1531 AM_CONDITIONAL(USE_NEWHOPE, test x$newhope = xtrue)
1532 AM_CONDITIONAL(USE_BLISS, test x$bliss = xtrue)
1533
1534 # charon plugins
1535 # ----------------
1536 AM_CONDITIONAL(USE_STROKE, test x$stroke = xtrue)
1537 AM_CONDITIONAL(USE_VICI, test x$vici = xtrue)
1538 AM_CONDITIONAL(USE_MEDSRV, test x$medsrv = xtrue)
1539 AM_CONDITIONAL(USE_MEDCLI, test x$medcli = xtrue)
1540 AM_CONDITIONAL(USE_UCI, test x$uci = xtrue)
1541 AM_CONDITIONAL(USE_OSX_ATTR, test x$osx_attr = xtrue)
1542 AM_CONDITIONAL(USE_P_CSCF, test x$p_cscf = xtrue)
1543 AM_CONDITIONAL(USE_ANDROID_DNS, test x$android_dns = xtrue)
1544 AM_CONDITIONAL(USE_ANDROID_LOG, test x$android_log = xtrue)
1545 AM_CONDITIONAL(USE_SMP, test x$smp = xtrue)
1546 AM_CONDITIONAL(USE_SQL, test x$sql = xtrue)
1547 AM_CONDITIONAL(USE_DNSCERT, test x$dnscert = xtrue)
1548 AM_CONDITIONAL(USE_IPSECKEY, test x$ipseckey = xtrue)
1549 AM_CONDITIONAL(USE_UPDOWN, test x$updown = xtrue)
1550 AM_CONDITIONAL(USE_DHCP, test x$dhcp = xtrue)
1551 AM_CONDITIONAL(USE_LOAD_TESTER, test x$load_tester = xtrue)
1552 AM_CONDITIONAL(USE_HA, test x$ha = xtrue)
1553 AM_CONDITIONAL(USE_KERNEL_NETLINK, test x$kernel_netlink = xtrue)
1554 AM_CONDITIONAL(USE_KERNEL_PFKEY, test x$kernel_pfkey = xtrue)
1555 AM_CONDITIONAL(USE_KERNEL_PFROUTE, test x$kernel_pfroute = xtrue)
1556 AM_CONDITIONAL(USE_KERNEL_LIBIPSEC, test x$kernel_libipsec = xtrue)
1557 AM_CONDITIONAL(USE_KERNEL_WFP, test x$kernel_wfp = xtrue)
1558 AM_CONDITIONAL(USE_KERNEL_IPH, test x$kernel_iph = xtrue)
1559 AM_CONDITIONAL(USE_WHITELIST, test x$whitelist = xtrue)
1560 AM_CONDITIONAL(USE_EXT_AUTH, test x$ext_auth = xtrue)
1561 AM_CONDITIONAL(USE_LOOKIP, test x$lookip = xtrue)
1562 AM_CONDITIONAL(USE_ERROR_NOTIFY, test x$error_notify = xtrue)
1563 AM_CONDITIONAL(USE_CERTEXPIRE, test x$certexpire = xtrue)
1564 AM_CONDITIONAL(USE_SYSTIME_FIX, test x$systime_fix = xtrue)
1565 AM_CONDITIONAL(USE_LED, test x$led = xtrue)
1566 AM_CONDITIONAL(USE_DUPLICHECK, test x$duplicheck = xtrue)
1567 AM_CONDITIONAL(USE_COUPLING, test x$coupling = xtrue)
1568 AM_CONDITIONAL(USE_RADATTR, test x$radattr = xtrue)
1569 AM_CONDITIONAL(USE_EAP_SIM, test x$eap_sim = xtrue)
1570 AM_CONDITIONAL(USE_EAP_SIM_FILE, test x$eap_sim_file = xtrue)
1571 AM_CONDITIONAL(USE_EAP_SIM_PCSC, test x$eap_sim_pcsc = xtrue)
1572 AM_CONDITIONAL(USE_EAP_SIMAKA_SQL, test x$eap_simaka_sql = xtrue)
1573 AM_CONDITIONAL(USE_EAP_SIMAKA_PSEUDONYM, test x$eap_simaka_pseudonym = xtrue)
1574 AM_CONDITIONAL(USE_EAP_SIMAKA_REAUTH, test x$eap_simaka_reauth = xtrue)
1575 AM_CONDITIONAL(USE_EAP_IDENTITY, test x$eap_identity = xtrue)
1576 AM_CONDITIONAL(USE_EAP_MD5, test x$eap_md5 = xtrue)
1577 AM_CONDITIONAL(USE_EAP_GTC, test x$eap_gtc = xtrue)
1578 AM_CONDITIONAL(USE_EAP_AKA, test x$eap_aka = xtrue)
1579 AM_CONDITIONAL(USE_EAP_AKA_3GPP, test x$eap_aka_3gpp = xtrue)
1580 AM_CONDITIONAL(USE_EAP_AKA_3GPP2, test x$eap_aka_3gpp2 = xtrue)
1581 AM_CONDITIONAL(USE_EAP_MSCHAPV2, test x$eap_mschapv2 = xtrue)
1582 AM_CONDITIONAL(USE_EAP_TLS, test x$eap_tls = xtrue)
1583 AM_CONDITIONAL(USE_EAP_TTLS, test x$eap_ttls = xtrue)
1584 AM_CONDITIONAL(USE_EAP_PEAP, test x$eap_peap = xtrue)
1585 AM_CONDITIONAL(USE_EAP_TNC, test x$eap_tnc = xtrue)
1586 AM_CONDITIONAL(USE_EAP_DYNAMIC, test x$eap_dynamic = xtrue)
1587 AM_CONDITIONAL(USE_EAP_RADIUS, test x$eap_radius = xtrue)
1588 AM_CONDITIONAL(USE_XAUTH_GENERIC, test x$xauth_generic = xtrue)
1589 AM_CONDITIONAL(USE_XAUTH_EAP, test x$xauth_eap = xtrue)
1590 AM_CONDITIONAL(USE_XAUTH_PAM, test x$xauth_pam = xtrue)
1591 AM_CONDITIONAL(USE_XAUTH_NOAUTH, test x$xauth_noauth = xtrue)
1592 AM_CONDITIONAL(USE_TNC_IFMAP, test x$tnc_ifmap = xtrue)
1593 AM_CONDITIONAL(USE_TNC_PDP, test x$tnc_pdp = xtrue)
1594 AM_CONDITIONAL(USE_TNC_IMC, test x$tnc_imc = xtrue)
1595 AM_CONDITIONAL(USE_TNC_IMV, test x$tnc_imv = xtrue)
1596 AM_CONDITIONAL(USE_TNC_TNCCS, test x$tnc_tnccs = xtrue)
1597 AM_CONDITIONAL(USE_TNCCS_11, test x$tnccs_11 = xtrue)
1598 AM_CONDITIONAL(USE_TNCCS_20, test x$tnccs_20 = xtrue)
1599 AM_CONDITIONAL(USE_TNCCS_DYNAMIC, test x$tnccs_dynamic = xtrue)
1600 AM_CONDITIONAL(USE_IMC_TEST, test x$imc_test = xtrue)
1601 AM_CONDITIONAL(USE_IMV_TEST, test x$imv_test = xtrue)
1602 AM_CONDITIONAL(USE_IMC_SCANNER, test x$imc_scanner = xtrue)
1603 AM_CONDITIONAL(USE_IMV_SCANNER, test x$imv_scanner = xtrue)
1604 AM_CONDITIONAL(USE_IMC_OS, test x$imc_os = xtrue)
1605 AM_CONDITIONAL(USE_IMV_OS, test x$imv_os = xtrue)
1606 AM_CONDITIONAL(USE_IMC_ATTESTATION, test x$imc_attestation = xtrue)
1607 AM_CONDITIONAL(USE_IMV_ATTESTATION, test x$imv_attestation = xtrue)
1608 AM_CONDITIONAL(USE_IMC_SWID, test x$imc_swid = xtrue)
1609 AM_CONDITIONAL(USE_IMV_SWID, test x$imv_swid = xtrue)
1610 AM_CONDITIONAL(USE_IMC_HCD, test x$imc_hcd = xtrue)
1611 AM_CONDITIONAL(USE_IMV_HCD, test x$imv_hcd = xtrue)
1612 AM_CONDITIONAL(USE_SOCKET_DEFAULT, test x$socket_default = xtrue)
1613 AM_CONDITIONAL(USE_SOCKET_DYNAMIC, test x$socket_dynamic = xtrue)
1614 AM_CONDITIONAL(USE_SOCKET_WIN, test x$socket_win = xtrue)
1615 AM_CONDITIONAL(USE_BYPASS_LAN, test x$bypass_lan = xtrue)
1616 AM_CONDITIONAL(USE_CONNMARK, test x$connmark = xtrue)
1617 AM_CONDITIONAL(USE_FORECAST, test x$forecast = xtrue)
1618 AM_CONDITIONAL(USE_FARP, test x$farp = xtrue)
1619 AM_CONDITIONAL(USE_ADDRBLOCK, test x$addrblock = xtrue)
1620 AM_CONDITIONAL(USE_UNITY, test x$unity = xtrue)
1621 AM_CONDITIONAL(USE_RESOLVE, test x$resolve = xtrue)
1622 AM_CONDITIONAL(USE_ATTR, test x$attr = xtrue)
1623 AM_CONDITIONAL(USE_ATTR_SQL, test x$attr_sql = xtrue)
1624
1625 # other options
1626 # ---------------
1627 AM_CONDITIONAL(USE_LEAK_DETECTIVE, test x$leak_detective = xtrue)
1628 AM_CONDITIONAL(USE_LOCK_PROFILER, test x$lock_profiler = xtrue)
1629 AM_CONDITIONAL(USE_DUMM, test x$dumm = xtrue)
1630 AM_CONDITIONAL(USE_FAST, test x$fast = xtrue)
1631 AM_CONDITIONAL(USE_MANAGER, test x$manager = xtrue)
1632 AM_CONDITIONAL(USE_ME, test x$mediation = xtrue)
1633 AM_CONDITIONAL(USE_INTEGRITY_TEST, test x$integrity_test = xtrue)
1634 AM_CONDITIONAL(USE_LOAD_WARNING, test x$load_warning = xtrue)
1635 AM_CONDITIONAL(USE_IKEV1, test x$ikev1 = xtrue)
1636 AM_CONDITIONAL(USE_IKEV2, test x$ikev2 = xtrue)
1637 AM_CONDITIONAL(USE_THREADS, test x$threads = xtrue)
1638 AM_CONDITIONAL(USE_ADNS, test x$adns = xtrue)
1639 AM_CONDITIONAL(USE_CHARON, test x$charon = xtrue)
1640 AM_CONDITIONAL(USE_NM, test x$nm = xtrue)
1641 AM_CONDITIONAL(USE_PKI, test x$pki = xtrue)
1642 AM_CONDITIONAL(USE_SCEPCLIENT, test x$scepclient = xtrue)
1643 AM_CONDITIONAL(USE_SCRIPTS, test x$scripts = xtrue)
1644 AM_CONDITIONAL(USE_FUZZING, test x$fuzzing = xtrue)
1645 AM_CONDITIONAL(USE_CONFTEST, test x$conftest = xtrue)
1646 AM_CONDITIONAL(USE_LIBSTRONGSWAN, test x$charon = xtrue -o x$pki = xtrue -o x$scepclient = xtrue -o x$conftest = xtrue -o x$fast = xtrue -o x$imcv = xtrue -o x$nm = xtrue -o x$tkm = xtrue -o x$cmd = xtrue -o x$tls = xtrue -o x$tnc_tnccs = xtrue -o x$aikgen = xtrue -o x$svc = xtrue -o x$systemd = xtrue)
1647 AM_CONDITIONAL(USE_LIBCHARON, test x$charon = xtrue -o x$conftest = xtrue -o x$nm = xtrue -o x$tkm = xtrue -o x$cmd = xtrue -o x$svc = xtrue -o x$systemd = xtrue)
1648 AM_CONDITIONAL(USE_LIBIPSEC, test x$libipsec = xtrue)
1649 AM_CONDITIONAL(USE_LIBNTTFFT, test x$bliss = xtrue -o x$newhope = xtrue)
1650 AM_CONDITIONAL(USE_LIBTNCIF, test x$tnc_tnccs = xtrue -o x$imcv = xtrue)
1651 AM_CONDITIONAL(USE_LIBTNCCS, test x$tnc_tnccs = xtrue)
1652 AM_CONDITIONAL(USE_LIBPTTLS, test x$tnc_tnccs = xtrue)
1653 AM_CONDITIONAL(USE_LIBTPMTSS, test x$tss_trousers = xtrue -o x$tss_tss2 = xtrue -o x$tpm -o x$aikgen = xtrue -o x$imcv = xtrue)
1654 AM_CONDITIONAL(USE_FILE_CONFIG, test x$stroke = xtrue)
1655 AM_CONDITIONAL(USE_IPSEC_SCRIPT, test x$stroke = xtrue -o x$scepclient = xtrue -o x$conftest = xtrue)
1656 AM_CONDITIONAL(USE_LIBCAP, test x$capabilities = xlibcap)
1657 AM_CONDITIONAL(USE_VSTR, test x$printf_hooks = xvstr)
1658 AM_CONDITIONAL(USE_BUILTIN_PRINTF, test x$printf_hooks = xbuiltin)
1659 AM_CONDITIONAL(USE_SIMAKA, test x$simaka = xtrue)
1660 AM_CONDITIONAL(USE_TLS, test x$tls = xtrue)
1661 AM_CONDITIONAL(USE_RADIUS, test x$radius = xtrue)
1662 AM_CONDITIONAL(USE_IMCV, test x$imcv = xtrue)
1663 AM_CONDITIONAL(USE_TROUSERS, test x$tss_trousers = xtrue)
1664 AM_CONDITIONAL(USE_TSS2, test x$tss_tss2 = xtrue)
1665 AM_CONDITIONAL(MONOLITHIC, test x$monolithic = xtrue)
1666 AM_CONDITIONAL(STATIC_PLUGIN_CONSTRUCTORS, test x$static_plugin_constructors = xtrue)
1667 AM_CONDITIONAL(USE_SILENT_RULES, test x$enable_silent_rules = xyes)
1668 AM_CONDITIONAL(COVERAGE, test x$coverage = xtrue)
1669 AM_CONDITIONAL(USE_DBGHELP, test x$dbghelp_backtraces = xtrue)
1670 AM_CONDITIONAL(USE_TKM, test x$tkm = xtrue)
1671 AM_CONDITIONAL(USE_CMD, test x$cmd = xtrue)
1672 AM_CONDITIONAL(USE_AIKGEN, test x$aikgen = xtrue)
1673 AM_CONDITIONAL(USE_SWANCTL, test x$swanctl = xtrue)
1674 AM_CONDITIONAL(USE_SVC, test x$svc = xtrue)
1675 AM_CONDITIONAL(USE_SYSTEMD, test x$systemd = xtrue)
1676 AM_CONDITIONAL(USE_LEGACY_SYSTEMD, test -n "$systemdsystemunitdir" -a "x$systemdsystemunitdir" != xno)
1677 AM_CONDITIONAL(USE_RUBY_GEMS, test x$ruby_gems = xtrue)
1678 AM_CONDITIONAL(USE_PYTHON_EGGS, test x$python_eggs = xtrue)
1679 AM_CONDITIONAL(USE_PERL_CPAN, test x$perl_cpan = xtrue)
1680 AM_CONDITIONAL(USE_PY_TEST, test "x$PY_TEST" != x)
1681
1682 # ========================
1683 # set global definitions
1684 # ========================
1685
1686 if test x$mediation = xtrue; then
1687 AC_DEFINE([ME], [], [mediation extension support])
1688 fi
1689 if test x$capabilities = xlibcap -o x$capabilities = xnative; then
1690 AC_DEFINE([CAPABILITIES], [], [capability dropping support])
1691 fi
1692 if test x$log_thread_ids = xtrue; then
1693 AC_DEFINE([USE_THREAD_IDS], [], [use thread ID for thread identification, if available])
1694 fi
1695 if test x$monolithic = xtrue; then
1696 AC_DEFINE([MONOLITHIC], [], [monolithic build embedding plugins])
1697 fi
1698 if test x$static_plugin_constructors = xtrue; then
1699 AC_DEFINE([STATIC_PLUGIN_CONSTRUCTORS], [], [static plugin constructors])
1700 fi
1701 if test x$ikev1 = xtrue; then
1702 AC_DEFINE([USE_IKEV1], [], [support for IKEv1 protocol])
1703 fi
1704 if test x$ikev2 = xtrue; then
1705 AC_DEFINE([USE_IKEV2], [], [support for IKEv2 protocol])
1706 fi
1707 if test x$fuzzing = xtrue; then
1708 AC_DEFINE([USE_FUZZING], [], [build code for fuzzing])
1709 fi
1710
1711 # ====================================================
1712 # options for enabled modules (see conf/Makefile.am)
1713 # ====================================================
1714
1715 strongswan_options=
1716
1717 AM_COND_IF([USE_AIKGEN], [strongswan_options=${strongswan_options}" aikgen"])
1718 AM_COND_IF([USE_ATTR_SQL], [strongswan_options=${strongswan_options}" pool"])
1719 AM_COND_IF([USE_CHARON], [strongswan_options=${strongswan_options}" charon charon-logging"])
1720 AM_COND_IF([USE_FILE_CONFIG], [strongswan_options=${strongswan_options}" starter"])
1721 AM_COND_IF([USE_IMV_ATTESTATION], [strongswan_options=${strongswan_options}" attest"])
1722 AM_COND_IF([USE_IMCV], [strongswan_options=${strongswan_options}" imcv"])
1723 AM_COND_IF([USE_IMV_OS], [strongswan_options=${strongswan_options}" pacman"])
1724 AM_COND_IF([USE_LIBTNCCS], [strongswan_options=${strongswan_options}" tnc"])
1725 AM_COND_IF([USE_MANAGER], [strongswan_options=${strongswan_options}" manager"])
1726 AM_COND_IF([USE_MEDSRV], [strongswan_options=${strongswan_options}" medsrv"])
1727 AM_COND_IF([USE_SCEPCLIENT], [strongswan_options=${strongswan_options}" scepclient"])
1728 AM_COND_IF([USE_PKI], [strongswan_options=${strongswan_options}" pki"])
1729 AM_COND_IF([USE_SWANCTL], [strongswan_options=${strongswan_options}" swanctl"])
1730 AM_COND_IF([USE_SYSTEMD], [strongswan_options=${strongswan_options}" charon-systemd"])
1731
1732 AC_SUBST(strongswan_options)
1733
1734 # =================
1735 # build Makefiles
1736 # =================
1737
1738 AC_CONFIG_FILES([
1739 Makefile
1740 conf/Makefile
1741 fuzz/Makefile
1742 man/Makefile
1743 init/Makefile
1744 init/systemd/Makefile
1745 init/systemd-swanctl/Makefile
1746 src/Makefile
1747 src/include/Makefile
1748 src/libstrongswan/Makefile
1749 src/libstrongswan/math/libnttfft/Makefile
1750 src/libstrongswan/math/libnttfft/tests/Makefile
1751 src/libstrongswan/plugins/aes/Makefile
1752 src/libstrongswan/plugins/cmac/Makefile
1753 src/libstrongswan/plugins/des/Makefile
1754 src/libstrongswan/plugins/blowfish/Makefile
1755 src/libstrongswan/plugins/rc2/Makefile
1756 src/libstrongswan/plugins/md4/Makefile
1757 src/libstrongswan/plugins/md5/Makefile
1758 src/libstrongswan/plugins/sha1/Makefile
1759 src/libstrongswan/plugins/sha2/Makefile
1760 src/libstrongswan/plugins/sha3/Makefile
1761 src/libstrongswan/plugins/mgf1/Makefile
1762 src/libstrongswan/plugins/fips_prf/Makefile
1763 src/libstrongswan/plugins/gmp/Makefile
1764 src/libstrongswan/plugins/curve25519/Makefile
1765 src/libstrongswan/plugins/rdrand/Makefile
1766 src/libstrongswan/plugins/aesni/Makefile
1767 src/libstrongswan/plugins/random/Makefile
1768 src/libstrongswan/plugins/nonce/Makefile
1769 src/libstrongswan/plugins/hmac/Makefile
1770 src/libstrongswan/plugins/xcbc/Makefile
1771 src/libstrongswan/plugins/x509/Makefile
1772 src/libstrongswan/plugins/revocation/Makefile
1773 src/libstrongswan/plugins/constraints/Makefile
1774 src/libstrongswan/plugins/acert/Makefile
1775 src/libstrongswan/plugins/pubkey/Makefile
1776 src/libstrongswan/plugins/pkcs1/Makefile
1777 src/libstrongswan/plugins/pkcs7/Makefile
1778 src/libstrongswan/plugins/pkcs8/Makefile
1779 src/libstrongswan/plugins/pkcs12/Makefile
1780 src/libstrongswan/plugins/pgp/Makefile
1781 src/libstrongswan/plugins/dnskey/Makefile
1782 src/libstrongswan/plugins/sshkey/Makefile
1783 src/libstrongswan/plugins/pem/Makefile
1784 src/libstrongswan/plugins/curl/Makefile
1785 src/libstrongswan/plugins/files/Makefile
1786 src/libstrongswan/plugins/winhttp/Makefile
1787 src/libstrongswan/plugins/unbound/Makefile
1788 src/libstrongswan/plugins/soup/Makefile
1789 src/libstrongswan/plugins/ldap/Makefile
1790 src/libstrongswan/plugins/mysql/Makefile
1791 src/libstrongswan/plugins/sqlite/Makefile
1792 src/libstrongswan/plugins/padlock/Makefile
1793 src/libstrongswan/plugins/openssl/Makefile
1794 src/libstrongswan/plugins/gcrypt/Makefile
1795 src/libstrongswan/plugins/agent/Makefile
1796 src/libstrongswan/plugins/keychain/Makefile
1797 src/libstrongswan/plugins/pkcs11/Makefile
1798 src/libstrongswan/plugins/chapoly/Makefile
1799 src/libstrongswan/plugins/ctr/Makefile
1800 src/libstrongswan/plugins/ccm/Makefile
1801 src/libstrongswan/plugins/gcm/Makefile
1802 src/libstrongswan/plugins/af_alg/Makefile
1803 src/libstrongswan/plugins/ntru/Makefile
1804 src/libstrongswan/plugins/bliss/Makefile
1805 src/libstrongswan/plugins/bliss/tests/Makefile
1806 src/libstrongswan/plugins/newhope/Makefile
1807 src/libstrongswan/plugins/newhope/tests/Makefile
1808 src/libstrongswan/plugins/test_vectors/Makefile
1809 src/libstrongswan/tests/Makefile
1810 src/libipsec/Makefile
1811 src/libipsec/tests/Makefile
1812 src/libsimaka/Makefile
1813 src/libtls/Makefile
1814 src/libtls/tests/Makefile
1815 src/libradius/Makefile
1816 src/libtncif/Makefile
1817 src/libtnccs/Makefile
1818 src/libtnccs/plugins/tnc_tnccs/Makefile
1819 src/libtnccs/plugins/tnc_imc/Makefile
1820 src/libtnccs/plugins/tnc_imv/Makefile
1821 src/libtnccs/plugins/tnccs_11/Makefile
1822 src/libtnccs/plugins/tnccs_20/Makefile
1823 src/libtnccs/plugins/tnccs_dynamic/Makefile
1824 src/libpttls/Makefile
1825 src/libimcv/Makefile
1826 src/libimcv/plugins/imc_test/Makefile
1827 src/libimcv/plugins/imv_test/Makefile
1828 src/libimcv/plugins/imc_scanner/Makefile
1829 src/libimcv/plugins/imv_scanner/Makefile
1830 src/libimcv/plugins/imc_os/Makefile
1831 src/libimcv/plugins/imv_os/Makefile
1832 src/libimcv/plugins/imc_attestation/Makefile
1833 src/libimcv/plugins/imv_attestation/Makefile
1834 src/libimcv/plugins/imc_swid/Makefile
1835 src/libimcv/plugins/imv_swid/Makefile
1836 src/libimcv/plugins/imc_hcd/Makefile
1837 src/libimcv/plugins/imv_hcd/Makefile
1838 src/charon/Makefile
1839 src/charon-nm/Makefile
1840 src/charon-tkm/Makefile
1841 src/charon-cmd/Makefile
1842 src/charon-svc/Makefile
1843 src/charon-systemd/Makefile
1844 src/libcharon/Makefile
1845 src/libcharon/plugins/eap_aka/Makefile
1846 src/libcharon/plugins/eap_aka_3gpp/Makefile
1847 src/libcharon/plugins/eap_aka_3gpp2/Makefile
1848 src/libcharon/plugins/eap_dynamic/Makefile
1849 src/libcharon/plugins/eap_identity/Makefile
1850 src/libcharon/plugins/eap_md5/Makefile
1851 src/libcharon/plugins/eap_gtc/Makefile
1852 src/libcharon/plugins/eap_sim/Makefile
1853 src/libcharon/plugins/eap_sim_file/Makefile
1854 src/libcharon/plugins/eap_sim_pcsc/Makefile
1855 src/libcharon/plugins/eap_simaka_sql/Makefile
1856 src/libcharon/plugins/eap_simaka_pseudonym/Makefile
1857 src/libcharon/plugins/eap_simaka_reauth/Makefile
1858 src/libcharon/plugins/eap_mschapv2/Makefile
1859 src/libcharon/plugins/eap_tls/Makefile
1860 src/libcharon/plugins/eap_ttls/Makefile
1861 src/libcharon/plugins/eap_peap/Makefile
1862 src/libcharon/plugins/eap_tnc/Makefile
1863 src/libcharon/plugins/eap_radius/Makefile
1864 src/libcharon/plugins/xauth_generic/Makefile
1865 src/libcharon/plugins/xauth_eap/Makefile
1866 src/libcharon/plugins/xauth_pam/Makefile
1867 src/libcharon/plugins/xauth_noauth/Makefile
1868 src/libcharon/plugins/tnc_ifmap/Makefile
1869 src/libcharon/plugins/tnc_pdp/Makefile
1870 src/libcharon/plugins/socket_default/Makefile
1871 src/libcharon/plugins/socket_dynamic/Makefile
1872 src/libcharon/plugins/socket_win/Makefile
1873 src/libcharon/plugins/bypass_lan/Makefile
1874 src/libcharon/plugins/connmark/Makefile
1875 src/libcharon/plugins/forecast/Makefile
1876 src/libcharon/plugins/farp/Makefile
1877 src/libcharon/plugins/smp/Makefile
1878 src/libcharon/plugins/sql/Makefile
1879 src/libcharon/plugins/dnscert/Makefile
1880 src/libcharon/plugins/ipseckey/Makefile
1881 src/libcharon/plugins/medsrv/Makefile
1882 src/libcharon/plugins/medcli/Makefile
1883 src/libcharon/plugins/addrblock/Makefile
1884 src/libcharon/plugins/unity/Makefile
1885 src/libcharon/plugins/uci/Makefile
1886 src/libcharon/plugins/ha/Makefile
1887 src/libcharon/plugins/kernel_netlink/Makefile
1888 src/libcharon/plugins/kernel_pfkey/Makefile
1889 src/libcharon/plugins/kernel_pfroute/Makefile
1890 src/libcharon/plugins/kernel_libipsec/Makefile
1891 src/libcharon/plugins/kernel_wfp/Makefile
1892 src/libcharon/plugins/kernel_iph/Makefile
1893 src/libcharon/plugins/whitelist/Makefile
1894 src/libcharon/plugins/ext_auth/Makefile
1895 src/libcharon/plugins/lookip/Makefile
1896 src/libcharon/plugins/error_notify/Makefile
1897 src/libcharon/plugins/certexpire/Makefile
1898 src/libcharon/plugins/systime_fix/Makefile
1899 src/libcharon/plugins/led/Makefile
1900 src/libcharon/plugins/duplicheck/Makefile
1901 src/libcharon/plugins/coupling/Makefile
1902 src/libcharon/plugins/radattr/Makefile
1903 src/libcharon/plugins/osx_attr/Makefile
1904 src/libcharon/plugins/p_cscf/Makefile
1905 src/libcharon/plugins/android_dns/Makefile
1906 src/libcharon/plugins/android_log/Makefile
1907 src/libcharon/plugins/stroke/Makefile
1908 src/libcharon/plugins/vici/Makefile
1909 src/libcharon/plugins/vici/ruby/Makefile
1910 src/libcharon/plugins/vici/perl/Makefile
1911 src/libcharon/plugins/vici/python/Makefile
1912 src/libcharon/plugins/updown/Makefile
1913 src/libcharon/plugins/dhcp/Makefile
1914 src/libcharon/plugins/load_tester/Makefile
1915 src/libcharon/plugins/resolve/Makefile
1916 src/libcharon/plugins/attr/Makefile
1917 src/libcharon/plugins/attr_sql/Makefile
1918 src/libcharon/tests/Makefile
1919 src/libtpmtss/Makefile
1920 src/libtpmtss/plugins/tpm/Makefile
1921 src/stroke/Makefile
1922 src/ipsec/Makefile
1923 src/starter/Makefile
1924 src/starter/tests/Makefile
1925 src/_updown/Makefile
1926 src/_copyright/Makefile
1927 src/scepclient/Makefile
1928 src/aikgen/Makefile
1929 src/pki/Makefile
1930 src/pki/man/Makefile
1931 src/pool/Makefile
1932 src/dumm/Makefile
1933 src/dumm/ext/extconf.rb
1934 src/libfast/Makefile
1935 src/manager/Makefile
1936 src/medsrv/Makefile
1937 src/checksum/Makefile
1938 src/conftest/Makefile
1939 src/pt-tls-client/Makefile
1940 src/swanctl/Makefile
1941 scripts/Makefile
1942 testing/Makefile
1943 ])
1944
1945 # =================
1946 # build man pages
1947 # =================
1948
1949 AC_CONFIG_FILES([
1950 conf/strongswan.conf.5.head
1951 conf/strongswan.conf.5.tail
1952 man/ipsec.conf.5
1953 man/ipsec.secrets.5
1954 src/charon-cmd/charon-cmd.8
1955 src/pki/man/pki.1
1956 src/pki/man/pki---acert.1
1957 src/pki/man/pki---dn.1
1958 src/pki/man/pki---gen.1
1959 src/pki/man/pki---issue.1
1960 src/pki/man/pki---keyid.1
1961 src/pki/man/pki---pkcs12.1
1962 src/pki/man/pki---pkcs7.1
1963 src/pki/man/pki---print.1
1964 src/pki/man/pki---pub.1
1965 src/pki/man/pki---req.1
1966 src/pki/man/pki---self.1
1967 src/pki/man/pki---signcrl.1
1968 src/pki/man/pki---verify.1
1969 src/swanctl/swanctl.8
1970 src/swanctl/swanctl.conf.5.head
1971 src/swanctl/swanctl.conf.5.tail
1972 ])
1973
1974 AC_OUTPUT
1975
1976 # ========================
1977 # report enabled plugins
1978 # ========================
1979
1980 AC_MSG_RESULT([])
1981 AC_MSG_RESULT([ strongSwan will be built with the following plugins])
1982 AC_MSG_RESULT([-----------------------------------------------------])
1983
1984 AC_MSG_RESULT([libstrongswan:$s_plugins])
1985 AC_MSG_RESULT([libcharon: $c_plugins])
1986 AC_MSG_RESULT([libtnccs: $t_plugins])
1987 AC_MSG_RESULT([libtpmtss: $p_plugins])
1988 AC_MSG_RESULT([])
Unnamed repository; edit this file 'description' to name the repository.