mirror of
https://git.hardenedbsd.org/hardenedbsd/HardenedBSD.git
synced 2024-11-13 05:41:26 +01:00
5afab0e5e5
Merge commit 'cf3e3d5bd0a1fae39c74c7db5a4e8b10732d0766' Reviewed by: emaste Differential Revision: https://reviews.freebsd.org/D40226
1191 lines
36 KiB
Plaintext
1191 lines
36 KiB
Plaintext
# -*- Autoconf -*-
|
|
# Process this file with autoconf to produce a configure script.
|
|
AC_PREREQ(2.56)
|
|
sinclude(acx_nlnetlabs.m4)
|
|
|
|
# must be numbers. ac_defun because of later processing.
|
|
m4_define([VERSION_MAJOR],[1])
|
|
m4_define([VERSION_MINOR],[8])
|
|
m4_define([VERSION_MICRO],[3])
|
|
AC_INIT(ldns, m4_defn([VERSION_MAJOR]).m4_defn([VERSION_MINOR]).m4_defn([VERSION_MICRO]), libdns@nlnetlabs.nl, libdns)
|
|
AC_CONFIG_SRCDIR([packet.c])
|
|
# needed to build correct soname
|
|
AC_SUBST(LDNS_VERSION_MAJOR, [VERSION_MAJOR])
|
|
AC_SUBST(LDNS_VERSION_MINOR, [VERSION_MINOR])
|
|
AC_SUBST(LDNS_VERSION_MICRO, [VERSION_MICRO])
|
|
|
|
# Library version
|
|
# ---------------
|
|
# current:revision:age
|
|
# (binary-api-number):(which-binary-api-version):(how-many-nrs-backwardscompat)
|
|
# if source code changes increment revision
|
|
# if any interfaces have been added/removed/changed since last update then
|
|
# increment current and set revision to 0
|
|
# if any interfaces have been added since the last public release then increment age
|
|
# if any interfaces have been removed or changed since the last public release then
|
|
# set age to 0
|
|
#
|
|
# ldns-1.6.17 and before had a .so with version same as VERSION_INFO
|
|
# ldns-1.7.0 had libversion 2:0:0
|
|
# ldns-1.7.1 had libversion 3:0:0 (though it should have had 3:0:1)
|
|
# ldns-1.8.0 had libversion 4:0:2 (though it should have had 4:0:1)
|
|
# ldns-1.8.1 had libversion 5:0:2
|
|
# ldns-1.8.1 had libversion 6:0:3
|
|
# ldns-1.8.2 had libversion 7:0:4
|
|
# ldns-1.8.3 has libversion 8:0:5
|
|
#
|
|
AC_SUBST(VERSION_INFO, [8:0:5])
|
|
|
|
AC_AIX
|
|
if test "$ac_cv_header_minix_config_h" = "yes"; then
|
|
AC_DEFINE(_NETBSD_SOURCE,1, [Enable for compile on Minix])
|
|
fi
|
|
LT_INIT
|
|
AC_CONFIG_MACRO_DIR([m4])
|
|
|
|
OURCPPFLAGS=''
|
|
CPPFLAGS=${CPPFLAGS:-${OURCPPFLAGS}}
|
|
CFLAGS="$CFLAGS"
|
|
|
|
# Checks for programs.
|
|
AC_PROG_CC
|
|
ACX_DEPFLAG
|
|
AC_PROG_MAKE_SET
|
|
|
|
# Extra (sp)lint flags for NetBSD
|
|
AC_CANONICAL_HOST
|
|
case "$host_os" in
|
|
netbsd*) LINTFLAGS="'-D__RENAME(x)=' -D_NETINET_IN_H_ $LINTFLAGS"
|
|
;;
|
|
*) LINTFLAGS="$LINTFLAGS"
|
|
;;
|
|
esac
|
|
AC_SUBST(LINTFLAGS)
|
|
|
|
AC_DEFINE(WINVER, 0x0502, [the version of the windows API enabled])
|
|
|
|
ACX_CHECK_COMPILER_FLAG(std=c99, [C99FLAG="-std=c99"])
|
|
ACX_CHECK_COMPILER_FLAG(xc99, [C99FLAG="-xc99"])
|
|
|
|
# routine to copy files
|
|
# argument 1 is a list of files (relative to the source dir)
|
|
# argument 2 is a destination directory (relative to the current
|
|
# working directory
|
|
AC_DEFUN([COPY_FILES],
|
|
[
|
|
for file in $1; do
|
|
sh $srcdir/install-sh -m 644 $file $2
|
|
done
|
|
])
|
|
|
|
# copy all .h files in the dir at argument 1
|
|
# (relative to source) to the dir at argument 2
|
|
# (relative to current dir)
|
|
AC_DEFUN([COPY_HEADER_FILES],
|
|
[
|
|
echo "copying header files"
|
|
COPY_FILES($srcdir/$1/*.h, $2)
|
|
])
|
|
|
|
# Checks for typedefs, structures, and compiler characteristics.
|
|
AC_C_CONST
|
|
AC_LANG_C
|
|
if test "x$CFLAGS" = "x" ; then
|
|
ACX_CHECK_COMPILER_FLAG(g, [CFLAGS="-g"])
|
|
ACX_CHECK_COMPILER_FLAG(O2, [CFLAGS="-O2 $CFLAGS"])
|
|
fi
|
|
ACX_CHECK_COMPILER_FLAG(Wall, [CFLAGS="-Wall $CFLAGS"])
|
|
ACX_CHECK_COMPILER_FLAG(W, [CFLAGS="-W $CFLAGS"])
|
|
ACX_CHECK_COMPILER_FLAG(Wwrite-strings, [CFLAGS="-Wwrite-strings $CFLAGS"])
|
|
ACX_CHECK_COMPILER_FLAG(Wstrict-prototypes, [CFLAGS="-Wstrict-prototypes $CFLAGS"])
|
|
#ACX_CHECK_COMPILER_FLAG(Wshadow, [CFLAGS="-Wshadow $CFLAGS"])
|
|
ACX_CHECK_COMPILER_FLAG(Wunused-function, [CFLAGS="-Wunused-function $CFLAGS"])
|
|
ACX_CHECK_COMPILER_FLAG(Wmissing-prototypes, [CFLAGS="-Wmissing-prototypes $CFLAGS"])
|
|
ACX_CHECK_COMPILER_FLAG(fno-strict-aliasing, [CFLAGS="-fno-strict-aliasing $CFLAGS"])
|
|
|
|
AC_CHECK_HEADERS([getopt.h time.h],,, [AC_INCLUDES_DEFAULT])
|
|
|
|
# MinGW32 tests
|
|
AC_CHECK_HEADERS([winsock2.h ws2tcpip.h],,, [AC_INCLUDES_DEFAULT])
|
|
# end mingw32 tests
|
|
|
|
# Check for Apple header. This uncovers TARGET_OS_IPHONE, TARGET_OS_TV or TARGET_OS_WATCH
|
|
AC_CHECK_HEADERS([TargetConditionals.h])
|
|
|
|
ACX_DETERMINE_EXT_FLAGS_UNBOUND
|
|
|
|
AC_C_INLINE
|
|
AC_CHECK_TYPE(int8_t, char)
|
|
AC_CHECK_TYPE(int16_t, short)
|
|
AC_CHECK_TYPE(int32_t, int)
|
|
AC_CHECK_TYPE(int64_t, long long)
|
|
AC_CHECK_TYPE(uint8_t, unsigned char)
|
|
AC_CHECK_TYPE(uint16_t, unsigned short)
|
|
AC_CHECK_TYPE(uint32_t, unsigned int)
|
|
AC_CHECK_TYPE(uint64_t, unsigned long long)
|
|
|
|
# my own checks
|
|
AC_CHECK_PROG(doxygen, doxygen, doxygen)
|
|
|
|
# check to see if libraries are needed for these functions.
|
|
AC_CHECK_FUNC([socket],
|
|
[],
|
|
[AC_SEARCH_LIBS([socket], [socket])
|
|
])
|
|
|
|
# modern Linux provides inet_ntop in -lsocket.
|
|
# modern OS X provides inet_ntop in -lc.
|
|
# modern Solaris provides inet_ntop in -lsocket -lnsl.
|
|
# older Solaris provides inet_ntop in -lresolv.
|
|
AC_CHECK_FUNC([inet_ntop],
|
|
[],
|
|
[AC_SEARCH_LIBS([inet_ntop], [socket c nsl resolv], [ac_cv_func_inet_ntop=yes])
|
|
])
|
|
|
|
# modern Linux provides inet_pton in -lsocket.
|
|
# modern OS X provides inet_pton in -lc.
|
|
# modern Solaris provides inet_pton in -lsocket -lnsl.
|
|
# older Solaris provides inet_pton in -lresolv.
|
|
AC_CHECK_FUNC([inet_pton],
|
|
[],
|
|
[AC_SEARCH_LIBS([inet_pton], [socket c nsl resolv], [ac_cv_func_inet_pton=yes])
|
|
])
|
|
|
|
|
|
AC_ARG_WITH(drill, AC_HELP_STRING([--with-drill],
|
|
[Also build drill.]),
|
|
[],[with_drill="no"])
|
|
if test x_$with_drill != x_no ; then
|
|
AC_SUBST(DRILL,[drill])
|
|
AC_SUBST(INSTALL_DRILL,[install-drill])
|
|
AC_SUBST(UNINSTALL_DRILL,[uninstall-drill])
|
|
AC_SUBST(CLEAN_DRILL,[clean-drill])
|
|
AC_SUBST(LINT_DRILL,[lint-drill])
|
|
if test -e $srcdir/drill/config.h -o -e drill/config.h ; then
|
|
AC_MSG_ERROR([
|
|
A config.h was detected in the drill subdirectory.
|
|
This does not work with the --with-drill option.
|
|
Please remove the config.h from the drill subdirectory
|
|
or do not use the --with-drill option.])
|
|
fi
|
|
else
|
|
AC_SUBST(DRILL,[""])
|
|
AC_SUBST(INSTALL_DRILL,[""])
|
|
AC_SUBST(UNINSTALL_DRILL,[""])
|
|
AC_SUBST(CLEAN_DRILL,[""])
|
|
AC_SUBST(LINT_DRILL,[""])
|
|
fi
|
|
|
|
|
|
AC_ARG_WITH(examples, AC_HELP_STRING([--with-examples],
|
|
[Also build examples.]),
|
|
[],[with_examples="no"])
|
|
if test x_$with_examples != x_no ; then
|
|
AC_SUBST(EXAMPLES,[examples])
|
|
AC_SUBST(INSTALL_EXAMPLES,[install-examples])
|
|
AC_SUBST(UNINSTALL_EXAMPLES,[uninstall-examples])
|
|
AC_SUBST(CLEAN_EXAMPLES,[clean-examples])
|
|
AC_SUBST(LINT_EXAMPLES,[lint-examples])
|
|
if test -e $srcdir/examples/config.h -o -e examples/config.h ; then
|
|
AC_MSG_ERROR([
|
|
A config.h was detected in the examples subdirectory.
|
|
This does not work with the --with-examples option.
|
|
Please remove the config.h from the examples subdirectory
|
|
or do not use the --with-examples option.])
|
|
fi
|
|
else
|
|
AC_SUBST(EXAMPLES,[""])
|
|
AC_SUBST(INSTALL_EXAMPLES,[""])
|
|
AC_SUBST(UNINSTALL_EXAMPLES,[""])
|
|
AC_SUBST(CLEAN_EXAMPLES,[""])
|
|
AC_SUBST(LINT_EXAMPLES,[""])
|
|
fi
|
|
|
|
# add option to disable installation of ldns-config script
|
|
AC_ARG_ENABLE(ldns-config, AC_HELP_STRING([--disable-ldns-config], [disable installation of ldns-config (default=enabled)]),
|
|
enable_ldns_config=$enableval, enable_ldns_config=yes)
|
|
if test "x$enable_ldns_config" = xyes; then
|
|
AC_SUBST(INSTALL_CONFIG, [install-config])
|
|
AC_SUBST(INSTALL_CONFIG_MANPAGE, [install-config-manpage])
|
|
AC_SUBST(UNINSTALL_CONFIG, [uninstall-config])
|
|
AC_SUBST(UNINSTALL_CONFIG_MANPAGE, [uninstall-config-manpage])
|
|
else
|
|
AC_SUBST(INSTALL_CONFIG, [""])
|
|
AC_SUBST(INSTALL_CONFIG_MANPAGE, [""])
|
|
AC_SUBST(UNINSTALL_CONFIG, [""])
|
|
AC_SUBST(UNINSTALL_CONFIG_MANPAGE, [""])
|
|
fi
|
|
|
|
# add option to disable library printing to stderr
|
|
AC_ARG_ENABLE(stderr-msgs, AC_HELP_STRING([--enable-stderr-msgs], [Enable printing to stderr (default=disabled)]), enable_stderr_msgs=$enableval, enable_stderr_msgs=no)
|
|
case "$enable_stderr_msgs" in
|
|
no) dnl default
|
|
;;
|
|
*)
|
|
AC_DEFINE_UNQUOTED([STDERR_MSGS], [1], [Define this to enable messages to stderr.])
|
|
;;
|
|
esac
|
|
|
|
AX_HAVE_POLL(
|
|
[AX_CONFIG_FEATURE_ENABLE(poll)],
|
|
[AX_CONFIG_FEATURE_DISABLE(poll)])
|
|
AX_CONFIG_FEATURE(
|
|
[poll], [This platform supports poll(7)],
|
|
[HAVE_POLL], [This platform supports poll(7).])
|
|
|
|
# check for python
|
|
PYTHON_X_CFLAGS=""
|
|
ldns_with_pyldns=no
|
|
ldns_with_pyldnsx=no
|
|
AC_ARG_WITH(pyldns, AC_HELP_STRING([--with-pyldns],
|
|
[generate python library, or --without-pyldns to disable Python support.]),
|
|
[],[ withval="no" ])
|
|
ldns_have_python=no
|
|
if test x_$withval != x_no; then
|
|
sinclude(ax_python_devel.m4)
|
|
ac_save_LIBS="$LIBS" dnl otherwise AC_PYTHON_DEVEL thrashes $LIBS
|
|
|
|
AX_PYTHON_DEVEL([>= '2.4.0'])
|
|
if test ! -z "$ac_python_version"; then
|
|
ldns_have_python=yes
|
|
fi
|
|
|
|
# pass additional Python 3 option to SWIG
|
|
if test `$PYTHON -c "import sys; \
|
|
ver = sys.version.split()[[0]]; \
|
|
print(ver >= '3')"` = "True"; then
|
|
AC_SUBST(SWIGPY3, ["-py3 -DPY3"])
|
|
fi
|
|
|
|
# check for SWIG
|
|
if test x_$ldns_have_python != x_no; then
|
|
sinclude(ax_pkg_swig.m4)
|
|
|
|
# check for >=SWIG-2.0.4 if Python 3.2 used
|
|
if test `$PYTHON -c "import sys; \
|
|
ver = sys.version.split()[[0]]; \
|
|
print(ver >= '3.2')"` = "True"; then
|
|
AX_PKG_SWIG(2.0.4, [], [AC_MSG_ERROR([SWIG-2.0.4 is required to build pyldns for Python 3.2 and greater.])])
|
|
else
|
|
AX_PKG_SWIG
|
|
fi
|
|
|
|
if test ! -x "$SWIG"; then
|
|
AC_MSG_ERROR([failed to find SWIG tool, install it, or do not build pyldns])
|
|
else
|
|
AC_DEFINE(HAVE_SWIG,1,[Define if you have SWIG libraries and header files.])
|
|
AC_SUBST(PYLDNS, "pyldns")
|
|
AC_SUBST(swig, "$SWIG")
|
|
ldns_with_pyldns=yes
|
|
fi
|
|
else
|
|
AC_MSG_RESULT([*** don't have Python, skipping SWIG, no pyldns ***]) # '
|
|
fi
|
|
|
|
# xtra cflags for pyldns
|
|
if test x_$ldns_have_python != x_no; then
|
|
ACX_CHECK_COMPILER_FLAG(fno-strict-aliasing, [PYTHON_X_CFLAGS="-fno-strict-aliasing"])
|
|
ACX_CHECK_COMPILER_FLAG(Wno-missing-field-initializers, [PYTHON_X_CFLAGS="-Wno-missing-field-initializers $PYTHON_X_CFLAGS"])
|
|
ACX_CHECK_COMPILER_FLAG(Wno-unused-parameter, [PYTHON_X_CFLAGS="-Wno-unused-parameter $PYTHON_X_CFLAGS"])
|
|
ACX_CHECK_COMPILER_FLAG(Wno-unused-variable, [PYTHON_X_CFLAGS="-Wno-unused-variable $PYTHON_X_CFLAGS"])
|
|
fi
|
|
fi
|
|
AC_SUBST(PYTHON_X_CFLAGS)
|
|
|
|
# Check for pyldnsx
|
|
AC_ARG_WITH(pyldnsx, AC_HELP_STRING([--without-pyldnsx],
|
|
[Do not install the ldnsx python module, or --with-pyldnsx to install it.]),
|
|
[],[ withval="with_pyldns" ])
|
|
if test x_$withval != x_no; then
|
|
if test x_$ldns_with_pyldns != x_no; then
|
|
AC_SUBST(PYLDNSX, "pyldnsx")
|
|
ldns_with_pyldnsx=yes
|
|
else
|
|
if test x_$withval != x_with_pyldns; then
|
|
AC_MSG_ERROR([--with-pyldns is needed for the ldnsx python module])
|
|
fi
|
|
fi
|
|
fi
|
|
|
|
if test x_$ldns_with_pyldns != x_no; then
|
|
AC_SUBST(PYLDNSINST, "install-pyldns")dnl
|
|
AC_SUBST(PYLDNSUNINST, "uninstall-pyldns")
|
|
else
|
|
AC_SUBST(PYLDNSINST, "")dnl
|
|
AC_SUBST(PYLDNSUNINST, "")
|
|
fi
|
|
if test x_$ldns_with_pyldnsx != x_no; then
|
|
AC_SUBST(PYLDNSXINST, "install-pyldnsx")dnl
|
|
AC_SUBST(PYLDNSXUNINST, "uninstall-pyldnsx")
|
|
else
|
|
AC_SUBST(PYLDNSXINST, "")dnl
|
|
AC_SUBST(PYLDNSXUNINST, "")
|
|
fi
|
|
|
|
# check for perl
|
|
ldns_with_p5_dns_ldns=no
|
|
AC_ARG_WITH(p5-dns-ldns, AC_HELP_STRING([--with-p5-dns-ldns],
|
|
[generate DNS::LDNS perl bindings]),
|
|
[],[ withval="no" ])
|
|
ldns_have_perl=no
|
|
if test x_$withval != x_no; then
|
|
AC_PATH_PROG([PERL], [perl])
|
|
if test -z "$PERL"; then
|
|
AC_MSG_ERROR([Cannot find perl in your system path])
|
|
fi
|
|
AC_SUBST(P5_DNS_LDNS, "p5-dns-ldns")dnl
|
|
AC_SUBST(TEST_P5_DNS_LDNS, "test-p5-dns-ldns")dnl
|
|
AC_SUBST(INSTALL_P5_DNS_LDNS, "install-p5-dns-ldns")dnl
|
|
AC_SUBST(UNINSTALL_P5_DNS_LDNS, "uninstall-p5-dns-ldns")dnl
|
|
AC_SUBST(CLEAN_P5_DNS_LDNS, "clean-p5-dns-ldns")
|
|
else
|
|
AC_SUBST(P5_DNS_LDNS, "")dnl
|
|
AC_SUBST(TEST_P5_DNS_LDNS, "")dnl
|
|
AC_SUBST(INSTALL_P5_DNS_LDNS, "")dnl
|
|
AC_SUBST(UNINSTALL_P5_DNS_LDNS, "")dnl
|
|
AC_SUBST(CLEAN_P5_DNS_LDNS, "")
|
|
fi
|
|
|
|
# Use libtool
|
|
ACX_LIBTOOL_C_ONLY
|
|
|
|
tmp_CPPFLAGS=$CPPFLAGS
|
|
tmp_LDFLAGS=$LDFLAGS
|
|
tmp_LIBS=$LIBS
|
|
|
|
ACX_WITH_SSL_OPTIONAL
|
|
AC_MSG_CHECKING([for LibreSSL])
|
|
if grep VERSION_TEXT $ssldir/include/openssl/opensslv.h | grep "LibreSSL" >/dev/null; then
|
|
AC_MSG_RESULT([yes])
|
|
AC_DEFINE([HAVE_LIBRESSL], [1], [Define if we have LibreSSL])
|
|
else
|
|
AC_MSG_RESULT([no])
|
|
fi
|
|
AC_CHECK_HEADERS([openssl/ssl.h openssl/evp.h openssl/engine.h openssl/conf.h])
|
|
AC_CHECK_FUNCS([EVP_sha256 EVP_sha384 EVP_sha512 EVP_PKEY_keygen ECDSA_SIG_get0 EVP_MD_CTX_new DSA_SIG_set0 DSA_SIG_get0 EVP_dss1 DSA_get0_pqg DSA_get0_key EVP_cleanup ENGINE_cleanup ENGINE_free CRYPTO_cleanup_all_ex_data ERR_free_strings CONF_modules_unload OPENSSL_init_ssl OPENSSL_init_crypto ERR_load_crypto_strings CRYPTO_memcmp EVP_PKEY_get_base_id])
|
|
AC_CHECK_DECLS([EVP_PKEY_base_id], [
|
|
AC_DEFINE_UNQUOTED([HAVE_EVP_PKEY_BASE_ID], [1], [Define to 1 if you have the EVP_PKEY_base_id function or macro.])
|
|
], [], [AC_INCLUDES_DEFAULT
|
|
#include <openssl/evp.h>
|
|
])
|
|
AC_MSG_CHECKING([Checking for OpenSSL >= 3.0.0])
|
|
AC_COMPILE_IFELSE([AC_LANG_PROGRAM([
|
|
#include <openssl/ssl.h>
|
|
#if OPENSSL_VERSION_MAJOR >= 3
|
|
#define SOMETHING
|
|
#else
|
|
This fails compiling.
|
|
So either no OpenSSL at all (the include already failed), or the version < 3.0.0
|
|
#endif
|
|
], [
|
|
])], [
|
|
AC_MSG_RESULT(yes)
|
|
CFLAGS="-DOPENSSL_API_COMPAT=10100 $CFLAGS"
|
|
], [ AC_MSG_RESULT(no)
|
|
])
|
|
|
|
|
|
# for macosx, see if glibtool exists and use that
|
|
# BSD's need to know the version...
|
|
#AC_CHECK_PROG(glibtool, glibtool, [glibtool], )
|
|
#AC_CHECK_PROGS(libtool, [libtool15 libtool], [./libtool])
|
|
|
|
AC_ARG_ENABLE(sha2, AC_HELP_STRING([--disable-sha2], [Disable SHA256 and SHA512 RRSIG support]))
|
|
case "$enable_sha2" in
|
|
no)
|
|
;;
|
|
yes|*)
|
|
if test "x$HAVE_SSL" != "xyes"; then
|
|
AC_MSG_ERROR([SHA2 enabled, but no SSL support])
|
|
fi
|
|
AC_MSG_CHECKING(for SHA256 and SHA512)
|
|
AC_CHECK_FUNC(SHA256_Init, [], [
|
|
AC_MSG_ERROR([No SHA2 functions found in OpenSSL: please upgrade OpenSSL or rerun with --disable-sha2])
|
|
])
|
|
AC_DEFINE_UNQUOTED([USE_SHA2], [1], [Define this to enable SHA256 and SHA512 support.])
|
|
;;
|
|
esac
|
|
|
|
# check whether gost also works
|
|
AC_DEFUN([AC_CHECK_GOST_WORKS],
|
|
[AC_REQUIRE([AC_PROG_CC])
|
|
AC_MSG_CHECKING([if GOST works])
|
|
if test c${cross_compiling} = cno; then
|
|
BAKCFLAGS="$CFLAGS"
|
|
if test -n "$ssldir"; then
|
|
if test ! -d "$ssldir/lib" -a -d "$ssldir/lib64"; then
|
|
CFLAGS="$CFLAGS -Wl,-rpath,$ssldir/lib64"
|
|
else
|
|
CFLAGS="$CFLAGS -Wl,-rpath,$ssldir/lib"
|
|
fi
|
|
fi
|
|
AC_RUN_IFELSE([AC_LANG_SOURCE([[
|
|
#include <string.h>
|
|
#ifdef HAVE_OPENSSL_SSL_H
|
|
#include <openssl/ssl.h>
|
|
#endif
|
|
#ifdef HAVE_OPENSSL_EVP_H
|
|
#include <openssl/evp.h>
|
|
#endif
|
|
#ifdef HAVE_OPENSSL_ENGINE_H
|
|
#include <openssl/engine.h>
|
|
#endif
|
|
#ifdef HAVE_OPENSSL_CONF_H
|
|
#include <openssl/conf.h>
|
|
#endif
|
|
/* routine to load gost (from sldns) */
|
|
int load_gost_id(void)
|
|
{
|
|
static int gost_id = 0;
|
|
const EVP_PKEY_ASN1_METHOD* meth;
|
|
ENGINE* e;
|
|
|
|
if(gost_id) return gost_id;
|
|
|
|
/* see if configuration loaded gost implementation from other engine*/
|
|
meth = EVP_PKEY_asn1_find_str(NULL, "gost2001", -1);
|
|
if(meth) {
|
|
EVP_PKEY_asn1_get0_info(&gost_id, NULL, NULL, NULL, NULL, meth);
|
|
return gost_id;
|
|
}
|
|
|
|
/* see if engine can be loaded already */
|
|
e = ENGINE_by_id("gost");
|
|
if(!e) {
|
|
/* load it ourself, in case statically linked */
|
|
ENGINE_load_builtin_engines();
|
|
ENGINE_load_dynamic();
|
|
e = ENGINE_by_id("gost");
|
|
}
|
|
if(!e) {
|
|
/* no gost engine in openssl */
|
|
return 0;
|
|
}
|
|
if(!ENGINE_set_default(e, ENGINE_METHOD_ALL)) {
|
|
ENGINE_finish(e);
|
|
ENGINE_free(e);
|
|
return 0;
|
|
}
|
|
|
|
meth = EVP_PKEY_asn1_find_str(&e, "gost2001", -1);
|
|
if(!meth) {
|
|
/* algo not found */
|
|
ENGINE_finish(e);
|
|
ENGINE_free(e);
|
|
return 0;
|
|
}
|
|
EVP_PKEY_asn1_get0_info(&gost_id, NULL, NULL, NULL, NULL, meth);
|
|
return gost_id;
|
|
}
|
|
int main(void) {
|
|
EVP_MD_CTX* ctx;
|
|
const EVP_MD* md;
|
|
unsigned char digest[64]; /* its a 256-bit digest, so uses 32 bytes */
|
|
const char* str = "Hello world";
|
|
const unsigned char check[] = {
|
|
0x40 , 0xed , 0xf8 , 0x56 , 0x5a , 0xc5 , 0x36 , 0xe1 ,
|
|
0x33 , 0x7c , 0x7e , 0x87 , 0x62 , 0x1c , 0x42 , 0xe0 ,
|
|
0x17 , 0x1b , 0x5e , 0xce , 0xa8 , 0x46 , 0x65 , 0x4d ,
|
|
0x8d , 0x3e , 0x22 , 0x9b , 0xe1 , 0x30 , 0x19 , 0x9d
|
|
};
|
|
OPENSSL_config(NULL);
|
|
(void)load_gost_id();
|
|
md = EVP_get_digestbyname("md_gost94");
|
|
if(!md) return 1;
|
|
memset(digest, 0, sizeof(digest));
|
|
ctx = EVP_MD_CTX_create();
|
|
if(!ctx) return 2;
|
|
if(!EVP_DigestInit_ex(ctx, md, NULL)) return 3;
|
|
if(!EVP_DigestUpdate(ctx, str, 10)) return 4;
|
|
if(!EVP_DigestFinal_ex(ctx, digest, NULL)) return 5;
|
|
/* uncomment to see the hash calculated.
|
|
{int i;
|
|
for(i=0; i<32; i++)
|
|
printf(" %2.2x", (int)digest[i]);
|
|
printf("\n");}
|
|
*/
|
|
if(memcmp(digest, check, sizeof(check)) != 0)
|
|
return 6;
|
|
return 0;
|
|
}
|
|
]])] , [eval "ac_cv_c_gost_works=yes"], [eval "ac_cv_c_gost_works=no"])
|
|
CFLAGS="$BAKCFLAGS"
|
|
else
|
|
eval "ac_cv_c_gost_works=maybe"
|
|
fi
|
|
])dnl
|
|
|
|
AC_ARG_ENABLE(gost, AC_HELP_STRING([--disable-gost], [Disable GOST support]))
|
|
case "$enable_gost" in
|
|
no)
|
|
;;
|
|
*) dnl default
|
|
if test "x$HAVE_SSL" != "xyes"; then
|
|
AC_MSG_ERROR([GOST enabled, but no SSL support])
|
|
fi
|
|
AC_MSG_CHECKING(for GOST)
|
|
AC_CHECK_FUNC(EVP_PKEY_set_type_str, [],[AC_MSG_ERROR([OpenSSL >= 1.0.0 is needed for GOST support or rerun with --disable-gost])])
|
|
AC_CHECK_FUNC(EC_KEY_new, [], [AC_MSG_ERROR([No ECC functions found in OpenSSL: please upgrade OpenSSL or rerun with --disable-gost])])
|
|
AC_CHECK_GOST_WORKS
|
|
AC_ARG_ENABLE(gost-anyway, AC_HELP_STRING([--enable-gost-anyway], [Enable GOST even without a GOST engine installed]))
|
|
if test "$ac_cv_c_gost_works" != "no" -o "$enable_gost_anyway" = "yes"; then
|
|
if test "$ac_cv_c_gost_works" = "no"; then
|
|
AC_MSG_RESULT([no, but compiling with GOST support anyway])
|
|
else
|
|
AC_MSG_RESULT([yes])
|
|
fi
|
|
use_gost="yes"
|
|
AC_DEFINE([USE_GOST], [1], [Define this to enable GOST support.])
|
|
else
|
|
AC_MSG_RESULT([no])
|
|
AC_MSG_WARN([Gost support does not work because the engine is missing.])
|
|
AC_MSG_WARN([Install gost-engine first or use the --enable-gost-anyway to compile with GOST support anyway])
|
|
AC_MSG_WARN([See also https://github.com/gost-engine/engine/wiki for information about gost-engine])
|
|
fi
|
|
;;
|
|
esac
|
|
|
|
AC_ARG_ENABLE(ecdsa, AC_HELP_STRING([--disable-ecdsa], [Disable ECDSA support]))
|
|
case "$enable_ecdsa" in
|
|
no)
|
|
;;
|
|
*) dnl default
|
|
if test "x$HAVE_SSL" != "xyes"; then
|
|
AC_MSG_ERROR([ECDSA enabled, but no SSL support])
|
|
fi
|
|
AC_CHECK_FUNC(ECDSA_sign, [], [AC_MSG_ERROR([OpenSSL does not support ECDSA: please upgrade OpenSSL or rerun with --disable-ecdsa])])
|
|
AC_CHECK_FUNC(SHA384_Init, [], [AC_MSG_ERROR([OpenSSL does not support SHA384: please upgrade OpenSSL or rerun with --disable-ecdsa])])
|
|
AC_CHECK_DECLS([NID_X9_62_prime256v1, NID_secp384r1], [], [AC_MSG_ERROR([OpenSSL does not support the ECDSA curves: please upgrade OpenSSL or rerun with --disable-ecdsa])], [AC_INCLUDES_DEFAULT
|
|
#include <openssl/evp.h>
|
|
])
|
|
# we now know we have ECDSA and the required curves.
|
|
AC_DEFINE_UNQUOTED([USE_ECDSA], [1], [Define this to enable ECDSA support.])
|
|
;;
|
|
esac
|
|
|
|
AC_ARG_ENABLE(dsa, AC_HELP_STRING([--disable-dsa], [Disable DSA support]))
|
|
case "$enable_dsa" in
|
|
no)
|
|
AC_SUBST(ldns_build_config_use_dsa, 0)
|
|
;;
|
|
*) dnl default
|
|
# detect if DSA is supported, and turn it off if not.
|
|
AC_CHECK_FUNC(DSA_SIG_new, [
|
|
AC_DEFINE_UNQUOTED([USE_DSA], [1], [Define this to enable DSA support.])
|
|
AC_SUBST(ldns_build_config_use_dsa, 1)
|
|
], [if test "x$enable_dsa" = "xyes"; then AC_MSG_ERROR([OpenSSL does not support DSA and you used --enable-dsa.])
|
|
fi
|
|
AC_SUBST(ldns_build_config_use_dsa, 0)])
|
|
;;
|
|
esac
|
|
|
|
AC_ARG_ENABLE(ed25519, AC_HELP_STRING([--disable-ed25519], [Disable (experimental) ED25519 support. Default is detect]))
|
|
case "$enable_ed25519" in
|
|
no)
|
|
AC_SUBST(ldns_build_config_use_ed25519, 0)
|
|
;;
|
|
*) dnl default
|
|
AC_CHECK_DECLS([NID_ED25519], [
|
|
AC_DEFINE_UNQUOTED([USE_ED25519], [1], [Define this to enable ED25519 support.])
|
|
AC_SUBST(ldns_build_config_use_ed25519, 1)
|
|
], [if test "x$enable_ed25519" = "xyes"; then AC_MSG_ERROR([OpenSSL does not support ED25519 and you used --enable-ed25519.])
|
|
fi
|
|
AC_SUBST(ldns_build_config_use_ed25519, 0)], [AC_INCLUDES_DEFAULT
|
|
#include <openssl/evp.h>
|
|
])
|
|
;;
|
|
esac
|
|
|
|
AC_ARG_ENABLE(ed448, AC_HELP_STRING([--disable-ed448], [Disable (experimental) ED448 support. Default is detect]))
|
|
case "$enable_ed448" in
|
|
no)
|
|
AC_SUBST(ldns_build_config_use_ed448, 0)
|
|
;;
|
|
*) dnl default
|
|
AC_CHECK_DECLS([NID_ED448], [
|
|
AC_DEFINE_UNQUOTED([USE_ED448], [1], [Define this to enable ED448 support.])
|
|
AC_SUBST(ldns_build_config_use_ed448, 1)
|
|
], [if test "x$enable_ed448" = "xyes"; then AC_MSG_ERROR([OpenSSL does not support ED448 and you used --enable-ed448.])
|
|
fi
|
|
AC_SUBST(ldns_build_config_use_ed448, 0)], [AC_INCLUDES_DEFAULT
|
|
#include <openssl/evp.h>
|
|
])
|
|
;;
|
|
esac
|
|
|
|
AC_ARG_ENABLE(dane, AC_HELP_STRING([--disable-dane], [Disable DANE support]))
|
|
AC_ARG_ENABLE(dane-verify, AC_HELP_STRING([--disable-dane-verify], [Disable DANE verify support]))
|
|
AC_ARG_ENABLE(dane-ta-usage, AC_HELP_STRING([--disable-dane-ta-usage], [Disable DANE-TA usage type support]))
|
|
|
|
AC_ARG_ENABLE(full-dane,, [
|
|
enable_dane_ta_usage=yes
|
|
enable_dane_verify=yes
|
|
enable_dane=yes
|
|
])
|
|
AC_ARG_ENABLE(no-dane-ta-usage,, [
|
|
enable_dane_ta_usage=no
|
|
enable_dane_verify=yes
|
|
enable_dane=yes
|
|
])
|
|
AC_ARG_ENABLE(no-dane-verify,, [
|
|
enable_dane_ta_usage=no
|
|
enable_dane_verify=no
|
|
enable_dane=yes
|
|
])
|
|
case "$enable_dane" in
|
|
no)
|
|
AC_SUBST(ldns_build_config_use_dane, 0)
|
|
AC_SUBST(ldns_build_config_use_dane_verify, 0)
|
|
AC_SUBST(ldns_build_config_use_dane_ta_usage, 0)
|
|
;;
|
|
*) dnl default
|
|
if test "x$HAVE_SSL" != "xyes"; then
|
|
AC_MSG_ERROR([DANE enabled, but no SSL support])
|
|
fi
|
|
AC_CHECK_FUNC(X509_check_ca, [], [AC_MSG_ERROR([OpenSSL does not support DANE: please upgrade OpenSSL or rerun with --disable-dane])])
|
|
AC_SUBST(ldns_build_config_use_dane, 1)
|
|
AC_DEFINE_UNQUOTED([USE_DANE], [1], [Define this to enable DANE support.])
|
|
case "$enable_dane_verify" in
|
|
no)
|
|
AC_SUBST(ldns_build_config_use_dane_verify, 0)
|
|
AC_SUBST(ldns_build_config_use_dane_ta_usage, 0)
|
|
;;
|
|
*)
|
|
AC_SUBST(ldns_build_config_use_dane_verify, 1)
|
|
AC_DEFINE_UNQUOTED([USE_DANE_VERIFY], [1], [Define this to enable DANE verify support.])
|
|
case "$enable_dane_ta_usage" in
|
|
no)
|
|
AC_SUBST(ldns_build_config_use_dane_ta_usage, 0)
|
|
;;
|
|
*) dnl default
|
|
danetmpLIBS="$LIBS"
|
|
LIBS="-lssl -lcrypto $LIBS"
|
|
AC_CHECK_FUNC(SSL_get0_dane, [], [AC_MSG_ERROR([OpenSSL does not support offline DANE verification (Needed for the DANE-TA usage type). Please upgrade OpenSSL to version >= 1.1.0 or rerun with --disable-dane-verify or --disable-dane-ta-usage])])
|
|
LIBSSL_LIBS="-lssl $LIBSSL_LIBS"
|
|
LIBS="$danetmpLIBS"
|
|
AC_SUBST(ldns_build_config_use_dane_ta_usage, 1)
|
|
AC_DEFINE_UNQUOTED([USE_DANE_TA_USAGE], [1], [Define this to enable DANE-TA usage type support.])
|
|
;;
|
|
esac
|
|
esac
|
|
;;
|
|
esac
|
|
|
|
AC_ARG_ENABLE(rrtype-ninfo, AC_HELP_STRING([--enable-rrtype-ninfo], [Enable draft RR type ninfo.]))
|
|
case "$enable_rrtype_ninfo" in
|
|
yes)
|
|
AC_DEFINE_UNQUOTED([RRTYPE_NINFO], [], [Define this to enable RR type NINFO.])
|
|
;;
|
|
no|*)
|
|
;;
|
|
esac
|
|
AC_ARG_ENABLE(rrtype-rkey, AC_HELP_STRING([--enable-rrtype-rkey], [Enable draft RR type rkey.]))
|
|
case "$enable_rrtype_rkey" in
|
|
yes)
|
|
AC_DEFINE_UNQUOTED([RRTYPE_RKEY], [], [Define this to enable RR type RKEY.])
|
|
;;
|
|
no|*)
|
|
;;
|
|
esac
|
|
AC_ARG_ENABLE(rrtype-openpgpkey, AC_HELP_STRING([--disable-rrtype-openpgpkey], [Disable openpgpkey RR type.]))
|
|
case "$enable_rrtype_openpgpkey" in
|
|
no)
|
|
;;
|
|
yes|*)
|
|
AC_DEFINE_UNQUOTED([RRTYPE_OPENPGPKEY], [], [Define this to enable RR type OPENPGPKEY.])
|
|
;;
|
|
esac
|
|
AC_ARG_ENABLE(rrtype-ta, AC_HELP_STRING([--enable-rrtype-ta], [Enable draft RR type ta.]))
|
|
case "$enable_rrtype_ta" in
|
|
yes)
|
|
AC_DEFINE_UNQUOTED([RRTYPE_TA], [], [Define this to enable RR type TA.])
|
|
;;
|
|
no|*)
|
|
;;
|
|
esac
|
|
AC_ARG_ENABLE(rrtype-avc, AC_HELP_STRING([--enable-rrtype-avc], [Enable draft RR type avc.]))
|
|
case "$enable_rrtype_avc" in
|
|
yes)
|
|
AC_DEFINE_UNQUOTED([RRTYPE_AVC], [], [Define this to enable RR type AVC.])
|
|
;;
|
|
no|*)
|
|
;;
|
|
esac
|
|
AC_ARG_ENABLE(rrtype-doa, AC_HELP_STRING([--enable-rrtype-doa], [Enable draft RR type DOA.]))
|
|
case "$enable_rrtype_doa" in
|
|
yes)
|
|
AC_DEFINE_UNQUOTED([RRTYPE_DOA], [], [Define this to enable RR type DOA.])
|
|
;;
|
|
no|*)
|
|
;;
|
|
esac
|
|
AC_ARG_ENABLE(rrtype-amtrelay, AC_HELP_STRING([--enable-rrtype-amtrelay], [Enable draft RR type AMTRELAY.]))
|
|
case "$enable_rrtype_amtrelay" in
|
|
yes)
|
|
AC_DEFINE_UNQUOTED([RRTYPE_AMTRELAY], [], [Define this to enable RR type AMTRELAY.])
|
|
;;
|
|
no|*)
|
|
;;
|
|
esac
|
|
AC_ARG_ENABLE(rrtype-svcb-https, AC_HELP_STRING([--disable-rrtype-svcb-https], [Disable RR types SVCB and HTTPS.]))
|
|
case "$enable_rrtype_svcb_https" in
|
|
no)
|
|
;;
|
|
yes|*)
|
|
AC_DEFINE_UNQUOTED([RRTYPE_SVCB_HTTPS], [], [Define this to enable RR types SVCB and HTTPS.])
|
|
;;
|
|
esac
|
|
|
|
|
|
|
|
AC_SUBST(LIBSSL_CPPFLAGS)
|
|
AC_SUBST(LIBSSL_LDFLAGS)
|
|
AC_SUBST(LIBSSL_LIBS)
|
|
if test "x$HAVE_SSL" = "xyes"; then
|
|
if echo "$LIBSSL_LIBS" | grep -- "-lssl" >/dev/null 2>&1; then
|
|
LIBSSL_SSL_LIBS="$LIBSSL_LIBS"
|
|
else
|
|
LIBSSL_SSL_LIBS="-lssl $LIBSSL_LIBS"
|
|
fi
|
|
AC_SUBST(LIBSSL_SSL_LIBS, "$LIBSSL_SSL_LIBS")
|
|
fi
|
|
CPPFLAGS=$tmp_CPPFLAGS
|
|
LDFLAGS=$tmp_LDFLAGS
|
|
LIBS=$tmp_LIBS
|
|
|
|
|
|
# add option to disable the evil rpath
|
|
ACX_ARG_RPATH
|
|
|
|
#AC_RUN_IFELSE([AC_LANG_SOURCE(
|
|
#[
|
|
#int main()
|
|
#{
|
|
#short one = 1;
|
|
#char *cp = (char*)&one;
|
|
#if ( *cp == 0 )
|
|
#return(0);
|
|
#else
|
|
#return(1);
|
|
#}
|
|
#])], [],[
|
|
#AC_DEFINE(CONFCHECK_LITTLE_ENDIAN, 1, [system appears to be little-endian])
|
|
#],[])
|
|
|
|
# should define WORDS_BIGENDIAN if the system is big-endian
|
|
AC_C_BIGENDIAN
|
|
|
|
# Checks for header files.
|
|
AC_HEADER_STDC
|
|
AC_HEADER_STDBOOL
|
|
#AC_HEADER_SYS_WAIT
|
|
#AC_CHECK_HEADERS([getopt.h fcntl.h stdlib.h string.h strings.h unistd.h])
|
|
# do the very minimum - we can always extend this
|
|
AC_CHECK_HEADERS([getopt.h stdarg.h openssl/ssl.h netinet/in.h time.h arpa/inet.h netdb.h],,, [AC_INCLUDES_DEFAULT])
|
|
AC_CHECK_HEADERS(sys/param.h sys/mount.h,,,
|
|
[AC_INCLUDES_DEFAULT
|
|
[
|
|
#if HAVE_SYS_PARAM_H
|
|
# include <sys/param.h>
|
|
#endif
|
|
]
|
|
])
|
|
AC_CHECK_HEADER(sys/socket.h,
|
|
[
|
|
include_sys_socket_h='#include <sys/socket.h>'
|
|
AC_DEFINE(HAVE_SYS_SOCKET_H, 1, [define if you have sys/socket.h])
|
|
],[
|
|
include_sys_socket_h=''
|
|
],[AC_INCLUDES_DEFAULT
|
|
[
|
|
#if HAVE_SYS_PARAM_H
|
|
# include <sys/param.h>
|
|
#endif
|
|
]
|
|
])
|
|
AC_SUBST(include_sys_socket_h)
|
|
AC_CHECK_HEADER(inttypes.h,
|
|
[
|
|
include_inttypes_h='#include <inttypes.h>'
|
|
AC_DEFINE(HAVE_INTTYPES_H, 1, [define if you have inttypes.h])
|
|
AC_SUBST(ldns_build_config_have_inttypes_h, 1)
|
|
],[
|
|
include_inttypes_h=''
|
|
AC_SUBST(ldns_build_config_have_inttypes_h, 0)
|
|
],[AC_INCLUDES_DEFAULT
|
|
])
|
|
AC_SUBST(include_inttypes_h)
|
|
AC_CHECK_HEADER(sys/types.h,
|
|
[
|
|
include_systypes_h='#include <sys/types.h>'
|
|
AC_DEFINE(HAVE_SYS_TYPES_H, 1, [define if you have sys/types.h])
|
|
],[
|
|
include_systypes_h=''
|
|
],[AC_INCLUDES_DEFAULT
|
|
])
|
|
AC_SUBST(include_systypes_h)
|
|
AC_CHECK_HEADER(unistd.h,
|
|
[
|
|
include_unistd_h='#include <unistd.h>'
|
|
AC_DEFINE(HAVE_UNISTD_H, 1, [define if you have unistd.h])
|
|
],[
|
|
include_unistd_h=''
|
|
],[AC_INCLUDES_DEFAULT
|
|
])
|
|
AC_SUBST(include_unistd_h)
|
|
|
|
AC_CHECK_SIZEOF(time_t,,[
|
|
AC_INCLUDES_DEFAULT
|
|
#ifdef TIME_WITH_SYS_TIME
|
|
# include <sys/time.h>
|
|
# include <time.h>
|
|
#else
|
|
# ifdef HAVE_SYS_TIME_H
|
|
# include <sys/time.h>
|
|
# else
|
|
# include <time.h>
|
|
# endif
|
|
#endif
|
|
])
|
|
|
|
if test x_$with_examples != x_no; then
|
|
AC_CHECK_HEADERS([pcap.h],,, [AC_INCLUDES_DEFAULT])
|
|
AC_CHECK_LIB(pcap, pcap_open_offline, [
|
|
AC_DEFINE([HAVE_LIBPCAP], [1], [Define to 1 if you have the `pcap' library (-lpcap).])dnl`
|
|
AC_SUBST([LIBPCAP_LIBS], [-lpcap])
|
|
], [
|
|
AC_MSG_WARN([Can't find pcap library (needed for ldns-dpa, will not build dpa now.)])dnl'
|
|
AC_SUBST([LIBPCAP_LIBS], [])
|
|
]
|
|
)
|
|
AC_CHECK_HEADERS([netinet/in_systm.h net/if.h netinet/ip.h netinet/udp.h netinet/igmp.h netinet/if_ether.h netinet/ip6.h net/ethernet.h netinet/ip_compat.h],,, [
|
|
AC_INCLUDES_DEFAULT
|
|
#ifdef HAVE_NETINET_IN_SYSTM_H
|
|
#include <netinet/in_systm.h>
|
|
#endif
|
|
#ifdef HAVE_NETINET_IN_H
|
|
#include <netinet/in.h>
|
|
#endif
|
|
#ifdef HAVE_SYS_SOCKET_H
|
|
#include <sys/socket.h>
|
|
#endif
|
|
#ifdef HAVE_NET_IF_H
|
|
#include <net/if.h>
|
|
#endif])
|
|
fi
|
|
|
|
ACX_TYPE_SOCKLEN_T
|
|
if test "x$ac_cv_type_socklen_t" = xyes; then
|
|
AC_SUBST(ldns_build_config_have_socklen_t, 1)
|
|
else
|
|
AC_SUBST(ldns_build_config_have_socklen_t, 0)
|
|
fi
|
|
AC_TYPE_SIZE_T
|
|
AC_CHECK_TYPE(ssize_t, int)
|
|
dnl AC_TYPE_INTPTR_T does not work on all platforms (autoconf)
|
|
AC_CHECK_TYPE(intptr_t, size_t)
|
|
AC_CHECK_TYPE(in_addr_t, [], [AC_DEFINE([in_addr_t], [uint32_t], [in_addr_t])], [
|
|
#if HAVE_SYS_TYPES_H
|
|
# include <sys/types.h>
|
|
#endif
|
|
#if HAVE_NETINET_IN_H
|
|
# include <netinet/in.h>
|
|
#endif])
|
|
AC_CHECK_TYPE(in_port_t, [], [AC_DEFINE([in_port_t], [uint16_t], [in_port_t])], [
|
|
#if HAVE_SYS_TYPES_H
|
|
# include <sys/types.h>
|
|
#endif
|
|
#if HAVE_NETINET_IN_H
|
|
# include <netinet/in.h>
|
|
#endif])
|
|
ACX_CHECK_SS_FAMILY
|
|
|
|
# AC_FUNC_MALLOC suffers false failures and causes Asan failures.
|
|
# AC_FUNC_MALLOC
|
|
# AC_FUNC_REALLOC
|
|
|
|
AC_REPLACE_FUNCS(b64_pton)
|
|
AC_REPLACE_FUNCS(b64_ntop)
|
|
AC_REPLACE_FUNCS(calloc)
|
|
AC_REPLACE_FUNCS(timegm)
|
|
AC_REPLACE_FUNCS(gmtime_r)
|
|
AC_REPLACE_FUNCS(ctime_r)
|
|
AC_REPLACE_FUNCS(localtime_r)
|
|
AC_REPLACE_FUNCS(isblank)
|
|
AC_REPLACE_FUNCS(isascii)
|
|
AC_REPLACE_FUNCS(inet_aton)
|
|
AC_REPLACE_FUNCS(inet_pton)
|
|
AC_REPLACE_FUNCS(inet_ntop)
|
|
AC_REPLACE_FUNCS(snprintf)
|
|
AC_REPLACE_FUNCS(strlcpy)
|
|
AC_REPLACE_FUNCS(memmove)
|
|
AC_FUNC_FORK
|
|
AC_MSG_CHECKING([compile of fork])
|
|
AC_COMPILE_IFELSE([AC_LANG_PROGRAM([
|
|
#include <unistd.h>
|
|
], [
|
|
(void)fork();
|
|
])], [
|
|
AC_MSG_RESULT(yes)
|
|
AC_DEFINE([HAVE_FORK_AVAILABLE], 1, [if fork is available for compile])
|
|
], [ AC_MSG_RESULT(no)
|
|
])
|
|
AC_CHECK_FUNCS([endprotoent endservent sleep random fcntl strtoul bzero memset b32_ntop b32_pton])
|
|
if test "x$HAVE_B32_NTOP" = "xyes"; then
|
|
AC_SUBST(ldns_build_config_have_b32_ntop, 1)
|
|
else
|
|
AC_SUBST(ldns_build_config_have_b32_ntop, 0)
|
|
fi
|
|
if test "x$HAVE_B32_PTON" = "xyes"; then
|
|
AC_SUBST(ldns_build_config_have_b32_pton, 1)
|
|
else
|
|
AC_SUBST(ldns_build_config_have_b32_pton, 0)
|
|
fi
|
|
|
|
ACX_CHECK_GETADDRINFO_WITH_INCLUDES
|
|
if test $ac_cv_func_getaddrinfo = no; then
|
|
AC_LIBOBJ([fake-rfc2553])
|
|
fi
|
|
if test "$USE_WINSOCK" = 1; then
|
|
AC_CHECK_TOOL(WINDRES, windres)
|
|
fi
|
|
ACX_FUNC_IOCTLSOCKET
|
|
|
|
#AC_SEARCH_LIBS(RSA_new, [crypto])
|
|
|
|
ACX_CHECK_FORMAT_ATTRIBUTE
|
|
ACX_CHECK_UNUSED_ATTRIBUTE
|
|
|
|
AC_ARG_WITH(xcode-sdk, AC_HELP_STRING([--with-xcode-sdk],
|
|
[Set xcode SDK version. Default is autodetect]),
|
|
[],[with_xcode_sdk="yes"])
|
|
if test "x_$with_xcode_sdk" != "x_no" ; then
|
|
# check OSX deployment target, if needed
|
|
if echo $target_os | grep darwin > /dev/null; then
|
|
sdk_p=`xcode-select -print-path`;
|
|
if test "x_$with_xcode_sdk" = "x_yes" ; then
|
|
sdk_v="$( /usr/bin/xcrun --show-sdk-version 2>/dev/null )"
|
|
else
|
|
sdk_v="$with_xcode_sdk"
|
|
fi
|
|
# xcrun only got that option in 10.7
|
|
if test -z "$sdk_v" ; then
|
|
sdk_c="10.6"
|
|
sdk_v="10.6"
|
|
fi
|
|
SYSROOT="$( find ${sdk_p} -name MacOSX${sdk_v}.sdk )"
|
|
case $sdk_v in
|
|
10.9|10.8) sdk_c="10.7";;
|
|
10.11|10.10|*) sdk_c="10.10";;
|
|
esac
|
|
export MACOSX_DEPLOYMENT_TARGET="${sdk_c}";
|
|
export CFLAGS="$CFLAGS -mmacosx-version-min=${sdk_c} -isysroot ${SYSROOT}"
|
|
fi
|
|
fi
|
|
|
|
AC_DEFINE([SYSCONFDIR], [sysconfdir], [System configuration dir])
|
|
|
|
AC_ARG_WITH(trust-anchor, AC_HELP_STRING([--with-trust-anchor=KEYFILE], [Default location of the trust anchor file for drill and ldns-dane. [default=SYSCONFDIR/unbound/root.key]]), [
|
|
AC_SUBST([LDNS_TRUST_ANCHOR_FILE], ["$withval"])
|
|
AC_MSG_NOTICE([Default trust anchor: $withval])
|
|
],[
|
|
AC_SUBST([LDNS_TRUST_ANCHOR_FILE], ["\$(sysconfdir)/unbound/root.key"])
|
|
])
|
|
|
|
AC_ARG_WITH(ca-file, AC_HELP_STRING([--with-ca-file=CAFILE], [File containing CA certificates for ldns-dane]), [
|
|
AC_DEFINE([HAVE_DANE_CA_FILE], [1], [Is a CAFILE given at configure time])
|
|
AC_DEFINE_UNQUOTED([LDNS_DANE_CA_FILE], ["$withval"], [Is a CAFILE given at configure time])
|
|
AC_MSG_NOTICE([Using CAfile: $withval])
|
|
AC_SUBST(DEFAULT_CAFILE, ["Default is $withval"])
|
|
],[
|
|
AC_DEFINE([HAVE_DANE_CA_FILE], [0], [Is a CAFILE given at configure time])
|
|
AC_SUBST(DEFAULT_CAFILE, [])
|
|
])
|
|
|
|
AC_ARG_WITH(ca-path, AC_HELP_STRING([--with-ca-path=CAPATH], [Directory containing CA certificate files for ldns-dane]), [
|
|
AC_DEFINE([HAVE_DANE_CA_PATH], [1], [Is a CAPATH given at configure time])
|
|
AC_DEFINE_UNQUOTED([LDNS_DANE_CA_PATH], ["$withval"], [Is a CAPATH given at configure time])
|
|
AC_MSG_NOTICE([Using CApath: $withval])
|
|
AC_SUBST(DEFAULT_CAPATH, ["Default is $withval"])
|
|
],[
|
|
AC_DEFINE([HAVE_DANE_CA_PATH], [0], [Is a CAPATH given at configure time])
|
|
AC_SUBST(DEFAULT_CAPATH, [])
|
|
])
|
|
|
|
AH_BOTTOM([
|
|
#include <stdio.h>
|
|
#include <string.h>
|
|
#include <unistd.h>
|
|
#include <assert.h>
|
|
|
|
#ifndef LITTLE_ENDIAN
|
|
#define LITTLE_ENDIAN 1234
|
|
#endif
|
|
|
|
#ifndef BIG_ENDIAN
|
|
#define BIG_ENDIAN 4321
|
|
#endif
|
|
|
|
#ifndef BYTE_ORDER
|
|
#ifdef WORDS_BIGENDIAN
|
|
#define BYTE_ORDER BIG_ENDIAN
|
|
#else
|
|
#define BYTE_ORDER LITTLE_ENDIAN
|
|
#endif /* WORDS_BIGENDIAN */
|
|
#endif /* BYTE_ORDER */
|
|
|
|
#if STDC_HEADERS
|
|
#include <stdlib.h>
|
|
#include <stddef.h>
|
|
#endif
|
|
|
|
#ifdef HAVE_STDINT_H
|
|
#include <stdint.h>
|
|
#endif
|
|
|
|
#ifdef HAVE_SYS_SOCKET_H
|
|
#include <sys/socket.h>
|
|
#endif
|
|
|
|
#ifdef HAVE_NETINET_IN_H
|
|
#include <netinet/in.h>
|
|
#endif
|
|
|
|
#ifdef HAVE_ARPA_INET_H
|
|
#include <arpa/inet.h>
|
|
#endif
|
|
|
|
#ifdef HAVE_WINSOCK2_H
|
|
#include <winsock2.h>
|
|
#endif
|
|
|
|
#ifdef HAVE_WS2TCPIP_H
|
|
#include <ws2tcpip.h>
|
|
#endif
|
|
]
|
|
AHX_CONFIG_W32_FD_SET_T
|
|
)
|
|
|
|
AH_BOTTOM([
|
|
#ifdef __cplusplus
|
|
extern "C" {
|
|
#endif
|
|
|
|
int ldns_b64_ntop(uint8_t const *src, size_t srclength,
|
|
char *target, size_t targsize);
|
|
/**
|
|
* calculates the size needed to store the result of b64_ntop
|
|
*/
|
|
/*@unused@*/
|
|
static inline size_t ldns_b64_ntop_calculate_size(size_t srcsize)
|
|
{
|
|
return ((((srcsize + 2) / 3) * 4) + 1);
|
|
}
|
|
int ldns_b64_pton(char const *src, uint8_t *target, size_t targsize);
|
|
/**
|
|
* calculates the size needed to store the result of ldns_b64_pton
|
|
*/
|
|
/*@unused@*/
|
|
static inline size_t ldns_b64_pton_calculate_size(size_t srcsize)
|
|
{
|
|
return (((((srcsize + 3) / 4) * 3)) + 1);
|
|
}
|
|
|
|
/**
|
|
* Given in dnssec_zone.c, also used in dnssec_sign.c:w
|
|
|
|
*/
|
|
int ldns_dname_compare_v(const void *a, const void *b);
|
|
|
|
#ifndef HAVE_SLEEP
|
|
/* use windows sleep, in millisecs, instead */
|
|
#define sleep(x) Sleep((x)*1000)
|
|
#endif
|
|
|
|
#ifndef HAVE_RANDOM
|
|
#define srandom(x) srand(x)
|
|
#define random(x) rand(x)
|
|
#endif
|
|
|
|
#ifndef HAVE_TIMEGM
|
|
#include <time.h>
|
|
time_t timegm (struct tm *tm);
|
|
#endif /* !TIMEGM */
|
|
#ifndef HAVE_GMTIME_R
|
|
struct tm *gmtime_r(const time_t *timep, struct tm *result);
|
|
#endif
|
|
#ifndef HAVE_LOCALTIME_R
|
|
struct tm *localtime_r(const time_t *timep, struct tm *result);
|
|
#endif
|
|
#ifndef HAVE_ISBLANK
|
|
int isblank(int c);
|
|
#endif /* !HAVE_ISBLANK */
|
|
#ifndef HAVE_ISASCII
|
|
int isascii(int c);
|
|
#endif /* !HAVE_ISASCII */
|
|
#ifndef HAVE_SNPRINTF
|
|
#include <stdarg.h>
|
|
int snprintf (char *str, size_t count, const char *fmt, ...);
|
|
int vsnprintf (char *str, size_t count, const char *fmt, va_list arg);
|
|
#endif /* HAVE_SNPRINTF */
|
|
#ifndef HAVE_INET_PTON
|
|
int inet_pton(int af, const char* src, void* dst);
|
|
#endif /* HAVE_INET_PTON */
|
|
#ifndef HAVE_INET_NTOP
|
|
const char *inet_ntop(int af, const void *src, char *dst, size_t size);
|
|
#endif
|
|
#ifndef HAVE_INET_ATON
|
|
int inet_aton(const char *cp, struct in_addr *addr);
|
|
#endif
|
|
#ifndef HAVE_MEMMOVE
|
|
void *memmove(void *dest, const void *src, size_t n);
|
|
#endif
|
|
#ifndef HAVE_STRLCPY
|
|
size_t strlcpy(char *dst, const char *src, size_t siz);
|
|
#endif
|
|
|
|
#ifdef USE_WINSOCK
|
|
#define SOCK_INVALID INVALID_SOCKET
|
|
#define close_socket(_s) do { if (_s != SOCK_INVALID) {closesocket(_s); _s = -1;} } while(0)
|
|
#else
|
|
#define SOCK_INVALID -1
|
|
#define close_socket(_s) do { if (_s != SOCK_INVALID) {close(_s); _s = -1;} } while(0)
|
|
#endif
|
|
|
|
#ifdef __cplusplus
|
|
}
|
|
#endif
|
|
#ifndef HAVE_GETADDRINFO
|
|
#include "compat/fake-rfc2553.h"
|
|
#endif
|
|
#ifndef HAVE_STRTOUL
|
|
#define strtoul (unsigned long)strtol
|
|
#endif
|
|
])
|
|
|
|
if test "x$HAVE_SSL" = "xyes"; then
|
|
AC_SUBST(ldns_build_config_have_ssl, 1)
|
|
else
|
|
AC_SUBST(ldns_build_config_have_ssl, 0)
|
|
fi
|
|
if test "x$ac_cv_c_format_attribute" = "xyes"; then
|
|
AC_SUBST(ldns_build_config_have_attr_format, 1)
|
|
else
|
|
AC_SUBST(ldns_build_config_have_attr_format, 0)
|
|
fi
|
|
if test "x$ac_cv_c_unused_attribute" = "xyes"; then
|
|
AC_SUBST(ldns_build_config_have_attr_unused, 1)
|
|
else
|
|
AC_SUBST(ldns_build_config_have_attr_unused, 0)
|
|
fi
|
|
|
|
CONFIG_FILES="Makefile libdns.doxygen ldns/common.h ldns/net.h ldns/util.h packaging/libldns.pc packaging/ldns-config"
|
|
AC_SUBST(CONFIG_FILES)
|
|
AC_CONFIG_FILES([$CONFIG_FILES])
|
|
|
|
AC_CONFIG_HEADER([ldns/config.h])
|
|
AC_OUTPUT
|
|
COPY_HEADER_FILES(ldns/, ldns/)
|
|
|
|
dnl AC_CONFIG_SUBDIRS([drill])
|