configure.ac 80.3 KB
Newer Older
Roger Dingledine's avatar
Roger Dingledine committed
1
dnl Copyright (c) 2001-2004, Roger Dingledine
2
dnl Copyright (c) 2004-2006, Roger Dingledine, Nick Mathewson
Nick Mathewson's avatar
Nick Mathewson committed
3
dnl Copyright (c) 2007-2019, The Tor Project, Inc.
Nick Mathewson's avatar
Nick Mathewson committed
4
dnl See LICENSE for licensing information
5

6
AC_PREREQ([2.63])
Nick Mathewson's avatar
Nick Mathewson committed
7
AC_INIT([tor],[0.4.2.1-alpha-dev])
8
AC_CONFIG_SRCDIR([src/app/main/tor_main.c])
9
AC_CONFIG_MACRO_DIR([m4])
10

11
12
13
14
15
16
# DO NOT EDIT THIS DEFINITION BY HAND UNLESS YOU KNOW WHAT YOU'RE DOING.
#
# The update_versions.py script updates this definition when the
# version number changes.  Tor uses it to make sure that it
# only shuts down for missing "required protocols" when those protocols
# are listed as required by a consensus after this date.
Nick Mathewson's avatar
Nick Mathewson committed
17
AC_DEFINE(APPROX_RELEASE_DATE, ["2019-09-17"], # for 0.4.2.1-alpha-dev
18
19
          [Approximate date when this software was released. (Updated when the version changes.)])

20
21
22
# "foreign" means we don't follow GNU package layout standards
# "1.11" means we require automake version 1.11 or newer
# "subdir-objects" means put .o files in the same directory as the .c files
23
AM_INIT_AUTOMAKE([foreign 1.11 subdir-objects -Wall -Werror])
24

25
m4_ifdef([AM_SILENT_RULES], [AM_SILENT_RULES([yes])])
26
AC_CONFIG_HEADERS([orconfig.h])
27

28
AC_USE_SYSTEM_EXTENSIONS
29
30
AC_CANONICAL_HOST

31
PKG_PROG_PKG_CONFIG
32
33
34
35
36
37
38
if test "x$PKG_CONFIG" = "x" ; then
    pkg_config_user_action="install pkg-config, and check the PKG_CONFIG_PATH environment variable."
    AC_MSG_NOTICE([Some libraries need pkg-config, including systemd, nss, lzma, zstd, and custom mallocs.])
    AC_MSG_NOTICE([To use those libraries, $pkg_config_user_action])
else
    pkg_config_user_action="check the PKG_CONFIG_PATH environment variable."
fi
39

40
AC_ARG_ENABLE(openbsd-malloc,
41
   AS_HELP_STRING(--enable-openbsd-malloc, [use malloc code from OpenBSD.  Linux only. Deprecated: see --with-malloc]))
42
AC_ARG_ENABLE(static-openssl,
43
   AS_HELP_STRING(--enable-static-openssl, [link against a static openssl library. Requires --with-openssl-dir]))
44
AC_ARG_ENABLE(static-libevent,
45
   AS_HELP_STRING(--enable-static-libevent, [link against a static libevent library. Requires --with-libevent-dir]))
46
AC_ARG_ENABLE(static-zlib,
47
   AS_HELP_STRING(--enable-static-zlib, [link against a static zlib library. Requires --with-zlib-dir]))
48
AC_ARG_ENABLE(static-tor,
49
   AS_HELP_STRING(--enable-static-tor, [create an entirely static Tor binary. Requires --with-openssl-dir and --with-libevent-dir and --with-zlib-dir]))
50
AC_ARG_ENABLE(unittests,
51
   AS_HELP_STRING(--disable-unittests, [don't build unit tests for Tor. Risky!]))
52
AC_ARG_ENABLE(coverage,
53
   AS_HELP_STRING(--enable-coverage, [enable coverage support in the unit-test build]))
54
55
AC_ARG_ENABLE(asserts-in-tests,
   AS_HELP_STRING(--disable-asserts-in-tests, [disable tor_assert() calls in the unit tests, for branch coverage]))
56
AC_ARG_ENABLE(system-torrc,
57
   AS_HELP_STRING(--disable-system-torrc, [don't look for a system-wide torrc file]))
Nick Mathewson's avatar
Nick Mathewson committed
58
AC_ARG_ENABLE(libfuzzer,
59
60
61
   AS_HELP_STRING(--enable-libfuzzer, [build extra fuzzers based on 'libfuzzer']))
AC_ARG_ENABLE(oss-fuzz,
   AS_HELP_STRING(--enable-oss-fuzz, [build extra fuzzers based on 'oss-fuzz' environment]))
62
63
AC_ARG_ENABLE(memory-sentinels,
   AS_HELP_STRING(--disable-memory-sentinels, [disable code that tries to prevent some kinds of memory access bugs. For fuzzing only.]))
64
65
AC_ARG_ENABLE(rust,
   AS_HELP_STRING(--enable-rust, [enable rust integration]))
66
67
AC_ARG_ENABLE(cargo-online-mode,
   AS_HELP_STRING(--enable-cargo-online-mode, [Allow cargo to make network requests to fetch crates. For builds with rust only.]))
68
69
AC_ARG_ENABLE(restart-debugging,
   AS_HELP_STRING(--enable-restart-debugging, [Build Tor with support for debugging in-process restart. Developers only.]))
70
71
AC_ARG_ENABLE(zstd-advanced-apis,
   AS_HELP_STRING(--disable-zstd-advanced-apis, [Build without support for zstd's "static-only" APIs.]))
72
73
AC_ARG_ENABLE(nss,
   AS_HELP_STRING(--enable-nss, [Use Mozilla's NSS TLS library. (EXPERIMENTAL)]))
74
75
AC_ARG_ENABLE(pic,
   AS_HELP_STRING(--enable-pic, [Build Tor's binaries as position-independent code, suitable to link as a library.]))
76

77
if test "x$enable_coverage" != "xyes" -a "x$enable_asserts_in_tests" = "xno" ; then
78
79
80
    AC_MSG_ERROR([Can't disable assertions outside of coverage build])
fi

81
82
83
AM_CONDITIONAL(UNITTESTS_ENABLED, test "x$enable_unittests" != "xno")
AM_CONDITIONAL(COVERAGE_ENABLED, test "x$enable_coverage" = "xyes")
AM_CONDITIONAL(DISABLE_ASSERTS_IN_UNIT_TESTS, test "x$enable_asserts_in_tests" = "xno")
Nick Mathewson's avatar
Nick Mathewson committed
84
AM_CONDITIONAL(LIBFUZZER_ENABLED, test "x$enable_libfuzzer" = "xyes")
85
AM_CONDITIONAL(OSS_FUZZ_ENABLED, test "x$enable_oss_fuzz" = "xyes")
86
AM_CONDITIONAL(USE_RUST, test "x$enable_rust" = "xyes")
87
AM_CONDITIONAL(USE_NSS, test "x$enable_nss" = "xyes")
88
AM_CONDITIONAL(USE_OPENSSL, test "x$enable_nss" != "xyes")
89
90
91

if test "x$enable_nss" = "xyes"; then
  AC_DEFINE(ENABLE_NSS, 1,
92
  	    [Defined if we're building with NSS.])
93
94
95
else
  AC_DEFINE(ENABLE_OPENSSL, 1,
            [Defined if we're building with OpenSSL or LibreSSL])
96
fi
97

98
99
100
101
102
103
if test "$enable_static_tor" = "yes"; then
  enable_static_libevent="yes";
  enable_static_openssl="yes";
  enable_static_zlib="yes";
  CFLAGS="$CFLAGS -static"
fi
104

105
106
107
108
109
if test "$enable_system_torrc" = "no"; then
  AC_DEFINE(DISABLE_SYSTEM_TORRC, 1,
            [Defined if we're not going to look for a torrc in SYSCONF])
fi

110
111
112
113
114
if test "$enable_memory_sentinels" = "no"; then
  AC_DEFINE(DISABLE_MEMORY_SENTINELS, 1,
           [Defined if we're turning off memory safety code to look for bugs])
fi

115
116
117
118
119
120
AC_ARG_ENABLE(manpage,
              AS_HELP_STRING(--disable-manpage, [Disable manpage generation.]))

AC_ARG_ENABLE(html-manual,
              AS_HELP_STRING(--disable-html-manual, [Disable HTML documentation.]))

121
AC_ARG_ENABLE(asciidoc,
122
     AS_HELP_STRING(--disable-asciidoc, [don't use asciidoc (disables building of manpages)]),
123
     [case "${enableval}" in
124
125
        "yes") asciidoc=true ;;
        "no")  asciidoc=false ;;
126
127
128
        *) AC_MSG_ERROR(bad value for --disable-asciidoc) ;;
      esac], [asciidoc=true])

129
130
# systemd notify support
AC_ARG_ENABLE(systemd,
131
      AS_HELP_STRING(--enable-systemd, [enable systemd notification support]),
132
      [case "${enableval}" in
133
134
        "yes") systemd=true ;;
        "no")  systemd=false ;;
135
136
137
        * ) AC_MSG_ERROR(bad value for --enable-systemd) ;;
      esac], [systemd=auto])

138
139
140
141
if test "$enable_restart_debugging" = "yes"; then
  AC_DEFINE(ENABLE_RESTART_DEBUGGING, 1,
            [Defined if we're building with support for in-process restart debugging.])
fi
142

143
144
145
146
if test "$enable_zstd_advanced_apis" != "no"; then
   AC_DEFINE(ENABLE_ZSTD_ADVANCED_APIS, 1,
             [Defined if we're going to try to use zstd's "static-only" APIs.])
fi
147
148

# systemd support
149
if test "x$enable_systemd" = "xno"; then
150
151
152
153
154
155
    have_systemd=no;
else
    PKG_CHECK_MODULES(SYSTEMD,
        [libsystemd-daemon],
        have_systemd=yes,
        have_systemd=no)
156
    if test "x$have_systemd" = "xno"; then
157
158
159
160
161
162
        AC_MSG_NOTICE([Okay, checking for systemd a different way...])
        PKG_CHECK_MODULES(SYSTEMD,
            [libsystemd],
            have_systemd=yes,
            have_systemd=no)
    fi
163
164
fi

165
if test "x$have_systemd" = "xyes"; then
166
    AC_DEFINE(HAVE_SYSTEMD,1,[Have systemd])
167
    TOR_SYSTEMD_CFLAGS="${SYSTEMD_CFLAGS}"
168
    TOR_SYSTEMD_LIBS="${SYSTEMD_LIBS}"
169
    PKG_CHECK_MODULES(LIBSYSTEMD209, [libsystemd >= 209],
170
         [AC_DEFINE(HAVE_SYSTEMD_209,1,[Have systemd v209 or more])], [])
171
fi
172
AC_SUBST(TOR_SYSTEMD_CFLAGS)
173
174
AC_SUBST(TOR_SYSTEMD_LIBS)

175
if test "x$enable_systemd" = "xyes" -a "x$have_systemd" != "xyes" ; then
176
    AC_MSG_ERROR([Explicitly requested systemd support, but systemd not found, $pkg_config_user_action])
177
178
fi

179
case "$host" in
180
181
182
183
184
   *-*-solaris* )
     AC_DEFINE(_REENTRANT, 1, [Define on some platforms to activate x_r() functions in time.h])
     ;;
esac

185
AC_ARG_ENABLE(gcc-warnings,
186
187
188
     AS_HELP_STRING(--enable-gcc-warnings, [deprecated alias for enable-fatal-warnings]))
AC_ARG_ENABLE(fatal-warnings,
     AS_HELP_STRING(--enable-fatal-warnings, [tell the compiler to treat all warnings as errors.]))
189
AC_ARG_ENABLE(gcc-warnings-advisory,
190
     AS_HELP_STRING(--disable-gcc-warnings-advisory, [disable the regular verbose warnings]))
191

192
193
dnl Others suggest '/gs /safeseh /nxcompat /dynamicbase' for non-gcc on Windows
AC_ARG_ENABLE(gcc-hardening,
194
    AS_HELP_STRING(--disable-gcc-hardening, [disable compiler security checks]))
195

196
dnl Deprecated --enable-expensive-hardening but keep it for now for backward compat.
197
AC_ARG_ENABLE(expensive-hardening,
198
199
200
201
202
    AS_HELP_STRING(--enable-expensive-hardening, [enable more fragile and expensive compiler hardening; makes Tor slower]))
AC_ARG_ENABLE(fragile-hardening,
    AS_HELP_STRING(--enable-fragile-hardening, [enable more fragile and expensive compiler hardening; makes Tor slower]))
if test "x$enable_expensive_hardening" = "xyes" || test "x$enable_fragile_hardening" = "xyes"; then
  fragile_hardening="yes"
203
  AC_DEFINE(DEBUG_SMARTLIST, 1, [Enable smartlist debugging])
204
fi
205

206
207
208
dnl Linker hardening options
dnl Currently these options are ELF specific - you can't use this with MacOSX
AC_ARG_ENABLE(linker-hardening,
209
    AS_HELP_STRING(--disable-linker-hardening, [disable linker security fixups]))
210

211
AC_ARG_ENABLE(local-appdata,
212
   AS_HELP_STRING(--enable-local-appdata, [default to host local application data paths on Windows]))
213
214
215
216
217
if test "$enable_local_appdata" = "yes"; then
  AC_DEFINE(ENABLE_LOCAL_APPDATA, 1,
            [Defined if we default to host local appdata paths on Windows])
fi

218
AC_ARG_ENABLE(tool-name-check,
219
     AS_HELP_STRING(--disable-tool-name-check, [check for sanely named toolchain when cross-compiling]))
220

221
AC_ARG_ENABLE(seccomp,
222
     AS_HELP_STRING(--disable-seccomp, [do not attempt to use libseccomp]))
223

224
AC_ARG_ENABLE(libscrypt,
225
     AS_HELP_STRING(--disable-libscrypt, [do not attempt to use libscrypt]))
226

227
228
229
230
231
232
233
234
235
236
dnl Enable event tracing which are transformed to debug log statement.
AC_ARG_ENABLE(event-tracing-debug,
     AS_HELP_STRING(--enable-event-tracing-debug, [build with event tracing to debug log]))
AM_CONDITIONAL([USE_EVENT_TRACING_DEBUG], [test "x$enable_event_tracing_debug" = "xyes"])

if test x$enable_event_tracing_debug = xyes; then
  AC_DEFINE([USE_EVENT_TRACING_DEBUG], [1], [Tracing framework to log debug])
  AC_DEFINE([TOR_EVENT_TRACING_ENABLED], [1], [Compile the event tracing instrumentation])
fi

237
238
239
240
241
242
243
244
245
246
247
248
249
250
dnl Enable Android only features.
AC_ARG_ENABLE(android,
     AS_HELP_STRING(--enable-android, [build with Android features enabled]))
AM_CONDITIONAL([USE_ANDROID], [test "x$enable_android" = "xyes"])

if test "x$enable_android" = "xyes"; then
  AC_DEFINE([USE_ANDROID], [1], [Compile with Android specific features enabled])

  dnl Check if the Android log library is available.
  AC_CHECK_HEADERS([android/log.h])
  AC_SEARCH_LIBS(__android_log_write, [log])

fi

251
252
253
254
dnl ---
dnl Tor modules options. These options are namespaced with --disable-module-XXX
dnl ---

255
256
257
dnl All our modules.
m4_define(MODULES, dirauth)

258
259
260
dnl Directory Authority module.
AC_ARG_ENABLE([module-dirauth],
              AS_HELP_STRING([--disable-module-dirauth],
261
                             [Build tor without the Directory Authority module: tor can not run as an authority]),
262
263
264
265
266
              [], dnl Action if-given
              AC_DEFINE([HAVE_MODULE_DIRAUTH], [1],
                        [Compile with Directory Authority feature support]))
AM_CONDITIONAL(BUILD_MODULE_DIRAUTH, [test "x$enable_module_dirauth" != "xno"])

267
268
269
270
271
272
273
274
275
dnl Helper variables.
TOR_MODULES_ALL_ENABLED=
AC_DEFUN([ADD_MODULE], [
    MODULE=m4_toupper($1)
    TOR_MODULES_ALL_ENABLED="${TOR_MODULES_ALL_ENABLED} -DHAVE_MODULE_${MODULE}=1"
])
m4_foreach_w([module], MODULES, [ADD_MODULE([module])])
AC_SUBST(TOR_MODULES_ALL_ENABLED)

276
277
278
279
280
281
282
283
284
dnl check for the correct "ar" when cross-compiling.
dnl   (AM_PROG_AR was new in automake 1.11.2, which we do not yet require,
dnl    so kludge up a replacement for the case where it isn't there yet.)
m4_ifdef([AM_PROG_AR],
         [AM_PROG_AR],
         [AN_MAKEVAR([AR], [AC_PROG_AR])
          AN_PROGRAM([ar], [AC_PROG_AR])
          AC_DEFUN([AC_PROG_AR], [AC_CHECK_TOOL([AR], [ar], [:])])
          AC_PROG_AR])
285

286
287
288
289
290
291
dnl Check whether the above macro has settled for a simply named tool even
dnl though we're cross compiling. We must do this before running AC_PROG_CC,
dnl because that will find any cc on the system, not only the cross-compiler,
dnl and then verify that a binary built with this compiler runs on the
dnl build system. It will then come to the false conclusion that we're not
dnl cross-compiling.
292
293
if test "x$enable_tool_name_check" != "xno"; then
    if test "x$ac_tool_warned" = "xyes"; then
294
        AC_MSG_ERROR([We are cross compiling but could not find a properly named toolchain. Do you have your cross-compiling toolchain in PATH? (You can --disable-tool-name-check to ignore this.)])
295
	elif test "x$ac_ct_AR" != "x" -a "x$cross_compiling" = "xmaybe"; then
296
297
298
299
		AC_MSG_ERROR([We think we are cross compiling but could not find a properly named toolchain. Do you have your cross-compiling toolchain in PATH? (You can --disable-tool-name-check to ignore this.)])
	fi
fi

300
AC_PROG_CC
301
AC_PROG_CPP
302
303
AC_PROG_MAKE_SET
AC_PROG_RANLIB
304
AC_PROG_SED
305

306
307
308
AC_ARG_VAR([PERL], [path to Perl binary])
AC_CHECK_PROGS([PERL], [perl])
AM_CONDITIONAL(USE_PERL, [test "x$ac_cv_prog_PERL" != "x"])
309

310
311
dnl check for asciidoc and a2x
AC_PATH_PROG([ASCIIDOC], [asciidoc], none)
312
AC_PATH_PROGS([A2X], [a2x a2x.py], none)
313

314
AM_CONDITIONAL(USE_ASCIIDOC, test "x$asciidoc" = "xtrue")
315
316
AM_CONDITIONAL(BUILD_MANPAGE, [test "x$enable_manpage" != "xno"])
AM_CONDITIONAL(BUILD_HTML_DOCS, [test "x$enable_html_manual" != "xno"])
317

318
AM_PROG_CC_C_O
319
AC_PROG_CC_C99
320

321
AC_ARG_VAR([PYTHON], [path to Python binary])
322
323
324
325
326
AC_CHECK_PROGS(PYTHON, [ \
	python3 \
	python3.8 python3.7 python3.6 python3.5 python3.4 \
	python \
	python2 python2.7])
327
328
329
330
331
if test "x$PYTHON" = "x"; then
  AC_MSG_WARN([Python unavailable; some tests will not be run.])
fi
AM_CONDITIONAL(USEPYTHON, [test "x$PYTHON" != "x"])

332
dnl List all external rust crates we depend on here. Include the version
333
334
335
336
rust_crates=" \
    digest-0.7.2 \
    libc-0.2.39 \
"
337
AC_SUBST(rust_crates)
338

339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
ifdef([AC_C_FLEXIBLE_ARRAY_MEMBER], [
AC_C_FLEXIBLE_ARRAY_MEMBER
], [
 dnl Maybe we've got an old autoconf...
 AC_CACHE_CHECK([for flexible array members],
     tor_cv_c_flexarray,
     [AC_COMPILE_IFELSE(
       AC_LANG_PROGRAM([
 struct abc { int a; char b[]; };
], [
 struct abc *def = malloc(sizeof(struct abc)+sizeof(char));
 def->b[0] = 33;
]),
  [tor_cv_c_flexarray=yes],
  [tor_cv_c_flexarray=no])])
354
 if test "$tor_cv_flexarray" = "yes"; then
355
   AC_DEFINE([FLEXIBLE_ARRAY_MEMBER], [], [Define to nothing if C supports flexible array members, and to 1 if it does not.])
356
 else
357
   AC_DEFINE([FLEXIBLE_ARRAY_MEMBER], [1], [Define to nothing if C supports flexible array members, and to 1 if it does not.])
358
359
360
 fi
])

361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
AC_CACHE_CHECK([for working C99 mid-block declaration syntax],
      tor_cv_c_c99_decl,
      [AC_COMPILE_IFELSE(
         [AC_LANG_PROGRAM([], [int x; x = 3; int y; y = 4 + x;])],
	 [tor_cv_c_c99_decl=yes],
	 [tor_cv_c_c99_decl=no] )])
if test "$tor_cv_c_c99_decl" != "yes"; then
  AC_MSG_ERROR([Your compiler doesn't support c99 mid-block declarations. This is required as of Tor 0.2.6.x])
fi

AC_CACHE_CHECK([for working C99 designated initializers],
      tor_cv_c_c99_designated_init,
      [AC_COMPILE_IFELSE(
         [AC_LANG_PROGRAM([struct s { int a; int b; };],
  	       [[ struct s ss = { .b = 5, .a = 6 }; ]])],
	 [tor_cv_c_c99_designated_init=yes],
	 [tor_cv_c_c99_designated_init=no] )])

if test "$tor_cv_c_c99_designated_init" != "yes"; then
  AC_MSG_ERROR([Your compiler doesn't support c99 designated initializers. This is required as of Tor 0.2.6.x])
fi

383
384
TORUSER=_tor
AC_ARG_WITH(tor-user,
385
        AS_HELP_STRING(--with-tor-user=NAME, [specify username for tor daemon]),
386
387
388
389
390
391
392
393
        [
           TORUSER=$withval
        ]
)
AC_SUBST(TORUSER)

TORGROUP=_tor
AC_ARG_WITH(tor-group,
394
        AS_HELP_STRING(--with-tor-group=NAME, [specify group name for tor daemon]),
395
396
397
398
399
400
        [
           TORGROUP=$withval
        ]
)
AC_SUBST(TORGROUP)

401

402
dnl If _WIN32 is defined and non-zero, we are building for win32
403
AC_MSG_CHECKING([for win32])
404
AC_RUN_IFELSE([AC_LANG_SOURCE([
405
int main(int c, char **v) {
406
407
#ifdef _WIN32
#if _WIN32
408
409
410
411
412
413
414
  return 0;
#else
  return 1;
#endif
#else
  return 2;
#endif
415
}])],
416
bwin32=true; AC_MSG_RESULT([yes]),
417
418
bwin32=false; AC_MSG_RESULT([no]),
bwin32=cross; AC_MSG_RESULT([cross])
419
420
)

421
if test "$bwin32" = "cross"; then
422
AC_MSG_CHECKING([for win32 (cross)])
423
AC_COMPILE_IFELSE([AC_LANG_SOURCE([
424
#ifdef _WIN32
425
426
427
428
429
int main(int c, char **v) {return 0;}
#else
#error
int main(int c, char **v) {return x(y);}
#endif
430
])],
431
432
433
434
bwin32=true; AC_MSG_RESULT([yes]),
bwin32=false; AC_MSG_RESULT([no]))
fi

435
436
437
438
439
440
441
442
443
444
445
446
447
448
449
450
451
452
453
AH_BOTTOM([
#ifdef _WIN32
/* Defined to access windows functions and definitions for >=WinXP */
# ifndef WINVER
#  define WINVER 0x0501
# endif

/* Defined to access _other_ windows functions and definitions for >=WinXP */
# ifndef _WIN32_WINNT
#  define _WIN32_WINNT 0x0501
# endif

/* Defined to avoid including some windows headers as part of Windows.h */
# ifndef WIN32_LEAN_AND_MEAN
#  define WIN32_LEAN_AND_MEAN 1
# endif
#endif
])

454
AM_CONDITIONAL(WIN32, test "x$bwin32" = "xtrue")
455
AM_CONDITIONAL(BUILD_NT_SERVICES, test "x$bwin32" = "xtrue")
456
AM_CONDITIONAL(BUILD_LIBTORRUNNER, test "x$bwin32" != "xtrue")
457

458
459
dnl Enable C99 when compiling with MIPSpro
AC_MSG_CHECKING([for MIPSpro compiler])
460
AC_COMPILE_IFELSE([AC_LANG_PROGRAM(, [
461
462
463
464
#if (defined(__sgi) && defined(_COMPILER_VERSION))
#error
  return x(y);
#endif
465
])],
466
bmipspro=false; AC_MSG_RESULT(no),
467
bmipspro=true; AC_MSG_RESULT(yes))
468

469
if test "$bmipspro" = "true"; then
470
471
472
  CFLAGS="$CFLAGS -c99"
fi

473
474
AC_C_BIGENDIAN

Alex Xu's avatar
Alex Xu committed
475
476
AC_ARG_VAR([TOR_RUST_TARGET], [Rust target, must be specified when cross-compiling (HOST != BUILD). example: i686-pc-windows-gnu])

477
478
479
480
481
482
483
484
485
486
487
488
489
490
if test "x$enable_rust" = "xyes"; then
  AC_ARG_VAR([RUSTC], [path to the rustc binary])
  AC_CHECK_PROG([RUSTC], [rustc], [rustc],[no])
  if test "x$RUSTC" = "xno"; then
    AC_MSG_ERROR([rustc unavailable but rust integration requested.])
  fi

  AC_ARG_VAR([CARGO], [path to the cargo binary])
  AC_CHECK_PROG([CARGO], [cargo], [cargo],[no])
  if test "x$CARGO" = "xno"; then
    AC_MSG_ERROR([cargo unavailable but rust integration requested.])
  fi

  AC_DEFINE([HAVE_RUST], 1, [have Rust])
491
492
493
494
495
  if test "x$enable_fatal_warnings" = "xyes"; then
    RUST_WARN=
  else
    RUST_WARN=#
  fi
496
497
498
499
500
501
502
503
504
505
  if test "x$enable_cargo_online_mode" = "xyes"; then
    CARGO_ONLINE=
    RUST_DL=#
  else
    CARGO_ONLINE=--frozen
    RUST_DL=

    dnl When we're not allowed to touch the network, we need crate dependencies
    dnl locally available.
    AC_MSG_CHECKING([rust crate dependencies])
506
507
    AC_ARG_VAR([TOR_RUST_DEPENDENCIES], [path to directory with local crate mirror])
    if test "x$TOR_RUST_DEPENDENCIES" = "x"; then
508
      TOR_RUST_DEPENDENCIES="${srcdir}/src/ext/rust/crates"
509
    fi
510
    dnl Check whether the path exists before we try to cd into it.
511
512
    if test ! -d "$TOR_RUST_DEPENDENCIES"; then
      AC_MSG_ERROR([Rust dependency directory $TOR_RUST_DEPENDENCIES does not exist. Specify a dependency directory using the TOR_RUST_DEPENDENCIES variable or allow cargo to fetch crates using --enable-cargo-online-mode.])
513
      ERRORED=1
514
    fi
515
516
517
518
    dnl Make the path absolute, since we'll be using it from within a
    dnl subdirectory.
    TOR_RUST_DEPENDENCIES=$(cd "$TOR_RUST_DEPENDENCIES" ; pwd)

519
    for dep in $rust_crates; do
520
521
      if test ! -d "$TOR_RUST_DEPENDENCIES"/"$dep"; then
        AC_MSG_ERROR([Failure to find rust dependency $TOR_RUST_DEPENDENCIES/$dep. Specify a dependency directory using the TOR_RUST_DEPENDENCIES variable or allow cargo to fetch crates using --enable-cargo-online-mode.])
522
        ERRORED=1
523
524
      fi
    done
525
526
527
    if test "x$ERRORED" = "x"; then
      AC_MSG_RESULT([yes])
    fi
528
529
530
531
532
  fi

  dnl For now both MSVC and MinGW rust libraries will output static libs with
  dnl the MSVC naming convention.
  if test "$bwin32" = "true"; then
Alex Xu's avatar
Alex Xu committed
533
    tor_rust_static_name=tor_rust.lib
534
  else
Alex Xu's avatar
Alex Xu committed
535
536
537
538
539
540
541
542
543
544
545
546
547
548
549
550
551
    tor_rust_static_name=libtor_rust.a
  fi

  AC_CANONICAL_BUILD

  if test -n "$TOR_RUST_TARGET"; then
    if test "$host" = "$build"; then
      AC_MSG_ERROR([HOST = BUILD is invalid if TOR_RUST_TARGET is specified, see configure --help for more information.])
    fi
    RUST_TARGET_PROP="target = '$TOR_RUST_TARGET'"
    TOR_RUST_LIB_PATH="src/rust/target/$TOR_RUST_TARGET/release/$tor_rust_static_name"
  else
    if test "$host" != "$build"; then
      AC_MSG_ERROR([TOR_RUST_TARGET must be specified when cross-compiling with Rust enabled.])
    fi
    RUST_TARGET_PROP=
    TOR_RUST_LIB_PATH="src/rust/target/release/$tor_rust_static_name"
552
553
  fi

Alex Xu's avatar
Alex Xu committed
554
555
  AC_SUBST(RUST_TARGET_PROP)
  AC_SUBST(TOR_RUST_LIB_PATH)
556
  AC_SUBST(CARGO_ONLINE)
557
  AC_SUBST(RUST_WARN)
558
559
560
561
  AC_SUBST(RUST_DL)

  dnl Let's check the rustc version, too
  AC_MSG_CHECKING([rust version])
562
  RUSTC_VERSION=`$RUSTC --version`
563
564
565
566
567
  RUSTC_VERSION_MAJOR=`$RUSTC --version | cut -d ' ' -f 2 | cut -d '.' -f 1`
  RUSTC_VERSION_MINOR=`$RUSTC --version | cut -d ' ' -f 2 | cut -d '.' -f 2`
  if test "x$RUSTC_VERSION_MAJOR" = "x" -o "x$RUSTC_VERSION_MINOR" = "x"; then
    AC_MSG_ERROR([rustc version couldn't be identified])
  fi
568
569
  if test "$RUSTC_VERSION_MAJOR" -lt 2 -a "$RUSTC_VERSION_MINOR" -lt 31; then
    AC_MSG_ERROR([rustc must be at least version 1.31.0])
570
  fi
571
  AC_MSG_RESULT([$RUSTC_VERSION])
572
573
fi

574
AC_SEARCH_LIBS(socket, [socket network])
575
AC_SEARCH_LIBS(gethostbyname, [nsl])
576
AC_SEARCH_LIBS(dlopen, [dl])
577
AC_SEARCH_LIBS(inet_aton, [resolv])
578
AC_SEARCH_LIBS(backtrace, [execinfo])
579
580
581
582
583
584
saved_LIBS="$LIBS"
AC_SEARCH_LIBS([clock_gettime], [rt])
if test "$LIBS" != "$saved_LIBS"; then
   # Looks like we need -lrt for clock_gettime().
   have_rt=yes
fi
585

586
587
588
589
if test "$bwin32" = "false"; then
  AC_SEARCH_LIBS(pthread_create, [pthread])
  AC_SEARCH_LIBS(pthread_detach, [pthread])
fi
590

591
592
AM_CONDITIONAL(THREADS_WIN32, test "$bwin32" = "true")
AM_CONDITIONAL(THREADS_PTHREADS, test "$bwin32" = "false")
593

594
AC_CHECK_FUNCS(
Nick Mathewson's avatar
Nick Mathewson committed
595
	_NSGetEnviron \
596
597
	RtlSecureZeroMemory \
	SecureZeroMemory \
Nick Mathewson's avatar
Nick Mathewson committed
598
599
600
	accept4 \
	backtrace \
	backtrace_symbols_fd \
601
	eventfd \
602
	explicit_bzero \
603
	timingsafe_memcmp \
Nick Mathewson's avatar
Nick Mathewson committed
604
605
606
607
	flock \
	ftime \
	get_current_dir_name \
	getaddrinfo \
608
	getdelim \
Nick Mathewson's avatar
Nick Mathewson committed
609
	getifaddrs \
610
	getline \
Nick Mathewson's avatar
Nick Mathewson committed
611
612
613
614
	getpass \
	getrlimit \
	gettimeofday \
	gmtime_r \
615
	gnu_get_libc_version \
616
	htonll \
Nick Mathewson's avatar
Nick Mathewson committed
617
618
619
620
621
622
	inet_aton \
	ioctl \
	issetugid \
	llround \
	localtime_r \
	lround \
623
	madvise \
Nick Mathewson's avatar
Nick Mathewson committed
624
625
	memmem \
	memset_s \
626
	minherit \
Nick Mathewson's avatar
Nick Mathewson committed
627
	mmap \
628
629
	pipe \
	pipe2 \
Nick Mathewson's avatar
Nick Mathewson committed
630
	prctl \
631
	readpassphrase \
Nick Mathewson's avatar
Nick Mathewson committed
632
633
634
	rint \
	sigaction \
	socketpair \
635
	statvfs \
Nick Mathewson's avatar
Nick Mathewson committed
636
637
638
639
	strncasecmp \
	strcasecmp \
	strlcat \
	strlcpy \
640
	strnlen \
Nick Mathewson's avatar
Nick Mathewson committed
641
642
643
644
	strptime \
	strtok_r \
	strtoull \
	sysconf \
645
	sysctl \
Nick Mathewson's avatar
Nick Mathewson committed
646
	truncate \
Nick Mathewson's avatar
Nick Mathewson committed
647
	uname \
648
	usleep \
Nick Mathewson's avatar
Nick Mathewson committed
649
	vasprintf \
650
	_vscprintf
651
)
652

653
# Apple messed up when they added some functions: they
654
# forgot to decorate them with appropriate AVAILABLE_MAC_OS_VERSION
655
656
657
658
659
660
661
662
663
664
665
666
667
668
669
670
671
672
673
674
675
676
677
678
679
680
681
682
# checks.

# We should only probe for these functions if we are sure that we
# are not targeting OS X 10.9 or earlier.
AC_MSG_CHECKING([for a pre-Yosemite OS X build target])
AC_COMPILE_IFELSE([AC_LANG_PROGRAM([[
#ifdef __APPLE__
#  include <AvailabilityMacros.h>
#  ifndef MAC_OS_X_VERSION_10_10
#    define MAC_OS_X_VERSION_10_10 101000
#  endif
#  if defined(MAC_OS_X_VERSION_MIN_REQUIRED)
#    if MAC_OS_X_VERSION_MIN_REQUIRED < MAC_OS_X_VERSION_10_10
#      error "Running on Mac OS X 10.9 or earlier"
#    endif
#  endif
#endif
]], [[]])],
   [on_macos_pre_10_10=no ; AC_MSG_RESULT([no])],
   [on_macos_pre_10_10=yes; AC_MSG_RESULT([yes])])

if test "$on_macos_pre_10_10" = "no"; then
  AC_CHECK_FUNCS(
        mach_approximate_time \
  )
fi

# We should only probe for these functions if we are sure that we
683
# are not targeting OSX 10.11 or earlier.
684
AC_MSG_CHECKING([for a pre-Sierra OSX build target])
685
AC_COMPILE_IFELSE([AC_LANG_PROGRAM([[
686
687
#ifdef __APPLE__
#  include <AvailabilityMacros.h>
688
689
#  ifndef MAC_OS_X_VERSION_10_12
#    define MAC_OS_X_VERSION_10_12 101200
690
691
#  endif
#  if defined(MAC_OS_X_VERSION_MIN_REQUIRED)
692
#    if MAC_OS_X_VERSION_MIN_REQUIRED < MAC_OS_X_VERSION_10_12
693
694
695
696
#      error "Running on Mac OSX 10.11 or earlier"
#    endif
#  endif
#endif
697
]], [[]])],
698
699
700
701
702
703
704
705
706
707
   [on_macos_pre_10_12=no ; AC_MSG_RESULT([no])],
   [on_macos_pre_10_12=yes; AC_MSG_RESULT([yes])])

if test "$on_macos_pre_10_12" = "no"; then
  AC_CHECK_FUNCS(
        clock_gettime \
        getentropy \
  )
fi

708
if test "$bwin32" != "true"; then
709
710
  AC_CHECK_HEADERS(pthread.h)
  AC_CHECK_FUNCS(pthread_create)
711
  AC_CHECK_FUNCS(pthread_condattr_setclock)
712
713
fi

714
if test "$bwin32" = "true"; then
715
716
717
718
719
720
721
  AC_CHECK_DECLS([SecureZeroMemory, _getwch], , , [
#include <windows.h>
#include <conio.h>
#include <wchar.h>
                 ])
fi

722
723
AM_CONDITIONAL(BUILD_READPASSPHRASE_C,
  test "x$ac_cv_func_readpassphrase" = "xno" && test "$bwin32" = "false")
724

725
726
727
728
729
730
731
732
733
734
735
736
737
738
739
AC_MSG_CHECKING([whether free(NULL) works])
AC_RUN_IFELSE([AC_LANG_PROGRAM([
  #include <stdlib.h>
], [
char *p = NULL;
free(p);
])],
[free_null_ok=true; AC_MSG_RESULT(yes)],
[free_null_ok=false; AC_MSG_RESULT(no)],
[free_null_ok=cross; AC_MSG_RESULT(cross)])

if test "$free_null_ok" = "false"; then
   AC_MSG_ERROR([Your libc implementation doesn't allow free(NULL), as required by C99.])
fi

740
dnl ------------------------------------------------------
741
dnl Where do you live, libevent?  And how do we call you?
742

743
if test "$bwin32" = "true"; then
744
  TOR_LIB_WS32=-lws2_32
745
  TOR_LIB_IPHLPAPI=-liphlpapi
746
747
  # Some of the cargo-cults recommend -lwsock32 as well, but I don't
  # think it's actually necessary.
748
  TOR_LIB_GDI=-lgdi32
749
  TOR_LIB_USERENV=-luserenv
Nick Mathewson's avatar
   
Nick Mathewson committed
750
else
751
752
  TOR_LIB_WS32=
  TOR_LIB_GDI=
753
  TOR_LIB_USERENV=
Nick Mathewson's avatar
   
Nick Mathewson committed
754
fi
755
756
AC_SUBST(TOR_LIB_WS32)
AC_SUBST(TOR_LIB_GDI)
757
AC_SUBST(TOR_LIB_IPHLPAPI)
758
AC_SUBST(TOR_LIB_USERENV)
Nick Mathewson's avatar
   
Nick Mathewson committed
759

760
tor_libevent_pkg_redhat="libevent"
761
tor_libevent_pkg_debian="libevent-dev"
762
763
764
tor_libevent_devpkg_redhat="libevent-devel"
tor_libevent_devpkg_debian="libevent-dev"

765
766
767
768
dnl On Gnu/Linux or any place we require it, we'll add librt to the Libevent
dnl linking for static builds.
STATIC_LIBEVENT_FLAGS=""
if test "$enable_static_libevent" = "yes"; then
769
    if test "$have_rt" = "yes"; then
770
771
772
773
774
      STATIC_LIBEVENT_FLAGS=" -lrt "
    fi
fi

TOR_SEARCH_LIBRARY(libevent, $trylibeventdir, [-levent $STATIC_LIBEVENT_FLAGS $TOR_LIB_WS32], [
775
#ifdef _WIN32
776
777
#include <winsock2.h>
#endif
778
#include <sys/time.h>
Roger Dingledine's avatar
Roger Dingledine committed
779
#include <sys/types.h>
780
#include <event2/event.h>], [
781
#ifdef _WIN32
782
783
#include <winsock2.h>
#endif
784
struct event_base;
785
786
struct event_base *event_base_new(void);
void event_base_free(struct event_base *);],
787
    [
788
#ifdef _WIN32
789
{WSADATA d; WSAStartup(0x101,&d); }
790
#endif
Alex Xu's avatar
Alex Xu committed
791
event_base_free(event_base_new());
792
], [--with-libevent-dir], [/opt/libevent])
793

794
dnl Determine the incantation needed to link libevent.
795
796
save_LIBS="$LIBS"
save_LDFLAGS="$LDFLAGS"
797
save_CPPFLAGS="$CPPFLAGS"
798
799

LIBS="$STATIC_LIBEVENT_FLAGS $TOR_LIB_WS32 $save_LIBS"
800
LDFLAGS="$TOR_LDFLAGS_libevent $LDFLAGS"
801
CPPFLAGS="$TOR_CPPFLAGS_libevent $CPPFLAGS"
802

803
804
AC_CHECK_HEADERS(event2/event.h event2/dns.h event2/bufferevent_ssl.h)

805
806
807
808
if test "$enable_static_libevent" = "yes"; then
   if test "$tor_cv_library_libevent_dir" = "(system)"; then
     AC_MSG_ERROR("You must specify an explicit --with-libevent-dir=x option when using --enable-static-libevent")
   else
809
     TOR_LIBEVENT_LIBS="$TOR_LIBDIR_libevent/libevent.a $STATIC_LIBEVENT_FLAGS"
810
811
   fi
else
812
     if test "x$ac_cv_header_event2_event_h" = "xyes"; then
Nick Mathewson's avatar
Nick Mathewson committed
813
814
       AC_SEARCH_LIBS(event_new, [event event_core], , AC_MSG_ERROR("libevent2 is installed but linking it failed while searching for event_new"))
       AC_SEARCH_LIBS(evdns_base_new, [event event_extra], , AC_MSG_ERROR("libevent2 is installed but linking it failed while searching for evdns_base_new"))
815

816
       if test "$ac_cv_search_event_new" != "none required"; then
817
818
         TOR_LIBEVENT_LIBS="$ac_cv_search_event_new"
       fi
819
       if test "$ac_cv_search_evdns_base_new" != "none required"; then
820
821
822
         TOR_LIBEVENT_LIBS="$ac_cv_search_evdns_base_new $TOR_LIBEVENT_LIBS"
       fi
     else
823
       AC_MSG_ERROR("libevent2 is required but the headers could not be found")
824
     fi
825
826
fi

827
828
829
dnl Now check for particular libevent functions.
AC_CHECK_FUNCS([evutil_secure_rng_set_urandom_device_file \
                evutil_secure_rng_add_bytes \
830
831
                evdns_base_get_nameserver_addr \

832
833
])

834
835
836
837
LIBS="$save_LIBS"
LDFLAGS="$save_LDFLAGS"
CPPFLAGS="$save_CPPFLAGS"

838
839
840
841
842
dnl Check that libevent is at least at version 2.0.10, the first stable
dnl release of its series
CPPFLAGS="$CPPFLAGS $TOR_CPPFLAGS_libevent"
AC_MSG_CHECKING([whether Libevent is new enough])
AC_COMPILE_IFELSE([AC_LANG_SOURCE([
843
#include <event2/event.h>
844
#if !defined(LIBEVENT_VERSION_NUMBER) || LIBEVENT_VERSION_NUMBER < 0x02000a00
845
846
847
848
849
#error
int x = y(zz);
#else
int x = 1;
#endif
850
851
852
853
854
855
856
857
])], [ AC_MSG_RESULT([yes]) ],
   [ AC_MSG_RESULT([no])
     AC_MSG_ERROR([Libevent is not new enough.  We require 2.0.10-stable or later]) ] )

LIBS="$save_LIBS"
LDFLAGS="$save_LDFLAGS"
CPPFLAGS="$save_CPPFLAGS"

858
AC_SUBST(TOR_LIBEVENT_LIBS)
859

860
861
862
863
864
865
866
dnl ------------------------------------------------------
dnl Where do you live, libm?

dnl On some platforms (Haiku/BeOS) the math library is
dnl part of libroot. In which case don't link against lm
TOR_LIB_MATH=""
save_LIBS="$LIBS"
867
868
869
AC_SEARCH_LIBS(pow, [m], , AC_MSG_ERROR([Could not find pow in libm or libc.]))
if test "$ac_cv_search_pow" != "none required"; then
    TOR_LIB_MATH="$ac_cv_search_pow"
870
871
872
873
fi
LIBS="$save_LIBS"
AC_SUBST(TOR_LIB_MATH)

874
875
876
877
878
879
dnl ------------------------------------------------------
dnl Hello, NSS.  You're new around here.
if test "x$enable_nss" = "xyes"; then
  PKG_CHECK_MODULES(NSS,
     [nss],
     [have_nss=yes],
880
     [have_nss=no; AC_MSG_ERROR([You asked for NSS but I can't find it, $pkg_config_user_action])])
881
882
883
884
  AC_SUBST(NSS_CFLAGS)
  AC_SUBST(NSS_LIBS)
fi

885
dnl ------------------------------------------------------
886
dnl Where do you live, openssl?  And how do we call you?
887

888
889
if test "x$enable_nss" != "xyes"; then

890
tor_openssl_pkg_redhat="openssl"
891
tor_openssl_pkg_debian="libssl-dev"
892
893
894
tor_openssl_devpkg_redhat="openssl-devel"
tor_openssl_devpkg_debian="libssl-dev"

895
896
ALT_openssl_WITHVAL=""
AC_ARG_WITH(ssl-dir,
897
  AS_HELP_STRING(--with-ssl-dir=PATH, [obsolete alias for --with-openssl-dir]),
898
  [
899
      if test "x$withval" != "xno" && test "x$withval" != "x"; then
900
901
902
903
         ALT_openssl_WITHVAL="$withval"
      fi
  ])

904
AC_MSG_NOTICE([Now, we'll look for OpenSSL >= 1.0.1])
905
TOR_SEARCH_LIBRARY(openssl, $tryssldir, [-lssl -lcrypto $TOR_LIB_GDI $TOR_LIB_WS32],
906
907
908
909
910
911
912
913
914
915
916
917
    [#include <openssl/ssl.h>
     char *getenv(const char *);],
    [struct ssl_cipher_st;
     unsigned SSL_CIPHER_get_id(const struct ssl_cipher_st *);
     char *getenv(const char *);],
    dnl This funny-looking test program calls getenv, so that the compiler
    dnl will neither make code that call SSL_CIPHER_get_id(NULL) [producing
    dnl a crash], nor optimize out the call to SSL_CIPHER_get_id().
    dnl We look for SSL_cipher_get_id() because it is present in
    dnl OpenSSL >=1.0.1, because it is not deprecated, and because Tor
    dnl depends on it.
    [if (getenv("THIS_SHOULDNT_BE_SET_X201803")) SSL_CIPHER_get_id((void *)0);], [],
918
    [/usr/local/opt/openssl /usr/local/openssl /usr/lib/openssl /usr/local/ssl /usr/lib/ssl /usr/local /opt/openssl])
919

920
921
dnl XXXX check for OPENSSL_VERSION_NUMBER == SSLeay()

922
923
924
925
if test "$enable_static_openssl" = "yes"; then
   if test "$tor_cv_library_openssl_dir" = "(system)"; then
     AC_MSG_ERROR("You must specify an explicit --with-openssl-dir=x option when using --enable-static-openssl")
   else
926
     TOR_OPENSSL_LIBS="$TOR_LIBDIR_openssl/libssl.a $TOR_LIBDIR_openssl/libcrypto.a"
927
928
   fi
else
929
     TOR_OPENSSL_LIBS="-lssl -lcrypto"
930
931
932
fi
AC_SUBST(TOR_OPENSSL_LIBS)

933
934
935
936
937
938
939
dnl Now check for particular openssl functions.
save_LIBS="$LIBS"
save_LDFLAGS="$LDFLAGS"
save_CPPFLAGS="$CPPFLAGS"
LIBS="$TOR_OPENSSL_LIBS $LIBS"
LDFLAGS="$TOR_LDFLAGS_openssl $LDFLAGS"
CPPFLAGS="$TOR_CPPFLAGS_openssl $CPPFLAGS"
940

941
AC_COMPILE_IFELSE([AC_LANG_PROGRAM([[
942
#include <openssl/opensslv.h>
943
#if !defined(LIBRESSL_VERSION_NUMBER) && OPENSSL_VERSION_NUMBER < 0x1000100fL
944
945
#error "too old"
#endif
946
   ]], [[]])],
947
   [ : ],
948
   [ AC_MSG_ERROR([OpenSSL is too old. We require 1.0.1 or later. You can specify a path to a newer one with --with-openssl-dir.]) ])
949

950
AC_COMPILE_IFELSE([AC_LANG_PROGRAM([[
951
952
953
954
955
956
957
958
#include <openssl/opensslv.h>
#include <openssl/evp.h>
#if defined(OPENSSL_NO_EC) || defined(OPENSSL_NO_ECDH) || defined(OPENSSL_NO_ECDSA)
#error "no ECC"
#endif
#if !defined(NID_X9_62_prime256v1) || !defined(NID_secp224r1)
#error "curves unavailable"
#endif
959
   ]], [[]])],
960
   [ : ],
961
   [ AC_MSG_ERROR([OpenSSL is built without full ECC support, including curves P256 and P224. You can specify a path to one with ECC support with --with-openssl-dir.]) ])
962

963
964
965
966
AC_CHECK_MEMBERS([struct ssl_method_st.get_cipher_by_char], , ,
[#include <openssl/ssl.h>
])

967
968
969
970
dnl OpenSSL functions which we might not have.  In theory, we could just
dnl check the openssl version number, but in practice that gets pretty
dnl confusing with LibreSSL, OpenSSL, and various distributions' patches
dnl to them.
971
AC_CHECK_FUNCS([ \
972
		ERR_load_KDF_strings \
973
974
975
976
977
		EVP_PBE_scrypt \
		EVP_sha3_256 \
		SSL_CIPHER_find \
		SSL_CTX_set1_groups_list \
		SSL_CTX_set_security_level \
978
		SSL_SESSION_get_master_key \
979
980
		SSL_get_client_ciphers \
		SSL_get_client_random \
981
		SSL_get_server_random \
982
		TLS_method \
983
	       ])
rl1987's avatar
rl1987 committed
984

985
986
987
988
989
dnl Check if OpenSSL structures are opaque
AC_CHECK_MEMBERS([SSL.state], , ,
[#include <openssl/ssl.h>
])

990
991
992
993
AC_CHECK_SIZEOF(SHA_CTX, , [AC_INCLUDES_DEFAULT()
#include <openssl/sha.h>
])

994
995
fi # enable_nss

996
997
998
999
1000
1001
1002
1003
1004
dnl We will someday make KECCAK_TINY optional, but for now we still need
dnl it for SHAKE, since OpenSSL's SHAKE can't be squeezed more than
dnl once.  See comment in the definition of crypto_xof_t.

dnl AM_CONDITIONAL(BUILD_KECCAK_TINY,
dnl   test "x$ac_cv_func_EVP_sha3_256" != "xyes")

AM_CONDITIONAL(BUILD_KECCAK_TINY, true)

1005
1006
1007
dnl ======================================================================
dnl Can we use KIST?

1008
1009
1010
1011
1012
1013
1014
1015
1016
1017
1018
1019
1020
1021
1022
1023
1024
1025
1026
1027
1028
1029
1030
1031
1032
1033
1034
1035
dnl Define the set of checks for KIST scheduler support.
AC_DEFUN([CHECK_KIST_SUPPORT],[
  dnl KIST needs struct tcp_info and for certain members to exist.
  AC_CHECK_MEMBERS(
    [struct tcp_info.tcpi_unacked, struct tcp_info.tcpi_snd_mss],
    , ,[[#include <netinet/tcp.h>]])
  dnl KIST needs SIOCOUTQNSD to exist for an ioctl call.
  AC_COMPILE_IFELSE([AC_LANG_PROGRAM([], [
                     #include <linux/sockios.h>
                     #ifndef SIOCOUTQNSD
                     #error
                     #endif
                     ])], have_siocoutqnsd=yes, have_siocoutqnsd=no)
  if test "x$have_siocoutqnsd" = "xyes"; then
    if test "x$ac_cv_member_struct_tcp_info_tcpi_unacked" = "xyes"; then
      if test "x$ac_cv_member_struct_tcp_info_tcpi_snd_mss" = "xyes"; then
        have_kist_support=yes
      fi
    fi
  fi
])
dnl Now, trigger the check.
CHECK_KIST_SUPPORT
AS_IF([test "x$have_kist_support" = "xyes"],
      [AC_DEFINE(HAVE_KIST_SUPPORT, 1, [Defined if KIST scheduler is supported
                                        on this system])],
      [AC_MSG_NOTICE([KIST scheduler can't be used. Missing support.])])

1036
1037
1038
1039
LIBS="$save_LIBS"
LDFLAGS="$save_LDFLAGS"
CPPFLAGS="$save_CPPFLAGS"

1040
1041
1042
dnl ------------------------------------------------------
dnl Where do you live, zlib?  And how do we call you?

1043
1044
1045
1046
tor_zlib_pkg_redhat="zlib"
tor_zlib_pkg_debian="zlib1g"
tor_zlib_devpkg_redhat="zlib-devel"
tor_zlib_devpkg_debian="zlib1g-dev"
1047
1048
1049
1050

TOR_SEARCH_LIBRARY(zlib, $tryzlibdir, [-lz],
    [#include <zlib.h>],
    [const char * zlibVersion(void);],
1051
    [zlibVersion();], [--with-zlib-dir],
1052
1053
    [/opt/zlib])

1054
1055
1056
1057
1058
1059
1060
1061
1062
1063
1064
1065
if test "$enable_static_zlib" = "yes"; then
   if test "$tor_cv_library_zlib_dir" = "(system)"; then
     AC_MSG_ERROR("You must specify an explicit --with-zlib-dir=x option when
 using --enable-static-zlib")
   else
     TOR_ZLIB_LIBS="$TOR_LIBDIR_zlib/libz.a"
   fi
else
     TOR_ZLIB_LIBS="-lz"
fi
AC_SUBST(TOR_ZLIB_LIBS)

1066
1067
1068
1069
dnl ------------------------------------------------------
dnl Where we do we find lzma?

AC_ARG_ENABLE(lzma,
Taylor Yu's avatar
Taylor Yu committed
1070
      AS_HELP_STRING(--enable-lzma, [enable support for the LZMA compression scheme.]),
1071
1072
1073
1074
1075
1076
1077
1078
1079
1080
1081
1082
1083
1084
1085
      [case "${enableval}" in
        "yes") lzma=true ;;
        "no")  lzma=false ;;
        * ) AC_MSG_ERROR(bad value for --enable-lzma) ;;
      esac], [lzma=auto])

if test "x$enable_lzma" = "xno"; then
    have_lzma=no;
else
    PKG_CHECK_MODULES([LZMA],
                      [liblzma],
                      have_lzma=yes,
                      have_lzma=no)

    if test "x$have_lzma" = "xno" ; then
1086
        AC_MSG_WARN([Unable to find liblzma, $pkg_config_user_action])
1087
1088
1089
1090
1091
1092
1093
1094
1095
1096
1097
    fi
fi

if test "x$have_lzma" = "xyes"; then
    AC_DEFINE(HAVE_LZMA,1,[Have LZMA])
    TOR_LZMA_CFLAGS="${LZMA_CFLAGS}"
    TOR_LZMA_LIBS="${LZMA_LIBS}"
fi
AC_SUBST(TOR_LZMA_CFLAGS)
AC_SUBST(TOR_LZMA_LIBS)

1098
1099
1100
1101
1102
1103
1104
1105
1106
1107
1108
1109
1110
1111
1112
dnl ------------------------------------------------------
dnl Where we do we find zstd?

AC_ARG_ENABLE(zstd,
      AS_HELP_STRING(--enable-zstd, [enable support for the Zstandard compression scheme.]),
      [case "${enableval}" in
        "yes") zstd=true ;;
        "no")  zstd=false ;;
        * ) AC_MSG_ERROR(bad value for --enable-zstd) ;;
      esac], [zstd=auto])

if test "x$enable_zstd" = "xno"; then
    have_zstd=no;
else
    PKG_CHECK_MODULES([ZSTD],
Taylor Yu's avatar
Taylor Yu committed
1113
                      [libzstd >= 1.1],
1114
1115
1116
1117
                      have_zstd=yes,
                      have_zstd=no)

    if test "x$have_zstd" = "xno" ; then
1118
        AC_MSG_WARN([Unable to find libzstd, $pkg_config_user_action])
1119
1120
1121
1122
1123
1124
1125
    fi
fi

if test "x$have_zstd" = "xyes"; then
    AC_DEFINE(HAVE_ZSTD,1,[Have Zstd])
    TOR_ZSTD_CFLAGS="${ZSTD_CFLAGS}"
    TOR_ZSTD_LIBS="${ZSTD_LIBS}"
1126
1127
1128
1129
1130
1131
1132
1133
1134
1135

    dnl now check for zstd functions
    save_LIBS="$LIBS"
    save_CFLAGS="$CFLAGS"
    LIBS="$LIBS $ZSTD_LIBS"
    CFLAGS="$CFLAGS $ZSTD_CFLAGS"
    AC_CHECK_FUNCS(ZSTD_estimateCStreamSize \
                   ZSTD_estimateDCtxSize)
    LIBS="$save_LIBS"
    CFLAGS="$save_CFLAGS"
1136
1137
1138
1139
fi
AC_SUBST(TOR_ZSTD_CFLAGS)
AC_SUBST(TOR_ZSTD_LIBS)

1140
1141
1142
1143
1144
1145
1146
1147
1148
1149
1150
1151
1152
dnl ----------------------------------------------------------------------
dnl Check if libcap is available for capabilities.

tor_cap_pkg_debian="libcap2"
tor_cap_pkg_redhat="libcap"
tor_cap_devpkg_debian="libcap-dev"
tor_cap_devpkg_redhat="libcap-devel"

AC_CHECK_LIB([cap], [cap_init], [],
  AC_MSG_NOTICE([Libcap was not found. Capabilities will not be usable.])
)
AC_CHECK_FUNCS(cap_set_proc)

1153
1154
1155
1156
1157
dnl ---------------------------------------------------------------------
dnl Now that we know about our major libraries, we can check for compiler
dnl and linker hardening options.  We need to do this with the libraries known,
dnl since sometimes the linker will like an option but not be willing to
dnl use it with a build of a library.
1158

1159
all_ldflags_for_check="$TOR_LDFLAGS_zlib $TOR_LDFLAGS_openssl $TOR_LDFLAGS_libevent"
1160
all_libs_for_check="$TOR_ZLIB_LIBS $TOR_LIB_MATH $TOR_LIBEVENT_LIBS $TOR_OPENSSL_LIBS $TOR_SYSTEMD_LIBS $TOR_LIB_WS32 $TOR_LIB_GDI $TOR_LIB_USERENV $TOR_CAP_LIBS"
1161

1162
1163
1164
1165
1166
CFLAGS_FTRAPV=
CFLAGS_FWRAPV=
CFLAGS_ASAN=
CFLAGS_UBSAN=

Nick Mathewson's avatar
Nick Mathewson committed
1167

1168
1169
1170
1171
1172
AC_COMPILE_IFELSE([AC_LANG_PROGRAM([], [
#if !defined(__clang__)
#error
#endif])], have_clang=yes, have_clang=no)

1173
1174
1175
1176
if test "x$enable_pic" = "xyes"; then
    TOR_CHECK_CFLAGS(-fPIC)
fi

1177