crypto: require libgcrypt >= 1.5.0 for building QEMU

nettle_kdf="no"

gcrypt=""

gcrypt_hmac="no"

gcrypt_kdf="no"

vte=""

virglrenderer=""

tpm="yes"

    fi

fi

has_libgcrypt_config() {

has_libgcrypt() {

    if ! has "libgcrypt-config"

    then

	return 1

	fi

    fi

    maj=`libgcrypt-config --version | awk -F . '{print $1}'`

    min=`libgcrypt-config --version | awk -F . '{print $2}'`

    if test $maj != 1 || test $min -lt 5

    then

       return 1

    fi

    return 0

}

fi

if test "$gcrypt" != "no"; then

    if has_libgcrypt_config; then

    if has_libgcrypt; then

        gcrypt_cflags=$(libgcrypt-config --cflags)

        gcrypt_libs=$(libgcrypt-config --libs)

        # Debian has remove -lgpg-error from libgcrypt-config

        cat > $TMPC << EOF

#include <gcrypt.h>

int main(void) {

  gcry_kdf_derive(NULL, 0, GCRY_KDF_PBKDF2,

                  GCRY_MD_SHA256,

                  NULL, 0, 0, 0, NULL);

 return 0;

}

EOF

        if compile_prog "$gcrypt_cflags" "$gcrypt_libs" ; then

            gcrypt_kdf=yes

        fi

        cat > $TMPC << EOF

#include <gcrypt.h>

int main(void) {

  gcry_mac_hd_t handle;

  gcry_mac_open(&handle, GCRY_MAC_HMAC_MD5,

        fi

    else

        if test "$gcrypt" = "yes"; then

            feature_not_found "gcrypt" "Install gcrypt devel"

            feature_not_found "gcrypt" "Install gcrypt devel >= 1.5.0"

        else

            gcrypt="no"

        fi

echo "TLS priority      $tls_priority"

echo "GNUTLS support    $gnutls"

echo "libgcrypt         $gcrypt"

echo "libgcrypt kdf     $gcrypt_kdf"

echo "nettle            $nettle $(echo_version $nettle $nettle_version)"

echo "nettle kdf        $nettle_kdf"

echo "libtasn1          $tasn1"

  if test "$gcrypt_hmac" = "yes" ; then

    echo "CONFIG_GCRYPT_HMAC=y" >> $config_host_mak

  fi

  if test "$gcrypt_kdf" = "yes" ; then

    echo "CONFIG_GCRYPT_KDF=y" >> $config_host_mak

  fi

fi

if test "$nettle" = "yes" ; then

  echo "CONFIG_NETTLE=y" >> $config_host_mak

crypto-obj-$(if $(CONFIG_GCRYPT),n,$(if $(CONFIG_GNUTLS),n,y)) += random-platform.o

crypto-obj-y += pbkdf.o

crypto-obj-$(CONFIG_NETTLE_KDF) += pbkdf-nettle.o

crypto-obj-$(if $(CONFIG_NETTLE_KDF),n,$(CONFIG_GCRYPT_KDF)) += pbkdf-gcrypt.o

crypto-obj-$(if $(CONFIG_NETTLE_KDF),n,$(CONFIG_GCRYPT)) += pbkdf-gcrypt.o

crypto-obj-y += ivgen.o

crypto-obj-y += ivgen-essiv.o

crypto-obj-y += ivgen-plain.o

 */

#if (defined(CONFIG_GCRYPT) &&                  \

     (!defined(GCRYPT_VERSION_NUMBER) ||        \

      (GCRYPT_VERSION_NUMBER < 0x010600)))

     (GCRYPT_VERSION_NUMBER < 0x010600))

#define QCRYPTO_INIT_GCRYPT_THREADS

#else

#undef QCRYPTO_INIT_GCRYPT_THREADS

check-unit-y += tests/test-io-channel-command$(EXESUF)

check-unit-y += tests/test-io-channel-buffer$(EXESUF)

check-unit-y += tests/test-base64$(EXESUF)

check-unit-$(if $(CONFIG_NETTLE_KDF),y,$(CONFIG_GCRYPT_KDF)) += tests/test-crypto-pbkdf$(EXESUF)

check-unit-$(if $(CONFIG_NETTLE_KDF),y,$(CONFIG_GCRYPT)) += tests/test-crypto-pbkdf$(EXESUF)

check-unit-y += tests/test-crypto-ivgen$(EXESUF)

check-unit-y += tests/test-crypto-afsplit$(EXESUF)

check-unit-y += tests/test-crypto-xts$(EXESUF)

#endif

#if (defined(_WIN32) || defined RUSAGE_THREAD) && \

    (defined(CONFIG_NETTLE_KDF) || defined(CONFIG_GCRYPT_KDF))

    (defined(CONFIG_NETTLE_KDF) || defined(CONFIG_GCRYPT))

#define TEST_LUKS

#else

#undef TEST_LUKS