/mandos/release

To get this branch, use:
bzr branch http://bzr.recompile.se/loggerhead/mandos/release

« back to all changes in this revision

Viewing changes to Makefile

  • Committer: Björn Påhlsson
  • Date: 2008-07-20 02:52:20 UTC
  • Revision ID: belorn@braxen-20080720025220-r5u0388uy9iu23h6
Added following support:
Pluginbased client handler
rewritten Mandos client
       Avahi instead of udp server discovery
       openpgp encrypted key support
Passprompt stand alone application for direct console input
Added logging for Mandos server

Show diffs side-by-side

added added

removed removed

Lines of Context:
1
 
WARN=-O -Wall -Wformat=2 -Winit-self -Wmissing-include-dirs \
2
 
        -Wswitch-default -Wswitch-enum -Wunused-parameter \
3
 
        -Wstrict-aliasing=2 -Wextra -Wfloat-equal -Wundef -Wshadow \
4
 
        -Wunsafe-loop-optimizations -Wpointer-arith \
5
 
        -Wbad-function-cast -Wcast-qual -Wcast-align -Wwrite-strings \
6
 
        -Wconversion -Wstrict-prototypes -Wold-style-definition \
7
 
        -Wpacked -Wnested-externs -Winline -Wvolatile-register-var
8
 
#       -Wunreachable-code 
9
 
#DEBUG=-ggdb3
10
 
# For info about _FORTIFY_SOURCE, see
11
 
# <http://gcc.gnu.org/ml/gcc-patches/2004-09/msg02055.html>
12
 
FORTIFY=-D_FORTIFY_SOURCE=2 # -fstack-protector-all
13
 
#COVERAGE=--coverage
14
 
OPTIMIZE=-Os
15
 
LANGUAGE=-std=gnu99
16
 
 
17
 
## Use these settings for a traditional /usr/local install
18
 
# PREFIX=$(DESTDIR)/usr/local
19
 
# CONFDIR=$(DESTDIR)/etc/mandos
20
 
# KEYDIR=$(DESTDIR)/etc/mandos/keys
21
 
# MANDIR=$(PREFIX)/man
22
 
# INITRAMFSTOOLS=$(DESTDIR)/etc/initramfs-tools
23
 
##
24
 
 
25
 
## These settings are for a package-type install
26
 
PREFIX=$(DESTDIR)/usr
27
 
CONFDIR=$(DESTDIR)/etc/mandos
28
 
KEYDIR=$(DESTDIR)/etc/keys/mandos
29
 
MANDIR=$(PREFIX)/share/man
30
 
INITRAMFSTOOLS=$(DESTDIR)/usr/share/initramfs-tools
31
 
##
32
 
 
33
 
GNUTLS_CFLAGS=$(shell libgnutls-config --cflags)
34
 
GNUTLS_LIBS=$(shell libgnutls-config --libs)
35
 
AVAHI_CFLAGS=$(shell pkg-config --cflags-only-I avahi-core)
36
 
AVAHI_LIBS=$(shell pkg-config --libs avahi-core)
37
 
GPGME_CFLAGS=$(shell gpgme-config --cflags)
38
 
GPGME_LIBS=$(shell gpgme-config --libs)
39
 
 
40
 
# Do not change these two
41
 
CFLAGS=$(WARN) $(DEBUG) $(FORTIFY) $(COVERAGE) $(OPTIMIZE) \
42
 
        $(LANGUAGE) $(GNUTLS_CFLAGS) $(AVAHI_CFLAGS) $(GPGME_CFLAGS)
43
 
LDFLAGS=$(COVERAGE)
44
 
 
45
 
# Commands to format a DocBook <refentry> document into a manual page
46
 
DOCBOOKTOMAN=cd $(dir $<); xsltproc --nonet --xinclude \
47
 
        --param man.charmap.use.subset          0 \
48
 
        --param make.year.ranges                1 \
49
 
        --param make.single.year.ranges         1 \
50
 
        --param man.output.quietly              1 \
51
 
        --param man.authors.section.enabled     0 \
52
 
         /usr/share/xml/docbook/stylesheet/nwalsh/manpages/docbook.xsl \
53
 
        $(notdir $<); \
54
 
        $(MANPOST) $(notdir $@)
55
 
# DocBook-to-man post-processing to fix a '\n' escape bug
56
 
MANPOST=sed --in-place --expression='s,\\\\en,\\en,g;s,\\n,\\en,g'
57
 
 
58
 
PLUGINS=plugins.d/password-prompt plugins.d/mandos-client
59
 
PROGS=plugin-runner $(PLUGINS)
60
 
DOCS=mandos.8 plugin-runner.8mandos mandos-keygen.8 \
61
 
        plugins.d/mandos-client.8mandos \
62
 
        plugins.d/password-prompt.8mandos mandos.conf.5 \
63
 
        mandos-clients.conf.5
64
 
 
65
 
objects=$(addsuffix .o,$(PROGS))
66
 
 
67
 
all: $(PROGS)
68
 
 
69
 
doc: $(DOCS)
70
 
 
71
 
%.5: %.xml legalnotice.xml
72
 
        $(DOCBOOKTOMAN)
73
 
 
74
 
%.8: %.xml legalnotice.xml
75
 
        $(DOCBOOKTOMAN)
76
 
 
77
 
%.8mandos: %.xml legalnotice.xml
78
 
        $(DOCBOOKTOMAN)
79
 
 
80
 
mandos.8: mandos.xml mandos-options.xml overview.xml legalnotice.xml
81
 
        $(DOCBOOKTOMAN)
82
 
 
83
 
mandos-keygen.8: mandos-keygen.xml overview.xml legalnotice.xml
84
 
        $(DOCBOOKTOMAN)
85
 
 
86
 
mandos.conf.5: mandos.conf.xml mandos-options.xml legalnotice.xml
87
 
        $(DOCBOOKTOMAN)
88
 
 
89
 
plugin-runner.8mandos: plugin-runner.xml overview.xml legalnotice.xml
90
 
        $(DOCBOOKTOMAN)
91
 
 
92
 
plugins.d/mandos-client.8mandos: plugins.d/mandos-client.xml \
93
 
                                        mandos-options.xml \
94
 
                                        overview.xml legalnotice.xml
95
 
        $(DOCBOOKTOMAN)
96
 
 
97
 
plugins.d/mandos-client: plugins.d/mandos-client.o
98
 
        $(LINK.o) $(GNUTLS_LIBS) $(AVAHI_LIBS) $(GPGME_LIBS) \
99
 
                $(COMMON) $^ $(LOADLIBES) $(LDLIBS) -o $@
100
 
 
101
 
.PHONY : all doc clean distclean run-client run-server install \
102
 
        install-server install-client uninstall uninstall-server \
103
 
        uninstall-client purge purge-server purge-client
 
1
CFLAGS="-Wall -std=gnu99"
 
2
LDFLAGS=-lgnutls
 
3
 
 
4
all: plugbasedclient
104
5
 
105
6
clean:
106
 
        -rm --force $(PROGS) $(objects) $(DOCS) core
107
 
 
108
 
distclean: clean
109
 
mostlyclean: clean
110
 
maintainer-clean: clean
111
 
        -rm --force --recursive keydir confdir
112
 
 
113
 
check:
114
 
        ./mandos --check
115
 
 
116
 
# Run the client with a local config and key
117
 
run-client: all keydir/seckey.txt keydir/pubkey.txt
118
 
        ./plugin-runner --plugin-dir=plugins.d \
119
 
                --config-file=plugin-runner.conf \
120
 
                --options-for=mandos-client:--seckey=keydir/seckey.txt,--pubkey=keydir/pubkey.txt
121
 
 
122
 
# Used by run-client
123
 
keydir/seckey.txt keydir/pubkey.txt: mandos-keygen
124
 
        install --directory keydir
125
 
        ./mandos-keygen --dir keydir --force
126
 
 
127
 
# Run the server with a local config
128
 
run-server: confdir/mandos.conf confdir/clients.conf
129
 
        ./mandos --debug --configdir=confdir
130
 
 
131
 
# Used by run-server
132
 
confdir/mandos.conf: mandos.conf
133
 
        install --directory confdir
134
 
        install --mode=u=rw,go=r $^ $@
135
 
confdir/clients.conf: clients.conf keydir/seckey.txt
136
 
        install --directory confdir
137
 
        install --mode=u=rw $< $@
138
 
# Add a client password
139
 
        ./mandos-keygen --dir keydir --password >> $@
140
 
 
141
 
install: install-server install-client
142
 
 
143
 
install-server: doc
144
 
        install --directory $(CONFDIR) $(MANDIR)/man5 \
145
 
                $(MANDIR)/man8
146
 
        install --mode=u=rwx,go=rx mandos $(PREFIX)/sbin/mandos
147
 
        install --mode=u=rw,go=r --target-directory=$(CONFDIR) \
148
 
                mandos.conf
149
 
        install --mode=u=rw --target-directory=$(CONFDIR) \
150
 
                clients.conf
151
 
        install --mode=u=rwx,go=rx init.d-mandos \
152
 
                $(DESTDIR)/etc/init.d/mandos
153
 
        install --mode=u=rw,go=r default-mandos \
154
 
                $(DESTDIR)/etc/default/mandos
155
 
        update-rc.d mandos defaults
156
 
        gzip --best --to-stdout mandos.8 \
157
 
                > $(MANDIR)/man8/mandos.8.gz
158
 
        gzip --best --to-stdout mandos.conf.5 \
159
 
                > $(MANDIR)/man5/mandos.conf.5.gz
160
 
        gzip --best --to-stdout mandos-clients.conf.5 \
161
 
                > $(MANDIR)/man5/mandos-clients.conf.5.gz
162
 
 
163
 
install-client: all doc $(INITRAMFSTOOLS)/hooks/.
164
 
        install --directory $(PREFIX)/lib/mandos $(CONFDIR) \
165
 
                $(MANDIR)/man8
166
 
        install --directory --mode=u=rwx $(KEYDIR)
167
 
        install --directory --mode=u=rwx \
168
 
                $(PREFIX)/lib/mandos/plugins.d
169
 
        if [ "$(CONFDIR)" != "$(PREFIX)/lib/mandos" ]; then \
170
 
                install --mode=u=rwx \
171
 
                        --directory "$(CONFDIR)/plugins.d"; \
172
 
                install --mode=u=rw,go=r etc-plugins.d-README \
173
 
                        $(CONFDIR)/plugins.d/README ; \
174
 
        fi
175
 
        install --mode=u=rwx,go=rx \
176
 
                --target-directory=$(PREFIX)/lib/mandos plugin-runner
177
 
        install --mode=u=rwx,go=rx --target-directory=$(PREFIX)/sbin \
178
 
                mandos-keygen
179
 
        install --mode=u=rwx,go=rx \
180
 
                --target-directory=$(PREFIX)/lib/mandos/plugins.d \
181
 
                plugins.d/password-prompt
182
 
        install --mode=u=rwxs,go=rx \
183
 
                --target-directory=$(PREFIX)/lib/mandos/plugins.d \
184
 
                plugins.d/mandos-client
185
 
        install --mode=u=rwx,go=rx \
186
 
                --target-directory=$(PREFIX)/lib/mandos/plugins.d \
187
 
                plugins.d/usplash
188
 
        install initramfs-tools-hook \
189
 
                $(INITRAMFSTOOLS)/hooks/mandos
190
 
        install initramfs-tools-hook-conf \
191
 
                $(INITRAMFSTOOLS)/conf-hooks.d/mandos
192
 
        install initramfs-tools-script \
193
 
                $(INITRAMFSTOOLS)/scripts/local-top/mandos
194
 
        install --mode=u=rw,go=r plugin-runner.conf $(CONFDIR)
195
 
        gzip --best --to-stdout mandos-keygen.8 \
196
 
                > $(MANDIR)/man8/mandos-keygen.8.gz
197
 
        gzip --best --to-stdout plugin-runner.8mandos \
198
 
                > $(MANDIR)/man8/plugin-runner.8mandos.gz
199
 
        gzip --best --to-stdout plugins.d/password-prompt.8mandos \
200
 
                > $(MANDIR)/man8/password-prompt.8mandos.gz
201
 
        gzip --best --to-stdout plugins.d/mandos-client.8mandos \
202
 
                > $(MANDIR)/man8/mandos-client.8mandos.gz
203
 
# Post-installation stuff
204
 
        -$(PREFIX)/sbin/mandos-keygen --dir "$(KEYDIR)"
205
 
        update-initramfs -k all -u
206
 
        echo "Now run mandos-keygen --password --dir $(KEYDIR)"
207
 
 
208
 
uninstall: uninstall-server uninstall-client
209
 
 
210
 
uninstall-server:
211
 
        -rm --force $(PREFIX)/sbin/mandos \
212
 
                $(MANDIR)/man8/mandos.8.gz \
213
 
                $(MANDIR)/man5/mandos.conf.5.gz \
214
 
                $(MANDIR)/man5/mandos-clients.conf.5.gz
215
 
        update-rc.d -f mandos remove
216
 
        -rmdir $(CONFDIR)
217
 
 
218
 
uninstall-client:
219
 
# Refuse to uninstall client if /etc/crypttab is explicitly configured
220
 
# to use it.
221
 
        ! grep --regexp='^ *[^ #].*keyscript=[^,=]*/mandos/' \
222
 
                $(DESTDIR)/etc/crypttab
223
 
        -rm --force $(PREFIX)/sbin/mandos-keygen \
224
 
                $(PREFIX)/lib/mandos/plugin-runner \
225
 
                $(PREFIX)/lib/mandos/plugins.d/password-prompt \
226
 
                $(PREFIX)/lib/mandos/plugins.d/mandos-client \
227
 
                $(PREFIX)/lib/mandos/plugins.d/usplash \
228
 
                $(INITRAMFSTOOLS)/hooks/mandos \
229
 
                $(INITRAMFSTOOLS)/conf-hooks.d/mandos \
230
 
                $(INITRAMFSTOOLS)/scripts/local-top/mandos \
231
 
                $(MANDIR)/man8/plugin-runner.8mandos.gz \
232
 
                $(MANDIR)/man8/mandos-keygen.8.gz \
233
 
                $(MANDIR)/man8/password-prompt.8mandos.gz \
234
 
                $(MANDIR)/man8/mandos-client.8mandos.gz
235
 
        if [ "$(CONFDIR)" != "$(PREFIX)/lib/mandos" ]; then \
236
 
                rm --force $(CONFDIR)/plugins.d/README; \
237
 
        fi
238
 
        -rmdir $(PREFIX)/lib/mandos/plugins.d $(CONFDIR)/plugins.d \
239
 
                 $(PREFIX)/lib/mandos $(CONFDIR) $(KEYDIR)
240
 
        update-initramfs -k all -u
241
 
 
242
 
purge: purge-server purge-client
243
 
 
244
 
purge-server: uninstall-server
245
 
        -rm --force $(CONFDIR)/mandos.conf $(CONFDIR)/clients.conf \
246
 
                $(DESTDIR)/etc/default/mandos \
247
 
                $(DESTDIR)/etc/init.d/mandos \
248
 
                $(DESTDIR)/var/run/mandos.pid
249
 
        -rmdir $(CONFDIR)
250
 
 
251
 
purge-client: uninstall-client
252
 
        -shred --remove $(KEYDIR)/seckey.txt
253
 
        -rm --force $(CONFDIR)/plugin-runner.conf \
254
 
                $(KEYDIR)/pubkey.txt $(KEYDIR)/seckey.txt
255
 
        -rmdir $(KEYDIR) $(CONFDIR)/plugins.d $(CONFDIR)
 
7
        rm -f plugbasedclient
 
8
 
 
9
client_debug: client
 
10
        mv -f client client.tmp
 
11
        $(MAKE) client CXXFLAGS="$(CXXFLAGS) -DDEBUG -DCERT_ROOT=\\\"./\\\""
 
12
        mv client client_debug
 
13
        mv client.tmp client