xref: /OK3568_Linux_fs/buildroot/package/strongswan/Config.in (revision 4882a59341e53eb6f0b4789bf948001014eff981) 
1comment "strongswan needs a toolchain w/ threads, dynamic library"
2	depends on BR2_USE_MMU
3	depends on BR2_TOOLCHAIN_HAS_ATOMIC
4	depends on !BR2_TOOLCHAIN_HAS_THREADS || BR2_STATIC_LIBS
5
6menuconfig BR2_PACKAGE_STRONGSWAN
7	bool "strongswan"
8	depends on BR2_USE_MMU # fork()
9	depends on BR2_TOOLCHAIN_HAS_THREADS
10	depends on BR2_TOOLCHAIN_HAS_ATOMIC
11	depends on !BR2_STATIC_LIBS
12	help
13	  strongSwan is an OpenSource IPsec implementation for the
14	  Linux operating system. It is based on the discontinued
15	  FreeS/WAN project and the X.509 patch.
16
17	  The focus is on:
18	   - simplicity of configuration
19	   - strong encryption and authentication methods
20	   - powerful IPsec policies supporting large and complex
21	     VPN networks
22
23	  strongSwan provide many plugins. Only a few are presented
24	  here.
25
26	  http://www.strongswan.org/
27
28if BR2_PACKAGE_STRONGSWAN
29
30choice
31	prompt "Cryptographic backend"
32	default BR2_PACKAGE_STRONGSWAN_GMP
33
34config BR2_PACKAGE_STRONGSWAN_BOTAN
35	bool "botan"
36	depends on BR2_PACKAGE_BOTAN_ARCH_SUPPORTS
37	depends on BR2_INSTALL_LIBSTDCPP
38	depends on BR2_TOOLCHAIN_GCC_AT_LEAST_4_8
39	depends on !BR2_TOOLCHAIN_HAS_GCC_BUG_64735
40	select BR2_PACKAGE_BOTAN
41
42comment "botan backend needs a toolchain w/ C++, gcc >= 4.8"
43	depends on !BR2_INSTALL_LIBSTDCPP \
44		|| !BR2_TOOLCHAIN_GCC_AT_LEAST_4_8
45	depends on BR2_PACKAGE_BOTAN_ARCH_SUPPORTS
46
47comment "botan backend needs a toolchain not affected by GCC bug 64735"
48	depends on BR2_PACKAGE_BOTAN_ARCH_SUPPORTS
49	depends on BR2_TOOLCHAIN_HAS_GCC_BUG_64735
50
51config BR2_PACKAGE_STRONGSWAN_OPENSSL
52	bool "OpenSSL"
53	select BR2_PACKAGE_OPENSSL
54
55config BR2_PACKAGE_STRONGSWAN_GCRYPT
56	bool "libgcrypt"
57	depends on BR2_PACKAGE_LIBGPG_ERROR_ARCH_SUPPORTS # libgcrypt
58	select BR2_PACKAGE_LIBGCRYPT
59
60config BR2_PACKAGE_STRONGSWAN_GMP
61	bool "GNU MP (libgmp)"
62	select BR2_PACKAGE_GMP
63
64config BR2_PACKAGE_STRONGSWAN_WOLFSSL
65	bool "wolfssl"
66	select BR2_PACKAGE_WOLFSSL
67
68endchoice
69
70config BR2_PACKAGE_STRONGSWAN_AF_ALG
71	bool "Enable AF_ALG crypto interface to Linux Crypto API"
72
73config BR2_PACKAGE_STRONGSWAN_CURL
74	bool "Enable CURL fetcher plugin to fetch files via libcurl"
75	select BR2_PACKAGE_LIBCURL
76
77config BR2_PACKAGE_STRONGSWAN_MD4
78	bool "Enable MD4 hash algorithm"
79
80config BR2_PACKAGE_STRONGSWAN_CHARON
81	bool "Enable the IKEv1/IKEv2 keying daemon charon"
82	default y
83
84if BR2_PACKAGE_STRONGSWAN_CHARON
85
86config BR2_PACKAGE_STRONGSWAN_TNCCS_11
87	bool "Enable TNCCS 1.1 protocol module"
88	select BR2_PACKAGE_LIBXML2
89
90config BR2_PACKAGE_STRONGSWAN_TNCCS_20
91	bool "Enable TNCCS 2.0 protocol module"
92
93config BR2_PACKAGE_STRONGSWAN_TNCCS_DYNAMIC
94	bool "Enable dynamic TNCCS protocol discovery module"
95
96config BR2_PACKAGE_STRONGSWAN_SYSTIME_FIX
97	bool "Enable systime-fix plugin"
98
99config BR2_PACKAGE_STRONGSWAN_EAP_SIM
100	bool "Enable EAP-SIM"
101	default y if BR2_PACKAGE_STRONGSWAN_EAP # legacy
102
103config BR2_PACKAGE_STRONGSWAN_EAP_SIM_FILE
104	bool "Enable EAP-SIM file backend"
105	default y if BR2_PACKAGE_STRONGSWAN_EAP # legacy
106	select BR2_PACKAGE_STRONGSWAN_EAP_SIM
107
108config BR2_PACKAGE_STRONGSWAN_EAP_SIM_PCSC
109	bool "Enable EAP-SIM smart card backend"
110	depends on !BR2_STATIC_LIBS # pcsc-lite
111	select BR2_PACKAGE_PCSC_LITE
112	select BR2_PACKAGE_STRONGSWAN_EAP_SIM
113
114config BR2_PACKAGE_STRONGSWAN_EAP_AKA
115	bool "Enable EAP-AKA"
116	default y if BR2_PACKAGE_STRONGSWAN_EAP # legacy
117
118config BR2_PACKAGE_STRONGSWAN_EAP_AKA_3GPP2
119	bool "Enable EAP-AKA 3GPP2 algorithms"
120	default y if BR2_PACKAGE_STRONGSWAN_EAP # legacy
121	select BR2_PACKAGE_GMP
122	select BR2_PACKAGE_STRONGSWAN_EAP_AKA
123
124config BR2_PACKAGE_STRONGSWAN_EAP_SIMAKA_SQL
125	bool "Enable EAP-SIM/AKA backend based on a triplet/quintuplet SQL database"
126	default y if BR2_PACKAGE_STRONGSWAN_EAP # legacy
127	select BR2_PACKAGE_STRONGSWAN_EAP_AKA
128	select BR2_PACKAGE_STRONGSWAN_EAP_SIM
129
130config BR2_PACKAGE_STRONGSWAN_EAP_SIMAKA_PSEUDONYM
131	bool "Enable EAP-SIM/AKA pseudonym storage"
132	default y if BR2_PACKAGE_STRONGSWAN_EAP # legacy
133	select BR2_PACKAGE_STRONGSWAN_EAP_AKA
134	select BR2_PACKAGE_STRONGSWAN_EAP_SIM
135
136config BR2_PACKAGE_STRONGSWAN_EAP_SIMAKA_REAUTH
137	bool "Enable EAP-SIM/AKA reauthentication data storage"
138	default y if BR2_PACKAGE_STRONGSWAN_EAP # legacy
139	select BR2_PACKAGE_STRONGSWAN_EAP_AKA
140	select BR2_PACKAGE_STRONGSWAN_EAP_SIM
141
142config BR2_PACKAGE_STRONGSWAN_EAP_IDENTITY
143	bool "Enable EAP-Identity"
144	default y if BR2_PACKAGE_STRONGSWAN_EAP # legacy
145
146config BR2_PACKAGE_STRONGSWAN_EAP_MD5
147	bool "Enable EAP-MD5"
148	default y if BR2_PACKAGE_STRONGSWAN_EAP # legacy
149
150config BR2_PACKAGE_STRONGSWAN_EAP_GTC
151	bool "Enable EAP-GDC"
152	default y if BR2_PACKAGE_STRONGSWAN_EAP # legacy
153
154config BR2_PACKAGE_STRONGSWAN_EAP_MSCHAPV2
155	bool "Enable EAP-MSCHAPv2"
156	default y if BR2_PACKAGE_STRONGSWAN_EAP # legacy
157	select BR2_PACKAGE_STRONGSWAN_MD4
158
159config BR2_PACKAGE_STRONGSWAN_EAP_PEAP
160	bool "Enable EAP-PEAP"
161	default y if BR2_PACKAGE_STRONGSWAN_EAP # legacy
162
163config BR2_PACKAGE_STRONGSWAN_EAP_RADIUS
164	bool "Enable EAP-RADIUS"
165	default y if BR2_PACKAGE_STRONGSWAN_EAP # legacy
166
167config BR2_PACKAGE_STRONGSWAN_EAP_TLS
168	bool "Enable EAP-TLS"
169	default y if BR2_PACKAGE_STRONGSWAN_EAP # legacy
170
171config BR2_PACKAGE_STRONGSWAN_EAP_TTLS
172	bool "Enable EAP-TTLS"
173	default y if BR2_PACKAGE_STRONGSWAN_EAP # legacy
174
175config BR2_PACKAGE_STRONGSWAN_EAP_DYNAMIC
176	bool "Enable EAP-DYNAMIC"
177	default y if BR2_PACKAGE_STRONGSWAN_EAP # legacy
178
179config BR2_PACKAGE_STRONGSWAN_EAP_TNC
180	bool "Enable EAP-TNC"
181	default y if BR2_PACKAGE_STRONGSWAN_EAP # legacy
182
183config BR2_PACKAGE_STRONGSWAN_UNITY
184	bool "Enables Cisco Unity extension plugin"
185
186config BR2_PACKAGE_STRONGSWAN_STROKE
187	bool "Enable charons stroke configuration backend"
188	default y
189
190config BR2_PACKAGE_STRONGSWAN_SQL
191	bool "Enable SQL database configuration backend"
192	depends on BR2_PACKAGE_SQLITE || BR2_PACKAGE_MYSQL
193
194endif
195
196config BR2_PACKAGE_STRONGSWAN_PKI
197	bool "Enable pki certificate utility"
198	default y
199
200config BR2_PACKAGE_STRONGSWAN_SCEP
201	bool "Enable SCEP client tool"
202
203config BR2_PACKAGE_STRONGSWAN_SCRIPTS
204	bool "Enable additional utilities (found in scripts directory)"
205	default y
206	depends on BR2_PACKAGE_STRONGSWAN_CHARON
207
208config BR2_PACKAGE_STRONGSWAN_VICI
209	bool "Enable vici/swanctl"
210	default y
211	depends on BR2_PACKAGE_STRONGSWAN_CHARON
212
213endif
214