Home Explore Help
Sign In
cpp
/
urho3d
mirror of https://github.com/urho3d/urho3d.git
2
0
Fork 0
Files Issues 0 Wiki
Branch: websockets-implementation
Branches Tags
urho3d
/
Source
/
ThirdParty
/
libwebsockets
/
lib
/
tls
/
CMakeLists.txt

CMakeLists.txt 18 KB
Permalink History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482 
  1. #
    2. 

  2. # libwebsockets - small server side websockets and web server implementation
    3. 

  3. #
    4. 

  4. # Copyright (C) 2010 - 2020 Andy Green <[email protected]>
    5. 

  5. #
    6. 

  6. # Permission is hereby granted, free of charge, to any person obtaining a copy
    7. 

  7. # of this software and associated documentation files (the "Software"), to
    8. 

  8. # deal in the Software without restriction, including without limitation the
    9. 

  9. # rights to use, copy, modify, merge, publish, distribute, sublicense, and/or
    10. 

  10. # sell copies of the Software, and to permit persons to whom the Software is
    11. 

  11. # furnished to do so, subject to the following conditions:
    12. 

  12. #
    13. 

  13. # The above copyright notice and this permission notice shall be included in
    14. 

  14. # all copies or substantial portions of the Software.
    15. 

  15. #
    16. 

  16. # THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
    17. 

  17. # IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
    18. 

  18. # FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
    19. 

  19. # AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
    20. 

  20. # LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING
    21. 

  21. # FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS
    22. 

  22. # IN THE SOFTWARE.
    23. 

  23. #
    24. 

  24. #
    25. 

  25. # This converts everything about the tls support into
    26. 

  26. #
    27. 

  27. # - entries on SOURCES (modifications set back in PARENT_SCOPE)
    28. 

  28. # - entries on LIB_LIST (modifications set back in PARENT_SCOPE)
    29. 

  29. # - include_directories()
    30. 

  30. # - Api build-time discovery results set in PARENT_SCOPE
    31. 

  31. #
    32. 

  32. # Everything else is handled privately here.
    33. 

  33. 

  34. include_directories(.)
    35. 

  35. 

  36. # Allow the user to use the old CyaSSL options/library in stead of wolfSSL
    37. 

  37. if (LWS_WITH_CYASSL AND LWS_WITH_WOLFSSL)
    38. 

  38. 	message(FATAL_ERROR "LWS_WITH_CYASSL and LWS_WITH_WOLFSSL are mutually exclusive!")
    39. 

  39. endif()
    40. 

  40. 

  41. if (LWS_WITH_CYASSL)
    42. 

  42. 	# Copy CyaSSL options to the wolfSSL options
    43. 

  43. 	set(LWS_WITH_WOLFSSL ${LWS_WITH_CYASSL} CACHE BOOL "Use wolfSSL/CyaSSL instead of OpenSSL" FORCE PARENT_SCOPE)
    44. 

  44. 	set(LWS_WOLFSSL_LIBRARIES ${LWS_CYASSL_LIBRARIES} CACHE PATH "Path to wolfSSL/CyaSSL libraries" FORCE PARENT_SCOPE)
    45. 

  45. 	set(LWS_WOLFSSL_INCLUDE_DIRS ${LWS_CYASSL_INCLUDE_DIRS} CACHE PATH "Path to wolfSSL/CyaSSL header files" FORCE PARENT_SCOPE)
    46. 

  46. endif()
    47. 

  47. 

  48. set(LWS_OPENSSL_LIBRARIES CACHE PATH "Path to the OpenSSL library" )
    49. 

  49. set(LWS_OPENSSL_INCLUDE_DIRS CACHE PATH "Path to the OpenSSL include directory" )
    50. 

  50. set(LWS_WOLFSSL_LIBRARIES CACHE PATH "Path to the wolfSSL library" )
    51. 

  51. set(LWS_WOLFSSL_INCLUDE_DIRS CACHE PATH "Path to the wolfSSL include directory" )
    52. 

  52. 

  53. 

  54. if (LWS_WITH_BORINGSSL)
    55. 

  55. 	# boringssl deprecated EVP_PKEY
    56. 

  56. 	set (LWS_WITH_GENHASH OFF PARENT_SCOPE)
    57. 

  57. endif()
    58. 

  58. 

  59. if (LWS_WITH_SSL AND NOT LWS_WITH_WOLFSSL AND NOT LWS_WITH_MBEDTLS)
    60. 

  60. 	if ("${LWS_OPENSSL_LIBRARIES}" STREQUAL "" OR "${LWS_OPENSSL_INCLUDE_DIRS}" STREQUAL "")
    61. 

  61. 	else()
    62. 

  62. 		if (NOT LWS_PLAT_FREERTOS)
    63. 

  63. 			set(OPENSSL_LIBRARIES ${LWS_OPENSSL_LIBRARIES})
    64. 

  64. 		endif()
    65. 

  65. 		set(OPENSSL_INCLUDE_DIRS ${LWS_OPENSSL_INCLUDE_DIRS})
    66. 

  66. 		set(OPENSSL_FOUND 1)
    67. 

  67. 	endif()
    68. 

  68. endif()
    69. 

  69. 

  70. if (LWS_WITH_SSL AND LWS_WITH_WOLFSSL)
    71. 

  71. 	if ("${LWS_WOLFSSL_LIBRARIES}" STREQUAL "" OR "${LWS_WOLFSSL_INCLUDE_DIRS}" STREQUAL "")
    72. 

  72. 		if (NOT WOLFSSL_FOUND)
    73. 

  73. 			if (LWS_WITH_CYASSL)
    74. 

  74. 				message(FATAL_ERROR "You must set LWS_CYASSL_LIBRARIES and LWS_CYASSL_INCLUDE_DIRS when LWS_WITH_CYASSL is turned on.")
    75. 

  75. 			else()
    76. 

  76. 				message(FATAL_ERROR "You must set LWS_WOLFSSL_LIBRARIES and LWS_WOLFSSL_INCLUDE_DIRS when LWS_WITH_WOLFSSL is turned on.")
    77. 

  77. 			endif()
    78. 

  78. 		endif()
    79. 

  79. 	else()
    80. 

  80. 		set(WOLFSSL_LIBRARIES ${LWS_WOLFSSL_LIBRARIES})
    81. 

  81. 		set(WOLFSSL_INCLUDE_DIRS ${LWS_WOLFSSL_INCLUDE_DIRS})
    82. 

  82. 		set(WOLFSSL_FOUND 1)
    83. 

  83. 	endif()
    84. 

  84. 	set(USE_WOLFSSL 1)
    85. 

  85. 	set(USE_WOLFSSL 1 PARENT_SCOPE)
    86. 

  86. 	set(LWS_WITH_TLS 1 PARENT_SCOPE)
    87. 

  87. 	if (LWS_WITH_CYASSL)
    88. 

  88. 		set(USE_OLD_CYASSL 1)
    89. 

  89. 	endif()
    90. 

  90. endif()
    91. 

  91. 

  92. if (LWS_SSL_CLIENT_USE_OS_CA_CERTS)
    93. 

  93. 	set(LWS_SSL_CLIENT_USE_OS_CA_CERTS 1 PARENT_SCOPE)
    94. 

  94. endif()
    95. 

  95. 

  96. if (LWS_WITH_MBEDTLS)
    97. 

  97. 	add_subdirectory(mbedtls)
    98. 

  98. 	include_directories(${_CMAKE_INC_LIST})
    99. 

  99. endif()
    100. 

  100. 

  101. # The base dir where the test-apps look for the SSL certs.
    102. 

  102. set(LWS_OPENSSL_CLIENT_CERTS ../share CACHE PATH "Server SSL certificate directory")
    103. 

  103. if (WIN32)
    104. 

  104. 	set(LWS_OPENSSL_CLIENT_CERTS . CACHE PATH "Client SSL certificate directory" PARENT_SCOPE)
    105. 

  105. else()
    106. 

  106. 	set(LWS_OPENSSL_CLIENT_CERTS /etc/pki/tls/certs/ CACHE PATH "Client SSL certificate directory")
    107. 

  107. endif()
    108. 

  108. 

  109. if (LWS_WITH_SSL)
    110. 

  110. 	list(APPEND SOURCES
    111. 

  111. 		tls/tls.c)
    112. 

  112. 	if (LWS_WITH_NETWORK)
    113. 

  113. 		list(APPEND SOURCES
    114. 

  114. 			tls/tls-network.c)
    115. 

  115. 	endif()
    116. 

  116. 		
    117. 

  117. 	if (LWS_WITH_MBEDTLS)
    118. 

  118. 		list(APPEND SOURCES
    119. 

  119. 			tls/mbedtls/mbedtls-tls.c
    120. 

  120. 			tls/mbedtls/mbedtls-x509.c)
    121. 

  121. 		if (LWS_WITH_NETWORK)
    122. 

  122. 			list(APPEND SOURCES
    123. 

  123. 				tls/mbedtls/mbedtls-ssl.c)
    124. 

  124. 		endif()
    125. 

  125. 		if (LWS_WITH_GENCRYPTO)
    126. 

  126. 			list(APPEND SOURCES
    127. 

  127. 				tls/mbedtls/lws-genhash.c
    128. 

  128. 				tls/mbedtls/lws-genrsa.c
    129. 

  129. 				tls/mbedtls/lws-genaes.c
    130. 

  130. 				tls/lws-genec-common.c
    131. 

  131. 				tls/mbedtls/lws-genec.c
    132. 

  132. 				tls/mbedtls/lws-gencrypto.c)
    133. 

  133. 		endif()
    134. 

  134. 	else()
    135. 

  135. 		list(APPEND SOURCES
    136. 

  136. 			tls/openssl/openssl-tls.c
    137. 

  137. 			tls/openssl/openssl-x509.c)
    138. 

  138. 		if (LWS_WITH_NETWORK)
    139. 

  139. 			list(APPEND SOURCES
    140. 

  140. 				tls/openssl/openssl-ssl.c)
    141. 

  141. 		endif()
    142. 

  142. 		if (LWS_WITH_GENCRYPTO)
    143. 

  143. 			list(APPEND SOURCES
    144. 

  144. 				tls/openssl/lws-genhash.c
    145. 

  145. 				tls/openssl/lws-genrsa.c
    146. 

  146. 				tls/openssl/lws-genaes.c
    147. 

  147. 				tls/lws-genec-common.c
    148. 

  148. 				tls/openssl/lws-genec.c
    149. 

  149. 				tls/openssl/lws-gencrypto.c)
    150. 

  150. 		endif()
    151. 

  151. 	endif()
    152. 

  152. 		
    153. 

  153. 	if (NOT LWS_WITHOUT_SERVER)
    154. 

  154. 		list(APPEND SOURCES
    155. 

  155. 			tls/tls-server.c)
    156. 

  156. 		if (LWS_WITH_MBEDTLS)
    157. 

  157. 			list(APPEND SOURCES
    158. 

  158. 				tls/mbedtls/mbedtls-server.c)
    159. 

  159. 		else()
    160. 

  160. 			list(APPEND SOURCES
    161. 

  161. 				tls/openssl/openssl-server.c)
    162. 

  162. 		endif()
    163. 

  163. 	endif()
    164. 

  164. 	if (NOT LWS_WITHOUT_CLIENT)
    165. 

  165. 		list(APPEND SOURCES
    166. 

  166. 			tls/tls-client.c)
    167. 

  167. 		if (LWS_WITH_MBEDTLS)
    168. 

  168. 			list(APPEND SOURCES
    169. 

  169. 				tls/mbedtls/mbedtls-client.c)
    170. 

  170. 		else()
    171. 

  171. 			list(APPEND SOURCES
    172. 

  172. 				tls/openssl/openssl-client.c)
    173. 

  173. 		endif()
    174. 

  174. 		
    175. 

  175. 	endif()
    176. 

  176. endif()
    177. 

  177. 

  178. set(SOURCES ${SOURCES} PARENT_SCOPE)
    179. 

  179. 

  180. #
    181. 

  181. # OpenSSL
    182. 

  182. #
    183. 

  183. if (LWS_WITH_SSL)
    184. 

  184. 	message("Compiling with SSL support")
    185. 

  185. 	set(chose_ssl 0)
    186. 

  186. 	if (LWS_WITH_WOLFSSL)
    187. 

  187. 		# Use wolfSSL as OpenSSL replacement.
    188. 

  188. 		# TODO: Add a find_package command for this also.
    189. 

  189. 		message("wolfSSL include dir: ${WOLFSSL_INCLUDE_DIRS}")
    190. 

  190. 		message("wolfSSL libraries: ${WOLFSSL_LIBRARIES}")
    191. 

  191. 

  192. 		# Additional to the root directory we need to include
    193. 

  193. 		# the wolfssl/ subdirectory which contains the OpenSSL
    194. 

  194. 		# compatibility layer headers.
    195. 

  195. 

  196. 		if (LWS_WITH_CYASSL)
    197. 

  197. 			foreach(inc ${WOLFSSL_INCLUDE_DIRS})
    198. 

  198. 				set(OPENSSL_INCLUDE_DIRS ${OPENSSL_INCLUDE_DIRS} ${inc} ${inc}/cyassl)
    199. 

  199. 				include_directories("${inc}" "${inc}/cyassl")
    200. 

  200. 			endforeach()
    201. 

  201. 		else()
    202. 

  202. 			foreach(inc ${WOLFSSL_INCLUDE_DIRS})
    203. 

  203. 				set(OPENSSL_INCLUDE_DIRS ${OPENSSL_INCLUDE_DIRS} ${inc} ${inc}/wolfssl)
    204. 

  204. 				include_directories("${inc}" "${inc}/wolfssl")
    205. 

  205. 			endforeach()
    206. 

  206. 		endif()
    207. 

  207. 		set(CMAKE_REQUIRED_INCLUDES ${CMAKE_REQUIRED_INCLUDES} ${OPENSSL_INCLUDE_DIRS})
    208. 

  208. 		set(CMAKE_REQUIRED_INCLUDES ${CMAKE_REQUIRED_INCLUDES} PARENT_SCOPE)
    209. 

  209. 		set(OPENSSL_INCLUDE_DIRS ${OPENSSL_INCLUDE_DIRS} PARENT_SCOPE)
    210. 

  210. 		set(VARIA wolfSSL_)
    211. 

  211. 

  212. 		list(INSERT LIB_LIST 0 "${WOLFSSL_LIBRARIES}")
    213. 

  213. 		message("LIB_LIST ${LIB_LIST}")
    214. 

  214. 		set(chose_ssl 1)
    215. 

  215. 	endif()
    216. 

  216. 

  217. 	if (LWS_WITH_MBEDTLS AND DEFINED MBEDTLS_INCLUDE_DIRS AND DEFINED MBEDTLS_LIBRARIES)
    218. 

  218. 		message("MBEDTLS include dir: ${MBEDTLS_INCLUDE_DIRS}")
    219. 

  219. 		message("MBEDTLS libraries: ${MBEDTLS_LIBRARIES}")
    220. 

  220. 

  221. 		foreach(inc ${MBEDTLS_INCLUDE_DIRS})
    222. 

  222. 			include_directories("${inc}" "${inc}/mbedtls")
    223. 

  223. 		endforeach()
    224. 

  224. 

  225. 		list(INSERT LIB_LIST 0 "${MBEDTLS_LIBRARIES}")
    226. 

  226. 	endif()
    227. 

  227. 	
    228. 

  228. 	if (LWS_WITH_MBEDTLS)
    229. 

  229. 		set(chose_ssl 1)
    230. 

  230. 	endif()
    231. 

  231. 

  232. 	if (NOT chose_ssl)
    233. 

  233. 		if (NOT OPENSSL_FOUND AND NOT LWS_WITH_BORINGSSL)
    234. 

  234. 			# TODO: Add support for STATIC also.
    235. 

  235. 			if (NOT LWS_PLAT_FREERTOS)
    236. 

  236. 				find_package(PkgConfig QUIET)
    237. 

  237. 				pkg_check_modules(PC_OPENSSL openssl QUIET)
    238. 

  238. 				find_package(OpenSSL REQUIRED)
    239. 

  239. 				list(APPEND OPENSSL_LIBRARIES ${PC_OPENSSL_LIBRARIES})
    240. 

  240. 				set(OPENSSL_LIBRARIES ${OPENSSL_LIBRARIES} PARENT_SCOPE)
    241. 

  241. 			endif()
    242. 

  242. 			set(OPENSSL_INCLUDE_DIRS "${OPENSSL_INCLUDE_DIR}")
    243. 

  243. 		endif()
    244. 

  244. 

  245. 		message("OpenSSL include dir: ${OPENSSL_INCLUDE_DIRS}")
    246. 

  246. 		if (NOT LWS_PLAT_FREERTOS)
    247. 

  247. 			message("OpenSSL libraries: ${OPENSSL_LIBRARIES}")
    248. 

  248. 		endif()
    249. 

  249. 

  250. 		if (OPENSSL_INCLUDE_DIRS)
    251. 

  251. 			include_directories("${OPENSSL_INCLUDE_DIRS}")
    252. 

  252. 			if (NOT LWS_PLAT_FREERTOS)
    253. 

  253. 				list(INSERT LIB_LIST 0 ${OPENSSL_LIBRARIES})
    254. 

  254. 			endif()
    255. 

  255. 	
    256. 

  256. 			if (NOT LWS_WITH_MBEDTLS)
    257. 

  257. 				# older (0.98) Openssl lacks this
    258. 

  258. 				set(CMAKE_REQUIRED_INCLUDES ${CMAKE_REQUIRED_INCLUDES} ${OPENSSL_INCLUDE_DIRS} PARENT_SCOPE)
    259. 

  259. 				check_include_file(openssl/ecdh.h LWS_HAVE_OPENSSL_ECDH_H)
    260. 

  260. 		
    261. 

  261. 				if (LWS_SSL_SERVER_WITH_ECDH_CERT AND NOT LWS_HAVE_OPENSSL_ECDH_H)
    262. 

  262. 					message(FATAL_ERROR "Missing openssl/ecdh.h, so cannot use LWS_SSL_SERVER_WITH_ECDH_CERT")
    263. 

  263. 				endif()
    264. 

  264. 			else()
    265. 

  265. 				unset(LWS_HAVE_OPENSSL_ECDH_H PARENT_SCOPE)
    266. 

  266. 			endif(NOT LWS_WITH_MBEDTLS)
    267. 

  267. 		endif()
    268. 

  268. 	endif()
    269. 

  269. 

  270. endif(LWS_WITH_SSL)
    271. 

  271. 

  272. if (DEFINED OPENSSL_INCLUDE_DIRS)
    273. 

  273. 	set(CMAKE_REQUIRED_INCLUDES ${OPENSSL_INCLUDE_DIRS})
    274. 

  274. endif()
    275. 

  275. if (DEFINED LIB_LIST)
    276. 

  276. 	set(CMAKE_REQUIRED_LIBRARIES ${LIB_LIST})
    277. 

  277. endif()
    278. 

  278. if (UNIX AND NOT (${CMAKE_SYSTEM_NAME} MATCHES "QNX"))
    279. 

  279. 	set(CMAKE_REQUIRED_LIBRARIES ${CMAKE_REQUIRED_LIBRARIES} dl)
    280. 

  280. endif()
    281. 

  281. if ((CMAKE_COMPILER_IS_GNUCC OR CMAKE_COMPILER_IS_GNUCXX) AND NOT (${CMAKE_SYSTEM_NAME} MATCHES "QNX"))
    282. 

  282. 	set(CMAKE_REQUIRED_LIBRARIES ${CMAKE_REQUIRED_LIBRARIES} pthread)
    283. 

  283. endif()
    284. 

  284. 

  285. if (NOT VARIA)
    286. 

  286. 	set(VARIA "")
    287. 

  287. endif()
    288. 

  288. 

  289. CHECK_FUNCTION_EXISTS(${VARIA}SSL_CTX_set1_param LWS_HAVE_SSL_CTX_set1_param PARENT_SCOPE)
    290. 

  290. CHECK_FUNCTION_EXISTS(${VARIA}SSL_set_info_callback LWS_HAVE_SSL_SET_INFO_CALLBACK PARENT_SCOPE)
    291. 

  291. CHECK_FUNCTION_EXISTS(${VARIA}X509_VERIFY_PARAM_set1_host LWS_HAVE_X509_VERIFY_PARAM_set1_host PARENT_SCOPE)
    292. 

  292. CHECK_FUNCTION_EXISTS(${VARIA}RSA_set0_key LWS_HAVE_RSA_SET0_KEY PARENT_SCOPE)
    293. 

  293. CHECK_FUNCTION_EXISTS(${VARIA}X509_get_key_usage LWS_HAVE_X509_get_key_usage PARENT_SCOPE)
    294. 

  294. CHECK_FUNCTION_EXISTS(${VARIA}EVP_PKEY_new_raw_private_key LWS_HAVE_SSL_CTX_EVP_PKEY_new_raw_private_key PARENT_SCOPE)
    295. 

  295. CHECK_FUNCTION_EXISTS(${VARIA}SSL_CTX_get0_certificate LWS_HAVE_SSL_CTX_get0_certificate PARENT_SCOPE)
    296. 

  296. CHECK_FUNCTION_EXISTS(${VARIA}SSL_get0_alpn_selected LWS_HAVE_SSL_get0_alpn_selected PARENT_SCOPE)
    297. 

  297. CHECK_FUNCTION_EXISTS(${VARIA}SSL_set_alpn_protos LWS_HAVE_SSL_set_alpn_protos PARENT_SCOPE)
    298. 

  298. CHECK_FUNCTION_EXISTS(${VARIA}EVP_aes_128_cfb8 LWS_HAVE_EVP_aes_128_cfb8 PARENT_SCOPE)
    299. 

  299. CHECK_FUNCTION_EXISTS(${VARIA}EVP_aes_128_cfb128 LWS_HAVE_EVP_aes_128_cfb128 PARENT_SCOPE)
    300. 

  300. CHECK_FUNCTION_EXISTS(${VARIA}EVP_aes_192_cfb8 LWS_HAVE_EVP_aes_192_cfb8 PARENT_SCOPE)
    301. 

  301. CHECK_FUNCTION_EXISTS(${VARIA}EVP_aes_192_cfb128 LWS_HAVE_EVP_aes_192_cfb128 PARENT_SCOPE)
    302. 

  302. CHECK_FUNCTION_EXISTS(${VARIA}EVP_aes_256_cfb8 LWS_HAVE_EVP_aes_256_cfb8 PARENT_SCOPE)
    303. 

  303. CHECK_FUNCTION_EXISTS(${VARIA}EVP_aes_256_cfb128 LWS_HAVE_EVP_aes_256_cfb128 PARENT_SCOPE)
    304. 

  304. CHECK_FUNCTION_EXISTS(${VARIA}EVP_aes_128_xts LWS_HAVE_EVP_aes_128_xts PARENT_SCOPE)
    305. 

  305. CHECK_FUNCTION_EXISTS(${VARIA}RSA_verify_pss_mgf1 LWS_HAVE_RSA_verify_pss_mgf1 PARENT_SCOPE)
    306. 

  306. CHECK_FUNCTION_EXISTS(${VARIA}HMAC_CTX_new LWS_HAVE_HMAC_CTX_new PARENT_SCOPE)
    307. 

  307. CHECK_FUNCTION_EXISTS(${VARIA}SSL_CTX_set_ciphersuites LWS_HAVE_SSL_CTX_set_ciphersuites PARENT_SCOPE)
    308. 

  308. CHECK_FUNCTION_EXISTS(${VARIA}EVP_PKEY_new_raw_private_key LWS_HAVE_EVP_PKEY_new_raw_private_key PARENT_SCOPE)
    309. 

  309. 

  310. if (LWS_WITH_SSL AND NOT LWS_WITH_MBEDTLS)
    311. 

  311. 	# we don't want to confuse what's in or out of the wrapper with
    312. 

  312. 	# what's in an openssl also installed on the build host
    313. 

  313. CHECK_C_SOURCE_COMPILES("#include <openssl/ssl.h>\nint main(void) { STACK_OF(X509) *c = NULL; SSL_CTX *ctx = NULL; return (int)SSL_CTX_get_extra_chain_certs_only(ctx, &c); }\n" LWS_HAVE_SSL_EXTRA_CHAIN_CERTS)
    314. 

  314. CHECK_C_SOURCE_COMPILES("#include <openssl/ssl.h>\nint main(void) { EVP_MD_CTX *md_ctx = NULL; EVP_MD_CTX_free(md_ctx); return 0; }\n" LWS_HAVE_EVP_MD_CTX_free)
    315. 

  315. set(LWS_HAVE_SSL_EXTRA_CHAIN_CERTS ${LWS_HAVE_SSL_EXTRA_CHAIN_CERTS} PARENT_SCOPE)
    316. 

  316. set(LWS_HAVE_EVP_MD_CTX_free ${LWS_HAVE_EVP_MD_CTX_free} PARENT_SCOPE)
    317. 

  317. CHECK_FUNCTION_EXISTS(${VARIA}ECDSA_SIG_set0 LWS_HAVE_ECDSA_SIG_set0 PARENT_SCOPE)
    318. 

  318. CHECK_FUNCTION_EXISTS(${VARIA}BN_bn2binpad LWS_HAVE_BN_bn2binpad PARENT_SCOPE)
    319. 

  319. CHECK_FUNCTION_EXISTS(${VARIA}EVP_aes_128_wrap LWS_HAVE_EVP_aes_128_wrap PARENT_SCOPE)
    320. 

  320. CHECK_FUNCTION_EXISTS(${VARIA}EC_POINT_get_affine_coordinates LWS_HAVE_EC_POINT_get_affine_coordinates PARENT_SCOPE)
    321. 

  321. CHECK_FUNCTION_EXISTS(${VARIA}SSL_CTX_load_verify_file LWS_HAVE_SSL_CTX_load_verify_file PARENT_SCOPE)
    322. 

  322. CHECK_FUNCTION_EXISTS(${VARIA}SSL_CTX_load_verify_dir LWS_HAVE_SSL_CTX_load_verify_dir PARENT_SCOPE)
    323. 

  323. endif()
    324. 

  324. 

  325. if (LWS_WITH_MBEDTLS)
    326. 

  326. 	set(LWS_HAVE_TLS_CLIENT_METHOD 1 PARENT_SCOPE)
    327. 

  327. 	if (NOT LWS_PLAT_FREERTOS)
    328. 

  328. 		# not supported in esp-idf openssl wrapper yet, but is in our version
    329. 

  329. 		set(LWS_HAVE_X509_VERIFY_PARAM_set1_host 1 PARENT_SCOPE)
    330. 

  330. 	endif()
    331. 

  331. 

  332. 	CHECK_FUNCTION_EXISTS(mbedtls_ssl_conf_alpn_protocols LWS_HAVE_mbedtls_ssl_conf_alpn_protocols PARENT_SCOPE)
    333. 

  333. 	CHECK_FUNCTION_EXISTS(mbedtls_ssl_get_alpn_protocol LWS_HAVE_mbedtls_ssl_get_alpn_protocol PARENT_SCOPE)
    334. 

  334. 	CHECK_FUNCTION_EXISTS(mbedtls_ssl_conf_sni LWS_HAVE_mbedtls_ssl_conf_sni PARENT_SCOPE)
    335. 

  335. 	CHECK_FUNCTION_EXISTS(mbedtls_ssl_set_hs_ca_chain LWS_HAVE_mbedtls_ssl_set_hs_ca_chain PARENT_SCOPE)
    336. 

  336. 	CHECK_FUNCTION_EXISTS(mbedtls_ssl_set_hs_own_cert LWS_HAVE_mbedtls_ssl_set_hs_own_cert PARENT_SCOPE)
    337. 

  337. 	CHECK_FUNCTION_EXISTS(mbedtls_ssl_set_hs_authmode LWS_HAVE_mbedtls_ssl_set_hs_authmode PARENT_SCOPE)
    338. 

  338. 	CHECK_FUNCTION_EXISTS(mbedtls_net_init LWS_HAVE_mbedtls_net_init PARENT_SCOPE)
    339. 

  339. 	CHECK_FUNCTION_EXISTS(mbedtls_md_setup LWS_HAVE_mbedtls_md_setup PARENT_SCOPE) # not on xenial 2.2
    340. 

  340. 	CHECK_FUNCTION_EXISTS(mbedtls_rsa_complete LWS_HAVE_mbedtls_rsa_complete PARENT_SCOPE) # not on xenial 2.2
    341. 

  341. 	CHECK_FUNCTION_EXISTS(mbedtls_internal_aes_encrypt LWS_HAVE_mbedtls_internal_aes_encrypt PARENT_SCOPE) # not on xenial 2.2
    342. 

  342. else()
    343. 

  343. CHECK_FUNCTION_EXISTS(${VARIA}TLS_client_method LWS_HAVE_TLS_CLIENT_METHOD PARENT_SCOPE)
    344. 

  344. CHECK_FUNCTION_EXISTS(${VARIA}TLSv1_2_client_method LWS_HAVE_TLSV1_2_CLIENT_METHOD PARENT_SCOPE)
    345. 

  345. endif()
    346. 

  346. 

  347. # Generate self-signed SSL certs for the test-server.
    348. 

  348. 

  349. if (LWS_WITH_SSL AND NOT LWS_WITH_WOLFSSL)
    350. 

  350. 	message("Searching for OpenSSL executable and dlls")
    351. 

  351. 	find_package(OpenSSL)
    352. 

  352. 	if (DEFINED OPENSSL_EXECUTABLE)
    353. 

  353. 		message("OpenSSL executable: ${OPENSSL_EXECUTABLE}")
    354. 

  354. 		
    355. 

  355. 		if (OPENSSL_EXECUTABLE MATCHES "^$")
    356. 

  356. 			set(OPENSSL_EXECUTABLE openssl)
    357. 

  357. 		endif()
    358. 

  358. 	endif()
    359. 

  359. 	if (NOT DEFINED OPENSSL_EXECUTABLE)
    360. 

  360. 		set(OPENSSL_EXECUTABLE openssl)
    361. 

  361. 	endif()
    362. 

  362. 

  363. endif()
    364. 

  364. 

  365. set(GENCERTS 0)
    366. 

  366. 

  367. if (LWS_WITH_SSL AND OPENSSL_EXECUTABLE AND NOT LWS_WITHOUT_TEST_SERVER AND NOT LWS_WITHOUT_SERVER AND NOT LWS_WITHOUT_TESTAPPS)
    368. 

  368. 	set(GENCERTS 1)
    369. 

  369. endif()
    370. 

  370. if (LWS_PLAT_FREERTOS AND LWS_WITH_SSL)
    371. 

  371. 	set(GENCERTS 1)
    372. 

  372. endif()
    373. 

  373. message(" GENCERTS = ${GENCERTS}")
    374. 

  374. if (GENCERTS)
    375. 

  375. 	message("Generating SSL Certificates for the test-server...")
    376. 

  376. 

  377. 	set(TEST_SERVER_SSL_KEY "${PROJECT_BINARY_DIR}/libwebsockets-test-server.key.pem")
    378. 

  378. 	set(TEST_SERVER_SSL_CERT "${PROJECT_BINARY_DIR}/libwebsockets-test-server.pem")
    379. 

  379. 

  380. 	if (WIN32)
    381. 

  381. 		if (MINGW)
    382. 

  382. 			message("cmd = \"${OPENSSL_EXECUTABLE}\" req -new -newkey rsa:2048 -days 10000 -nodes -x509 -subj \"/C=GB/ST=Erewhon/L=All around/O=libwebsockets-test/CN=localhost\" -keyout \"${TEST_SERVER_SSL_KEY}\" -out \"${TEST_SERVER_SSL_CERT}\"")
    383. 

  383. 			execute_process(
    384. 

  384. 				COMMAND "${OPENSSL_EXECUTABLE}" req -new -newkey rsa:2048 -days 10000 -nodes -x509 -subj "/C=GB/ST=Erewhon/L=All around/O=libwebsockets-test/CN=localhost" -keyout "${TEST_SERVER_SSL_KEY}" -out "${TEST_SERVER_SSL_CERT}"
    385. 

  385. 				RESULT_VARIABLE OPENSSL_RETURN_CODE)
    386. 

  386. 		else()
    387. 

  387. 			file(WRITE "${PROJECT_BINARY_DIR}/openssl_input.txt"
    388. 

  388. 				"GB\n"
    389. 

  389. 				"Erewhon\n"
    390. 

  390. 				"All around\n"
    391. 

  391. 				"libwebsockets-test\n"
    392. 

  392. 				"localhost\n"
    393. 

  393. 				"[email protected]\n\n"
    394. 

  394. 				)
    395. 

  395. 

  396. 			# The "type" command is a bit picky with paths.
    397. 

  397. 			file(TO_NATIVE_PATH "${PROJECT_BINARY_DIR}/openssl_input.txt" OPENSSL_INPUT_WIN_PATH)
    398. 

  398. 			message("OPENSSL_INPUT_WIN_PATH = ${OPENSSL_INPUT_WIN_PATH}")
    399. 

  399. 			message("cmd = \"${OPENSSL_EXECUTABLE}\" req -new -newkey rsa:2048 -days 10000 -nodes -x509 -keyout \"${TEST_SERVER_SSL_KEY}\" -out \"${TEST_SERVER_SSL_CERT}\"")
    400. 

  400. 

  401. 			execute_process(
    402. 

  402. 				COMMAND cmd /c type "${OPENSSL_INPUT_WIN_PATH}"
    403. 

  403. 				COMMAND "${OPENSSL_EXECUTABLE}" req -new -newkey rsa:2048 -days 10000 -nodes -x509 -keyout "${TEST_SERVER_SSL_KEY}" -out "${TEST_SERVER_SSL_CERT}"
    404. 

  404. 				RESULT_VARIABLE OPENSSL_RETURN_CODE
    405. 

  405. 				OUTPUT_QUIET ERROR_QUIET)
    406. 

  406. 

  407. 			message("\n")
    408. 

  408. 		endif()
    409. 

  409. 

  410. 		if (OPENSSL_RETURN_CODE)
    411. 

  411. 			message(WARNING "!!! Failed to generate SSL certificate for Test Server using cmd.exe !!!:\nOpenSSL return code = ${OPENSSL_RETURN_CODE}")
    412. 

  412. 		else()
    413. 

  413. 			message("SUCCSESFULLY generated SSL certificate")
    414. 

  414. 		endif()
    415. 

  415. 	else()
    416. 

  416. 		# Unix.
    417. 

  417. 		execute_process(
    418. 

  418. 			COMMAND printf "GB\\nErewhon\\nAll around\\nlibwebsockets-test\\n\\nlocalhost\\[email protected]\\n"
    419. 

  419. 			COMMAND "${OPENSSL_EXECUTABLE}"
    420. 

  420. 				req -new -newkey rsa:2048 -days 10000 -nodes -x509 -keyout "${TEST_SERVER_SSL_KEY}" -out "${TEST_SERVER_SSL_CERT}"
    421. 

  421. 			RESULT_VARIABLE OPENSSL_RETURN_CODE
    422. 

  422. 			#		OUTPUT_QUIET ERROR_QUIET
    423. 

  423. 			)
    424. 

  424. 

  425. 		if (OPENSSL_RETURN_CODE)
    426. 

  426. 			message(WARNING "!!! Failed to generate SSL certificate for Test Server!!!:\nOpenSSL return code = ${OPENSSL_RETURN_CODE}")
    427. 

  427. 		else()
    428. 

  428. 			message("SUCCESSFULLY generated SSL certificate")
    429. 

  429. 		endif()
    430. 

  430. 	endif()
    431. 

  431. 

  432. 	list(APPEND TEST_SERVER_DATA 
    433. 

  433. 		"${TEST_SERVER_SSL_KEY}"
    434. 

  434. 		"${TEST_SERVER_SSL_CERT}")
    435. 

  435. endif()
    436. 

  436. 

  437. #
    438. 

  438. # Copy OpenSSL dlls to the output directory on Windows.
    439. 

  439. # (Otherwise we'll get an error when trying to run)
    440. 

  440. #
    441. 

  441. if (MSVC AND LWS_WITH_SSL AND NOT LWS_WITH_WOLFSSL)
    442. 

  442. 	if(OPENSSL_BIN_FOUND)
    443. 

  443. 		message("OpenSSL dlls found:")
    444. 

  444. 		message("  Libeay: ${LIBEAY_BIN}")
    445. 

  445. 		message("  SSLeay: ${SSLEAY_BIN}")
    446. 

  446. 

  447. 		foreach(TARGET_BIN ${TEST_APP_LIST})
    448. 

  448. 			add_custom_command(TARGET ${TARGET_BIN}
    449. 

  449. 				POST_BUILD
    450. 

  450. 				COMMAND "${CMAKE_COMMAND}" -E copy "${LIBEAY_BIN}" "$<TARGET_FILE_DIR:${TARGET_BIN}>" VERBATIM)
    451. 

  451. 			add_custom_command(TARGET ${TARGET_BIN}
    452. 

  452. 				POST_BUILD
    453. 

  453. 				COMMAND "${CMAKE_COMMAND}" -E copy "${SSLEAY_BIN}" "$<TARGET_FILE_DIR:${TARGET_BIN}>" VERBATIM)
    454. 

  454. 

  455. 			#
    456. 

  456. 			# Win32: if we are using libuv, also need to copy it in the output dir
    457. 

  457. 			#
    458. 

  458. 			if (MSVC AND LWS_WITH_LIBUV)
    459. 

  459. 				STRING(REPLACE ".lib" ".dll" LIBUV_BIN ${LIBUV_LIBRARIES})
    460. 

  460. 				add_custom_command(TARGET ${TARGET_BIN}
    461. 

  461. 					POST_BUILD
    462. 

  462. 					COMMAND "${CMAKE_COMMAND}" -E copy "${LIBUV_BIN}" "$<TARGET_FILE_DIR:${TARGET_BIN}>" VERBATIM)
    463. 

  463. 			endif()
    464. 

  464. 		endforeach()
    465. 

  465. 	endif()
    466. 

  466. endif()
    467. 

  467. 

  468. if (LWS_WITH_TLS AND (LWS_WITH_JOSE OR LWS_WITH_GENCRYPTO))
    469. 

  469. 	list(APPEND SOURCES
    470. 

  470. 		tls/lws-gencrypto-common.c)
    471. 

  471. endif()
    472. 

  472. 

  473. #
    474. 

  474. # Keep explicit parent scope exports at end
    475. 

  475. #
    476. 

  476. 

  477. exports_to_parent_scope()
    478. 

  478. set(LWS_HAVE_MBEDTLS_NET_SOCKETS ${LWS_HAVE_MBEDTLS_NET_SOCKETS} PARENT_SCOPE)
    479. 

  479. set(TEST_SERVER_SSL_KEY "${TEST_SERVER_SSL_KEY}" PARENT_SCOPE)
    480. 

  480. set(TEST_SERVER_SSL_CERT "${TEST_SERVER_SSL_CERT}" PARENT_SCOPE)
    481. 

  481. set(TEST_SERVER_DATA ${TEST_SERVER_DATA} PARENT_SCOPE)
    482. 

  482.