/mandos/release : revision 15

To get this branch, use:

bzr branch
http://bzr.recompile.se/loggerhead/mandos/release

« back to all changes in this revision

Viewing changes to Makefile

Committer: Teddy Hogeborn
Date: 2008-07-20 06:33:48 UTC
Revision ID: teddy@fukt.bsnet.se-20080720063348-jscgy5p0itrgvlo8

* mandos-clients.conf ([foo]): Uncommented.
  ([foo]/secret): New.
  ([foo]/secfile): Commented out.
  ([foo]/checker): Changed to "fping -q -- %%(fqdn)s".
  ([foo]/timeout): New.

* server.py: New modeline for Python and Emacs.  Set a logging format.
  (Client.__init__): Bug fix: Choose either the value from the options
                     object or pass the argument through string_to_delta
                     for both "timeout" and "interval".
  (Client.checker_callback): Bug fix: Do not log spurious "Checker for
                             <foo> failed" messages.
  (Client.start_checker): Moved "Starting checker" log message down to
                          just before actually starting the subprocess.
                          Do not redirect the subprocesses' stdout to a
                          pipe.
  (peer_certificate, fingerprint): Added docstrings.
  (entry_group_state_changed): Call "killme()" instead of
                               "main_loop.quit()".
  (daemon, killme): New functions.
  (exitstatus, main_loop_started): New global variables.
  (__main__): Removed the "--cert", "--key", "--ca", and "--crl"
              options.  Removed the sleep command from the default
              checker.  Add a console logger in debug mode.  Call
              "killme()" instead of "main_loop.quit()" when there are no
              more clients.  Call "daemon()" if not in debug mode.
              Register "cleanup()" to run at exit.  Ignore some
              signals.  Catch DBusException to detect another running
              server and exit cleanly.  Exit with "exitstatus".
  (cleanup): New function.

files added:
ca.pem

cert.pem

client-cert.pem

client-key.pem

crl.pem

key.pem

plugins.d/Makefile

files removed:
.bzr-builddeb

.bzr-builddeb/default.conf

.bzrignore

COPYING

INSTALL

README

debian

debian/changelog

debian/compat

debian/control

debian/copyright

debian/mandos-client.README.Debian

debian/mandos-client.config

debian/mandos-client.dirs

debian/mandos-client.docs

debian/mandos-client.links

debian/mandos-client.lintian-overrides

debian/mandos-client.postinst

debian/mandos-client.postrm

debian/mandos-client.templates

debian/mandos.README.Debian

debian/mandos.config

debian/mandos.dirs

debian/mandos.docs

debian/mandos.lintian-overrides

debian/mandos.postinst

debian/mandos.prerm

debian/mandos.templates

debian/po

debian/po/POTFILES.in

debian/po/sv.po

debian/rules

default-mandos

init.d-mandos

initramfs-tools-hook

initramfs-tools-hook-conf

initramfs-tools-script

legalnotice.xml

mandos-clients.conf.xml

mandos-keygen

mandos-keygen.xml

mandos-options.xml

mandos.conf

mandos.conf.xml

mandos.xml

overview.xml

plugin-runner.conf

plugin-runner.xml

plugins.d/askpass-fifo.c

plugins.d/mandos-client.xml

plugins.d/password-prompt.xml

plugins.d/splashy.c

plugins.d/usplash.c

files renamed:
clients.conf => mandos-clients.conf

plugin-runner.c => plugbasedclient.c

plugins.d/mandos-client.c => plugins.d/mandosclient.c

plugins.d/password-prompt.c => plugins.d/passprompt.c

mandos => server.py

files modified:
Makefile

TODO

Show diffs side-by-side

added added

removed removed

Makefile

WARN=-O -Wall -Wformat=2 -Winit-self -Wmissing-include-dirs \

-Wswitch-default -Wswitch-enum -Wunused-parameter \

-Wstrict-aliasing=2 -Wextra -Wfloat-equal -Wundef -Wshadow \

-Wunsafe-loop-optimizations -Wpointer-arith \

-Wbad-function-cast -Wcast-qual -Wcast-align -Wwrite-strings \

-Wconversion -Wstrict-prototypes -Wold-style-definition \

-Wpacked -Wnested-externs -Winline -Wvolatile-register-var

# -Wunreachable-code

#DEBUG=-ggdb3

# For info about _FORTIFY_SOURCE, see

# <http://gcc.gnu.org/ml/gcc-patches/2004-09/msg02055.html>

FORTIFY=-D_FORTIFY_SOURCE=2 # -fstack-protector-all

#COVERAGE=--coverage

OPTIMIZE=-Os

LANGUAGE=-std=gnu99

## Use these settings for a traditional /usr/local install

# PREFIX=$(DESTDIR)/usr/local

# CONFDIR=$(DESTDIR)/etc/mandos

# KEYDIR=$(DESTDIR)/etc/mandos/keys

# MANDIR=$(PREFIX)/man

# INITRAMFSTOOLS=$(DESTDIR)/etc/initramfs-tools

## These settings are for a package-type install

PREFIX=$(DESTDIR)/usr

CONFDIR=$(DESTDIR)/etc/mandos

KEYDIR=$(DESTDIR)/etc/keys/mandos

MANDIR=$(PREFIX)/share/man

INITRAMFSTOOLS=$(DESTDIR)/usr/share/initramfs-tools

GNUTLS_CFLAGS=$(shell libgnutls-config --cflags)

GNUTLS_LIBS=$(shell libgnutls-config --libs)

AVAHI_CFLAGS=$(shell pkg-config --cflags-only-I avahi-core)

AVAHI_LIBS=$(shell pkg-config --libs avahi-core)

GPGME_CFLAGS=$(shell gpgme-config --cflags)

GPGME_LIBS=$(shell gpgme-config --libs)

# Do not change these two

CFLAGS=$(WARN) $(DEBUG) $(FORTIFY) $(COVERAGE) $(OPTIMIZE) \

$(LANGUAGE) $(GNUTLS_CFLAGS) $(AVAHI_CFLAGS) $(GPGME_CFLAGS)

LDFLAGS=$(COVERAGE)

# Commands to format a DocBook <refentry> document into a manual page

DOCBOOKTOMAN=cd $(dir $<); xsltproc --nonet --xinclude \

--param man.charmap.use.subset 0 \

--param make.year.ranges 1 \

--param make.single.year.ranges 1 \

--param man.output.quietly 1 \

--param man.authors.section.enabled 0 \

/usr/share/xml/docbook/stylesheet/nwalsh/manpages/docbook.xsl \

$(notdir $<); \

$(MANPOST) $(notdir $@)

# DocBook-to-man post-processing to fix a '\n' escape bug

MANPOST=sed --in-place --expression='s,\\\\en,\\en,g;s,\\n,\\en,g'

PLUGINS=plugins.d/password-prompt plugins.d/mandos-client \

plugins.d/usplash plugins.d/splashy plugins.d/askpass-fifo

PROGS=plugin-runner $(PLUGINS)

DOCS=mandos.8 plugin-runner.8mandos mandos-keygen.8 \

plugins.d/mandos-client.8mandos \

plugins.d/password-prompt.8mandos mandos.conf.5 \

mandos-clients.conf.5

objects=$(addsuffix .o,$(PROGS))

all: $(PROGS)

doc: $(DOCS)

%.5: %.xml legalnotice.xml

$(DOCBOOKTOMAN)

%.8: %.xml legalnotice.xml

$(DOCBOOKTOMAN)

%.8mandos: %.xml legalnotice.xml

$(DOCBOOKTOMAN)

mandos.8: mandos.xml mandos-options.xml overview.xml legalnotice.xml

$(DOCBOOKTOMAN)

mandos-keygen.8: mandos-keygen.xml overview.xml legalnotice.xml

$(DOCBOOKTOMAN)

mandos.conf.5: mandos.conf.xml mandos-options.xml legalnotice.xml

$(DOCBOOKTOMAN)

plugin-runner.8mandos: plugin-runner.xml overview.xml legalnotice.xml

$(DOCBOOKTOMAN)

plugins.d/mandos-client.8mandos: plugins.d/mandos-client.xml \

mandos-options.xml \

overview.xml legalnotice.xml

$(DOCBOOKTOMAN)

plugins.d/mandos-client: plugins.d/mandos-client.o

$(LINK.o) $(GNUTLS_LIBS) $(AVAHI_LIBS) $(GPGME_LIBS) \

100

$(COMMON) $^ $(LOADLIBES) $(LDLIBS) -o $@

101

102

.PHONY : all doc clean distclean run-client run-server install \

103

install-server install-client uninstall uninstall-server \

104

uninstall-client purge purge-server purge-client

CFLAGS=-Wall -g -std=gnu99

LDFLAGS=-lgnutls

all: plugbasedclient

105

106

clean:

107

-rm --force $(PROGS) $(objects) $(DOCS) core

108

109

distclean: clean

110

mostlyclean: clean

111

maintainer-clean: clean

112

-rm --force --recursive keydir confdir

113

114

check:

115

./mandos --check

116

117

# Run the client with a local config and key

118

run-client: all keydir/seckey.txt keydir/pubkey.txt

119

./plugin-runner --plugin-dir=plugins.d \

120

--config-file=plugin-runner.conf \

121

--options-for=mandos-client:--seckey=keydir/seckey.txt,--pubkey=keydir/pubkey.txt

122

123

# Used by run-client

124

keydir/seckey.txt keydir/pubkey.txt: mandos-keygen

125

install --directory keydir

126

./mandos-keygen --dir keydir --force

127

128

# Run the server with a local config

129

run-server: confdir/mandos.conf confdir/clients.conf

130

./mandos --debug --configdir=confdir

131

132

# Used by run-server

133

confdir/mandos.conf: mandos.conf

134

install --directory confdir

135

install --mode=u=rw,go=r $^ $@

136

confdir/clients.conf: clients.conf keydir/seckey.txt

137

install --directory confdir

138

install --mode=u=rw $< $@

139

# Add a client password

140

./mandos-keygen --dir keydir --password >> $@

141

142

install: install-server install-client-nokey

143

144

install-server: doc

145

install --directory $(CONFDIR)

146

install --mode=u=rwx,go=rx mandos $(PREFIX)/sbin/mandos

147

install --mode=u=rw,go=r --target-directory=$(CONFDIR) \

148

mandos.conf

149

install --mode=u=rw --target-directory=$(CONFDIR) \

150

clients.conf

151

install --mode=u=rwx,go=rx init.d-mandos \

152

$(DESTDIR)/etc/init.d/mandos

153

install --mode=u=rw,go=r default-mandos \

154

$(DESTDIR)/etc/default/mandos

155

if [ -z $(DESTDIR) ]; then \

156

update-rc.d mandos defaults 25 15;\

157

158

gzip --best --to-stdout mandos.8 \

159

> $(MANDIR)/man8/mandos.8.gz

160

gzip --best --to-stdout mandos.conf.5 \

161

> $(MANDIR)/man5/mandos.conf.5.gz

162

gzip --best --to-stdout mandos-clients.conf.5 \

163

> $(MANDIR)/man5/mandos-clients.conf.5.gz

164

165

install-client-nokey: all doc

166

install --directory $(PREFIX)/lib/mandos $(CONFDIR)

167

install --directory --mode=u=rwx $(KEYDIR) \

168

$(PREFIX)/lib/mandos/plugins.d

169

if [ "$(CONFDIR)" != "$(PREFIX)/lib/mandos" ]; then \

170

install --mode=u=rwx \

171

--directory "$(CONFDIR)/plugins.d"; \

172

173

install --mode=u=rwx,go=rx \

174

--target-directory=$(PREFIX)/lib/mandos plugin-runner

175

install --mode=u=rwx,go=rx --target-directory=$(PREFIX)/sbin \

176

mandos-keygen

177

install --mode=u=rwx,go=rx \

178