mirror of
https://github.com/MariaDB/server.git
synced 2025-01-25 00:04:33 +01:00
244 lines
9.3 KiB
CMake
244 lines
9.3 KiB
CMake
# Copyright (c) 2009, 2012, Oracle and/or its affiliates. All rights reserved.
|
|
#
|
|
# This program is free software; you can redistribute it and/or modify
|
|
# it under the terms of the GNU General Public License as published by
|
|
# the Free Software Foundation; version 2 of the License.
|
|
#
|
|
# This program is distributed in the hope that it will be useful,
|
|
# but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
# GNU General Public License for more details.
|
|
#
|
|
# You should have received a copy of the GNU General Public License
|
|
# along with this program; if not, write to the Free Software
|
|
# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA
|
|
|
|
# We support different versions of SSL:
|
|
# - "bundled" uses source code in <source dir>/extra/yassl
|
|
# - "system" (typically) uses headers/libraries in /usr/lib and /usr/lib64
|
|
# - a custom installation of openssl can be used like this
|
|
# - cmake -DCMAKE_PREFIX_PATH=</path/to/custom/openssl> -DWITH_SSL="system"
|
|
# or
|
|
# - cmake -DWITH_SSL=</path/to/custom/openssl>
|
|
#
|
|
# The default value for WITH_SSL is "bundled"
|
|
# set in cmake/build_configurations/feature_set.cmake
|
|
#
|
|
# For custom build/install of openssl, see the accompanying README and
|
|
# INSTALL* files. When building with gcc, you must build the shared libraries
|
|
# (in addition to the static ones):
|
|
# ./config --prefix=</path/to/custom/openssl> --shared; make; make install
|
|
# On some platforms (mac) you need to choose 32/64 bit architecture.
|
|
# Build/Install of openssl on windows is slightly different: you need to run
|
|
# perl and nmake. You might also need to
|
|
# 'set path=</path/to/custom/openssl>\bin;%PATH%
|
|
# in order to find the .dll files at runtime.
|
|
|
|
SET(WITH_SSL_DOC "bundled (use yassl)")
|
|
SET(WITH_SSL_DOC
|
|
"${WITH_SSL_DOC}, yes (prefer os library if present, otherwise use bundled)")
|
|
SET(WITH_SSL_DOC
|
|
"${WITH_SSL_DOC}, system (use os library)")
|
|
SET(WITH_SSL_DOC
|
|
"${WITH_SSL_DOC}, </path/to/custom/installation>")
|
|
|
|
MACRO (CHANGE_SSL_SETTINGS string)
|
|
SET(WITH_SSL ${string} CACHE STRING ${WITH_SSL_DOC} FORCE)
|
|
ENDMACRO()
|
|
|
|
MACRO (MYSQL_USE_BUNDLED_SSL)
|
|
SET(INC_DIRS
|
|
${CMAKE_SOURCE_DIR}/extra/yassl/include
|
|
${CMAKE_SOURCE_DIR}/extra/yassl/taocrypt/include
|
|
)
|
|
SET(SSL_LIBRARIES yassl taocrypt)
|
|
SET(SSL_INCLUDE_DIRS ${INC_DIRS})
|
|
SET(SSL_INTERNAL_INCLUDE_DIRS ${CMAKE_SOURCE_DIR}/extra/yassl/taocrypt/mySTL)
|
|
SET(SSL_DEFINES "-DHAVE_YASSL -DYASSL_PREFIX -DHAVE_OPENSSL -DMULTI_THREADED")
|
|
SET(HAVE_ERR_remove_thread_state OFF CACHE INTERNAL "yassl doesn't have ERR_remove_thread_state")
|
|
SET(HAVE_EncryptAes128Ctr OFF CACHE INTERNAL "yassl doesn't support AES-CTR")
|
|
SET(HAVE_EncryptAes128Gcm OFF CACHE INTERNAL "yassl doesn't support AES-GCM")
|
|
CHANGE_SSL_SETTINGS("bundled")
|
|
ADD_SUBDIRECTORY(extra/yassl)
|
|
ADD_SUBDIRECTORY(extra/yassl/taocrypt)
|
|
GET_TARGET_PROPERTY(src yassl SOURCES)
|
|
FOREACH(file ${src})
|
|
SET(SSL_SOURCES ${SSL_SOURCES} ${CMAKE_SOURCE_DIR}/extra/yassl/${file})
|
|
ENDFOREACH()
|
|
GET_TARGET_PROPERTY(src taocrypt SOURCES)
|
|
FOREACH(file ${src})
|
|
SET(SSL_SOURCES ${SSL_SOURCES}
|
|
${CMAKE_SOURCE_DIR}/extra/yassl/taocrypt/${file})
|
|
ENDFOREACH()
|
|
MESSAGE_ONCE(SSL_LIBRARIES "SSL_LIBRARIES = ${SSL_LIBRARIES}")
|
|
ENDMACRO()
|
|
|
|
# MYSQL_CHECK_SSL
|
|
#
|
|
# Provides the following configure options:
|
|
# WITH_SSL=[yes|bundled|system|<path/to/custom/installation>]
|
|
MACRO (MYSQL_CHECK_SSL)
|
|
IF(NOT WITH_SSL)
|
|
IF(WIN32)
|
|
CHANGE_SSL_SETTINGS("bundled")
|
|
ELSE()
|
|
SET(WITH_SSL "yes")
|
|
ENDIF()
|
|
ENDIF()
|
|
|
|
# See if WITH_SSL is of the form </path/to/custom/installation>
|
|
FILE(GLOB WITH_SSL_HEADER ${WITH_SSL}/include/openssl/ssl.h)
|
|
IF (WITH_SSL_HEADER)
|
|
SET(WITH_SSL_PATH ${WITH_SSL} CACHE PATH "path to custom SSL installation")
|
|
ENDIF()
|
|
|
|
IF(WITH_SSL STREQUAL "bundled")
|
|
MYSQL_USE_BUNDLED_SSL()
|
|
# Reset some variables, in case we switch from /path/to/ssl to "bundled".
|
|
IF (WITH_SSL_PATH)
|
|
UNSET(WITH_SSL_PATH)
|
|
UNSET(WITH_SSL_PATH CACHE)
|
|
ENDIF()
|
|
IF (OPENSSL_ROOT_DIR)
|
|
UNSET(OPENSSL_ROOT_DIR)
|
|
UNSET(OPENSSL_ROOT_DIR CACHE)
|
|
ENDIF()
|
|
IF (OPENSSL_INCLUDE_DIR)
|
|
UNSET(OPENSSL_INCLUDE_DIR)
|
|
UNSET(OPENSSL_INCLUDE_DIR CACHE)
|
|
ENDIF()
|
|
IF (WIN32 AND OPENSSL_APPLINK_C)
|
|
UNSET(OPENSSL_APPLINK_C)
|
|
UNSET(OPENSSL_APPLINK_C CACHE)
|
|
ENDIF()
|
|
IF (OPENSSL_LIBRARIES)
|
|
UNSET(OPENSSL_LIBRARIES)
|
|
UNSET(OPENSSL_LIBRARIES CACHE)
|
|
ENDIF()
|
|
ELSEIF(WITH_SSL STREQUAL "system" OR
|
|
WITH_SSL STREQUAL "yes" OR
|
|
WITH_SSL_PATH
|
|
)
|
|
# First search in WITH_SSL_PATH.
|
|
FIND_PATH(OPENSSL_ROOT_DIR
|
|
NAMES include/openssl/ssl.h
|
|
NO_CMAKE_PATH
|
|
NO_CMAKE_ENVIRONMENT_PATH
|
|
HINTS ${WITH_SSL_PATH}
|
|
)
|
|
# Then search in standard places (if not found above).
|
|
FIND_PATH(OPENSSL_ROOT_DIR
|
|
NAMES include/openssl/ssl.h
|
|
)
|
|
|
|
FIND_PATH(OPENSSL_INCLUDE_DIR
|
|
NAMES openssl/ssl.h
|
|
HINTS ${OPENSSL_ROOT_DIR}/include
|
|
)
|
|
|
|
IF (WIN32)
|
|
FIND_FILE(OPENSSL_APPLINK_C
|
|
NAMES openssl/applink.c
|
|
HINTS ${OPENSSL_ROOT_DIR}/include
|
|
)
|
|
MESSAGE_ONCE(OPENSSL_APPLINK_C "OPENSSL_APPLINK_C ${OPENSSL_APPLINK_C}")
|
|
ENDIF()
|
|
|
|
# On mac this list is <.dylib;.so;.a>
|
|
# We prefer static libraries, so we revert it here.
|
|
IF (WITH_SSL_PATH)
|
|
LIST(REVERSE CMAKE_FIND_LIBRARY_SUFFIXES)
|
|
ENDIF()
|
|
FIND_LIBRARY(OPENSSL_LIBRARIES
|
|
NAMES ssl ssleay32 ssleay32MD
|
|
HINTS ${OPENSSL_ROOT_DIR}/lib)
|
|
FIND_LIBRARY(CRYPTO_LIBRARY
|
|
NAMES crypto libeay32
|
|
HINTS ${OPENSSL_ROOT_DIR}/lib)
|
|
MARK_AS_ADVANCED(CRYPTO_LIBRARY OPENSSL_LIBRARIES OPENSSL_ROOT_DIR
|
|
OPENSSL_INCLUDE_DIR)
|
|
IF (WITH_SSL_PATH)
|
|
LIST(REVERSE CMAKE_FIND_LIBRARY_SUFFIXES)
|
|
ENDIF()
|
|
|
|
INCLUDE(CheckSymbolExists)
|
|
SET(CMAKE_REQUIRED_INCLUDES ${OPENSSL_INCLUDE_DIR})
|
|
CHECK_SYMBOL_EXISTS(SHA512_DIGEST_LENGTH "openssl/sha.h"
|
|
HAVE_SHA512_DIGEST_LENGTH)
|
|
SET(CMAKE_REQUIRED_INCLUDES)
|
|
IF(OPENSSL_INCLUDE_DIR AND OPENSSL_LIBRARIES AND
|
|
CRYPTO_LIBRARY AND HAVE_SHA512_DIGEST_LENGTH)
|
|
SET(SSL_SOURCES "")
|
|
SET(SSL_LIBRARIES ${OPENSSL_LIBRARIES} ${CRYPTO_LIBRARY})
|
|
IF(CMAKE_SYSTEM_NAME MATCHES "SunOS")
|
|
SET(SSL_LIBRARIES ${SSL_LIBRARIES} ${LIBSOCKET})
|
|
ENDIF()
|
|
IF(CMAKE_SYSTEM_NAME MATCHES "Linux")
|
|
SET(SSL_LIBRARIES ${SSL_LIBRARIES} ${LIBDL})
|
|
ENDIF()
|
|
|
|
# Verify version number. Version information looks like:
|
|
# #define OPENSSL_VERSION_NUMBER 0x1000103fL
|
|
# Encoded as MNNFFPPS: major minor fix patch status
|
|
FILE(STRINGS "${OPENSSL_INCLUDE_DIR}/openssl/opensslv.h"
|
|
OPENSSL_VERSION_NUMBER
|
|
REGEX "^#define[\t ]+OPENSSL_VERSION_NUMBER[\t ]+0x[0-9].*"
|
|
)
|
|
STRING(REGEX REPLACE
|
|
"^.*OPENSSL_VERSION_NUMBER[\t ]+0x([0-9]).*$" "\\1"
|
|
OPENSSL_MAJOR_VERSION "${OPENSSL_VERSION_NUMBER}"
|
|
)
|
|
MESSAGE_ONCE(OPENSSL_INCLUDE_DIR "OPENSSL_INCLUDE_DIR = ${OPENSSL_INCLUDE_DIR}")
|
|
MESSAGE_ONCE(OPENSSL_LIBRARIES "OPENSSL_LIBRARIES = ${OPENSSL_LIBRARIES}")
|
|
MESSAGE_ONCE(CRYPTO_LIBRARY "CRYPTO_LIBRARY = ${CRYPTO_LIBRARY}")
|
|
MESSAGE_ONCE(OPENSSL_MAJOR_VERSION "OPENSSL_MAJOR_VERSION = ${OPENSSL_MAJOR_VERSION}")
|
|
MESSAGE_ONCE(SSL_LIBRARIES "SSL_LIBRARIES = ${SSL_LIBRARIES}")
|
|
SET(SSL_INCLUDE_DIRS ${OPENSSL_INCLUDE_DIR})
|
|
SET(SSL_INTERNAL_INCLUDE_DIRS "")
|
|
SET(SSL_DEFINES "-DHAVE_OPENSSL")
|
|
|
|
SET(CMAKE_REQUIRED_LIBRARIES ${SSL_LIBRARIES})
|
|
CHECK_SYMBOL_EXISTS(ERR_remove_thread_state "openssl/err.h"
|
|
HAVE_ERR_remove_thread_state)
|
|
CHECK_SYMBOL_EXISTS(EVP_aes_128_ctr "openssl/evp.h"
|
|
HAVE_EncryptAes128Ctr)
|
|
CHECK_SYMBOL_EXISTS(EVP_aes_128_gcm "openssl/evp.h"
|
|
HAVE_EncryptAes128Gcm)
|
|
ELSE()
|
|
IF(WITH_SSL STREQUAL "system")
|
|
MESSAGE(SEND_ERROR "Cannot find appropriate system libraries for SSL. Use WITH_SSL=bundled to enable SSL support")
|
|
ENDIF()
|
|
MYSQL_USE_BUNDLED_SSL()
|
|
ENDIF()
|
|
ELSE()
|
|
MESSAGE(SEND_ERROR
|
|
"Wrong option for WITH_SSL. Valid values are: ${WITH_SSL_DOC}")
|
|
ENDIF()
|
|
ENDMACRO()
|
|
|
|
|
|
# Many executables will depend on libeay32.dll and ssleay32.dll at runtime.
|
|
# In order to ensure we find the right version(s), we copy them into
|
|
# the same directory as the executables.
|
|
# NOTE: Using dlls will likely crash in malloc/free,
|
|
# see INSTALL.W32 which comes with the openssl sources.
|
|
# So we should be linking static versions of the libraries.
|
|
MACRO (COPY_OPENSSL_DLLS target_name)
|
|
IF (WIN32 AND WITH_SSL_PATH)
|
|
GET_FILENAME_COMPONENT(CRYPTO_NAME "${CRYPTO_LIBRARY}" NAME_WE)
|
|
GET_FILENAME_COMPONENT(OPENSSL_NAME "${OPENSSL_LIBRARIES}" NAME_WE)
|
|
FILE(GLOB HAVE_CRYPTO_DLL "${WITH_SSL_PATH}/bin/${CRYPTO_NAME}.dll")
|
|
FILE(GLOB HAVE_OPENSSL_DLL "${WITH_SSL_PATH}/bin/${OPENSSL_NAME}.dll")
|
|
IF (HAVE_CRYPTO_DLL AND HAVE_OPENSSL_DLL)
|
|
ADD_CUSTOM_COMMAND(OUTPUT ${target_name}
|
|
COMMAND ${CMAKE_COMMAND} -E copy_if_different
|
|
"${WITH_SSL_PATH}/bin/${CRYPTO_NAME}.dll"
|
|
"${CMAKE_CURRENT_BINARY_DIR}/${CMAKE_CFG_INTDIR}/${CRYPTO_NAME}.dll"
|
|
COMMAND ${CMAKE_COMMAND} -E copy_if_different
|
|
"${WITH_SSL_PATH}/bin/${OPENSSL_NAME}.dll"
|
|
"${CMAKE_CURRENT_BINARY_DIR}/${CMAKE_CFG_INTDIR}/${OPENSSL_NAME}.dll"
|
|
)
|
|
ADD_CUSTOM_TARGET(${target_name} ALL)
|
|
ENDIF()
|
|
ENDIF()
|
|
ENDMACRO()
|