xref: /OK3568_Linux_fs/buildroot/package/strongswan/Config.in (revision 4882a59341e53eb6f0b4789bf948001014eff981) 
1*4882a593Smuzhiyuncomment "strongswan needs a toolchain w/ threads, dynamic library"
2*4882a593Smuzhiyun	depends on BR2_USE_MMU
3*4882a593Smuzhiyun	depends on BR2_TOOLCHAIN_HAS_ATOMIC
4*4882a593Smuzhiyun	depends on !BR2_TOOLCHAIN_HAS_THREADS || BR2_STATIC_LIBS
5*4882a593Smuzhiyun
6*4882a593Smuzhiyunmenuconfig BR2_PACKAGE_STRONGSWAN
7*4882a593Smuzhiyun	bool "strongswan"
8*4882a593Smuzhiyun	depends on BR2_USE_MMU # fork()
9*4882a593Smuzhiyun	depends on BR2_TOOLCHAIN_HAS_THREADS
10*4882a593Smuzhiyun	depends on BR2_TOOLCHAIN_HAS_ATOMIC
11*4882a593Smuzhiyun	depends on !BR2_STATIC_LIBS
12*4882a593Smuzhiyun	help
13*4882a593Smuzhiyun	  strongSwan is an OpenSource IPsec implementation for the
14*4882a593Smuzhiyun	  Linux operating system. It is based on the discontinued
15*4882a593Smuzhiyun	  FreeS/WAN project and the X.509 patch.
16*4882a593Smuzhiyun
17*4882a593Smuzhiyun	  The focus is on:
18*4882a593Smuzhiyun	   - simplicity of configuration
19*4882a593Smuzhiyun	   - strong encryption and authentication methods
20*4882a593Smuzhiyun	   - powerful IPsec policies supporting large and complex
21*4882a593Smuzhiyun	     VPN networks
22*4882a593Smuzhiyun
23*4882a593Smuzhiyun	  strongSwan provide many plugins. Only a few are presented
24*4882a593Smuzhiyun	  here.
25*4882a593Smuzhiyun
26*4882a593Smuzhiyun	  http://www.strongswan.org/
27*4882a593Smuzhiyun
28*4882a593Smuzhiyunif BR2_PACKAGE_STRONGSWAN
29*4882a593Smuzhiyun
30*4882a593Smuzhiyunchoice
31*4882a593Smuzhiyun	prompt "Cryptographic backend"
32*4882a593Smuzhiyun	default BR2_PACKAGE_STRONGSWAN_GMP
33*4882a593Smuzhiyun
34*4882a593Smuzhiyunconfig BR2_PACKAGE_STRONGSWAN_BOTAN
35*4882a593Smuzhiyun	bool "botan"
36*4882a593Smuzhiyun	depends on BR2_PACKAGE_BOTAN_ARCH_SUPPORTS
37*4882a593Smuzhiyun	depends on BR2_INSTALL_LIBSTDCPP
38*4882a593Smuzhiyun	depends on BR2_TOOLCHAIN_GCC_AT_LEAST_4_8
39*4882a593Smuzhiyun	depends on !BR2_TOOLCHAIN_HAS_GCC_BUG_64735
40*4882a593Smuzhiyun	select BR2_PACKAGE_BOTAN
41*4882a593Smuzhiyun
42*4882a593Smuzhiyuncomment "botan backend needs a toolchain w/ C++, gcc >= 4.8"
43*4882a593Smuzhiyun	depends on !BR2_INSTALL_LIBSTDCPP \
44*4882a593Smuzhiyun		|| !BR2_TOOLCHAIN_GCC_AT_LEAST_4_8
45*4882a593Smuzhiyun	depends on BR2_PACKAGE_BOTAN_ARCH_SUPPORTS
46*4882a593Smuzhiyun
47*4882a593Smuzhiyuncomment "botan backend needs a toolchain not affected by GCC bug 64735"
48*4882a593Smuzhiyun	depends on BR2_PACKAGE_BOTAN_ARCH_SUPPORTS
49*4882a593Smuzhiyun	depends on BR2_TOOLCHAIN_HAS_GCC_BUG_64735
50*4882a593Smuzhiyun
51*4882a593Smuzhiyunconfig BR2_PACKAGE_STRONGSWAN_OPENSSL
52*4882a593Smuzhiyun	bool "OpenSSL"
53*4882a593Smuzhiyun	select BR2_PACKAGE_OPENSSL
54*4882a593Smuzhiyun
55*4882a593Smuzhiyunconfig BR2_PACKAGE_STRONGSWAN_GCRYPT
56*4882a593Smuzhiyun	bool "libgcrypt"
57*4882a593Smuzhiyun	depends on BR2_PACKAGE_LIBGPG_ERROR_ARCH_SUPPORTS # libgcrypt
58*4882a593Smuzhiyun	select BR2_PACKAGE_LIBGCRYPT
59*4882a593Smuzhiyun
60*4882a593Smuzhiyunconfig BR2_PACKAGE_STRONGSWAN_GMP
61*4882a593Smuzhiyun	bool "GNU MP (libgmp)"
62*4882a593Smuzhiyun	select BR2_PACKAGE_GMP
63*4882a593Smuzhiyun
64*4882a593Smuzhiyunconfig BR2_PACKAGE_STRONGSWAN_WOLFSSL
65*4882a593Smuzhiyun	bool "wolfssl"
66*4882a593Smuzhiyun	select BR2_PACKAGE_WOLFSSL
67*4882a593Smuzhiyun
68*4882a593Smuzhiyunendchoice
69*4882a593Smuzhiyun
70*4882a593Smuzhiyunconfig BR2_PACKAGE_STRONGSWAN_AF_ALG
71*4882a593Smuzhiyun	bool "Enable AF_ALG crypto interface to Linux Crypto API"
72*4882a593Smuzhiyun
73*4882a593Smuzhiyunconfig BR2_PACKAGE_STRONGSWAN_CURL
74*4882a593Smuzhiyun	bool "Enable CURL fetcher plugin to fetch files via libcurl"
75*4882a593Smuzhiyun	select BR2_PACKAGE_LIBCURL
76*4882a593Smuzhiyun
77*4882a593Smuzhiyunconfig BR2_PACKAGE_STRONGSWAN_MD4
78*4882a593Smuzhiyun	bool "Enable MD4 hash algorithm"
79*4882a593Smuzhiyun
80*4882a593Smuzhiyunconfig BR2_PACKAGE_STRONGSWAN_CHARON
81*4882a593Smuzhiyun	bool "Enable the IKEv1/IKEv2 keying daemon charon"
82*4882a593Smuzhiyun	default y
83*4882a593Smuzhiyun
84*4882a593Smuzhiyunif BR2_PACKAGE_STRONGSWAN_CHARON
85*4882a593Smuzhiyun
86*4882a593Smuzhiyunconfig BR2_PACKAGE_STRONGSWAN_TNCCS_11
87*4882a593Smuzhiyun	bool "Enable TNCCS 1.1 protocol module"
88*4882a593Smuzhiyun	select BR2_PACKAGE_LIBXML2
89*4882a593Smuzhiyun
90*4882a593Smuzhiyunconfig BR2_PACKAGE_STRONGSWAN_TNCCS_20
91*4882a593Smuzhiyun	bool "Enable TNCCS 2.0 protocol module"
92*4882a593Smuzhiyun
93*4882a593Smuzhiyunconfig BR2_PACKAGE_STRONGSWAN_TNCCS_DYNAMIC
94*4882a593Smuzhiyun	bool "Enable dynamic TNCCS protocol discovery module"
95*4882a593Smuzhiyun
96*4882a593Smuzhiyunconfig BR2_PACKAGE_STRONGSWAN_SYSTIME_FIX
97*4882a593Smuzhiyun	bool "Enable systime-fix plugin"
98*4882a593Smuzhiyun
99*4882a593Smuzhiyunconfig BR2_PACKAGE_STRONGSWAN_EAP_SIM
100*4882a593Smuzhiyun	bool "Enable EAP-SIM"
101*4882a593Smuzhiyun	default y if BR2_PACKAGE_STRONGSWAN_EAP # legacy
102*4882a593Smuzhiyun
103*4882a593Smuzhiyunconfig BR2_PACKAGE_STRONGSWAN_EAP_SIM_FILE
104*4882a593Smuzhiyun	bool "Enable EAP-SIM file backend"
105*4882a593Smuzhiyun	default y if BR2_PACKAGE_STRONGSWAN_EAP # legacy
106*4882a593Smuzhiyun	select BR2_PACKAGE_STRONGSWAN_EAP_SIM
107*4882a593Smuzhiyun
108*4882a593Smuzhiyunconfig BR2_PACKAGE_STRONGSWAN_EAP_SIM_PCSC
109*4882a593Smuzhiyun	bool "Enable EAP-SIM smart card backend"
110*4882a593Smuzhiyun	depends on !BR2_STATIC_LIBS # pcsc-lite
111*4882a593Smuzhiyun	select BR2_PACKAGE_PCSC_LITE
112*4882a593Smuzhiyun	select BR2_PACKAGE_STRONGSWAN_EAP_SIM
113*4882a593Smuzhiyun
114*4882a593Smuzhiyunconfig BR2_PACKAGE_STRONGSWAN_EAP_AKA
115*4882a593Smuzhiyun	bool "Enable EAP-AKA"
116*4882a593Smuzhiyun	default y if BR2_PACKAGE_STRONGSWAN_EAP # legacy
117*4882a593Smuzhiyun
118*4882a593Smuzhiyunconfig BR2_PACKAGE_STRONGSWAN_EAP_AKA_3GPP2
119*4882a593Smuzhiyun	bool "Enable EAP-AKA 3GPP2 algorithms"
120*4882a593Smuzhiyun	default y if BR2_PACKAGE_STRONGSWAN_EAP # legacy
121*4882a593Smuzhiyun	select BR2_PACKAGE_GMP
122*4882a593Smuzhiyun	select BR2_PACKAGE_STRONGSWAN_EAP_AKA
123*4882a593Smuzhiyun
124*4882a593Smuzhiyunconfig BR2_PACKAGE_STRONGSWAN_EAP_SIMAKA_SQL
125*4882a593Smuzhiyun	bool "Enable EAP-SIM/AKA backend based on a triplet/quintuplet SQL database"
126*4882a593Smuzhiyun	default y if BR2_PACKAGE_STRONGSWAN_EAP # legacy
127*4882a593Smuzhiyun	select BR2_PACKAGE_STRONGSWAN_EAP_AKA
128*4882a593Smuzhiyun	select BR2_PACKAGE_STRONGSWAN_EAP_SIM
129*4882a593Smuzhiyun
130*4882a593Smuzhiyunconfig BR2_PACKAGE_STRONGSWAN_EAP_SIMAKA_PSEUDONYM
131*4882a593Smuzhiyun	bool "Enable EAP-SIM/AKA pseudonym storage"
132*4882a593Smuzhiyun	default y if BR2_PACKAGE_STRONGSWAN_EAP # legacy
133*4882a593Smuzhiyun	select BR2_PACKAGE_STRONGSWAN_EAP_AKA
134*4882a593Smuzhiyun	select BR2_PACKAGE_STRONGSWAN_EAP_SIM
135*4882a593Smuzhiyun
136*4882a593Smuzhiyunconfig BR2_PACKAGE_STRONGSWAN_EAP_SIMAKA_REAUTH
137*4882a593Smuzhiyun	bool "Enable EAP-SIM/AKA reauthentication data storage"
138*4882a593Smuzhiyun	default y if BR2_PACKAGE_STRONGSWAN_EAP # legacy
139*4882a593Smuzhiyun	select BR2_PACKAGE_STRONGSWAN_EAP_AKA
140*4882a593Smuzhiyun	select BR2_PACKAGE_STRONGSWAN_EAP_SIM
141*4882a593Smuzhiyun
142*4882a593Smuzhiyunconfig BR2_PACKAGE_STRONGSWAN_EAP_IDENTITY
143*4882a593Smuzhiyun	bool "Enable EAP-Identity"
144*4882a593Smuzhiyun	default y if BR2_PACKAGE_STRONGSWAN_EAP # legacy
145*4882a593Smuzhiyun
146*4882a593Smuzhiyunconfig BR2_PACKAGE_STRONGSWAN_EAP_MD5
147*4882a593Smuzhiyun	bool "Enable EAP-MD5"
148*4882a593Smuzhiyun	default y if BR2_PACKAGE_STRONGSWAN_EAP # legacy
149*4882a593Smuzhiyun
150*4882a593Smuzhiyunconfig BR2_PACKAGE_STRONGSWAN_EAP_GTC
151*4882a593Smuzhiyun	bool "Enable EAP-GDC"
152*4882a593Smuzhiyun	default y if BR2_PACKAGE_STRONGSWAN_EAP # legacy
153*4882a593Smuzhiyun
154*4882a593Smuzhiyunconfig BR2_PACKAGE_STRONGSWAN_EAP_MSCHAPV2
155*4882a593Smuzhiyun	bool "Enable EAP-MSCHAPv2"
156*4882a593Smuzhiyun	default y if BR2_PACKAGE_STRONGSWAN_EAP # legacy
157*4882a593Smuzhiyun	select BR2_PACKAGE_STRONGSWAN_MD4
158*4882a593Smuzhiyun
159*4882a593Smuzhiyunconfig BR2_PACKAGE_STRONGSWAN_EAP_PEAP
160*4882a593Smuzhiyun	bool "Enable EAP-PEAP"
161*4882a593Smuzhiyun	default y if BR2_PACKAGE_STRONGSWAN_EAP # legacy
162*4882a593Smuzhiyun
163*4882a593Smuzhiyunconfig BR2_PACKAGE_STRONGSWAN_EAP_RADIUS
164*4882a593Smuzhiyun	bool "Enable EAP-RADIUS"
165*4882a593Smuzhiyun	default y if BR2_PACKAGE_STRONGSWAN_EAP # legacy
166*4882a593Smuzhiyun
167*4882a593Smuzhiyunconfig BR2_PACKAGE_STRONGSWAN_EAP_TLS
168*4882a593Smuzhiyun	bool "Enable EAP-TLS"
169*4882a593Smuzhiyun	default y if BR2_PACKAGE_STRONGSWAN_EAP # legacy
170*4882a593Smuzhiyun
171*4882a593Smuzhiyunconfig BR2_PACKAGE_STRONGSWAN_EAP_TTLS
172*4882a593Smuzhiyun	bool "Enable EAP-TTLS"
173*4882a593Smuzhiyun	default y if BR2_PACKAGE_STRONGSWAN_EAP # legacy
174*4882a593Smuzhiyun
175*4882a593Smuzhiyunconfig BR2_PACKAGE_STRONGSWAN_EAP_DYNAMIC
176*4882a593Smuzhiyun	bool "Enable EAP-DYNAMIC"
177*4882a593Smuzhiyun	default y if BR2_PACKAGE_STRONGSWAN_EAP # legacy
178*4882a593Smuzhiyun
179*4882a593Smuzhiyunconfig BR2_PACKAGE_STRONGSWAN_EAP_TNC
180*4882a593Smuzhiyun	bool "Enable EAP-TNC"
181*4882a593Smuzhiyun	default y if BR2_PACKAGE_STRONGSWAN_EAP # legacy
182*4882a593Smuzhiyun
183*4882a593Smuzhiyunconfig BR2_PACKAGE_STRONGSWAN_UNITY
184*4882a593Smuzhiyun	bool "Enables Cisco Unity extension plugin"
185*4882a593Smuzhiyun
186*4882a593Smuzhiyunconfig BR2_PACKAGE_STRONGSWAN_STROKE
187*4882a593Smuzhiyun	bool "Enable charons stroke configuration backend"
188*4882a593Smuzhiyun	default y
189*4882a593Smuzhiyun
190*4882a593Smuzhiyunconfig BR2_PACKAGE_STRONGSWAN_SQL
191*4882a593Smuzhiyun	bool "Enable SQL database configuration backend"
192*4882a593Smuzhiyun	depends on BR2_PACKAGE_SQLITE || BR2_PACKAGE_MYSQL
193*4882a593Smuzhiyun
194*4882a593Smuzhiyunendif
195*4882a593Smuzhiyun
196*4882a593Smuzhiyunconfig BR2_PACKAGE_STRONGSWAN_PKI
197*4882a593Smuzhiyun	bool "Enable pki certificate utility"
198*4882a593Smuzhiyun	default y
199*4882a593Smuzhiyun
200*4882a593Smuzhiyunconfig BR2_PACKAGE_STRONGSWAN_SCEP
201*4882a593Smuzhiyun	bool "Enable SCEP client tool"
202*4882a593Smuzhiyun
203*4882a593Smuzhiyunconfig BR2_PACKAGE_STRONGSWAN_SCRIPTS
204*4882a593Smuzhiyun	bool "Enable additional utilities (found in scripts directory)"
205*4882a593Smuzhiyun	default y
206*4882a593Smuzhiyun	depends on BR2_PACKAGE_STRONGSWAN_CHARON
207*4882a593Smuzhiyun
208*4882a593Smuzhiyunconfig BR2_PACKAGE_STRONGSWAN_VICI
209*4882a593Smuzhiyun	bool "Enable vici/swanctl"
210*4882a593Smuzhiyun	default y
211*4882a593Smuzhiyun	depends on BR2_PACKAGE_STRONGSWAN_CHARON
212*4882a593Smuzhiyun
213*4882a593Smuzhiyunendif
214