conf.set('HAVE_FSTRM', dep_dnstap.found(), description: 'libfstrm')
summary('DNSTAP', dep_dnstap.found(), bool_yn: true, section: 'Configuration')
-
opt_hardening = get_option('hardening')
-if opt_hardening.enabled() or opt_hardening.auto()
+if opt_hardening.allowed()
hardening_features = []
# PIE
has = cxx.has_function(func, dependencies: dep_libssl)
conf.set('HAVE_' + func.to_upper(), has, description: 'Have OpenSSL libssl ' + func)
endforeach
-endif
-has = cxx.has_header_symbol(
- 'openssl/ssl.h',
- 'SSL_CTX_set_min_proto_version',
- dependencies: dep_libssl,
-)
-conf.set(
- 'HAVE_SSL_CTX_SET_MIN_PROTO_VERSION',
- has,
- description: 'Have OpenSSL libssl SSL_CTX_set_min_proto_version',
-)
-conf.set(
- 'OPENSSL_NO_ENGINE',
- true,
- description: 'Disable engine support for auth in libssl.cc',
-)
+ has = cxx.has_header_symbol(
+ 'openssl/ssl.h',
+ 'SSL_CTX_set_min_proto_version',
+ dependencies: dep_libssl,
+ )
+ conf.set(
+ 'HAVE_SSL_CTX_SET_MIN_PROTO_VERSION',
+ has,
+ description: 'Have OpenSSL libssl SSL_CTX_set_min_proto_version',
+ )
+ conf.set(
+ 'OPENSSL_NO_ENGINE',
+ true,
+ description: 'Disable engine support for auth in libssl.cc',
+ )
+endif
conf.set('HAVE_LIBSSL', dep_libssl.found(), description: 'OpenSSL libssl')
summary('OpenSSL libssl', dep_libssl.found(), bool_yn: true, section: 'Crypto')
opt_systemd = get_option('systemd-service')
-dep_libsystemd = dependency('', required: false)
-
if opt_systemd.allowed()
dep_libsystemd = dependency('libsystemd', required: opt_systemd)
+else
+ dep_libsystemd = dependency('', required: false)
endif
conf.set('HAVE_SYSTEMD', dep_libsystemd.found(), description: 'libsystemd')
opt_systemd = get_option('systemd-service')
-dep_systemd_prog = dependency('', required: false)
if opt_systemd.allowed()
dep_systemd_prog = dependency('systemd', required: opt_systemd)
+else
+ dep_systemd_prog = dependency('', required: false)
endif
if dep_systemd_prog.found()
dep_libre2 = dependency('re2', required: opt_libre2)
if dep_libre2.found()
- # we need to NOT pick the CFLAGS because re2 "helpfully" puts -std=c++11 here
- dep_libre2 = dep_libre2.partial_dependency(
- link_args: true
- )
+ # we need to NOT pick the CFLAGS because re2 "helpfully" puts -std=c++11 here
+ dep_libre2 = dep_libre2.partial_dependency(
+ link_args: true
+ )
endif
conf.set('HAVE_RE2', dep_libre2.found(), description: 're2')
option('hardening-experimental-scp', type: 'feature', value: 'disabled', description: 'Stack Clash Protection')
option('hardening-fortify-source', type: 'combo', choices: ['auto', 'disabled', '1', '2', '3'], value: '2', description: 'Source fortification level')
option('ipcipher', type: 'feature', value: 'auto', description: 'IPCipher')
-#option('rng-kiss', type: 'boolean', value: false, description: 'Use the unsafe KISS RNG')
option('tls-libssl', type: 'feature', value: 'auto', description: 'OpenSSL-based TLS')
option('tls-libssl-providers', type: 'boolean', value: false, description: 'OpenSSL-based TLS with TLS providers')
option('dns-over-tls', type: 'boolean', value: false, description: 'DNS over TLS (requires GnuTLS or OpenSSL)')
projects / thirdparty / pdns.git / commitdiff
