3 # Copyright (c) 2021, 2022, 2023 Omar Polo <op@omarpolo.com>
4 # Copyright (c) 2011, 2013-2022 Ingo Schwarze <schwarze@openbsd.org>
5 # Copyright (c) 2010, 2011, 2012 Kristaps Dzonsons <kristaps@bsd.lv>
7 # Permission to use, copy, modify, and distribute this software for any
8 # purpose with or without fee is hereby granted, provided that the above
9 # copyright notice and this permission notice appear in all copies.
11 # THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
12 # WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
13 # MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR
14 # ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
15 # WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
16 # ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
17 # OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
26 echo "usage: $0 [--help] [--prefix=prefix] [OPTION=VALUE...]" >&2
30 if command -v yacc 2>/dev/null >&2; then
32 elif command -v bison 2>/dev/null >&2; then
35 # assume yacc by default. Make will fail building parse.y if
36 # not from a release tarball, but at least it'll have a decent
45 if [ "$RELEASE" = no ]; then
46 CFLAGS=${CFLAGS:--O0 -g3}
48 CFLAGS=${CFLAGS:--O2 -pipe}
51 INSTALL=${INSTALL-install}
52 PREFIX=${PREFIX-/usr/local}
53 SYSCONFDIR=${SYSCONFDIR-/etc}
56 CDIAGFLAGS="${CDIAGFLAGS} -W -Wall -Wextra -Wpointer-arith -Wuninitialized"
57 CDIAGFLAGS="${CDIAGFLAGS} -Wstrict-prototypes -Wmissing-prototypes -Wunused"
58 CDIAGFLAGS="${CDIAGFLAGS} -Wsign-compare -Wno-unused-parameter" # -Wshadow
59 CDIAGFLAGS="${CDIAGFLAGS} -Wno-missing-field-initializers"
60 CDIAGFLAGS="${CDIAGFLAGS} -Wno-pointer-sign"
62 # On all OSes except OpenBSD use the bundled one. It may crash at
63 # runtime otherwise since we depend on the libtls internals for the
64 # privsep crypto engine.
65 # See <https://codeberg.org/op/gmid/issues/2>.
66 LIBTLS=bundled # or system
67 if [ "$(uname || true)" = OpenBSD ]; then
71 while [ $# -gt 0 ]; do
75 if [ "$key" = --help ]; then
79 if [ "$key" = -Werror ]; then
80 CDIAGFLAGS="$CDIAGFLAGS -Werror"
85 if [ "$key" = --enable-sandbox ]; then
90 if [ "$key" = --disable-sandbox ]; then
95 if [ "$key" = "$1" ]; then
96 # if no --xy=, look at the next arg
97 if ! shift 2>/dev/null; then
98 echo "$0: missing value for $key" >&2
105 --bindir) key=BINDIR ;;
106 --mandir) key=MANDIR ;;
107 --prefix) key=PREFIX ;;
108 --sysconfdir) key=SYSCONFDIR ;;
109 --with-libtls) key=LIBTLS ;;
115 bundled) LIBTLS=bundled ;;
116 system) LIBTLS=system ;;
120 BINDIR) BINDIR="$val" ;;
122 CFLAGS) CFLAGS="$val" ;;
123 CDIAGFLAGS) CDIAGFLAGS="$val" ;;
124 DISABLE_SANDBOX) DISABLE_SANDBOX="$val" ;;
125 INSTALL) INSTALL="$val" ;;
126 LDFLAGS) LDFLAGS="$val" ;;
127 MANDIR) MANDIR="$val" ;;
128 PKG_CONFIG) PKG_CONFIG="$val" ;;
129 PREFIX) PREFIX="$val" ;;
130 SYSCONFDIR) SYSCONFDIR="$val" ;;
138 [ -w config.log ] && mv config.log config.log.old
139 [ -w config.h ] && mv config.h config.h.old
142 echo "file config.log: writing..."
145 NEED_OPENBSD_SOURCE=0
146 NEED_LIBBSD_OPENBSD_VIS=0
149 COMP="${CC} ${CFLAGS} -Wno-unused -Werror"
151 # singletest name var extra-cflags extra-libs msg
154 if [ -z "$msg" ]; then
157 elif [ -n "$4" ]; then
160 elif [ "$msg" = no ]; then
166 $COMP have/${1}.c $3 -o test-$1 $LDFLAGS $4
168 if $COMP have/${1}.c $3 -o test-$1 $LDFLAGS $4 >&3 2>&3; then
169 rm -f test-${1} test-${1}.d
171 echo "${1}: $CC$msg succeeded" >&3
178 echo "${1}: $CC$msg failed $?" >&3
187 if singletest "$1" "$2" "${CFLAGS}" "${LIBS}" no; then
192 if [ -f compat/${1}.c ]; then
193 COMPATS="compat/$1.c $COMPATS"
200 # runtest name var extra-cflags extra-libs pkgconfig-name
202 if singletest "$1" "$2" "" ""; then
207 if [ -n "$3" -o -n "$4" ]; then
208 echo "retrying with ${3+$3 }$4" >&3
209 if singletest "$1" "$2" "$3" "$4"; then
211 if [ "$3" = -D_GNU_SOURCE ]; then
215 if [ "$4" = -D_OPENBSD_SOURCE ]; then
216 NEED_OPENBSD_SOURCE=1
219 if [ "$4" = -DLIBBSD_OPENBSD_VIS ]; then
220 NEED_LIBBSD_OPENBSD_VIS=1
233 if [ -n "$5" -a -n "$pkgconfig" ]; then
234 if $pkgconfig $5; then
235 cflags="$($pkgconfig --cflags $5)"
236 ldflags="$($pkgconfig --libs $5)"
237 echo "retrying with pkg-config" >&3
238 if singletest "$1" "$2" "$cflags" "$ldflags"; then
239 CFLAGS="$CFLAGS $cflags"
240 LIBS="$LIBS $ldflags"
247 if [ -f compat/$1.c ]; then
248 COMPATS="compat/$1.c $COMPATS"
255 if [ "$PKG_CONFIG" = no ]; then
256 echo "pkg-config: disabled"
257 elif [ -n "$PKG_CONFIG" ]; then
258 pkgconfig="$PKG_CONFIG"
259 echo "pkg-config: (manual) $PKG_CONFIG"
260 elif command -v pkg-config 2>/dev/null >&2; then
261 pkgconfig="pkg-config"
262 echo "pkg-config: (auto) pkg-config"
264 echo "pkg-config: not found"
267 if singletest noop MMD -MMD; then
268 CFLAGS="${CFLAGS} -MMD"
271 if ! runtest wait_any WAIT_ANY; then
272 CFLAGS="${CFLAGS} -DWAIT_ANY=-1"
277 HAVE_MACHINE_ENDIAN=0
279 runtest endian_h ENDIAN_H || \
280 runtest sys_endian_h SYS_ENDIAN_H || \
281 runtest machine_endian MACHINE_ENDIAN || true
283 if [ ${HAVE_ENDIAN_H} -eq 0 -a \
284 ${HAVE_SYS_ENDIAN_H} -eq 0 -a \
285 ${HAVE_MACHINE_ENDIAN} -eq 0 ]; then
286 echo "FATAL: no endian header found" 1>&2
287 echo "FATAL: no endian header found" 1>&3
291 runtest arc4random ARC4RANDOM || true
292 runtest arc4random_buf ARC4RANDOM_BUF || true
293 runtest err ERR || true
294 runtest explicit_bzero EXPLICIT_BZERO || true
295 runtest freezero FREEZERO || true
296 runtest getdtablecount GETDTABLECOUNT || true
297 runtest getdtablesize GETDTABLESIZE || true
298 runtest getprogname GETPROGNAME || true
299 runtest imsg IMSG "" -lutil libimsg || true
300 runtest landlock LANDLOCK || true
301 runtest libevent LIBEVENT "" -levent libevent_core|| true
302 runtest memmem MEMMEM -D_GNU_SOURCE || true
303 runtest openssl OPENSSL "" '-lcrypto -lssl' 'libcrypto libssl' || true
304 runtest pr_set_name PR_SET_NAME || true
305 runtest program_invocation_short_name PROGRAM_INVOCATION_SHORT_NAME -D_GNU_SOURCE || true
306 runtest queue_h QUEUE_H || true
307 runtest reallocarray REALLOCARRAY -D_OPENBSD_SOURCE || true
308 runtest recallocarray RECALLOCARRAY || true
309 runtest setproctitle SETPROCTITLE || true
310 runtest setresgid SETRESGID -D_GNU_SOURCE || true
311 runtest setresuid SETRESUID -D_GNU_SOURCE || true
312 runtest strlcat STRLCAT || true
313 runtest strlcpy STRLCPY || true
314 runtest strtonum STRTONUM -D_OPENBSD_SOURCE || true
315 runtest timingsafe_memcmp TIMINGSAFE_MEMCMP || true
316 runtest tree_h TREE_H || true
317 runtest vasprintf VASPRINTF -D_GNU_SOURCE || true
318 runtest vis VIS -DLIBBSD_OPENBSD_VIS || true
320 if [ ${HAVE_ARC4RANDOM} -eq 1 -a ${HAVE_ARC4RANDOM_BUF} -eq 0 ]; then
321 COMPATS="compat/arc4random.c ${COMPATS}"
324 if [ ${HAVE_ARC4RANDOM} -eq 0 ]; then
325 runtest getentropy GETENTROPY || true
331 if [ ${HAVE_ARC4RANDOM} -eq 0 -a ${HAVE_GETENTROPY} -eq 1 ]; then
332 COMPATS="compat/getentropy.c ${COMPATS}"
335 if [ "${LIBTLS}" = system ]; then
336 runtest libtls LIBTLS "" -ltls libtls || true
338 # not actually needed
339 HAVE_ASN1_TIME_TM_CMP=1
340 HAVE_ASN1_TIME_TM_CLAMP_NOTAFTER=1
341 HAVE_ASN1_TIME_PARSE=1
344 HAVE_X509_LOOKUP_MEM=1
348 for f in compat/libtls/*.c; do
349 COMPATS="$f ${COMPATS}"
352 CFLAGS="-Icompat/libtls -I../compat/libtls ${CFLAGS}"
354 deptest ASN1_time_tm_cmp ASN1_TIME_TM_CMP || true
355 deptest ASN1_time_tm_clamp_notafter ASN1_TIME_TM_CLAMP_NOTAFTER || true
356 deptest ASN1_time_parse ASN1_TIME_PARSE || true
357 deptest SSL_CTX_use_certificate_chain_mem SSL_CTX_UCCM || true
358 deptest SSL_CTX_load_verify_mem SSL_CTX_LVM || true
359 deptest X509_LOOKUP_mem X509_LOOKUP_MEM || true
362 deptest libevent2 LIBEVENT2 || true
364 if [ ${HAVE_LIBTLS} -eq 0 ]; then
365 echo "FATAL: openssl not found" 1>&2
366 echo "FATAL: openssl not found" 1>&3
370 if [ ${HAVE_OPENSSL} -eq 0 ]; then
371 echo "FATAL: openssl not found" 1>&2
372 echo "FATAL: openssl not found" 1>&3
376 if [ ${HAVE_LIBEVENT} -eq 0 ]; then
377 echo "FATAL: libevent not found" 1>&2
378 echo "FATAL: libevent not found" 1>&3
382 if [ ${HAVE_IMSG} -eq 0 ]; then
383 # compat/imsg.c is implicitly added
384 COMPATS="$COMPATS compat/imsg-buffer.c"
387 if [ ${HAVE_QUEUE_H} -eq 0 -o ${HAVE_IMSG} -eq 0 -o ${HAVE_TREE_H} -eq 0 ]; then
388 CFLAGS="${CFLAGS} -I ${PWD}/compat"
391 if [ ${HAVE_VIS} -eq 0 ]; then
392 CFLAGS="${CFLAGS} -I ${PWD}/compat/vis"
395 if [ $HAVE_LIBEVENT2 -eq 1 ]; then
396 CFLAGS="$CFLAGS -DHAVE_LIBEVENT2=1"
399 if [ $NEED_GNU_SOURCE = 1 ]; then
400 CFLAGS="$CFLAGS -D_GNU_SOURCE"
402 if [ $NEED_OPENBSD_SOURCE = 1 ]; then
403 CFLAGS="$CFLAGS -D_OPENBSD_SOURCE"
405 if [ $NEED_LIBBSD_OPENBSD_VIS = 1 ]; then
406 CFLAGS="$CFLAGS -DLIBBSD_OPENBSD_VIS"
409 CFLAGS="-I. ${CFLAGS} ${CDIAGFLAGS}"
412 echo "config.h: writing.." >&2
416 #error "Do not use C++."
420 [ ${HAVE_STRLCAT} -eq 0 -o ${HAVE_STRLCPY} -eq 0 -o ${HAVE_IMSG} -eq 0 ] \
421 && echo "#include <sys/types.h>"
422 [ ${HAVE_VASPRINTF} -eq 0 ] && echo "#include <stdarg.h>"
424 if [ ${HAVE_QUEUE_H} -eq 1 ]; then
425 echo "#include <sys/queue.h>"
427 echo "#include <queue.h>"
430 if [ ${HAVE_TREE_H} -eq 1 ]; then
431 echo "#include <sys/tree.h>"
433 echo "#include <tree.h>"
436 echo "#include <sys/types.h>"
437 echo "#include <sys/uio.h>"
438 echo "#include <stdint.h>"
439 echo "#include <imsg.h>"
440 echo "#include <limits.h>"
444 #define VERSION "${VERSION}"
445 #define DISABLE_SANDBOX ${DISABLE_SANDBOX}
446 #define HAVE_LANDLOCK ${HAVE_LANDLOCK}
449 # define SYSCONFDIR "${SYSCONFDIR}"
454 if [ ${HAVE_ENDIAN_H} -eq 1 ]; then
455 echo "#include <endian.h>"
456 elif [ ${HAVE_SYS_ENDIAN_H} -eq 1 ]; then
457 echo "#include <sys/endian.h>"
458 elif [ ${HAVE_MACHINE_ENDIAN} -eq 1 ]; then
460 #include <machine/endian.h>
461 #include <libkern/OSByteOrder.h>
463 # define htobe16(x) OSSwapHostToBigInt16(x)
464 # define htole16(x) OSSwapHostToLittleInt16(x)
465 # define be16toh(x) OSSwapBigToHostInt16(x)
466 # define le16toh(x) OSSwapLittleToHostInt16(x)
468 # define htobe32(x) OSSwapHostToBigInt32(x)
469 # define htole32(x) OSSwapHostToLittleInt32(x)
470 # define be32toh(x) OSSwapBigToHostInt32(x)
471 # define le32toh(x) OSSwapLittleToHostInt32(x)
473 # define htobe64(x) OSSwapHostToBigInt64(x)
474 # define htole64(x) OSSwapHostToLittleInt64(x)
475 # define be64toh(x) OSSwapBigToHostInt64(x)
476 # define le64toh(x) OSSwapLittleToHostInt64(x)
480 [ ${HAVE_ARC4RANDOM_BUF} -eq 0 -o \
481 ${HAVE_ASN1_TIME_PARSE} -eq 0 -o \
482 ${HAVE_EXPLICIT_BZERO} -eq 0 -o \
483 ${HAVE_FREEZERO} -eq 0 -o \
484 ${HAVE_GETENTROPY} -eq 0 -o \
485 ${HAVE_REALLOCARRAY} -eq 0 -o \
486 ${HAVE_RECALLOCARRAY} -eq 0 -o \
487 ${HAVE_STRLCAT} -eq 0 -o \
488 ${HAVE_STRLCPY} -eq 0 -o \
489 ${HAVE_STRTONUM} -eq 0 -o \
490 ${HAVE_TIMINGSAFE_MEMCMP} -eq 0 ] && echo "#include <stddef.h>"
492 [ ${HAVE_ARC4RANDOM} -eq 0 ] && echo "#include <stdint.h>"
494 [ ${HAVE_SETRESGID} -eq 0 -o \
495 ${HAVE_SETRESUID} -eq 0 ] && echo "#include <unistd.h>"
497 if [ ${HAVE_GETENTROPY} -eq 1 ]; then
498 echo "#define HAVE_GETENTROPY 1"
500 echo "#define WITH_OPENSSL 1"
501 echo "#define OPENSSL_PRNG_ONLY 1"
504 if [ ${HAVE_ARC4RANDOM} -eq 0 ]; then
505 echo "extern uint32_t arc4random(void);"
507 echo "#define HAVE_ARC4RANDOM 1"
509 if [ ${HAVE_ARC4RANDOM_BUF} -eq 0 ]; then
510 echo "extern void arc4random_buf(void *, size_t);"
512 echo "#define HAVE_ARC4RANDOM_BUF 1"
515 if [ ${HAVE_ASN1_TIME_TM_CMP} -eq 0 ]; then
517 echo "extern int ASN1_time_tm_cmp(struct tm *, struct tm *);"
519 echo "#define HAVE_ASN1_TIME_TM_CMP 1"
522 if [ ${HAVE_ASN1_TIME_TM_CLAMP_NOTAFTER} -eq 0 ]; then
524 echo "extern int ASN1_time_tm_clamp_notafter(struct tm *);"
526 echo "#define HAVE_ASN1_TIME_TM_CLAMP_NOTAFTER 1"
529 if [ ${HAVE_ASN1_TIME_PARSE} -eq 0 ]; then
531 echo "extern int ASN1_time_parse(const char *, size_t, struct tm *, int);"
533 echo "#define HAVE_ASN1_TIME_PARSE 1"
536 if [ ${HAVE_ERR} -eq 0 ]; then
537 echo "extern void err(int, const char*, ...);"
538 echo "extern void errx(int, const char*, ...);"
539 echo "extern void warn(const char*, ...);"
540 echo "extern void warnx(const char*, ...);"
542 echo "#include <err.h>"
544 if [ ${HAVE_EXPLICIT_BZERO} -eq 0 ]; then
545 echo "extern void explicit_bzero(void*, size_t);"
547 if [ ${HAVE_FREEZERO} -eq 0 ]; then
548 echo "extern void freezero(void*, size_t);"
550 if [ ${HAVE_GETDTABLECOUNT} -eq 0 ]; then
551 echo "extern int getdtablecount(void);"
553 if [ ${HAVE_GETDTABLESIZE} -eq 0 ]; then
554 echo "extern int getdtablesize(void);"
556 if [ ${HAVE_GETENTROPY} -eq 0 ]; then
557 echo "extern int getentropy(void *, size_t);"
559 if [ ${HAVE_GETPROGNAME} -eq 0 ]; then
560 echo "extern const char *getprogname(void);"
562 if [ ${HAVE_MEMMEM} -eq 0 ]; then
563 echo "extern void *memmem(const void *, size_t, const void *, size_t);"
565 if [ ${HAVE_REALLOCARRAY} -eq 0 ]; then
566 echo "extern void *reallocarray(void*, size_t, size_t);"
568 if [ ${HAVE_RECALLOCARRAY} -eq 0 ]; then
569 echo "extern void *recallocarray(void*, size_t, size_t, size_t);"
571 if [ ${HAVE_SETPROCTITLE} -eq 0 ]; then
572 echo "extern void setproctitle(const char *fmt, ...);"
574 if [ ${HAVE_SETRESGID} -eq 0 ]; then
575 echo "extern int setresgid(gid_t, gid_t, gid_t);"
577 if [ ${HAVE_SETRESUID} -eq 0 ]; then
578 echo "extern int setresuid(uid_t, uid_t, uid_t);"
580 if [ ${HAVE_STRLCAT} -eq 0 ]; then
581 echo "extern size_t strlcat(char*, const char*, size_t);"
583 if [ ${HAVE_STRLCPY} -eq 0 ]; then
584 echo "extern size_t strlcpy(char*, const char*, size_t);"
586 if [ ${HAVE_STRTONUM} -eq 0 ]; then
587 echo "extern long long strtonum(const char*, long long, long long, const char**);"
589 if [ ${HAVE_TIMINGSAFE_MEMCMP} -eq 0 ]; then
590 echo "extern int timingsafe_memcmp(const void *, const void *, size_t);"
592 if [ ${HAVE_VASPRINTF} -eq 0 ]; then
593 echo "extern int vasprintf(char**, const char*, va_list);"
596 if [ ${HAVE_ASN1_TIME_TM_CMP} -eq 0 ]; then
597 echo "#include <openssl/asn1.h>"
599 echo "int ASN1_time_tm_cmp(struct tm *, struct tm *);"
601 echo "#define HAVE_ASN1_TIME_TM_CMP 1"
604 if [ ${HAVE_SSL_CTX_UCCM} -eq 0 -o ${HAVE_SSL_CTX_LVM} -eq 0 ]; then
605 echo "#include <openssl/ssl.h>"
608 if [ ${HAVE_SSL_CTX_UCCM} -eq 0 ]; then
609 echo "int SSL_CTX_use_certificate_chain_mem(SSL_CTX *, void *, int);"
611 echo "#define HAVE_SSL_CTX_USE_CERTIFICATE_CHAIN_MEM 1"
614 if [ ${HAVE_SSL_CTX_LVM} -eq 0 ]; then
615 echo "int SSL_CTX_load_verify_mem(SSL_CTX *, void *, int);"
617 echo "#define HAVE_SSL_CTX_LOAD_VERIFY_MEM 1"
620 if [ ${HAVE_X509_LOOKUP_MEM} -eq 0 ]; then
621 echo "#include <openssl/x509_vfy.h>"
622 echo "X509_LOOKUP_METHOD *X509_LOOKUP_mem(void);"
624 echo "#define HAVE_X509_LOOKUP_MEM 1"
630 #define __dead __attribute__((noreturn))
633 /* Linux and OpenBSD have LOGIN_NAME_MAX, FreeBSD MAXLOGNAME. */
634 #ifndef LOGIN_NAME_MAX
635 # if defined(MAXLOGNAME)
636 # define LOGIN_NAME_MAX MAXLOGNAME
637 # elif defined(_POSIX_LOGIN_NAME_MAX)
638 # define LOGIN_NAME_MAX _POSIX_LOGIN_NAME_MAX
640 # define LOGIN_NAME_MAX 32
644 #ifndef HOST_NAME_MAX
645 # if defined(_POSIX_HOST_NAME_MAX)
646 # define HOST_NAME_MAX _POSIX_HOST_NAME_MAX
648 # define HOST_NAME_MAX 255
653 echo "file config.h: written" 1>&2
654 echo "file config.h: written" 1>&3
658 [ -z "${BINDIR}" ] && BINDIR="\${PREFIX}/bin"
659 [ -z "${MANDIR}" ] && MANDIR="\${PREFIX}/man"
673 INSTALL_PROGRAM = \${INSTALL} -m 0555
674 INSTALL_LIB = \${INSTALL} -m 0444
675 INSTALL_MAN = \${INSTALL} -m 0444
676 INSTALL_DATA = \${INSTALL} -m 0444
684 echo "file config.mk: written" 1>&2
685 echo "file config.mk: written" 1>&3
688 echo "Now run \`make' to compile." >&2