configure.in 40.8 KB
Newer Older
Roger Dingledine's avatar
Roger Dingledine committed
1
dnl Copyright (c) 2001-2004, Roger Dingledine
2
dnl Copyright (c) 2004-2006, Roger Dingledine, Nick Mathewson
3
dnl Copyright (c) 2007-2012, The Tor Project, Inc.
Nick Mathewson's avatar
Nick Mathewson committed
4
dnl See LICENSE for licensing information
5
6

AC_INIT
7
AM_INIT_AUTOMAKE(tor, 0.2.4.0-alpha-dev)
8
m4_ifdef([AM_SILENT_RULES], [AM_SILENT_RULES([yes])])
9
AM_CONFIG_HEADER(orconfig.h)
10

11
12
AC_CANONICAL_HOST

13
if test -f /etc/redhat-release ; then
14
  if test -f /usr/kerberos/include ; then
15
    CPPFLAGS="$CPPFLAGS -I/usr/kerberos/include"
16
  fi
17
fi
18

19
20
# Not a no-op; we want to make sure that CPPFLAGS is set before we use
# the += operator on it in src/or/Makefile.am
21
CPPFLAGS="$CPPFLAGS -I\${top_srcdir}/src/common"
22

23
24
25
#XXXX020 We should make these enabled or not, before 0.2.0.x-final
AC_ARG_ENABLE(buf-freelists,
   AS_HELP_STRING(--disable-buf-freelists, disable freelists for buffer RAM))
26
27
AC_ARG_ENABLE(openbsd-malloc,
   AS_HELP_STRING(--enable-openbsd-malloc, Use malloc code from openbsd.  Linux only))
28
29
AC_ARG_ENABLE(instrument-downloads,
   AS_HELP_STRING(--enable-instrument-downloads, Instrument downloads of directory resources etc.))
30
31
32
33
AC_ARG_ENABLE(static-openssl,
   AS_HELP_STRING(--enable-static-openssl, Link against a static openssl library. Requires --with-openssl-dir))
AC_ARG_ENABLE(static-libevent,
   AS_HELP_STRING(--enable-static-libevent, Link against a static libevent library. Requires --with-libevent-dir))
34
35
AC_ARG_ENABLE(static-zlib,
   AS_HELP_STRING(--enable-static-zlib, Link against a static zlib library. Requires --with-zlib-dir))
36
AC_ARG_ENABLE(static-tor,
37
   AS_HELP_STRING(--enable-static-tor, Create an entirely static Tor binary. Requires --with-openssl-dir and --with-libevent-dir and --with-zlib-dir))
38
39
40
41
42
43
44

if test "$enable_static_tor" = "yes"; then
  enable_static_libevent="yes";
  enable_static_openssl="yes";
  enable_static_zlib="yes";
  CFLAGS="$CFLAGS -static"
fi
45

46
47
48
49
if test x$enable_buf_freelists != xno; then
  AC_DEFINE(ENABLE_BUF_FREELISTS, 1,
            [Defined if we try to use freelists for buffer RAM chunks])
fi
50
AM_CONDITIONAL(USE_OPENBSD_MALLOC, test x$enable_openbsd_malloc = xyes)
51
if test x$enable_instrument_downloads = xyes; then
52
53
54
  AC_DEFINE(INSTRUMENT_DOWNLOADS, 1,
            [Defined if we want to keep track of how much of each kind of resource we download.])
fi
55

56
AC_ARG_ENABLE(transparent,
57
     AS_HELP_STRING(--disable-transparent, disable transparent proxy support),
58
59
60
61
62
63
     [case "${enableval}" in
        yes) transparent=true ;;
        no)  transparent=false ;;
        *) AC_MSG_ERROR(bad value for --enable-transparent) ;;
      esac], [transparent=true])

64
65
66
67
68
69
70
71
AC_ARG_ENABLE(asciidoc,
     AS_HELP_STRING(--disable-asciidoc, don't use asciidoc (disables building of manpages)),
     [case "${enableval}" in
        yes) asciidoc=true ;;
        no)  asciidoc=false ;;
        *) AC_MSG_ERROR(bad value for --disable-asciidoc) ;;
      esac], [asciidoc=true])

72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
# By default, we're not ready to ship a NAT-PMP aware Tor
AC_ARG_ENABLE(nat-pmp,
     AS_HELP_STRING(--enable-nat-pmp, enable NAT-PMP support),
     [case "${enableval}" in
        yes) natpmp=true ;;
        no)  natpmp=false ;;
        * ) AC_MSG_ERROR(bad value for --enable-nat-pmp) ;;
      esac], [natpmp=false])

# By default, we're not ready to ship a UPnP aware Tor
AC_ARG_ENABLE(upnp,
     AS_HELP_STRING(--enable-upnp, enable UPnP support),
     [case "${enableval}" in
        yes) upnp=true ;;
        no)  upnp=false ;;
        * ) AC_MSG_ERROR(bad value for --enable-upnp) ;;
      esac], [upnp=false])

90

Nick Mathewson's avatar
Nick Mathewson committed
91
AC_ARG_ENABLE(threads,
92
     AS_HELP_STRING(--disable-threads, disable multi-threading support))
Nick Mathewson's avatar
Nick Mathewson committed
93
94

if test x$enable_threads = x; then
95
   case $host in
96
97
98
99
100
    *-*-solaris* )
     # Don't try multithreading on solaris -- cpuworkers seem to lock.
     AC_MSG_NOTICE([You are running Solaris; Sometimes threading makes
cpu workers lock up here, so I will disable threads.])
     enable_threads="no";;
Nick Mathewson's avatar
Nick Mathewson committed
101
102
103
104
105
    *)
     enable_threads="yes";;
   esac
fi

106
if test "$enable_threads" = "yes"; then
Nick Mathewson's avatar
Nick Mathewson committed
107
108
109
  AC_DEFINE(ENABLE_THREADS, 1, [Defined if we will try to use multithreading])
fi

110
111
112
113
114
115
case $host in
   *-*-solaris* )
     AC_DEFINE(_REENTRANT, 1, [Define on some platforms to activate x_r() functions in time.h])
     ;;
esac

116
AC_ARG_ENABLE(gcc-warnings,
117
     AS_HELP_STRING(--enable-gcc-warnings, enable verbose warnings))
118
119
AC_ARG_ENABLE(gcc-warnings-advisory,
     AS_HELP_STRING(--enable-gcc-warnings-advisory, [enable verbose warnings, excluding -Werror]))
120

121
122
123
124
125
dnl Adam shostack suggests the following for Windows:
dnl -D_FORTIFY_SOURCE=2 -fstack-protector-all
dnl Others suggest '/gs /safeseh /nxcompat /dynamicbase' for non-gcc on Windows
dnl This requires that we use gcc and that we add -O2 to the CFLAGS.
AC_ARG_ENABLE(gcc-hardening,
126
    AS_HELP_STRING(--disable-gcc-hardening, disable compiler security checks))
127
128
129
130

dnl Linker hardening options
dnl Currently these options are ELF specific - you can't use this with MacOSX
AC_ARG_ENABLE(linker-hardening,
131
    AS_HELP_STRING(--disable-linker-hardening, disable linker security fixups))
132

133
134
135
136
137
138
139
AC_ARG_ENABLE(local-appdata,
   AS_HELP_STRING(--enable-local-appdata, default to host local application data paths on Windows))
if test "$enable_local_appdata" = "yes"; then
  AC_DEFINE(ENABLE_LOCAL_APPDATA, 1,
            [Defined if we default to host local appdata paths on Windows])
fi

140
141
142
143
144
145
146
# Tor2web mode flag
AC_ARG_ENABLE(tor2web-mode,
     AS_HELP_STRING(--enable-tor2web-mode, support tor2web non-anonymous mode),
[if test x$enableval = xyes; then
    CFLAGS="$CFLAGS -D ENABLE_TOR2WEB_MODE=1"
fi])

147
148
149
AC_ARG_ENABLE(bufferevents,
     AS_HELP_STRING(--enable-bufferevents, use Libevent's buffered IO.))

150
151
152
153
154
155
dnl check for the correct "ar" when cross-compiling
AN_MAKEVAR([AR], [AC_PROG_AR])
AN_PROGRAM([ar], [AC_PROG_AR])
AC_DEFUN([AC_PROG_AR], [AC_CHECK_TOOL([AR], [ar], [ar])])
AC_PROG_AR

156
AC_PROG_CC
157
AC_PROG_CPP
158
159
AC_PROG_MAKE_SET
AC_PROG_RANLIB
160
161
162

dnl autoconf 2.59 appears not to support AC_PROG_SED
AC_CHECK_PROG([SED],[sed],[sed],[/bin/false])
163

164
165
166
dnl check for asciidoc and a2x
AC_PATH_PROG([ASCIIDOC], [asciidoc], none)
AC_PATH_PROG([A2X], [a2x], none)
167
168

AM_CONDITIONAL(USE_ASCIIDOC, test x$asciidoc = xtrue)
169

170
171
172
173
AM_CONDITIONAL(USE_FW_HELPER, test x$natpmp = xtrue || test x$upnp = xtrue)
AM_CONDITIONAL(NAT_PMP, test x$natpmp = xtrue)
AM_CONDITIONAL(MINIUPNPC, test x$upnp = xtrue)
AM_PROG_CC_C_O
174

175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
ifdef([AC_C_FLEXIBLE_ARRAY_MEMBER], [
AC_C_FLEXIBLE_ARRAY_MEMBER
], [
 dnl Maybe we've got an old autoconf...
 AC_CACHE_CHECK([for flexible array members],
     tor_cv_c_flexarray,
     [AC_COMPILE_IFELSE(
       AC_LANG_PROGRAM([
 struct abc { int a; char b[]; };
], [
 struct abc *def = malloc(sizeof(struct abc)+sizeof(char));
 def->b[0] = 33;
]),
  [tor_cv_c_flexarray=yes],
  [tor_cv_c_flexarray=no])])
 if test $tor_cv_flexarray = yes ; then
191
   AC_DEFINE([FLEXIBLE_ARRAY_MEMBER], [], [Define to nothing if C supports flexible array members, and to 1 if it does not.])
192
 else
193
   AC_DEFINE([FLEXIBLE_ARRAY_MEMBER], [1], [Define to nothing if C supports flexible array members, and to 1 if it does not.])
194
195
196
 fi
])

197
198
AC_PATH_PROG([SHA1SUM], [sha1sum], none)
AC_PATH_PROG([OPENSSL], [openssl], none)
199

200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
TORUSER=_tor
AC_ARG_WITH(tor-user,
        [  --with-tor-user=NAME    Specify username for tor daemon ],
        [
           TORUSER=$withval
        ]
)
AC_SUBST(TORUSER)

TORGROUP=_tor
AC_ARG_WITH(tor-group,
        [  --with-tor-group=NAME   Specify group name for tor daemon ],
        [
           TORGROUP=$withval
        ]
)
AC_SUBST(TORGROUP)

218

219
dnl If _WIN32 is defined and non-zero, we are building for win32
220
AC_MSG_CHECKING([for win32])
221
AC_RUN_IFELSE([AC_LANG_SOURCE([
222
int main(int c, char **v) {
223
224
#ifdef _WIN32
#if _WIN32
225
226
227
228
229
230
231
  return 0;
#else
  return 1;
#endif
#else
  return 2;
#endif
232
}])],
233
bwin32=true; AC_MSG_RESULT([yes]),
234
235
bwin32=false; AC_MSG_RESULT([no]),
bwin32=cross; AC_MSG_RESULT([cross])
236
237
)

238
if test "$bwin32" = cross; then
239
AC_MSG_CHECKING([for win32 (cross)])
240
AC_COMPILE_IFELSE([AC_LANG_SOURCE([
241
#ifdef _WIN32
242
243
244
245
246
int main(int c, char **v) {return 0;}
#else
#error
int main(int c, char **v) {return x(y);}
#endif
247
])],
248
249
250
251
bwin32=true; AC_MSG_RESULT([yes]),
bwin32=false; AC_MSG_RESULT([no]))
fi

252
AM_CONDITIONAL(BUILD_NT_SERVICES, test x$bwin32 = xtrue)
253

254
255
dnl Enable C99 when compiling with MIPSpro
AC_MSG_CHECKING([for MIPSpro compiler])
256
AC_COMPILE_IFELSE([AC_LANG_PROGRAM(, [
257
258
259
260
#if (defined(__sgi) && defined(_COMPILER_VERSION))
#error
  return x(y);
#endif
261
])],
262
bmipspro=false; AC_MSG_RESULT(no),
263
bmipspro=true; AC_MSG_RESULT(yes))
264

265
if test "$bmipspro" = true; then
266
267
268
  CFLAGS="$CFLAGS -c99"
fi

269
270
AC_C_BIGENDIAN

271
AC_SEARCH_LIBS(socket, [socket network])
272
AC_SEARCH_LIBS(gethostbyname, [nsl])
273
AC_SEARCH_LIBS(dlopen, [dl])
274
AC_SEARCH_LIBS(inet_aton, [resolv])
275
276
277
278
279
280
saved_LIBS="$LIBS"
AC_SEARCH_LIBS([clock_gettime], [rt])
if test "$LIBS" != "$saved_LIBS"; then
   # Looks like we need -lrt for clock_gettime().
   have_rt=yes
fi
281

282
if test "$enable_threads" = "yes"; then
283
284
285
  AC_SEARCH_LIBS(pthread_create, [pthread])
  AC_SEARCH_LIBS(pthread_detach, [pthread])
fi
286

287
288
289
290
dnl -------------------------------------------------------------------
dnl Check for functions before libevent, since libevent-1.2 apparently
dnl exports strlcpy without defining it in a header.

291
AC_CHECK_FUNCS(
292
        _NSGetEnviron \
Sebastian Hahn's avatar
Sebastian Hahn committed
293
294
        accept4 \
        clock_gettime \
295
296
297
        flock \
        ftime \
        getaddrinfo \
Sebastian Hahn's avatar
Sebastian Hahn committed
298
        getifaddrs \
299
300
301
302
        getrlimit \
        gettimeofday \
        gmtime_r \
        inet_aton \
Sebastian Hahn's avatar
Sebastian Hahn committed
303
        ioctl \
304
        localtime_r \
Sebastian Hahn's avatar
Sebastian Hahn committed
305
        lround \
306
307
        memmem \
        prctl \
Sebastian Hahn's avatar
Sebastian Hahn committed
308
        rint \
309
310
311
312
313
314
315
316
317
318
        socketpair \
        strlcat \
        strlcpy \
        strptime \
        strtok_r \
        strtoull \
        sysconf \
        uname \
        vasprintf \
)
319
320
321
322
323
324
325
326
327
328
329
330

using_custom_malloc=no
if test x$enable_openbsd_malloc = xyes ; then
   AC_DEFINE(HAVE_MALLOC_GOOD_SIZE, 1, [Defined if we have the malloc_good_size function])
   using_custom_malloc=yes
fi
if test x$tcmalloc = xyes ; then
   using_custom_malloc=yes
fi
if test $using_custom_malloc = no ; then
   AC_CHECK_FUNCS(mallinfo malloc_good_size malloc_usable_size)
fi
331

332
if test "$enable_threads" = "yes"; then
333
334
335
336
  AC_CHECK_HEADERS(pthread.h)
  AC_CHECK_FUNCS(pthread_create)
fi

337
dnl ------------------------------------------------------
338
dnl Where do you live, libevent?  And how do we call you?
339

340
if test "$bwin32" = true; then
341
  TOR_LIB_WS32=-lws2_32
342
  TOR_LIB_IPHLPAPI=-liphlpapi
343
344
  # Some of the cargo-cults recommend -lwsock32 as well, but I don't
  # think it's actually necessary.
345
  TOR_LIB_GDI=-lgdi32
Nick Mathewson's avatar
   
Nick Mathewson committed
346
else
347
348
  TOR_LIB_WS32=
  TOR_LIB_GDI=
Nick Mathewson's avatar
   
Nick Mathewson committed
349
fi
350
351
AC_SUBST(TOR_LIB_WS32)
AC_SUBST(TOR_LIB_GDI)
352
AC_SUBST(TOR_LIB_IPHLPAPI)
Nick Mathewson's avatar
   
Nick Mathewson committed
353

354
355
356
357
dnl We need to do this before we try our disgusting hack below.
AC_CHECK_HEADERS([sys/types.h])

dnl This is a disgusting hack so we safely include older libevent headers.
358
359
360
361
362
AC_CHECK_TYPE(u_int64_t, unsigned long long)
AC_CHECK_TYPE(u_int32_t, unsigned long)
AC_CHECK_TYPE(u_int16_t, unsigned short)
AC_CHECK_TYPE(u_int8_t, unsigned char)

363
tor_libevent_pkg_redhat="libevent"
364
tor_libevent_pkg_debian="libevent-dev"
365
366
367
tor_libevent_devpkg_redhat="libevent-devel"
tor_libevent_devpkg_debian="libevent-dev"

368
369
370
371
372
373
374
375
376
377
dnl On Gnu/Linux or any place we require it, we'll add librt to the Libevent
dnl linking for static builds.
STATIC_LIBEVENT_FLAGS=""
if test "$enable_static_libevent" = "yes"; then
    if test "$have_rt" = yes; then
      STATIC_LIBEVENT_FLAGS=" -lrt "
    fi
fi

TOR_SEARCH_LIBRARY(libevent, $trylibeventdir, [-levent $STATIC_LIBEVENT_FLAGS $TOR_LIB_WS32], [
378
#ifdef _WIN32
379
380
#include <winsock2.h>
#endif
381
#include <stdlib.h>
382
#include <sys/time.h>
Roger Dingledine's avatar
Roger Dingledine committed
383
#include <sys/types.h>
384
#include <event.h>], [
385
#ifdef _WIN32
386
387
388
#include <winsock2.h>
#endif
void exit(int); void *event_init(void);],
389
    [
390
#ifdef _WIN32
391
{WSADATA d; WSAStartup(0x101,&d); }
392
393
394
#endif
event_init(); exit(0);
], [--with-libevent-dir], [/opt/libevent])
395

396
dnl Now check for particular libevent functions.
397
398
save_LIBS="$LIBS"
save_LDFLAGS="$LDFLAGS"
399
save_CPPFLAGS="$CPPFLAGS"
400
LIBS="-levent $STATIC_LIBEVENT_FLAGS $TOR_LIB_WS32 $LIBS"
401
LDFLAGS="$TOR_LDFLAGS_libevent $LDFLAGS"
402
CPPFLAGS="$TOR_CPPFLAGS_libevent $CPPFLAGS"
403
AC_CHECK_FUNCS(event_get_version event_get_version_number event_get_method event_set_log_callback evdns_set_outgoing_bind_address event_base_loopexit)
404
405
406
407
AC_CHECK_MEMBERS([struct event.min_heap_idx], , ,
[#include <event.h>
])

408
AC_CHECK_HEADERS(event2/event.h event2/dns.h event2/bufferevent_ssl.h)
409

410
411
LIBS="$save_LIBS"
LDFLAGS="$save_LDFLAGS"
412
CPPFLAGS="$save_CPPFLAGS"
413

414

415
416
AM_CONDITIONAL(USE_EXTERNAL_EVDNS, test x$ac_cv_header_event2_dns_h = xyes)

417
418
419
420
if test "$enable_static_libevent" = "yes"; then
   if test "$tor_cv_library_libevent_dir" = "(system)"; then
     AC_MSG_ERROR("You must specify an explicit --with-libevent-dir=x option when using --enable-static-libevent")
   else
421
     TOR_LIBEVENT_LIBS="$TOR_LIBDIR_libevent/libevent.a $STATIC_LIBEVENT_FLAGS"
422
423
424
425
426
   fi
else
     TOR_LIBEVENT_LIBS="-levent"
fi

427
428
dnl This isn't the best test for Libevent 2.0.3-alpha.  Once it's released,
dnl we can do much better.
429
430
if test "$enable_bufferevents" = "yes" ; then
  if test "$ac_cv_header_event2_bufferevent_ssl_h" != "yes" ; then
431
    AC_MSG_ERROR([You've asked for bufferevent support, but you're using a version of Libevent without SSL support.  This won't work.  We need Libevent 2.0.8-rc or later, and you don't seem to even have Libevent 2.0.3-alpha.])
432
433
434
435
436
437
  else

    CPPFLAGS="$CPPFLAGS $TOR_CPPFLAGS_libevent"

    # Check for the right version.  First see if version detection works.
    AC_MSG_CHECKING([whether we can detect the Libevent version])
438
    AC_COMPILE_IFELSE([AC_LANG_SOURCE([
439
440
441
442
443
444
445
#include <event2/event.h>
#if !defined(LIBEVENT_VERSION_NUMBER) || LIBEVENT_VERSION_NUMBER < 10
#error
int x = y(zz);
#else
int x = 1;
#endif
446
  ])], [event_version_number_works=yes; AC_MSG_RESULT([yes]) ],
447
448
449
450
451
     [event_version_number_works=no;  AC_MSG_RESULT([no])])
    if test "$event_version_number_works" != 'yes'; then
      AC_MSG_WARN([Version detection on Libevent seems broken.  Your Libevent installation is probably screwed up or very old.])
    else
      AC_MSG_CHECKING([whether Libevent is new enough for bufferevents])
452
      AC_COMPILE_IFELSE([AC_LANG_SOURCE([
453
#include <event2/event.h>
454
#if !defined(LIBEVENT_VERSION_NUMBER) || LIBEVENT_VERSION_NUMBER < 0x02000d00
455
456
457
458
459
#error
int x = y(zz);
#else
int x = 1;
#endif
460
   ])], [ AC_MSG_RESULT([yes]) ],
461
      [ AC_MSG_RESULT([no])
462
        AC_MSG_ERROR([Libevent does not seem new enough to support bufferevents.  We require 2.0.13-stable or later]) ] )
463
464
    fi
  fi
465
466
fi

467
468
469
470
LIBS="$save_LIBS"
LDFLAGS="$save_LDFLAGS"
CPPFLAGS="$save_CPPFLAGS"

471
472
AM_CONDITIONAL(USE_BUFFEREVENTS, test "$enable_bufferevents" = "yes")
if test "$enable_bufferevents" = "yes"; then
473
474
475
476
477
478
  AC_DEFINE(USE_BUFFEREVENTS, 1, [Defined if we're going to use Libevent's buffered IO API])
  if test "$enable_static_libevent" = "yes"; then
    TOR_LIBEVENT_LIBS="$TOR_LIBDIR_libevent/libevent_openssl.a $TOR_LIBEVENT_LIBS"
  else
    TOR_LIBEVENT_LIBS="-levent_openssl $TOR_LIBEVENT_LIBS"
  fi
479
fi
480
AC_SUBST(TOR_LIBEVENT_LIBS)
481

482
483
484
485
486
487
488
dnl ------------------------------------------------------
dnl Where do you live, libm?

dnl On some platforms (Haiku/BeOS) the math library is
dnl part of libroot. In which case don't link against lm
TOR_LIB_MATH=""
save_LIBS="$LIBS"
489
490
491
AC_SEARCH_LIBS(pow, [m], , AC_MSG_ERROR([Could not find pow in libm or libc.]))
if test "$ac_cv_search_pow" != "none required"; then
    TOR_LIB_MATH="$ac_cv_search_pow"
492
493
494
495
fi
LIBS="$save_LIBS"
AC_SUBST(TOR_LIB_MATH)

496
dnl ------------------------------------------------------
497
dnl Where do you live, openssl?  And how do we call you?
498

499
500
501
502
503
tor_openssl_pkg_redhat="openssl"
tor_openssl_pkg_debian="libssl"
tor_openssl_devpkg_redhat="openssl-devel"
tor_openssl_devpkg_debian="libssl-dev"

504
505
506
507
508
509
510
511
512
ALT_openssl_WITHVAL=""
AC_ARG_WITH(ssl-dir,
  [  --with-ssl-dir=PATH    Obsolete alias for --with-openssl-dir ],
  [
      if test "x$withval" != xno && test "x$withval" != "x" ; then
         ALT_openssl_WITHVAL="$withval"
      fi
  ])

513
TOR_SEARCH_LIBRARY(openssl, $tryssldir, [-lssl -lcrypto $TOR_LIB_GDI],
514
515
    [#include <openssl/rand.h>],
    [void RAND_add(const void *buf, int num, double entropy);],
516
    [RAND_add((void*)0,0,0); exit(0);], [],
517
    [/usr/local/openssl /usr/lib/openssl /usr/local/ssl /usr/lib/ssl /usr/local /usr/athena /opt/openssl])
518

519
520
dnl XXXX check for OPENSSL_VERSION_NUMBER == SSLeay()

521
522
523
524
if test "$enable_static_openssl" = "yes"; then
   if test "$tor_cv_library_openssl_dir" = "(system)"; then
     AC_MSG_ERROR("You must specify an explicit --with-openssl-dir=x option when using --enable-static-openssl")
   else
525
     TOR_OPENSSL_LIBS="$TOR_LIBDIR_openssl/libssl.a $TOR_LIBDIR_openssl/libcrypto.a"
526
527
   fi
else
528
     TOR_OPENSSL_LIBS="-lssl -lcrypto"
529
530
531
fi
AC_SUBST(TOR_OPENSSL_LIBS)

532
533
534
dnl ------------------------------------------------------
dnl Where do you live, zlib?  And how do we call you?

535
536
537
538
tor_zlib_pkg_redhat="zlib"
tor_zlib_pkg_debian="zlib1g"
tor_zlib_devpkg_redhat="zlib-devel"
tor_zlib_devpkg_debian="zlib1g-dev"
539
540
541
542
543
544
545

TOR_SEARCH_LIBRARY(zlib, $tryzlibdir, [-lz],
    [#include <zlib.h>],
    [const char * zlibVersion(void);],
    [zlibVersion(); exit(0);], [--with-zlib-dir],
    [/opt/zlib])

546
547
548
549
550
551
552
553
554
555
556
557
if test "$enable_static_zlib" = "yes"; then
   if test "$tor_cv_library_zlib_dir" = "(system)"; then
     AC_MSG_ERROR("You must specify an explicit --with-zlib-dir=x option when
 using --enable-static-zlib")
   else
     TOR_ZLIB_LIBS="$TOR_LIBDIR_zlib/libz.a"
   fi
else
     TOR_ZLIB_LIBS="-lz"
fi
AC_SUBST(TOR_ZLIB_LIBS)

558
559
560
561
562
dnl ---------------------------------------------------------------------
dnl Now that we know about our major libraries, we can check for compiler
dnl and linker hardening options.  We need to do this with the libraries known,
dnl since sometimes the linker will like an option but not be willing to
dnl use it with a build of a library.
563

564
565
566
all_ldflags_for_check="$TOR_LDFLAGS_zlib $TOR_LDFLAGS_openssl $TOR_LDFLAGS_libevent"
all_libs_for_check="$TOR_ZLIB_LIBS $TOR_LIB_MATH $TOR_LIBEVENT_LIBS $TOR_OPENSSL_LIBS $TOR_LIB_WS32 $TOR_LIB_GDI"

567
568
569
570
571
AC_COMPILE_IFELSE([AC_LANG_PROGRAM([], [
#if !defined(__clang__)
#error
#endif])], have_clang=yes, have_clang=no)

572
573
if test x$enable_gcc_hardening != xno; then
    CFLAGS="$CFLAGS -D_FORTIFY_SOURCE=2"
574
575
576
    if test x$have_clang = xyes; then
        TOR_CHECK_CFLAGS(-Qunused-arguments)
    fi
577
578
579
580
    TOR_CHECK_CFLAGS(-fstack-protector-all)
    TOR_CHECK_CFLAGS(-Wstack-protector)
    TOR_CHECK_CFLAGS(-fwrapv)
    TOR_CHECK_CFLAGS(--param ssp-buffer-size=1)
581
582
583
584
    if test "$bwin32" = "false"; then
       TOR_CHECK_CFLAGS(-fPIE)
       TOR_CHECK_LDFLAGS(-pie, "$all_ldflags_for_check", "$all_libs_for_check")
    fi
585
fi
586

587
588
589
if test x$enable_linker_hardening != xno; then
    TOR_CHECK_LDFLAGS(-z relro -z now, "$all_ldflags_for_check", "$all_libs_for_check")
fi
590
591
592
593
594
595
596

dnl ------------------------------------------------------
dnl Where do you live, libnatpmp?  And how do we call you?
dnl There are no packages for Debian or Redhat as of this patch

if test "$natpmp" = "true"; then
    AC_DEFINE(NAT_PMP, 1, [Define to 1 if we are building with nat-pmp.])
Steven Murdoch's avatar
Steven Murdoch committed
597
    TOR_SEARCH_LIBRARY(libnatpmp, $trylibnatpmpdir, [-lnatpmp $TOR_LIB_WS32 $TOR_LIB_IPHLPAPI],
598
        [#include <natpmp.h>],
599
        [#ifdef _WIN32
Steven Murdoch's avatar
Steven Murdoch committed
600
601
602
         #define STATICLIB
         #endif
         #include <natpmp.h>],
603
604
605
        [   int r;
            natpmp_t natpmp;
            natpmpresp_t response;
606
            r = initnatpmp(&natpmp, 0, 0);],
607
608
609
610
611
612
613
614
615
616
617
618
            [printf("initnatpmp() returned %d (%s)\n", r, r?"FAILED":"SUCCESS");
            exit(0);],
        [--with-libnatpmp-dir],
        [/usr/lib/])
fi


dnl ------------------------------------------------------
dnl Where do you live, libminiupnpc?  And how do we call you?
dnl There are no packages for Debian or Redhat as of this patch

if test "$upnp" = "true"; then
619
    AC_DEFINE(MINIUPNPC, 1, [Define to 1 if we are building with UPnP.])
620
621
622
623
624
625
626
627
628
629
630
631
632
633
634
635
636
637
638
639
640
641
642
643
644
645
646
647

    dnl Before we call TOR_SEARCH_LIBRARY we'll do a quick compile test
    dnl to see if we have miniupnpc-1.5 or -1.6
    AC_COMPILE_IFELSE([AC_LANG_PROGRAM([#include <miniupnpc/miniupnpc.h>],
        [upnpDiscover(1, 0, 0, 0);exit(0);])],[miniupnpc15="true"],[miniupnpc15="false"])

    if test "$miniupnpc15" = "true" ; then
        AC_DEFINE([MINIUPNPC15],[1],[libminiupnpc version 1.5 found])
        TOR_SEARCH_LIBRARY(libminiupnpc, $trylibminiupnpcdir, [-lminiupnpc $TOR_LIB_WS32 $TOR_LIB_IPHLPAPI],
            [#include <miniupnpc/miniwget.h>
             #include <miniupnpc/miniupnpc.h>
             #include <miniupnpc/upnpcommands.h>],
            [void upnpDiscover(int delay, const char * multicastif,
             const char * minissdpdsock, int sameport);],
            [upnpDiscover(1, 0, 0, 0); exit(0);],
            [--with-libminiupnpc-dir],
            [/usr/lib/])
    else
        TOR_SEARCH_LIBRARY(libminiupnpc, $trylibminiupnpcdir, [-lminiupnpc $TOR_LIB_WS32 $TOR_LIB_IPHLPAPI],
            [#include <miniupnpc/miniwget.h>
             #include <miniupnpc/miniupnpc.h>
             #include <miniupnpc/upnpcommands.h>],
            [void upnpDiscover(int delay, const char * multicastif,
             const char * minissdpdsock, int sameport, int ipv6, int * error);],
            [upnpDiscover(1, 0, 0, 0, 0, 0); exit(0);],
            [--with-libminiupnpc-dir],
            [/usr/lib/])
    fi
648
649
fi

650
dnl Make sure to enable support for large off_t if available.
651
652
AC_SYS_LARGEFILE

653
654
655
656
657
658
659
660
661
662
663
664
665
AC_CHECK_HEADERS(
        assert.h \
        errno.h \
        fcntl.h \
        signal.h \
        string.h \
        sys/fcntl.h \
        sys/stat.h \
        sys/time.h \
        sys/types.h \
        time.h \
        unistd.h
 , , AC_MSG_WARN(Some headers were not found, compilation may fail.  If compilation succeeds, please send your orconfig.h to the developers so we can fix this warning.))
666

667
668
dnl These headers are not essential

669
670
AC_CHECK_HEADERS(
        arpa/inet.h \
671
        crt_externs.h \
672
        grp.h \
Sebastian Hahn's avatar
Sebastian Hahn committed
673
        ifaddrs.h \
674
675
676
677
678
679
680
681
682
683
684
685
686
687
688
689
690
691
692
693
694
695
696
697
698
699
700
701
702
        inttypes.h \
        limits.h \
        linux/types.h \
        machine/limits.h \
        malloc.h \
        malloc/malloc.h \
        malloc_np.h \
        netdb.h \
        netinet/in.h \
        netinet/in6.h \
        pwd.h \
        stdint.h \
        sys/file.h \
        sys/ioctl.h \
        sys/limits.h \
        sys/mman.h \
        sys/param.h \
        sys/prctl.h \
        sys/resource.h \
        sys/socket.h \
        sys/syslimits.h \
        sys/time.h \
        sys/types.h \
        sys/un.h \
        sys/utime.h \
        sys/wait.h \
        syslog.h \
        utime.h
)
703

704
705
AC_CHECK_HEADERS(sys/param.h)

706
707
708
709
710
711
712
713
TOR_CHECK_PROTOTYPE(malloc_good_size, HAVE_MALLOC_GOOD_SIZE_PROTOTYPE,
[#ifdef HAVE_MALLOC_H
#include <malloc.h>
#endif
#ifdef HAVE_MALLOC_MALLOC_H
#include <malloc/malloc.h>
#endif])

714
AC_CHECK_HEADERS(net/if.h, net_if_found=1, net_if_found=0,
715
716
717
718
[#ifdef HAVE_SYS_TYPES_H
#include <sys/types.h>
#endif
#ifdef HAVE_SYS_SOCKET_H
719
720
#include <sys/socket.h>
#endif])
721
AC_CHECK_HEADERS(net/pfvar.h, net_pfvar_found=1, net_pfvar_found=0,
722
723
724
725
[#ifdef HAVE_SYS_TYPES_H
#include <sys/types.h>
#endif
#ifdef HAVE_SYS_SOCKET_H
726
#include <sys/socket.h>
727
728
729
#endif
#ifdef HAVE_NET_IF_H
#include <net/if.h>
730
#endif])
731
AC_CHECK_HEADERS(linux/netfilter_ipv4.h,
732
        linux_netfilter_ipv4=1, linux_netfilter_ipv4=0,
733
734
735
736
[#ifdef HAVE_SYS_TYPES_H
#include <sys/types.h>
#endif
#ifdef HAVE_SYS_SOCKET_H
737
#include <sys/socket.h>
738
#endif
739
740
741
742
743
744
745
746
747
#ifdef HAVE_LIMITS_H
#include <limits.h>
#endif
#ifdef HAVE_LINUX_TYPES_H
#include <linux/types.h>
#endif
#ifdef HAVE_NETINET_IN6_H
#include <netinet/in6.h>
#endif
748
749
#ifdef HAVE_NETINET_IN_H
#include <netinet/in.h>
750
#endif])
751
752
753

if test x$transparent = xtrue ; then
   transparent_ok=0
754
   if test x$net_if_found = x1 && test x$net_pfvar_found = x1 ; then
755
756
757
758
759
     transparent_ok=1
   fi
   if test x$linux_netfilter_ipv4 = x1 ; then
     transparent_ok=1
   fi
760
   if test x$transparent_ok = x1 ; then
761
762
763
764
765
766
767
768
769
770
     AC_DEFINE(USE_TRANSPARENT, 1, "Define to enable transparent proxy support")
     case $host in
       *-*-openbsd*)
         AC_DEFINE(OPENBSD, 1, "Define to handle pf on OpenBSD properly") ;;
     esac
   else
     AC_MSG_NOTICE([Transparent proxy support enabled, but missing headers.])
   fi
fi

771
772
773
774
775
776
777
AC_CHECK_MEMBERS([struct timeval.tv_sec], , ,
[#ifdef HAVE_SYS_TYPES_H
#include <sys/types.h>
#endif
#ifdef HAVE_SYS_TIME_H
#include <sys/time.h>
#endif])
778

779
780
781
dnl In case we aren't given a working stdint.h, we'll need to grow our own.
dnl Watch out.

782
783
784
785
786
787
788
789
AC_CHECK_SIZEOF(int8_t)
AC_CHECK_SIZEOF(int16_t)
AC_CHECK_SIZEOF(int32_t)
AC_CHECK_SIZEOF(int64_t)
AC_CHECK_SIZEOF(uint8_t)
AC_CHECK_SIZEOF(uint16_t)
AC_CHECK_SIZEOF(uint32_t)
AC_CHECK_SIZEOF(uint64_t)
790
791
AC_CHECK_SIZEOF(intptr_t)
AC_CHECK_SIZEOF(uintptr_t)
792

793
dnl AC_CHECK_TYPES([int8_t, int16_t, int32_t, int64_t, uint8_t, uint16_t, uint32_t, uint64_t, intptr_t, uintptr_t])
794

795
796
797
798
799
800
AC_CHECK_SIZEOF(char)
AC_CHECK_SIZEOF(short)
AC_CHECK_SIZEOF(int)
AC_CHECK_SIZEOF(long)
AC_CHECK_SIZEOF(long long)
AC_CHECK_SIZEOF(__int64)
801
AC_CHECK_SIZEOF(void *)
802
AC_CHECK_SIZEOF(time_t)
803
AC_CHECK_SIZEOF(size_t)
804

805
AC_CHECK_TYPES([uint, u_char, ssize_t])
806

807
808
dnl used to include sockaddr_storage, but everybody has that.
AC_CHECK_TYPES([struct in6_addr, struct sockaddr_in6, sa_family_t], , ,
809
810
811
812
[#ifdef HAVE_SYS_TYPES_H
#include <sys/types.h>
#endif
#ifdef HAVE_NETINET_IN_H
813
814
815
816
817
818
819
#include <netinet/in.h>
#endif
#ifdef HAVE_NETINET_IN6_H
#include <netinet/in6.h>
#endif
#ifdef HAVE_SYS_SOCKET_H
#include <sys/socket.h>
820
#endif
821
#ifdef _WIN32
822
#define _WIN32_WINNT 0x0501
823
824
825
826
827
828
829
830
831
#define WIN32_LEAN_AND_MEAN
#if defined(_MSC_VER) && (_MSC_VER < 1300)
#include <winsock.h>
#else
#include <winsock2.h>
#include <ws2tcpip.h>
#endif
#endif
])
832
AC_CHECK_MEMBERS([struct in6_addr.s6_addr32, struct in6_addr.s6_addr16, struct sockaddr_in.sin_len, struct sockaddr_in6.sin6_len], , ,
833
834
835
836
837
838
839
840
841
842
843
844
[#ifdef HAVE_SYS_TYPES_H
#include <sys/types.h>
#endif
#ifdef HAVE_NETINET_IN_H
#include <netinet/in.h>
#endif
#ifdef HAVE_NETINET_IN6_H
#include <netinet/in6.h>
#endif
#ifdef HAVE_SYS_SOCKET_H
#include <sys/socket.h>
#endif
845
#ifdef _WIN32
846
#define _WIN32_WINNT 0x0501
847
848
849
850
851
852
853
854
855
#define WIN32_LEAN_AND_MEAN
#if defined(_MSC_VER) && (_MSC_VER < 1300)
#include <winsock.h>
#else
#include <winsock2.h>
#include <ws2tcpip.h>
#endif
#endif
])
856

857
AC_CHECK_TYPES([rlim_t], , ,
858
859
860
[#ifdef HAVE_SYS_TYPES_H
#include <sys/types.h>
#endif
861
862
863
#ifdef HAVE_SYS_TIME_H
#include <sys/time.h>
#endif
864
#ifdef HAVE_SYS_RESOURCE_H
865
866
867
868
#include <sys/resource.h>
#endif
])

869
AC_CACHE_CHECK([whether time_t is signed], tor_cv_time_t_signed, [
870
AC_RUN_IFELSE([AC_LANG_SOURCE([
871
872
873
874
875
876
877
878
879
#ifdef HAVE_SYS_TYPES_H
#include <sys/types.h>
#endif
#ifdef HAVE_SYS_TIME_H
#include <sys/time.h>
#endif
#ifdef HAVE_TIME_H
#include <time.h>
#endif
880
881
int main(int c, char**v) { if (((time_t)-1)<0) return 1; else return 0; }])],
  tor_cv_time_t_signed=no, tor_cv_time_t_signed=yes, tor_cv_time_t_signed=cross)
882
])
883
884

if test "$tor_cv_time_t_signed" = cross; then
885
886
  AC_MSG_NOTICE([Cross compiling: assuming that time_t is signed.])
fi
887

888
if test "$tor_cv_time_t_signed" != no; then
889
890
891
892
  AC_DEFINE([TIME_T_IS_SIGNED], 1,
            [Define to 1 iff time_t is signed])
fi

893
AC_CACHE_CHECK([whether size_t is signed], tor_cv_size_t_signed, [
Sebastian Hahn's avatar
Sebastian Hahn committed
894
AC_RUN_IFELSE([AC_LANG_SOURCE([
895
896
897
#ifdef HAVE_SYS_TYPES_H
#include <sys/types.h>
#endif
Sebastian Hahn's avatar
Sebastian Hahn committed
898
int main(int c, char**v) { if (((size_t)-1)<0) return 1; else return 0; }])],
899
900
901
902
903
904
905
906
907
908
909
  tor_cv_size_t_signed=no, tor_cv_size_t_signed=yes, tor_cv_size_t_signed=cross)
])

if test "$tor_cv_size_t_signed" = cross; then
  AC_MSG_NOTICE([Cross compiling: assuming that size_t is not signed.])
fi

if test "$tor_cv_size_t_signed" = yes; then
  AC_MSG_ERROR([You have a signed size_t; that's grossly nonconformant.])
fi

910
911
912
913
914
AC_CHECK_SIZEOF(socklen_t, , [AC_INCLUDES_DEFAULT()
#ifdef HAVE_SYS_SOCKET_H
#include <sys/socket.h>
#endif
])
915

916
917
918
919
# We want to make sure that we _don't_ have a cell_t defined, like IRIX does.

AC_CHECK_SIZEOF(cell_t)

920
921
922
923
# Now make sure that NULL can be represented as zero bytes.
AC_CACHE_CHECK([whether memset(0) sets pointers to NULL], tor_cv_null_is_zero,
[AC_RUN_IFELSE([AC_LANG_SOURCE(
[[#include <stdlib.h>
924
#include <string.h>
925
926
927
928
#include <stdio.h>
#ifdef HAVE_STDDEF_H
#include <stddef.h>
#endif
929
int main () { char *p1,*p2; p1=NULL; memset(&p2,0,sizeof(p2));
930
return memcmp(&p1,&p2,sizeof(char*))?1:0; }]])],
931
932
933
934
       [tor_cv_null_is_zero=yes],
       [tor_cv_null_is_zero=no],
       [tor_cv_null_is_zero=cross])])

935
if test "$tor_cv_null_is_zero" = cross ; then
936
937
938
939
  # Cross-compiling; let's hope that the target isn't raving mad.
  AC_MSG_NOTICE([Cross-compiling: we'll assume that NULL is represented as a sequence of 0-valued bytes.])
fi

940
if test "$tor_cv_null_is_zero" != no; then
941
942
943
944
  AC_DEFINE([NULL_REP_IS_ZERO_BYTES], 1,
            [Define to 1 iff memset(0) sets pointers to NULL])
fi

945
946
947
948
949
950
951
952
953
954
955
956
957
958
# And what happens when we malloc zero?
AC_CACHE_CHECK([whether we can malloc(0) safely.], tor_cv_malloc_zero_works,
[AC_RUN_IFELSE([AC_LANG_SOURCE(
[[#include <stdlib.h>
#include <string.h>
#include <stdio.h>
#ifdef HAVE_STDDEF_H
#include <stddef.h>
#endif
int main () { return malloc(0)?0:1; }]])],
       [tor_cv_malloc_zero_works=yes],
       [tor_cv_malloc_zero_works=no],
       [tor_cv_malloc_zero_works=cross])])

959
if test "$tor_cv_malloc_zero_works" = cross; then
960
961
962
963
  # Cross-compiling; let's hope that the target isn't raving mad.
  AC_MSG_NOTICE([Cross-compiling: we'll assume that we need to check malloc() arguments for 0.])
fi

964
if test "$tor_cv_malloc_zero_works" = yes; then
965
966
967
968
  AC_DEFINE([MALLOC_ZERO_WORKS], 1,
            [Define to 1 iff malloc(0) returns a pointer])
fi

969
970
971
972
973
974
975
976
977
# whether we seem to be in a 2s-complement world.
AC_CACHE_CHECK([whether we are using 2s-complement arithmetic], tor_cv_twos_complement,
[AC_RUN_IFELSE([AC_LANG_SOURCE(
[[int main () { int problem = ((-99) != (~99)+1);
return problem ? 1 : 0; }]])],
       [tor_cv_twos_complement=yes],
       [tor_cv_twos_complement=no],
       [tor_cv_twos_complement=cross])])

978
if test "$tor_cv_twos_complement" = cross ; then
979
  # Cross-compiling; let's hope that the target isn't raving mad.
980
  AC_MSG_NOTICE([Cross-compiling: we'll assume that negative integers are represented with two's complement.])
981
982
fi

983
if test "$tor_cv_twos_complement" != no ; then
984
985
986
987
  AC_DEFINE([USING_TWOS_COMPLEMENT], 1,
            [Define to 1 iff we represent negative integers with two's complement])
fi

988
989
990
991
992
993
994
995
996
997
998
999
1000
# What does shifting a negative value do?
AC_CACHE_CHECK([whether right-shift on negative values does sign-extension], tor_cv_sign_extend,
[AC_RUN_IFELSE([AC_LANG_SOURCE(
[[int main () { int okay = (-60 >> 8) == -1; return okay ? 0 : 1; }]])],
       [tor_cv_sign_extend=yes],
       [tor_cv_sign_extend=no],
       [tor_cv_sign_extend=cross])])

if test "$tor_cv_sign_extend" = cross ; then
  # Cross-compiling; let's hope that the target isn't raving mad.
  AC_MSG_NOTICE([Cross-compiling: we'll assume that right-shifting negative integers causes sign-extension])
fi