configure.ac 88.8 KB
Newer Older
Roger Dingledine's avatar
Roger Dingledine committed
1
dnl Copyright (c) 2001-2004, Roger Dingledine
2
dnl Copyright (c) 2004-2006, Roger Dingledine, Nick Mathewson
Nick Mathewson's avatar
Nick Mathewson committed
3
dnl Copyright (c) 2007-2019, The Tor Project, Inc.
Nick Mathewson's avatar
Nick Mathewson committed
4
dnl See LICENSE for licensing information
5

6
AC_PREREQ([2.63])
7
AC_INIT([tor],[0.4.5.0-alpha-dev])
8
AC_CONFIG_SRCDIR([src/app/main/tor_main.c])
9
AC_CONFIG_MACRO_DIR([m4])
10

11
12
configure_flags="$*"

13
14
15
16
17
18
# DO NOT EDIT THIS DEFINITION BY HAND UNLESS YOU KNOW WHAT YOU'RE DOING.
#
# The update_versions.py script updates this definition when the
# version number changes.  Tor uses it to make sure that it
# only shuts down for missing "required protocols" when those protocols
# are listed as required by a consensus after this date.
19
AC_DEFINE(APPROX_RELEASE_DATE, ["2020-06-09"], # for 0.4.5.0-alpha-dev
20
21
          [Approximate date when this software was released. (Updated when the version changes.)])

22
23
24
# "foreign" means we don't follow GNU package layout standards
# "1.11" means we require automake version 1.11 or newer
# "subdir-objects" means put .o files in the same directory as the .c files
25
AM_INIT_AUTOMAKE([foreign 1.11 subdir-objects -Wall -Werror])
26

27
m4_ifdef([AM_SILENT_RULES], [AM_SILENT_RULES([yes])])
28
AC_CONFIG_HEADERS([orconfig.h])
29

30
AC_USE_SYSTEM_EXTENSIONS
31
32
AC_CANONICAL_HOST

33
PKG_PROG_PKG_CONFIG
34
if test "x$PKG_CONFIG" = "x" ; then
35
    pkg_config_user_action="install pkg-config, and check the PKG_CONFIG_PATH environment variable"
36
    AC_MSG_NOTICE([Some libraries need pkg-config, including systemd, nss, lzma, zstd, and custom mallocs.])
37
    AC_MSG_NOTICE([To use those libraries, $pkg_config_user_action.])
38
else
39
    pkg_config_user_action="check the PKG_CONFIG_PATH environment variable"
40
fi
41

42
43
44
45
46
if test "x$PKG_CONFIG_PATH" = "x" && test "x$prefix" != "xNONE" && test "$host" != "$build"; then
   export PKG_CONFIG_PATH=$prefix/lib/pkgconfig
   AC_MSG_NOTICE([set PKG_CONFIG_PATH=$PKG_CONFIG_PATH to support cross-compiling])
fi

47
AC_ARG_ENABLE(openbsd-malloc,
48
   AS_HELP_STRING(--enable-openbsd-malloc, [use malloc code from OpenBSD.  Linux only. Deprecated: see --with-malloc]))
49
AC_ARG_ENABLE(static-openssl,
50
   AS_HELP_STRING(--enable-static-openssl, [link against a static openssl library. Requires --with-openssl-dir]))
51
AC_ARG_ENABLE(static-libevent,
52
   AS_HELP_STRING(--enable-static-libevent, [link against a static libevent library. Requires --with-libevent-dir]))
53
AC_ARG_ENABLE(static-zlib,
54
   AS_HELP_STRING(--enable-static-zlib, [link against a static zlib library. Requires --with-zlib-dir]))
55
AC_ARG_ENABLE(static-tor,
56
   AS_HELP_STRING(--enable-static-tor, [create an entirely static Tor binary. Requires --with-openssl-dir and --with-libevent-dir and --with-zlib-dir]))
57
AC_ARG_ENABLE(unittests,
58
   AS_HELP_STRING(--disable-unittests, [don't build unit tests for Tor. Risky!]))
59
AC_ARG_ENABLE(coverage,
60
   AS_HELP_STRING(--enable-coverage, [enable coverage support in the unit-test build]))
61
62
AC_ARG_ENABLE(asserts-in-tests,
   AS_HELP_STRING(--disable-asserts-in-tests, [disable tor_assert() calls in the unit tests, for branch coverage]))
63
AC_ARG_ENABLE(system-torrc,
64
   AS_HELP_STRING(--disable-system-torrc, [don't look for a system-wide torrc file]))
Nick Mathewson's avatar
Nick Mathewson committed
65
AC_ARG_ENABLE(libfuzzer,
66
67
68
   AS_HELP_STRING(--enable-libfuzzer, [build extra fuzzers based on 'libfuzzer']))
AC_ARG_ENABLE(oss-fuzz,
   AS_HELP_STRING(--enable-oss-fuzz, [build extra fuzzers based on 'oss-fuzz' environment]))
69
70
AC_ARG_ENABLE(memory-sentinels,
   AS_HELP_STRING(--disable-memory-sentinels, [disable code that tries to prevent some kinds of memory access bugs. For fuzzing only.]))
71
72
AC_ARG_ENABLE(rust,
   AS_HELP_STRING(--enable-rust, [enable rust integration]))
73
74
AC_ARG_ENABLE(cargo-online-mode,
   AS_HELP_STRING(--enable-cargo-online-mode, [Allow cargo to make network requests to fetch crates. For builds with rust only.]))
75
76
AC_ARG_ENABLE(restart-debugging,
   AS_HELP_STRING(--enable-restart-debugging, [Build Tor with support for debugging in-process restart. Developers only.]))
77
78
AC_ARG_ENABLE(zstd-advanced-apis,
   AS_HELP_STRING(--disable-zstd-advanced-apis, [Build without support for zstd's "static-only" APIs.]))
79
80
AC_ARG_ENABLE(nss,
   AS_HELP_STRING(--enable-nss, [Use Mozilla's NSS TLS library. (EXPERIMENTAL)]))
81
82
AC_ARG_ENABLE(pic,
   AS_HELP_STRING(--enable-pic, [Build Tor's binaries as position-independent code, suitable to link as a library.]))
83

84
AC_ARG_ENABLE(missing-doc-warnings,
85
   AS_HELP_STRING(--enable-missing-doc-warnings, [Tell doxygen to warn about missing documentation. Makes doxygen warnings nonfatal.]))
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101

if test "$enable_missing_doc_warnings" = "yes"; then
   DOXYGEN_FATAL_WARNINGS=NO
   DOXYGEN_WARN_ON_MISSING=YES
elif test "$enable_fatal_warnings" = "yes"; then
   # Fatal warnings from doxygen are nice, but not if we're warning about
   # missing documentation.
   DOXYGEN_FATAL_WARNINGS=YES
   DOXYGEN_WARN_ON_MISSING=NO
else
   DOXYGEN_FATAL_WARNINGS=NO
   DOXYGEN_WARN_ON_MISSING=NO
fi
AC_SUBST(DOXYGEN_FATAL_WARNINGS)
AC_SUBST(DOXYGEN_WARN_ON_MISSING)

102
if test "x$enable_coverage" != "xyes" -a "x$enable_asserts_in_tests" = "xno" ; then
103
104
105
    AC_MSG_ERROR([Can't disable assertions outside of coverage build])
fi

106
107
108
AM_CONDITIONAL(UNITTESTS_ENABLED, test "x$enable_unittests" != "xno")
AM_CONDITIONAL(COVERAGE_ENABLED, test "x$enable_coverage" = "xyes")
AM_CONDITIONAL(DISABLE_ASSERTS_IN_UNIT_TESTS, test "x$enable_asserts_in_tests" = "xno")
Nick Mathewson's avatar
Nick Mathewson committed
109
AM_CONDITIONAL(LIBFUZZER_ENABLED, test "x$enable_libfuzzer" = "xyes")
110
AM_CONDITIONAL(OSS_FUZZ_ENABLED, test "x$enable_oss_fuzz" = "xyes")
111
AM_CONDITIONAL(USE_RUST, test "x$enable_rust" = "xyes")
112
AM_CONDITIONAL(USE_NSS, test "x$enable_nss" = "xyes")
113
AM_CONDITIONAL(USE_OPENSSL, test "x$enable_nss" != "xyes")
114
115
116

if test "x$enable_nss" = "xyes"; then
  AC_DEFINE(ENABLE_NSS, 1,
117
  	    [Defined if we're building with NSS.])
118
119
120
else
  AC_DEFINE(ENABLE_OPENSSL, 1,
            [Defined if we're building with OpenSSL or LibreSSL])
121
fi
122

123
124
125
126
127
128
if test "$enable_static_tor" = "yes"; then
  enable_static_libevent="yes";
  enable_static_openssl="yes";
  enable_static_zlib="yes";
  CFLAGS="$CFLAGS -static"
fi
129

130
131
132
133
134
if test "$enable_system_torrc" = "no"; then
  AC_DEFINE(DISABLE_SYSTEM_TORRC, 1,
            [Defined if we're not going to look for a torrc in SYSCONF])
fi

135
136
137
138
139
if test "$enable_memory_sentinels" = "no"; then
  AC_DEFINE(DISABLE_MEMORY_SENTINELS, 1,
           [Defined if we're turning off memory safety code to look for bugs])
fi

140
141
142
143
144
145
AC_ARG_ENABLE(manpage,
              AS_HELP_STRING(--disable-manpage, [Disable manpage generation.]))

AC_ARG_ENABLE(html-manual,
              AS_HELP_STRING(--disable-html-manual, [Disable HTML documentation.]))

146
AC_ARG_ENABLE(asciidoc,
147
     AS_HELP_STRING(--disable-asciidoc, [don't use asciidoc (disables building of manpages)]),
148
     [case "${enableval}" in
149
150
        "yes") asciidoc=true ;;
        "no")  asciidoc=false ;;
151
152
153
        *) AC_MSG_ERROR(bad value for --disable-asciidoc) ;;
      esac], [asciidoc=true])

154
155
# systemd notify support
AC_ARG_ENABLE(systemd,
156
      AS_HELP_STRING(--enable-systemd, [enable systemd notification support]),
157
      [case "${enableval}" in
158
159
        "yes") systemd=true ;;
        "no")  systemd=false ;;
160
161
162
        * ) AC_MSG_ERROR(bad value for --enable-systemd) ;;
      esac], [systemd=auto])

163
164
165
166
if test "$enable_restart_debugging" = "yes"; then
  AC_DEFINE(ENABLE_RESTART_DEBUGGING, 1,
            [Defined if we're building with support for in-process restart debugging.])
fi
167

168
169
170
171
if test "$enable_zstd_advanced_apis" != "no"; then
   AC_DEFINE(ENABLE_ZSTD_ADVANCED_APIS, 1,
             [Defined if we're going to try to use zstd's "static-only" APIs.])
fi
172
173

# systemd support
174
if test "x$enable_systemd" = "xno"; then
175
176
177
178
179
180
    have_systemd=no;
else
    PKG_CHECK_MODULES(SYSTEMD,
        [libsystemd-daemon],
        have_systemd=yes,
        have_systemd=no)
181
    if test "x$have_systemd" = "xno"; then
182
183
184
185
186
187
        AC_MSG_NOTICE([Okay, checking for systemd a different way...])
        PKG_CHECK_MODULES(SYSTEMD,
            [libsystemd],
            have_systemd=yes,
            have_systemd=no)
    fi
188
189
fi

190
if test "x$have_systemd" = "xyes"; then
191
    AC_DEFINE(HAVE_SYSTEMD,1,[Have systemd])
192
    TOR_SYSTEMD_CFLAGS="${SYSTEMD_CFLAGS}"
193
    TOR_SYSTEMD_LIBS="${SYSTEMD_LIBS}"
194
    PKG_CHECK_MODULES(LIBSYSTEMD209, [libsystemd >= 209],
195
         [AC_DEFINE(HAVE_SYSTEMD_209,1,[Have systemd v209 or greater])], [])
196
fi
197
AC_SUBST(TOR_SYSTEMD_CFLAGS)
198
199
AC_SUBST(TOR_SYSTEMD_LIBS)

200
if test "x$enable_systemd" = "xyes" -a "x$have_systemd" != "xyes" ; then
201
    AC_MSG_ERROR([Explicitly requested systemd support, but systemd not found, $pkg_config_user_action, or set SYSTEMD_CFLAGS and SYSTEMD_LIBS.])
202
203
fi

204
case "$host" in
205
206
207
208
209
   *-*-solaris* )
     AC_DEFINE(_REENTRANT, 1, [Define on some platforms to activate x_r() functions in time.h])
     ;;
esac

210
AC_ARG_ENABLE(gcc-warnings,
211
212
213
     AS_HELP_STRING(--enable-gcc-warnings, [deprecated alias for enable-fatal-warnings]))
AC_ARG_ENABLE(fatal-warnings,
     AS_HELP_STRING(--enable-fatal-warnings, [tell the compiler to treat all warnings as errors.]))
214
AC_ARG_ENABLE(gcc-warnings-advisory,
215
     AS_HELP_STRING(--disable-gcc-warnings-advisory, [disable the regular verbose warnings]))
216

217
218
dnl Others suggest '/gs /safeseh /nxcompat /dynamicbase' for non-gcc on Windows
AC_ARG_ENABLE(gcc-hardening,
219
    AS_HELP_STRING(--disable-gcc-hardening, [disable compiler security checks]))
220

221
dnl Deprecated --enable-expensive-hardening but keep it for now for backward compat.
222
AC_ARG_ENABLE(expensive-hardening,
223
224
225
226
227
    AS_HELP_STRING(--enable-expensive-hardening, [enable more fragile and expensive compiler hardening; makes Tor slower]))
AC_ARG_ENABLE(fragile-hardening,
    AS_HELP_STRING(--enable-fragile-hardening, [enable more fragile and expensive compiler hardening; makes Tor slower]))
if test "x$enable_expensive_hardening" = "xyes" || test "x$enable_fragile_hardening" = "xyes"; then
  fragile_hardening="yes"
228
  AC_DEFINE(DEBUG_SMARTLIST, 1, [Enable smartlist debugging])
229
fi
230

231
232
233
234
235
236
237
AC_ARG_ENABLE(all-bugs-are-fatal,
   AS_HELP_STRING(--enable-all-bugs-are-fatal, [force all soft asserts in Tor codebase (tor_assert_nonfatal(), BUG(), etc.) to act as hard asserts (tor_assert() and equivalents); makes Tor fragile; only recommended for dev builds]))

if test "x$enable_all_bugs_are_fatal" = "xyes"; then
  AC_DEFINE(ALL_BUGS_ARE_FATAL, 1, [All assert failures are fatal])
fi

238
239
240
dnl Linker hardening options
dnl Currently these options are ELF specific - you can't use this with MacOSX
AC_ARG_ENABLE(linker-hardening,
241
    AS_HELP_STRING(--disable-linker-hardening, [disable linker security fixups]))
242

243
AC_ARG_ENABLE(local-appdata,
244
   AS_HELP_STRING(--enable-local-appdata, [default to host local application data paths on Windows]))
245
246
247
248
249
if test "$enable_local_appdata" = "yes"; then
  AC_DEFINE(ENABLE_LOCAL_APPDATA, 1,
            [Defined if we default to host local appdata paths on Windows])
fi

250
AC_ARG_ENABLE(tool-name-check,
251
     AS_HELP_STRING(--disable-tool-name-check, [check for sanely named toolchain when cross-compiling]))
252

253
AC_ARG_ENABLE(seccomp,
254
     AS_HELP_STRING(--disable-seccomp, [do not attempt to use libseccomp]))
255

256
AC_ARG_ENABLE(libscrypt,
257
     AS_HELP_STRING(--disable-libscrypt, [do not attempt to use libscrypt]))
258

259
dnl --- Tracing Options. ---
260

261
262
263
264
265
266
267
268
269
270
271
272
273
274
dnl USDT instrumentation option.
AC_ARG_ENABLE(tracing-instrumentation-usdt,
              AS_HELP_STRING([--enable-tracing-instrumentation-usdt],
                             [build with tracing USDT instrumentation]))
AM_CONDITIONAL([USE_TRACING_INSTRUMENTATION_USDT],
               [test "x$enable_tracing_instrumentation_usdt" = "xyes"])

if test "x$enable_tracing_instrumentation_usdt" = "xyes"; then
  AC_CHECK_HEADERS([sys/sdt.h], [],
                   [AC_MSG_ERROR([USDT instrumentation requires sys/sdt.h header.
                                  On Debian, apt install systemtap-sdt-dev])], [])
  AC_DEFINE([USE_TRACING_INSTRUMENTATION_USDT], [1], [Using USDT instrumentation])
fi

275
276
277
278
279
280
281
282
283
dnl Tracepoints event to debug logs.
AC_ARG_ENABLE(tracing-instrumentation-log-debug,
     AS_HELP_STRING([--enable-tracing-instrumentation-log-debug],
                    [build with tracing event to debug log]),
     AC_DEFINE([USE_TRACING_INSTRUMENTATION_LOG_DEBUG], [1],
               [Tracepoints to log debug]), [])
AM_CONDITIONAL([USE_TRACING_INSTRUMENTATION_LOG_DEBUG],
               [test "x$enable_tracing_instrumentation_log_debug" = "xyes"])

284
dnl Define that tracing is supported if any instrumentation is used.
285
286
AM_COND_IF([USE_TRACING_INSTRUMENTATION_LOG_DEBUG],
           AC_DEFINE([HAVE_TRACING], [1], [Compiled with tracing support]))
287
288
AM_COND_IF([USE_TRACING_INSTRUMENTATION_USDT],
           AC_DEFINE([HAVE_TRACING], [1], [Compiled with tracing support]))
289
290

dnl -- End Tracing Options. --
291

292
293
294
295
296
297
298
299
300
301
302
303
304
305
dnl Enable Android only features.
AC_ARG_ENABLE(android,
     AS_HELP_STRING(--enable-android, [build with Android features enabled]))
AM_CONDITIONAL([USE_ANDROID], [test "x$enable_android" = "xyes"])

if test "x$enable_android" = "xyes"; then
  AC_DEFINE([USE_ANDROID], [1], [Compile with Android specific features enabled])

  dnl Check if the Android log library is available.
  AC_CHECK_HEADERS([android/log.h])
  AC_SEARCH_LIBS(__android_log_write, [log])

fi

306
307
308
309
dnl ---
dnl Tor modules options. These options are namespaced with --disable-module-XXX
dnl ---

310
dnl All our modules.
Nick Mathewson's avatar
Nick Mathewson committed
311
m4_define(MODULES, relay dirauth dircache)
312
313
314
315

dnl Relay module.
AC_ARG_ENABLE([module-relay],
              AS_HELP_STRING([--disable-module-relay],
316
                             [Build tor without the Relay modules: tor can not run as a relay, bridge, or authority. Implies --disable-module-dirauth]))
317
318
319
320
AM_CONDITIONAL(BUILD_MODULE_RELAY, [test "x$enable_module_relay" != "xno"])
AM_COND_IF(BUILD_MODULE_RELAY,
           AC_DEFINE([HAVE_MODULE_RELAY], [1],
                     [Compile with Relay feature support]))
321

Nick Mathewson's avatar
Nick Mathewson committed
322
dnl Dircache module.  (This cannot be enabled or disabled independently of
323
dnl the relay module.  It is not listed by --list-modules for this reason.)
Nick Mathewson's avatar
Nick Mathewson committed
324
325
326
327
328
329
AM_CONDITIONAL(BUILD_MODULE_DIRCACHE,
               [test "x$enable_module_relay" != "xno"])
AM_COND_IF(BUILD_MODULE_DIRCACHE,
           AC_DEFINE([HAVE_MODULE_DIRCACHE], [1],
                     [Compile with directory cache support]))

330
331
332
dnl Directory Authority module.
AC_ARG_ENABLE([module-dirauth],
              AS_HELP_STRING([--disable-module-dirauth],
333
                             [Build tor without the Directory Authority module: tor can not run as a directory authority or bridge authority]))
334
AM_CONDITIONAL(BUILD_MODULE_DIRAUTH,[test "x$enable_module_dirauth" != "xno" && test "x$enable_module_relay" != "xno"])
335
336
337
AM_COND_IF(BUILD_MODULE_DIRAUTH,
           AC_DEFINE([HAVE_MODULE_DIRAUTH], [1],
                     [Compile with Directory Authority feature support]))
338

339
340
341
342
343
344
345
346
347
dnl Helper variables.
TOR_MODULES_ALL_ENABLED=
AC_DEFUN([ADD_MODULE], [
    MODULE=m4_toupper($1)
    TOR_MODULES_ALL_ENABLED="${TOR_MODULES_ALL_ENABLED} -DHAVE_MODULE_${MODULE}=1"
])
m4_foreach_w([module], MODULES, [ADD_MODULE([module])])
AC_SUBST(TOR_MODULES_ALL_ENABLED)

348
349
350
351
352
353
354
355
356
dnl check for the correct "ar" when cross-compiling.
dnl   (AM_PROG_AR was new in automake 1.11.2, which we do not yet require,
dnl    so kludge up a replacement for the case where it isn't there yet.)
m4_ifdef([AM_PROG_AR],
         [AM_PROG_AR],
         [AN_MAKEVAR([AR], [AC_PROG_AR])
          AN_PROGRAM([ar], [AC_PROG_AR])
          AC_DEFUN([AC_PROG_AR], [AC_CHECK_TOOL([AR], [ar], [:])])
          AC_PROG_AR])
357

358
359
360
361
362
363
dnl Check whether the above macro has settled for a simply named tool even
dnl though we're cross compiling. We must do this before running AC_PROG_CC,
dnl because that will find any cc on the system, not only the cross-compiler,
dnl and then verify that a binary built with this compiler runs on the
dnl build system. It will then come to the false conclusion that we're not
dnl cross-compiling.
364
365
if test "x$enable_tool_name_check" != "xno"; then
    if test "x$ac_tool_warned" = "xyes"; then
366
        AC_MSG_ERROR([We are cross compiling but could not find a properly named toolchain. Do you have your cross-compiling toolchain in PATH? (You can --disable-tool-name-check to ignore this.)])
367
	elif test "x$ac_ct_AR" != "x" -a "x$cross_compiling" = "xmaybe"; then
368
369
370
371
		AC_MSG_ERROR([We think we are cross compiling but could not find a properly named toolchain. Do you have your cross-compiling toolchain in PATH? (You can --disable-tool-name-check to ignore this.)])
	fi
fi

372
AC_PROG_CC
373
AC_PROG_CPP
374
375
AC_PROG_MAKE_SET
AC_PROG_RANLIB
376
AC_PROG_SED
377

378
379
380
AC_ARG_VAR([PERL], [path to Perl binary])
AC_CHECK_PROGS([PERL], [perl])
AM_CONDITIONAL(USE_PERL, [test "x$ac_cv_prog_PERL" != "x"])
381

382
383
dnl check for asciidoc and a2x
AC_PATH_PROG([ASCIIDOC], [asciidoc], none)
384
AC_PATH_PROGS([A2X], [a2x a2x.py], none)
385

386
AM_CONDITIONAL(USE_ASCIIDOC, test "x$asciidoc" = "xtrue")
387
388
AM_CONDITIONAL(BUILD_MANPAGE, [test "x$enable_manpage" != "xno"])
AM_CONDITIONAL(BUILD_HTML_DOCS, [test "x$enable_html_manual" != "xno"])
389

390
AM_PROG_CC_C_O
391
AC_PROG_CC_C99
392

Nick Mathewson's avatar
Nick Mathewson committed
393
394
AC_CACHE_CHECK([for Python 3], [tor_cv_PYTHON],
   [AC_PATH_PROGS_FEATURE_CHECK([PYTHON], [ \
395
396
	python3 \
	python3.8 python3.7 python3.6 python3.5 python3.4 \
Nick Mathewson's avatar
Nick Mathewson committed
397
398
399
400
401
402
	python ],
   [["$ac_path_PYTHON" -c 'import sys; sys.exit(sys.version_info[0]<3)' && tor_cv_PYTHON="$ac_path_PYTHON" ac_path_PYTHON_found=:]] )])
AC_SUBST([PYTHON], [$tor_cv_PYTHON])

PYTHON="$tor_cv_PYTHON"

403
if test "x$PYTHON" = "x"; then
Nick Mathewson's avatar
Nick Mathewson committed
404
  AC_MSG_WARN([Python 3 unavailable; some tests will not be run.])
405
fi
Nick Mathewson's avatar
Nick Mathewson committed
406

407
408
AM_CONDITIONAL(USEPYTHON, [test "x$PYTHON" != "x"])

409
dnl List all external rust crates we depend on here. Include the version
410
411
412
413
rust_crates=" \
    digest-0.7.2 \
    libc-0.2.39 \
"
414
AC_SUBST(rust_crates)
415

416
417
418
419
420
421
422
423
424
425
426
427
428
429
430
ifdef([AC_C_FLEXIBLE_ARRAY_MEMBER], [
AC_C_FLEXIBLE_ARRAY_MEMBER
], [
 dnl Maybe we've got an old autoconf...
 AC_CACHE_CHECK([for flexible array members],
     tor_cv_c_flexarray,
     [AC_COMPILE_IFELSE(
       AC_LANG_PROGRAM([
 struct abc { int a; char b[]; };
], [
 struct abc *def = malloc(sizeof(struct abc)+sizeof(char));
 def->b[0] = 33;
]),
  [tor_cv_c_flexarray=yes],
  [tor_cv_c_flexarray=no])])
431
 if test "$tor_cv_flexarray" = "yes"; then
432
   AC_DEFINE([FLEXIBLE_ARRAY_MEMBER], [], [Define to nothing if C supports flexible array members, and to 1 if it does not.])
433
 else
434
   AC_DEFINE([FLEXIBLE_ARRAY_MEMBER], [1], [Define to nothing if C supports flexible array members, and to 1 if it does not.])
435
436
437
 fi
])

438
439
440
441
442
443
444
445
446
447
448
449
450
451
452
453
454
455
456
457
458
459
AC_CACHE_CHECK([for working C99 mid-block declaration syntax],
      tor_cv_c_c99_decl,
      [AC_COMPILE_IFELSE(
         [AC_LANG_PROGRAM([], [int x; x = 3; int y; y = 4 + x;])],
	 [tor_cv_c_c99_decl=yes],
	 [tor_cv_c_c99_decl=no] )])
if test "$tor_cv_c_c99_decl" != "yes"; then
  AC_MSG_ERROR([Your compiler doesn't support c99 mid-block declarations. This is required as of Tor 0.2.6.x])
fi

AC_CACHE_CHECK([for working C99 designated initializers],
      tor_cv_c_c99_designated_init,
      [AC_COMPILE_IFELSE(
         [AC_LANG_PROGRAM([struct s { int a; int b; };],
  	       [[ struct s ss = { .b = 5, .a = 6 }; ]])],
	 [tor_cv_c_c99_designated_init=yes],
	 [tor_cv_c_c99_designated_init=no] )])

if test "$tor_cv_c_c99_designated_init" != "yes"; then
  AC_MSG_ERROR([Your compiler doesn't support c99 designated initializers. This is required as of Tor 0.2.6.x])
fi

Nick Mathewson's avatar
Nick Mathewson committed
460
461
462
463
464
465
466
467
468
469
470
471
saved_CFLAGS="$CFLAGS"
CFLAGS="$CFLAGS -Werror"
AC_CACHE_CHECK([for __attribute__((fallthrough))],
      tor_cv_c_attr_fallthrough,
      [AC_COMPILE_IFELSE(
         [AC_LANG_PROGRAM([extern int x; void fn(void) ;],
	       [[ switch (x) { case 1: fn(); __attribute__((fallthrough));
                               case 2: fn(); break; } ]])],
	 [tor_cv_c_attr_fallthrough=yes],
	 [tor_cv_c_attr_fallthrough=no] )])
CFLAGS="$saved_CFLAGS"

472
if test "$tor_cv_c_attr_fallthrough" = "yes"; then
Nick Mathewson's avatar
Nick Mathewson committed
473
474
475
  AC_DEFINE(HAVE_ATTR_FALLTHROUGH, [1], [defined if we have the fallthrough attribute.])
fi

476
477
TORUSER=_tor
AC_ARG_WITH(tor-user,
478
        AS_HELP_STRING(--with-tor-user=NAME, [specify username for tor daemon]),
479
480
481
482
483
484
485
486
        [
           TORUSER=$withval
        ]
)
AC_SUBST(TORUSER)

TORGROUP=_tor
AC_ARG_WITH(tor-group,
487
        AS_HELP_STRING(--with-tor-group=NAME, [specify group name for tor daemon]),
488
489
490
491
492
493
        [
           TORGROUP=$withval
        ]
)
AC_SUBST(TORGROUP)

494

495
dnl If _WIN32 is defined and non-zero, we are building for win32
496
AC_MSG_CHECKING([for win32])
497
AC_RUN_IFELSE([AC_LANG_SOURCE([
498
int main(int c, char **v) {
499
500
#ifdef _WIN32
#if _WIN32
501
502
503
504
505
506
507
  return 0;
#else
  return 1;
#endif
#else
  return 2;
#endif
508
}])],
509
bwin32=true; AC_MSG_RESULT([yes]),
510
511
bwin32=false; AC_MSG_RESULT([no]),
bwin32=cross; AC_MSG_RESULT([cross])
512
513
)

514
if test "$bwin32" = "cross"; then
515
AC_MSG_CHECKING([for win32 (cross)])
516
AC_COMPILE_IFELSE([AC_LANG_SOURCE([
517
#ifdef _WIN32
518
519
520
521
522
int main(int c, char **v) {return 0;}
#else
#error
int main(int c, char **v) {return x(y);}
#endif
523
])],
524
525
526
527
bwin32=true; AC_MSG_RESULT([yes]),
bwin32=false; AC_MSG_RESULT([no]))
fi

528
529
530
531
532
533
534
535
536
537
538
539
540
541
542
543
544
545
546
AH_BOTTOM([
#ifdef _WIN32
/* Defined to access windows functions and definitions for >=WinXP */
# ifndef WINVER
#  define WINVER 0x0501
# endif

/* Defined to access _other_ windows functions and definitions for >=WinXP */
# ifndef _WIN32_WINNT
#  define _WIN32_WINNT 0x0501
# endif

/* Defined to avoid including some windows headers as part of Windows.h */
# ifndef WIN32_LEAN_AND_MEAN
#  define WIN32_LEAN_AND_MEAN 1
# endif
#endif
])

547
AM_CONDITIONAL(WIN32, test "x$bwin32" = "xtrue")
548
AM_CONDITIONAL(BUILD_NT_SERVICES, test "x$bwin32" = "xtrue")
549
AM_CONDITIONAL(BUILD_LIBTORRUNNER, test "x$bwin32" != "xtrue")
550

551
552
dnl Enable C99 when compiling with MIPSpro
AC_MSG_CHECKING([for MIPSpro compiler])
553
AC_COMPILE_IFELSE([AC_LANG_PROGRAM(, [
554
555
556
557
#if (defined(__sgi) && defined(_COMPILER_VERSION))
#error
  return x(y);
#endif
558
])],
559
bmipspro=false; AC_MSG_RESULT(no),
560
bmipspro=true; AC_MSG_RESULT(yes))
561

562
if test "$bmipspro" = "true"; then
563
564
565
  CFLAGS="$CFLAGS -c99"
fi

566
567
AC_C_BIGENDIAN

Alex Xu's avatar
Alex Xu committed
568
569
AC_ARG_VAR([TOR_RUST_TARGET], [Rust target, must be specified when cross-compiling (HOST != BUILD). example: i686-pc-windows-gnu])

570
571
572
573
574
575
576
577
578
579
580
581
582
583
if test "x$enable_rust" = "xyes"; then
  AC_ARG_VAR([RUSTC], [path to the rustc binary])
  AC_CHECK_PROG([RUSTC], [rustc], [rustc],[no])
  if test "x$RUSTC" = "xno"; then
    AC_MSG_ERROR([rustc unavailable but rust integration requested.])
  fi

  AC_ARG_VAR([CARGO], [path to the cargo binary])
  AC_CHECK_PROG([CARGO], [cargo], [cargo],[no])
  if test "x$CARGO" = "xno"; then
    AC_MSG_ERROR([cargo unavailable but rust integration requested.])
  fi

  AC_DEFINE([HAVE_RUST], 1, [have Rust])
584
585
586
587
588
  if test "x$enable_fatal_warnings" = "xyes"; then
    RUST_WARN=
  else
    RUST_WARN=#
  fi
589
590
591
592
593
594
595
596
597
598
  if test "x$enable_cargo_online_mode" = "xyes"; then
    CARGO_ONLINE=
    RUST_DL=#
  else
    CARGO_ONLINE=--frozen
    RUST_DL=

    dnl When we're not allowed to touch the network, we need crate dependencies
    dnl locally available.
    AC_MSG_CHECKING([rust crate dependencies])
599
600
    AC_ARG_VAR([TOR_RUST_DEPENDENCIES], [path to directory with local crate mirror])
    if test "x$TOR_RUST_DEPENDENCIES" = "x"; then
601
      TOR_RUST_DEPENDENCIES="${srcdir}/src/ext/rust/crates"
602
    fi
603
    dnl Check whether the path exists before we try to cd into it.
604
605
    if test ! -d "$TOR_RUST_DEPENDENCIES"; then
      AC_MSG_ERROR([Rust dependency directory $TOR_RUST_DEPENDENCIES does not exist. Specify a dependency directory using the TOR_RUST_DEPENDENCIES variable or allow cargo to fetch crates using --enable-cargo-online-mode.])
606
      ERRORED=1
607
    fi
608
609
610
611
    dnl Make the path absolute, since we'll be using it from within a
    dnl subdirectory.
    TOR_RUST_DEPENDENCIES=$(cd "$TOR_RUST_DEPENDENCIES" ; pwd)

612
    for dep in $rust_crates; do
613
614
      if test ! -d "$TOR_RUST_DEPENDENCIES"/"$dep"; then
        AC_MSG_ERROR([Failure to find rust dependency $TOR_RUST_DEPENDENCIES/$dep. Specify a dependency directory using the TOR_RUST_DEPENDENCIES variable or allow cargo to fetch crates using --enable-cargo-online-mode.])
615
        ERRORED=1
616
617
      fi
    done
618
619
620
    if test "x$ERRORED" = "x"; then
      AC_MSG_RESULT([yes])
    fi
621
622
623
624
625
  fi

  dnl For now both MSVC and MinGW rust libraries will output static libs with
  dnl the MSVC naming convention.
  if test "$bwin32" = "true"; then
Alex Xu's avatar
Alex Xu committed
626
    tor_rust_static_name=tor_rust.lib
627
  else
Alex Xu's avatar
Alex Xu committed
628
629
630
631
632
633
634
635
636
637
638
639
640
641
642
643
644
    tor_rust_static_name=libtor_rust.a
  fi

  AC_CANONICAL_BUILD

  if test -n "$TOR_RUST_TARGET"; then
    if test "$host" = "$build"; then
      AC_MSG_ERROR([HOST = BUILD is invalid if TOR_RUST_TARGET is specified, see configure --help for more information.])
    fi
    RUST_TARGET_PROP="target = '$TOR_RUST_TARGET'"
    TOR_RUST_LIB_PATH="src/rust/target/$TOR_RUST_TARGET/release/$tor_rust_static_name"
  else
    if test "$host" != "$build"; then
      AC_MSG_ERROR([TOR_RUST_TARGET must be specified when cross-compiling with Rust enabled.])
    fi
    RUST_TARGET_PROP=
    TOR_RUST_LIB_PATH="src/rust/target/release/$tor_rust_static_name"
645
646
  fi

Alex Xu's avatar
Alex Xu committed
647
648
  AC_SUBST(RUST_TARGET_PROP)
  AC_SUBST(TOR_RUST_LIB_PATH)
649
  AC_SUBST(CARGO_ONLINE)
650
  AC_SUBST(RUST_WARN)
651
652
653
654
  AC_SUBST(RUST_DL)

  dnl Let's check the rustc version, too
  AC_MSG_CHECKING([rust version])
655
  RUSTC_VERSION=`$RUSTC --version`
656
657
658
659
660
  RUSTC_VERSION_MAJOR=`$RUSTC --version | cut -d ' ' -f 2 | cut -d '.' -f 1`
  RUSTC_VERSION_MINOR=`$RUSTC --version | cut -d ' ' -f 2 | cut -d '.' -f 2`
  if test "x$RUSTC_VERSION_MAJOR" = "x" -o "x$RUSTC_VERSION_MINOR" = "x"; then
    AC_MSG_ERROR([rustc version couldn't be identified])
  fi
661
662
  if test "$RUSTC_VERSION_MAJOR" -lt 2 -a "$RUSTC_VERSION_MINOR" -lt 31; then
    AC_MSG_ERROR([rustc must be at least version 1.31.0])
663
  fi
664
  AC_MSG_RESULT([$RUSTC_VERSION])
665
666
fi

667
AC_SEARCH_LIBS(socket, [socket network])
668
AC_SEARCH_LIBS(gethostbyname, [nsl])
669
AC_SEARCH_LIBS(dlopen, [dl])
670
AC_SEARCH_LIBS(inet_aton, [resolv])
671
AC_SEARCH_LIBS(backtrace, [execinfo])
672
673
674
675
676
677
saved_LIBS="$LIBS"
AC_SEARCH_LIBS([clock_gettime], [rt])
if test "$LIBS" != "$saved_LIBS"; then
   # Looks like we need -lrt for clock_gettime().
   have_rt=yes
fi
678

679
680
681
682
if test "$bwin32" = "false"; then
  AC_SEARCH_LIBS(pthread_create, [pthread])
  AC_SEARCH_LIBS(pthread_detach, [pthread])
fi
683

684
685
AM_CONDITIONAL(THREADS_WIN32, test "$bwin32" = "true")
AM_CONDITIONAL(THREADS_PTHREADS, test "$bwin32" = "false")
686

687
AC_CHECK_FUNCS(
Nick Mathewson's avatar
Nick Mathewson committed
688
	_NSGetEnviron \
689
690
	RtlSecureZeroMemory \
	SecureZeroMemory \
Nick Mathewson's avatar
Nick Mathewson committed
691
692
693
	accept4 \
	backtrace \
	backtrace_symbols_fd \
694
	eventfd \
695
	explicit_bzero \
696
	timingsafe_memcmp \
Nick Mathewson's avatar
Nick Mathewson committed
697
	flock \
698
	fsync \
Nick Mathewson's avatar
Nick Mathewson committed
699
700
701
	ftime \
	get_current_dir_name \
	getaddrinfo \
702
	getdelim \
Nick Mathewson's avatar
Nick Mathewson committed
703
	getifaddrs \
704
	getline \
Nick Mathewson's avatar
Nick Mathewson committed
705
706
707
	getrlimit \
	gettimeofday \
	gmtime_r \
708
	gnu_get_libc_version \
Nick Mathewson's avatar
Nick Mathewson committed
709
710
711
712
713
714
	inet_aton \
	ioctl \
	issetugid \
	llround \
	localtime_r \
	lround \
715
	madvise \
Nick Mathewson's avatar
Nick Mathewson committed
716
717
	memmem \
	memset_s \
718
	minherit \
Nick Mathewson's avatar
Nick Mathewson committed
719
	mmap \
720
721
	pipe \
	pipe2 \
Nick Mathewson's avatar
Nick Mathewson committed
722
	prctl \
723
	readpassphrase \
Nick Mathewson's avatar
Nick Mathewson committed
724
725
726
	rint \
	sigaction \
	socketpair \
727
	statvfs \
Nick Mathewson's avatar
Nick Mathewson committed
728
729
730
731
	strncasecmp \
	strcasecmp \
	strlcat \
	strlcpy \
732
	strnlen \
Nick Mathewson's avatar
Nick Mathewson committed
733
734
735
736
	strptime \
	strtok_r \
	strtoull \
	sysconf \
737
	sysctl \
Nick Mathewson's avatar
Nick Mathewson committed
738
	truncate \
Nick Mathewson's avatar
Nick Mathewson committed
739
	uname \
740
	usleep \
Nick Mathewson's avatar
Nick Mathewson committed
741
	vasprintf \
742
	_vscprintf
743
)
744

745
# Apple messed up when they added some functions: they
746
# forgot to decorate them with appropriate AVAILABLE_MAC_OS_VERSION
747
748
749
750
751
752
753
754
755
756
757
758
759
760
761
762
763
764
765
766
767
768
769
770
771
772
773
774
# checks.

# We should only probe for these functions if we are sure that we
# are not targeting OS X 10.9 or earlier.
AC_MSG_CHECKING([for a pre-Yosemite OS X build target])
AC_COMPILE_IFELSE([AC_LANG_PROGRAM([[
#ifdef __APPLE__
#  include <AvailabilityMacros.h>
#  ifndef MAC_OS_X_VERSION_10_10
#    define MAC_OS_X_VERSION_10_10 101000
#  endif
#  if defined(MAC_OS_X_VERSION_MIN_REQUIRED)
#    if MAC_OS_X_VERSION_MIN_REQUIRED < MAC_OS_X_VERSION_10_10
#      error "Running on Mac OS X 10.9 or earlier"
#    endif
#  endif
#endif
]], [[]])],
   [on_macos_pre_10_10=no ; AC_MSG_RESULT([no])],
   [on_macos_pre_10_10=yes; AC_MSG_RESULT([yes])])

if test "$on_macos_pre_10_10" = "no"; then
  AC_CHECK_FUNCS(
        mach_approximate_time \
  )
fi

# We should only probe for these functions if we are sure that we
775
# are not targeting OSX 10.11 or earlier.
776
AC_MSG_CHECKING([for a pre-Sierra OSX build target])
777
AC_COMPILE_IFELSE([AC_LANG_PROGRAM([[
778
779
#ifdef __APPLE__
#  include <AvailabilityMacros.h>
780
781
#  ifndef MAC_OS_X_VERSION_10_12
#    define MAC_OS_X_VERSION_10_12 101200
782
783
#  endif
#  if defined(MAC_OS_X_VERSION_MIN_REQUIRED)
784
#    if MAC_OS_X_VERSION_MIN_REQUIRED < MAC_OS_X_VERSION_10_12
785
786
787
788
#      error "Running on Mac OSX 10.11 or earlier"
#    endif
#  endif
#endif
789
]], [[]])],
790
791
792
793
794
795
796
797
798
799
   [on_macos_pre_10_12=no ; AC_MSG_RESULT([no])],
   [on_macos_pre_10_12=yes; AC_MSG_RESULT([yes])])

if test "$on_macos_pre_10_12" = "no"; then
  AC_CHECK_FUNCS(
        clock_gettime \
        getentropy \
  )
fi

800
if test "$bwin32" != "true"; then
801
802
  AC_CHECK_HEADERS(pthread.h)
  AC_CHECK_FUNCS(pthread_create)
803
  AC_CHECK_FUNCS(pthread_condattr_setclock)
804
805
fi

806
if test "$bwin32" = "true"; then
807
808
809
810
811
812
813
  AC_CHECK_DECLS([SecureZeroMemory, _getwch], , , [
#include <windows.h>
#include <conio.h>
#include <wchar.h>
                 ])
fi

814
815
AM_CONDITIONAL(BUILD_READPASSPHRASE_C,
  test "x$ac_cv_func_readpassphrase" = "xno" && test "$bwin32" = "false")
816

817
818
819
820
821
822
823
824
825
826
827
828
829
830
831
AC_MSG_CHECKING([whether free(NULL) works])
AC_RUN_IFELSE([AC_LANG_PROGRAM([
  #include <stdlib.h>
], [
char *p = NULL;
free(p);
])],
[free_null_ok=true; AC_MSG_RESULT(yes)],
[free_null_ok=false; AC_MSG_RESULT(no)],
[free_null_ok=cross; AC_MSG_RESULT(cross)])

if test "$free_null_ok" = "false"; then
   AC_MSG_ERROR([Your libc implementation doesn't allow free(NULL), as required by C99.])
fi

832
dnl ------------------------------------------------------
833
dnl Where do you live, libevent?  And how do we call you?
834

835
if test "$bwin32" = "true"; then
836
  TOR_LIB_WS32=-lws2_32
837
  TOR_LIB_IPHLPAPI=-liphlpapi
838
839
  # Some of the cargo-cults recommend -lwsock32 as well, but I don't
  # think it's actually necessary.
840
  TOR_LIB_GDI=-lgdi32
841
  TOR_LIB_USERENV=-luserenv
Nick Mathewson's avatar
   
Nick Mathewson committed
842
else
843
844
  TOR_LIB_WS32=
  TOR_LIB_GDI=
845
  TOR_LIB_USERENV=
Nick Mathewson's avatar
   
Nick Mathewson committed
846
fi
847
848
AC_SUBST(TOR_LIB_WS32)
AC_SUBST(TOR_LIB_GDI)
849
AC_SUBST(TOR_LIB_IPHLPAPI)
850
AC_SUBST(TOR_LIB_USERENV)
Nick Mathewson's avatar
   
Nick Mathewson committed
851

852
tor_libevent_pkg_redhat="libevent"
853
tor_libevent_pkg_debian="libevent-dev"
854
855
856
tor_libevent_devpkg_redhat="libevent-devel"
tor_libevent_devpkg_debian="libevent-dev"

857
858
859
860
dnl On Gnu/Linux or any place we require it, we'll add librt to the Libevent
dnl linking for static builds.
STATIC_LIBEVENT_FLAGS=""
if test "$enable_static_libevent" = "yes"; then
861
    if test "$have_rt" = "yes"; then
862
863
864
865
866
      STATIC_LIBEVENT_FLAGS=" -lrt "
    fi
fi

TOR_SEARCH_LIBRARY(libevent, $trylibeventdir, [-levent $STATIC_LIBEVENT_FLAGS $TOR_LIB_WS32], [
867
#ifdef _WIN32
868
869
#include <winsock2.h>
#endif
870
#include <sys/time.h>
Roger Dingledine's avatar
Roger Dingledine committed
871
#include <sys/types.h>
872
#include <event2/event.h>], [
873
#ifdef _WIN32
874
875
#include <winsock2.h>
#endif
876
struct event_base;
877
878
struct event_base *event_base_new(void);
void event_base_free(struct event_base *);],
879
    [
880
#ifdef _WIN32
881
{WSADATA d; WSAStartup(0x101,&d); }
882
#endif
Alex Xu's avatar
Alex Xu committed
883
event_base_free(event_base_new());
884
], [--with-libevent-dir], [/opt/libevent])
885

886
dnl Determine the incantation needed to link libevent.
887
888
save_LIBS="$LIBS"
save_LDFLAGS="$LDFLAGS"
889
save_CPPFLAGS="$CPPFLAGS"
890
891

LIBS="$STATIC_LIBEVENT_FLAGS $TOR_LIB_WS32 $save_LIBS"
892
LDFLAGS="$TOR_LDFLAGS_libevent $LDFLAGS"
893
CPPFLAGS="$TOR_CPPFLAGS_libevent $CPPFLAGS"
894

895
896
AC_CHECK_HEADERS(event2/event.h event2/dns.h event2/bufferevent_ssl.h)

897
898
899
900
if test "$enable_static_libevent" = "yes"; then
   if test "$tor_cv_library_libevent_dir" = "(system)"; then
     AC_MSG_ERROR("You must specify an explicit --with-libevent-dir=x option when using --enable-static-libevent")
   else
901
     TOR_LIBEVENT_LIBS="$TOR_LIBDIR_libevent/libevent.a $STATIC_LIBEVENT_FLAGS"
902
903
   fi
else
904
     if test "x$ac_cv_header_event2_event_h" = "xyes"; then
Nick Mathewson's avatar
Nick Mathewson committed
905
906
       AC_SEARCH_LIBS(event_new, [event event_core], , AC_MSG_ERROR("libevent2 is installed but linking it failed while searching for event_new"))
       AC_SEARCH_LIBS(evdns_base_new, [event event_extra], , AC_MSG_ERROR("libevent2 is installed but linking it failed while searching for evdns_base_new"))
907

908
       if test "$ac_cv_search_event_new" != "none required"; then
909
910
         TOR_LIBEVENT_LIBS="$ac_cv_search_event_new"
       fi
911
       if test "$ac_cv_search_evdns_base_new" != "none required"; then
912
913
914
         TOR_LIBEVENT_LIBS="$ac_cv_search_evdns_base_new $TOR_LIBEVENT_LIBS"
       fi
     else
915
       AC_MSG_ERROR("libevent2 is required but the headers could not be found")
916
     fi
917
918
fi

919
920
921
dnl Now check for particular libevent functions.
AC_CHECK_FUNCS([evutil_secure_rng_set_urandom_device_file \
                evutil_secure_rng_add_bytes \
922
923
                evdns_base_get_nameserver_addr \

924
925
])

926
927
928
929
LIBS="$save_LIBS"
LDFLAGS="$save_LDFLAGS"
CPPFLAGS="$save_CPPFLAGS"

930
931
932
933
934
dnl Check that libevent is at least at version 2.0.10, the first stable
dnl release of its series
CPPFLAGS="$CPPFLAGS $TOR_CPPFLAGS_libevent"
AC_MSG_CHECKING([whether Libevent is new enough])
AC_COMPILE_IFELSE([AC_LANG_SOURCE([
935
#include <event2/event.h>
936
#if !defined(LIBEVENT_VERSION_NUMBER) || LIBEVENT_VERSION_NUMBER < 0x02000a00
937
938
939
940
941
#error
int x = y(zz);
#else
int x = 1;
#endif
942
943
944
945
946
947
948
949
])], [ AC_MSG_RESULT([yes]) ],
   [ AC_MSG_RESULT([no])
     AC_MSG_ERROR([Libevent is not new enough.  We require 2.0.10-stable or later]) ] )

LIBS="$save_LIBS"
LDFLAGS="$save_LDFLAGS"
CPPFLAGS="$save_CPPFLAGS"

950
AC_SUBST(TOR_LIBEVENT_LIBS)
951

952
953
954
955
956
957
958
dnl ------------------------------------------------------
dnl Where do you live, libm?

dnl On some platforms (Haiku/BeOS) the math library is
dnl part of libroot. In which case don't link against lm
TOR_LIB_MATH=""
save_LIBS="$LIBS"
959
960
961
AC_SEARCH_LIBS(pow, [m], , AC_MSG_ERROR([Could not find pow in libm or libc.]))
if test "$ac_cv_search_pow" != "none required"; then
    TOR_LIB_MATH="$ac_cv_search_pow"
962
963
964
965
fi
LIBS="$save_LIBS"
AC_SUBST(TOR_LIB_MATH)

966
967
968
969
970
971
dnl ------------------------------------------------------
dnl Hello, NSS.  You're new around here.
if test "x$enable_nss" = "xyes"; then
  PKG_CHECK_MODULES(NSS,
     [nss],
     [have_nss=yes],
972
     [have_nss=no; AC_MSG_ERROR([You asked for NSS but I can't find it, $pkg_config_user_action, or set NSS_CFLAGS and NSS_LIBS.])])
973
974
975
976
  AC_SUBST(NSS_CFLAGS)
  AC_SUBST(NSS_LIBS)
fi

977
dnl ------------------------------------------------------
978
dnl Where do you live, openssl?  And how do we call you?
979

980
981
if test "x$enable_nss" != "xyes"; then

982
tor_openssl_pkg_redhat="openssl"
983
tor_openssl_pkg_debian="libssl-dev"
984
985
986
tor_openssl_devpkg_redhat="openssl-devel"
tor_openssl_devpkg_debian="libssl-dev"

987
988
ALT_openssl_WITHVAL=""
AC_ARG_WITH(ssl-dir,
989
  AS_HELP_STRING(--with-ssl-dir=PATH, [obsolete alias for --with-openssl-dir]),
990
  [
991
      if test "x$withval" != "xno" && test "x$withval" != "x"; then
992
993
994
995
         ALT_openssl_WITHVAL="$withval"
      fi
  ])

996
AC_MSG_NOTICE([Now, we'll look for OpenSSL >= 1.0.1])
997
TOR_SEARCH_LIBRARY(openssl, $tryssldir, [-lssl -lcrypto $TOR_LIB_GDI $TOR_LIB_WS32],
998
999
1000
1001
1002
1003
1004
1005
1006
1007
1008
1009
    [#include <openssl/ssl.h>
     char *getenv(const char *);],
    [struct ssl_cipher_st;
     unsigned SSL_CIPHER_get_id(const struct ssl_cipher_st *);
     char *getenv(const char *);],
    dnl This funny-looking test program calls getenv, so that the compiler
    dnl will neither make code that call SSL_CIPHER_get_id(NULL) [producing
    dnl a crash], nor optimize out the call to SSL_CIPHER_get_id().
    dnl We look for SSL_cipher_get_id() because it is present in
    dnl OpenSSL >=1.0.1, because it is not deprecated, and because Tor
    dnl depends on it.
    [if (getenv("THIS_SHOULDNT_BE_SET_X201803")) SSL_CIPHER_get_id((void *)0);], [],
1010
    [/usr/local/opt/openssl /usr/local/openssl /usr/lib/openssl /usr/local/ssl /usr/lib/ssl /usr/local /opt/openssl])
1011

1012
1013
dnl XXXX check for OPENSSL_VERSION_NUMBER == SSLeay()

1014
1015
1016
1017
if test "$enable_static_openssl" = "yes"; then
   if test "$tor_cv_library_openssl_dir" = "(system)"; then
     AC_MSG_ERROR("You must specify an explicit --with-openssl-dir=x option when using --enable-static-openssl")
   else
1018
     TOR_OPENSSL_LIBS="$TOR_LIBDIR_openssl/libssl.a $TOR_LIBDIR_openssl/libcrypto.a"
1019
1020
   fi
else
1021
     TOR_OPENSSL_LIBS="-lssl -lcrypto"
1022
1023
1024
fi
AC_SUBST(TOR_OPENSSL_LIBS)

1025
1026
1027
1028
1029
1030
1031
dnl Now check for particular openssl functions.
save_LIBS="$LIBS"
save_LDFLAGS="$LDFLAGS"
save_CPPFLAGS="$CPPFLAGS"
LIBS="$TOR_OPENSSL_LIBS $LIBS"
LDFLAGS="$TOR_LDFLAGS_openssl $LDFLAGS"
CPPFLAGS="$TOR_CPPFLAGS_openssl $CPPFLAGS"
1032

1033
AC_COMPILE_IFELSE([AC_LANG_PROGRAM([[
1034
#include <openssl/opensslv.h>
1035
#if !defined(LIBRESSL_VERSION_NUMBER) && OPENSSL_VERSION_NUMBER < 0x1000100fL
1036
1037
#error "too old"
#endif
1038
   ]], [[]])],
1039
   [ : ],
1040
   [ AC_MSG_ERROR([OpenSSL is too old. We require 1.0.1 or later. You can specify a path to a newer one with --with-openssl-dir.]) ])
1041

1042
AC_COMPILE_IFELSE([AC_LANG_PROGRAM([[
1043
1044
1045
1046
1047
1048
1049
1050
#include <openssl/opensslv.h>
#include <openssl/evp.h>
#if defined(OPENSSL_NO_EC) || defined(OPENSSL_NO_ECDH) || defined(OPENSSL_NO_ECDSA)
#error "no ECC"
#endif
#if !defined(NID_X9_62_prime256v1) || !defined(NID_secp224r1)
#error "curves unavailable"
#endif
1051
   ]], [[]])],
1052
   [ : ],
1053
   [ AC_MSG_ERROR([OpenSSL is built without full ECC support, including curves P256 and P224. You can specify a path to one with ECC support with --with-openssl-dir.]) ])
1054

1055
1056
1057
1058
AC_CHECK_MEMBERS([struct ssl_method_st.get_cipher_by_char], , ,
[#include <openssl/ssl.h>
])

1059
1060
1061
1062
dnl OpenSSL functions which we might not have.  In theory, we could just
dnl check the openssl version number, but in practice that gets pretty
dnl confusing with LibreSSL, OpenSSL, and various distributions' patches
dnl to them.
1063
AC_CHECK_FUNCS([ \
1064
		ERR_load_KDF_strings \
1065
1066
1067
1068
		EVP_PBE_scrypt \
		SSL_CIPHER_find \
		SSL_CTX_set1_groups_list \
		SSL_CTX_set_security_level \
1069
		SSL_SESSION_get_master_key \
1070
1071
		SSL_get_client_ciphers \
		SSL_get_client_random \
1072
		SSL_get_server_random \
1073
		TLS_method \
1074
	       ])
rl1987's avatar
rl1987 committed
1075

1076
1077
1078
1079
1080
dnl Check if OpenSSL structures are opaque
AC_CHECK_MEMBERS([SSL.state], , ,
[#include <openssl/ssl.h>
])

1081
1082
1083
1084
AC_CHECK_SIZEOF(SHA_CTX, , [AC_INCLUDES_DEFAULT()
#include <openssl/sha.h>
])

1085
1086
fi # enable_nss

1087
1088
1089
1090
1091
1092
1093
1094
1095
dnl We will someday make KECCAK_TINY optional, but for now we still need
dnl it for SHAKE, since OpenSSL's SHAKE can't be squeezed more than
dnl once.  See comment in the definition of crypto_xof_t.

dnl AM_CONDITIONAL(BUILD_KECCAK_TINY,
dnl   test "x$ac_cv_func_EVP_sha3_256" != "xyes")

AM_CONDITIONAL(BUILD_KECCAK_TINY, true)

1096
1097
1098
dnl ======================================================================
dnl Can we use KIST?