To get this branch, use:
bzr branch
http://bzr.recompile.se/loggerhead/mandos/release
« back to all changes in this revision
Viewing changes to Makefile
- browse files at revision 237.7.700
- compare with another revision
- download diff
- download tarball
- view history from revision 237.7.700
- Committer: Teddy Hogeborn
- Date: 2019-08-05 21:14:05 UTC
- mto: This revision was merged to the branch mainline in revision 388.
- Revision ID: teddy@recompile.se-20190805211405-9m6hecekaihpttz9
Override lintian warnings about upgrading from old versions
There are some really things which are imperative that we fix in case
someone were to upgrade from a really old version. We want to keep
these fixes in the postinst maintainer scripts, even though lintian
complains about such old upgrades not being supported by Debian in
general. We prefer the code being there, for the sake of the users.
* debian/mandos-client.lintian-overrides
(maintainer-script-supports-ancient-package-version): New.
debian/mandos.lintian-overrides
(maintainer-script-supports-ancient-package-version): - '' -
There are some really things which are imperative that we fix in case
someone were to upgrade from a really old version. We want to keep
these fixes in the postinst maintainer scripts, even though lintian
complains about such old upgrades not being supported by Debian in
general. We prefer the code being there, for the sake of the users.
* debian/mandos-client.lintian-overrides
(maintainer-script-supports-ancient-package-version): New.
debian/mandos.lintian-overrides
(maintainer-script-supports-ancient-package-version): - '' -
- files added:
- bugs.xml
- debian/tests
- dracut-module
- files removed:
- initramfs-tools-hook-conf
- files modified:
- .bzrignore
added
removed
Makefile
1
WARN=-O -Wall -Wextra -Wdouble-promotion -Wformat=2 -Winit-self \
1
WARN:=-O -Wall -Wextra -Wdouble-promotion -Wformat=2 -Winit-self \
2
2
-Wmissing-include-dirs -Wswitch-default -Wswitch-enum \
3
3
-Wunused -Wuninitialized -Wstrict-overflow=5 \
4
4
-Wsuggest-attribute=pure -Wsuggest-attribute=const \
10
10
-Wmissing-format-attribute -Wnormalized=nfc -Wpacked \
11
11
-Wredundant-decls -Wnested-externs -Winline -Wvla \
12
12
-Wvolatile-register-var -Woverlength-strings
13
#DEBUG=-ggdb3
13
14
#DEBUG:=-ggdb3 -fsanitize=address $(SANITIZE)
15
## Check which sanitizing options can be used
16
#SANITIZE:=$(foreach option,$(ALL_SANITIZE_OPTIONS),$(shell \
17
# echo 'int main(){}' | $(CC) --language=c $(option) \
18
# /dev/stdin -o /dev/null >/dev/null 2>&1 && echo $(option)))
19
# <https://developerblog.redhat.com/2014/10/16/gcc-undefined-behavior-sanitizer-ubsan/>
20
ALL_SANITIZE_OPTIONS:=-fsanitize=leak -fsanitize=undefined \
21
-fsanitize=shift -fsanitize=integer-divide-by-zero \
22
-fsanitize=unreachable -fsanitize=vla-bound -fsanitize=null \
23
-fsanitize=return -fsanitize=signed-integer-overflow \
24
-fsanitize=bounds -fsanitize=alignment \
25
-fsanitize=object-size -fsanitize=float-divide-by-zero \
26
-fsanitize=float-cast-overflow -fsanitize=nonnull-attribute \
27
-fsanitize=returns-nonnull-attribute -fsanitize=bool \
28
-fsanitize=enum -fsanitize-address-use-after-scope
29
14
30
# For info about _FORTIFY_SOURCE, see feature_test_macros(7)
15
# and <http://gcc.gnu.org/ml/gcc-patches/2004-09/msg02055.html>.
16
FORTIFY=-D_FORTIFY_SOURCE=2 -fstack-protector-all -fPIC
17
LINK_FORTIFY_LD=-z relro -z now
18
LINK_FORTIFY=
31
# and <https://gcc.gnu.org/ml/gcc-patches/2004-09/msg02055.html>.
32
FORTIFY:=-D_FORTIFY_SOURCE=2 -fstack-protector-all -fPIC
33
LINK_FORTIFY_LD:=-z relro -z now
34
LINK_FORTIFY:=
19
35
20
36
# If BROKEN_PIE is set, do not build with -pie
21
37
ifndef BROKEN_PIE
23
39
LINK_FORTIFY += -pie
24
40
endif
25
41
#COVERAGE=--coverage
26
OPTIMIZE=-Os -fno-strict-aliasing
27
LANGUAGE=-std=gnu99
28
htmldir=man
29
version=1.6.9
30
SED=sed
31
32
USER=$(firstword $(subst :, ,$(shell getent passwd _mandos || getent passwd nobody || echo 65534)))
33
GROUP=$(firstword $(subst :, ,$(shell getent group _mandos || getent group nobody || echo 65534)))
42
OPTIMIZE:=-Os -fno-strict-aliasing
43
LANGUAGE:=-std=gnu11
44
FEATURES:=-D_FILE_OFFSET_BITS=64
45
htmldir:=man
46
version:=1.8.6
47
SED:=sed
48
PKG_CONFIG?=pkg-config
49
50
USER:=$(firstword $(subst :, ,$(shell getent passwd _mandos \
51
|| getent passwd nobody || echo 65534)))
52
GROUP:=$(firstword $(subst :, ,$(shell getent group _mandos \
53
|| getent group nogroup || echo 65534)))
54
55
LINUXVERSION:=$(shell uname --kernel-release)
34
56
35
57
## Use these settings for a traditional /usr/local install
36
# PREFIX=$(DESTDIR)/usr/local
37
# CONFDIR=$(DESTDIR)/etc/mandos
38
# KEYDIR=$(DESTDIR)/etc/mandos/keys
39
# MANDIR=$(PREFIX)/man
40
# INITRAMFSTOOLS=$(DESTDIR)/etc/initramfs-tools
41
# STATEDIR=$(DESTDIR)/var/lib/mandos
42
# LIBDIR=$(PREFIX)/lib
58
# PREFIX:=$(DESTDIR)/usr/local
59
# CONFDIR:=$(DESTDIR)/etc/mandos
60
# KEYDIR:=$(DESTDIR)/etc/mandos/keys
61
# MANDIR:=$(PREFIX)/man
62
# INITRAMFSTOOLS:=$(DESTDIR)/etc/initramfs-tools
63
# DRACUTMODULE:=$(DESTDIR)/usr/lib/dracut/modules.d/90mandos
64
# STATEDIR:=$(DESTDIR)/var/lib/mandos
65
# LIBDIR:=$(PREFIX)/lib
43
66
##
44
67
45
68
## These settings are for a package-type install
46
PREFIX=$(DESTDIR)/usr
47
CONFDIR=$(DESTDIR)/etc/mandos
48
KEYDIR=$(DESTDIR)/etc/keys/mandos
49
MANDIR=$(PREFIX)/share/man
50
INITRAMFSTOOLS=$(DESTDIR)/usr/share/initramfs-tools
51
STATEDIR=$(DESTDIR)/var/lib/mandos
52
LIBDIR=$(shell \
69
PREFIX:=$(DESTDIR)/usr
70
CONFDIR:=$(DESTDIR)/etc/mandos
71
KEYDIR:=$(DESTDIR)/etc/keys/mandos
72
MANDIR:=$(PREFIX)/share/man
73
INITRAMFSTOOLS:=$(DESTDIR)/usr/share/initramfs-tools
74
DRACUTMODULE:=$(DESTDIR)/usr/lib/dracut/modules.d/90mandos
75
STATEDIR:=$(DESTDIR)/var/lib/mandos
76
LIBDIR:=$(shell \
53
77
for d in \
54
"/usr/lib/`dpkg-architecture -qDEB_HOST_MULTIARCH 2>/dev/null`" \
78
"/usr/lib/`dpkg-architecture \
79
-qDEB_HOST_MULTIARCH 2>/dev/null`" \
55
80
"`rpm --eval='%{_libdir}' 2>/dev/null`" /usr/lib; do \
56
81
if [ -d "$$d" -a "$$d" = "$${d%/}" ]; then \
57
82
echo "$(DESTDIR)$$d"; \
60
85
done)
61
86
##
62
87
63
SYSTEMD=$(DESTDIR)$(shell pkg-config systemd --variable=systemdsystemunitdir)
88
SYSTEMD:=$(DESTDIR)$(shell $(PKG_CONFIG) systemd \
89
--variable=systemdsystemunitdir)
90
TMPFILES:=$(DESTDIR)$(shell $(PKG_CONFIG) systemd \
91
--variable=tmpfilesdir)
64
92
65
GNUTLS_CFLAGS=$(shell pkg-config --cflags-only-I gnutls)
66
GNUTLS_LIBS=$(shell pkg-config --libs gnutls)
67
AVAHI_CFLAGS=$(shell pkg-config --cflags-only-I avahi-core)
68
AVAHI_LIBS=$(shell pkg-config --libs avahi-core)
69
GPGME_CFLAGS=$(shell gpgme-config --cflags; getconf LFS_CFLAGS)
70
GPGME_LIBS=$(shell gpgme-config --libs; getconf LFS_LIBS; \
93
GNUTLS_CFLAGS:=$(shell $(PKG_CONFIG) --cflags-only-I gnutls)
94
GNUTLS_LIBS:=$(shell $(PKG_CONFIG) --libs gnutls)
95
AVAHI_CFLAGS:=$(shell $(PKG_CONFIG) --cflags-only-I avahi-core)
96
AVAHI_LIBS:=$(shell $(PKG_CONFIG) --libs avahi-core)
97
GPGME_CFLAGS:=$(shell gpgme-config --cflags; getconf LFS_CFLAGS)
98
GPGME_LIBS:=$(shell gpgme-config --libs; getconf LFS_LIBS; \
71
99
getconf LFS_LDFLAGS)
100
LIBNL3_CFLAGS:=$(shell $(PKG_CONFIG) --cflags-only-I libnl-route-3.0)
101
LIBNL3_LIBS:=$(shell $(PKG_CONFIG) --libs libnl-route-3.0)
102
GLIB_CFLAGS:=$(shell $(PKG_CONFIG) --cflags glib-2.0)
103
GLIB_LIBS:=$(shell $(PKG_CONFIG) --libs glib-2.0)
72
104
73
105
# Do not change these two
74
106
CFLAGS+=$(WARN) $(DEBUG) $(FORTIFY) $(COVERAGE) $(OPTIMIZE) \
75
$(LANGUAGE) $(GNUTLS_CFLAGS) $(AVAHI_CFLAGS) $(GPGME_CFLAGS) \
76
-DVERSION='"$(version)"'
77
LDFLAGS+=-Xlinker --as-needed $(COVERAGE) $(LINK_FORTIFY) $(foreach flag,$(LINK_FORTIFY_LD),-Xlinker $(flag))
107
$(LANGUAGE) $(FEATURES) -DVERSION='"$(version)"'
108
LDFLAGS+=-Xlinker --as-needed $(COVERAGE) $(LINK_FORTIFY) $(strip \
109
) $(foreach flag,$(LINK_FORTIFY_LD),-Xlinker $(flag))
78
110
79
111
# Commands to format a DocBook <refentry> document into a manual page
80
112
DOCBOOKTOMAN=$(strip cd $(dir $<); xsltproc --nonet --xinclude \
86
118
/usr/share/xml/docbook/stylesheet/nwalsh/manpages/docbook.xsl \
87
119
$(notdir $<); \
88
120
if locale --all 2>/dev/null | grep --regexp='^en_US\.utf8$$' \
89
&& type man 2>/dev/null; then LANG=en_US.UTF-8 MANWIDTH=80 \
90
man --warnings --encoding=UTF-8 --local-file $(notdir $@); \
91
fi >/dev/null)
121
&& command -v man >/dev/null; then LANG=en_US.UTF-8 \
122
MANWIDTH=80 man --warnings --encoding=UTF-8 --local-file \
123
$(notdir $@); fi >/dev/null)
92
124
93
125
DOCBOOKTOHTML=$(strip xsltproc --nonet --xinclude \
94
126
--param make.year.ranges 1 \
100
132
/usr/share/xml/docbook/stylesheet/nwalsh/xhtml/docbook.xsl \
101
133
$<; $(HTMLPOST) $@)
102
134
# Fix citerefentry links
103
HTMLPOST=$(SED) --in-place \
135
HTMLPOST:=$(SED) --in-place \
104
136
--expression='s/\(<a class="citerefentry" href="\)\("><span class="citerefentry"><span class="refentrytitle">\)\([^<]*\)\(<\/span>(\)\([^)]*\)\()<\/span><\/a>\)/\1\3.\5\2\3\4\5\6/g'
105
137
106
PLUGINS=plugins.d/password-prompt plugins.d/mandos-client \
138
PLUGINS:=plugins.d/password-prompt plugins.d/mandos-client \
107
139
plugins.d/usplash plugins.d/splashy plugins.d/askpass-fifo \
108
140
plugins.d/plymouth
109
PLUGIN_HELPERS=
110
CPROGS=plugin-runner $(PLUGINS) $(PLUGIN_HELPERS)
111
PROGS=mandos mandos-keygen mandos-ctl mandos-monitor $(CPROGS)
112
DOCS=mandos.8 mandos-keygen.8 mandos-monitor.8 mandos-ctl.8 \
141
PLUGIN_HELPERS:=plugin-helpers/mandos-client-iprouteadddel
142
CPROGS:=plugin-runner dracut-module/password-agent $(PLUGINS) \
143
$(PLUGIN_HELPERS)
144
PROGS:=mandos mandos-keygen mandos-ctl mandos-monitor $(CPROGS)
145
DOCS:=mandos.8 mandos-keygen.8 mandos-monitor.8 mandos-ctl.8 \
113
146
mandos.conf.5 mandos-clients.conf.5 plugin-runner.8mandos \
147
dracut-module/password-agent.8mandos \
114
148
plugins.d/mandos-client.8mandos \
115
149
plugins.d/password-prompt.8mandos plugins.d/usplash.8mandos \
116
150
plugins.d/splashy.8mandos plugins.d/askpass-fifo.8mandos \
117
151
plugins.d/plymouth.8mandos intro.8mandos
118
152
119
htmldocs=$(addsuffix .xhtml,$(DOCS))
153
htmldocs:=$(addsuffix .xhtml,$(DOCS))
120
154
121
objects=$(addsuffix .o,$(CPROGS))
155
objects:=$(addsuffix .o,$(CPROGS))
122
156
123
157
all: $(PROGS) mandos.lsm
124
158
188
222
overview.xml legalnotice.xml
189
223
$(DOCBOOKTOHTML)
190
224
225
dracut-module/password-agent.8mandos: \
226
dracut-module/password-agent.xml common.ent \
227
overview.xml legalnotice.xml
228
$(DOCBOOKTOMAN)
229
dracut-module/password-agent.8mandos.xhtml: \
230
dracut-module/password-agent.xml common.ent \
231
overview.xml legalnotice.xml
232
$(DOCBOOKTOHTML)
233
191
234
plugins.d/mandos-client.8mandos: plugins.d/mandos-client.xml \
192
235
common.ent \
193
236
mandos-options.xml \
236
279
--expression='s/\(mandos_\)[0-9.]\+\(\.orig\.tar\.gz\)/\1$(version)\2/' \
237
280
$@)
238
281
282
# Need to add the GnuTLS, Avahi and GPGME libraries
239
283
plugins.d/mandos-client: plugins.d/mandos-client.c
240
$(LINK.c) $^ -lrt $(GNUTLS_LIBS) $(AVAHI_LIBS) $(strip\
241
) $(GPGME_LIBS) $(LOADLIBES) $(LDLIBS) -o $@
284
$(LINK.c) $^ $(GNUTLS_CFLAGS) $(AVAHI_CFLAGS) $(strip\
285
) $(GPGME_CFLAGS) $(GNUTLS_LIBS) $(strip\
286
) $(AVAHI_LIBS) $(GPGME_LIBS) $(LOADLIBES) $(strip\
287
) $(LDLIBS) -o $@
288
289
# Need to add the libnl-route library
290
plugin-helpers/mandos-client-iprouteadddel: plugin-helpers/mandos-client-iprouteadddel.c
291
$(LINK.c) $(LIBNL3_CFLAGS) $^ $(LIBNL3_LIBS) $(strip\
292
) $(LOADLIBES) $(LDLIBS) -o $@
293
294
# Need to add the GLib and pthread libraries
295
dracut-module/password-agent: dracut-module/password-agent.c
296
$(LINK.c) $(GLIB_CFLAGS) $^ $(GLIB_LIBS) -lpthread $(strip\
297
) $(LOADLIBES) $(LDLIBS) -o $@
242
298
243
299
.PHONY : all doc html clean distclean mostlyclean maintainer-clean \
244
300
check run-client run-server install install-html \
254
310
maintainer-clean: clean
255
311
-rm --force --recursive keydir confdir statedir
256
312
257
check: all
313
check: all
258
314
./mandos --check
259
315
./mandos-ctl --check
316
./mandos-keygen --version
317
./plugin-runner --version
318
./plugin-helpers/mandos-client-iprouteadddel --version
319
./dracut-module/password-agent --test
260
320
261
321
# Run the client with a local config and key
262
run-client: all keydir/seckey.txt keydir/pubkey.txt
263
@echo "###################################################################"
264
@echo "# The following error messages are harmless and can be safely #"
265
@echo "# ignored. The messages are caused by not running as root, but #"
266
@echo "# you should NOT run \"make run-client\" as root unless you also #"
267
@echo "# unpacked and compiled Mandos as root, which is NOT recommended. #"
268
@echo "# From plugin-runner: setgid: Operation not permitted #"
269
@echo "# setuid: Operation not permitted #"
270
@echo "# From askpass-fifo: mkfifo: Permission denied #"
271
@echo "# From mandos-client: #"
272
@echo "# Failed to raise privileges: Operation not permitted #"
273
@echo "# Warning: network hook \"*\" exited with status * #"
274
@echo "###################################################################"
322
run-client: all keydir/seckey.txt keydir/pubkey.txt \
323
keydir/tls-privkey.pem keydir/tls-pubkey.pem
324
@echo '######################################################'
325
@echo '# The following error messages are harmless and can #'
326
@echo '# be safely ignored: #'
327
@echo '## From plugin-runner: #'
328
@echo '# setgid: Operation not permitted #'
329
@echo '# setuid: Operation not permitted #'
330
@echo '## From askpass-fifo: #'
331
@echo '# mkfifo: Permission denied #'
332
@echo '## From mandos-client: #'
333
@echo '# Failed to raise privileges: Operation not permi... #'
334
@echo '# Warning: network hook "*" exited with status * #'
335
@echo '# ioctl SIOCSIFFLAGS +IFF_UP: Operation not permi... #'
336
@echo '# Failed to bring up interface "*": Operation not... #'
337
@echo '# #'
338
@echo '# (The messages are caused by not running as root, #'
339
@echo '# but you should NOT run "make run-client" as root #'
340
@echo '# unless you also unpacked and compiled Mandos as #'
341
@echo '# root, which is also NOT recommended.) #'
342
@echo '######################################################'
275
343
# We set GNOME_KEYRING_CONTROL to block pam_gnome_keyring
276
344
./plugin-runner --plugin-dir=plugins.d \
277
345
--plugin-helper-dir=plugin-helpers \
278
346
--config-file=plugin-runner.conf \
279
--options-for=mandos-client:--seckey=keydir/seckey.txt,--pubkey=keydir/pubkey.txt,--network-hook-dir=network-hooks.d \
347
--options-for=mandos-client:--seckey=keydir/seckey.txt,--pubkey=keydir/pubkey.txt,--tls-privkey=keydir/tls-privkey.pem,--tls-pubkey=keydir/tls-pubkey.pem,--network-hook-dir=network-hooks.d \
280
348
--env-for=mandos-client:GNOME_KEYRING_CONTROL= \
281
349
$(CLIENTARGS)
282
350
283
351
# Used by run-client
284
keydir/seckey.txt keydir/pubkey.txt: mandos-keygen
352
keydir/seckey.txt keydir/pubkey.txt keydir/tls-privkey.pem keydir/tls-pubkey.pem: mandos-keygen
285
353
install --directory keydir
286
354
./mandos-keygen --dir keydir --force
287
355
294
362
confdir/mandos.conf: mandos.conf
295
363
install --directory confdir
296
364
install --mode=u=rw,go=r $^ $@
297
confdir/clients.conf: clients.conf keydir/seckey.txt
365
confdir/clients.conf: clients.conf keydir/seckey.txt keydir/tls-pubkey.pem
298
366
install --directory confdir
299
367
install --mode=u=rw $< $@
300
368
# Add a client password
317
385
elif install --directory --mode=u=rwx $(STATEDIR); then \
318
386
chown -- $(USER):$(GROUP) $(STATEDIR) || :; \
319
387
fi
388
if [ "$(TMPFILES)" != "$(DESTDIR)" \
389
-a -d "$(TMPFILES)" ]; then \
390
install --mode=u=rw,go=r tmpfiles.d-mandos.conf \
391
$(TMPFILES)/mandos.conf; \
392
fi
320
393
install --mode=u=rwx,go=rx mandos $(PREFIX)/sbin/mandos
321
394
install --mode=u=rwx,go=rx --target-directory=$(PREFIX)/sbin \
322
395
mandos-ctl
354
427
install-client-nokey: all doc
355
428
install --directory $(LIBDIR)/mandos $(CONFDIR)
356
429
install --directory --mode=u=rwx $(KEYDIR) \
357
$(LIBDIR)/mandos/plugins.d
430
$(LIBDIR)/mandos/plugins.d \
431
$(LIBDIR)/mandos/plugin-helpers
358
432
if [ "$(CONFDIR)" != "$(LIBDIR)/mandos" ]; then \
359
433
install --mode=u=rwx \
360
--directory "$(CONFDIR)/plugins.d"; \
361
install --directory "$(CONFDIR)/plugin-helpers"; \
434
--directory "$(CONFDIR)/plugins.d" \
435
"$(CONFDIR)/plugin-helpers"; \
362
436
fi
363
437
install --mode=u=rwx,go=rx --directory \
364
438
"$(CONFDIR)/network-hooks.d"
365
439
install --mode=u=rwx,go=rx \
366
440
--target-directory=$(LIBDIR)/mandos plugin-runner
441
install --mode=u=rwx,go=rx \
442
--target-directory=$(LIBDIR)/mandos \
443
mandos-to-cryptroot-unlock
367
444
install --mode=u=rwx,go=rx --target-directory=$(PREFIX)/sbin \
368
445
mandos-keygen
369
446
install --mode=u=rwx,go=rx \
384
461
install --mode=u=rwxs,go=rx \
385
462
--target-directory=$(LIBDIR)/mandos/plugins.d \
386
463
plugins.d/plymouth
464
install --mode=u=rwx,go=rx \
465
--target-directory=$(LIBDIR)/mandos/plugin-helpers \
466
plugin-helpers/mandos-client-iprouteadddel
387
467
install initramfs-tools-hook \
388
468
$(INITRAMFSTOOLS)/hooks/mandos
389
install --mode=u=rw,go=r initramfs-tools-hook-conf \
390
$(INITRAMFSTOOLS)/conf-hooks.d/mandos
469
install --mode=u=rw,go=r initramfs-tools-conf \
470
$(INITRAMFSTOOLS)/conf.d/mandos-conf
471
install --mode=u=rw,go=r initramfs-tools-conf-hook \
472
$(INITRAMFSTOOLS)/conf-hooks.d/zz-mandos
391
473
install initramfs-tools-script \
392
474
$(INITRAMFSTOOLS)/scripts/init-premount/mandos
475
install initramfs-tools-script-stop \
476
$(INITRAMFSTOOLS)/scripts/local-premount/mandos
477
install --directory $(DRACUTMODULE)
478
install --mode=u=rw,go=r --target-directory=$(DRACUTMODULE) \
479
dracut-module/ask-password-mandos.path \
480
dracut-module/ask-password-mandos.service
481
install --mode=u=rwxs,go=rx \
482
--target-directory=$(DRACUTMODULE) \
483
dracut-module/module-setup.sh \
484
dracut-module/cmdline-mandos.sh \
485
dracut-module/password-agent
393
486
install --mode=u=rw,go=r plugin-runner.conf $(CONFDIR)
394
487
gzip --best --to-stdout mandos-keygen.8 \
395
488
> $(MANDIR)/man8/mandos-keygen.8.gz
407
500
> $(MANDIR)/man8/askpass-fifo.8mandos.gz
408
501
gzip --best --to-stdout plugins.d/plymouth.8mandos \
409
502
> $(MANDIR)/man8/plymouth.8mandos.gz
503
gzip --best --to-stdout dracut-module/password-agent.8mandos \
504
> $(MANDIR)/man8/password-agent.8mandos.gz
410
505
411
506
install-client: install-client-nokey
412
507
# Post-installation stuff
413
508
-$(PREFIX)/sbin/mandos-keygen --dir "$(KEYDIR)"
414
update-initramfs -k all -u
509
if command -v update-initramfs >/dev/null; then \
510
update-initramfs -k all -u; \
511
elif command -v dracut >/dev/null; then \
512
for initrd in $(DESTDIR)/boot/initr*-$(LINUXVERSION); do \
513
if [ -w "$$initrd" ]; then \
514
chmod go-r "$$initrd"; \
515
dracut --force "$$initrd"; \
516
fi; \
517
done; \
518
fi
415
519
echo "Now run mandos-keygen --password --dir $(KEYDIR)"
416
520
417
521
uninstall: uninstall-server uninstall-client
444
548
$(INITRAMFSTOOLS)/hooks/mandos \
445
549
$(INITRAMFSTOOLS)/conf-hooks.d/mandos \
446
550
$(INITRAMFSTOOLS)/scripts/init-premount/mandos \
551
$(INITRAMFSTOOLS)/scripts/local-premount/mandos \
552
$(DRACUTMODULE)/ask-password-mandos.path \
553
$(DRACUTMODULE)/ask-password-mandos.service \
554
$(DRACUTMODULE)/module-setup.sh \
555
$(DRACUTMODULE)/cmdline-mandos.sh \
556
$(DRACUTMODULE)/password-agent \
447
557
$(MANDIR)/man8/mandos-keygen.8.gz \
448
558
$(MANDIR)/man8/plugin-runner.8mandos.gz \
449
559
$(MANDIR)/man8/mandos-client.8mandos.gz
452
562
$(MANDIR)/man8/splashy.8mandos.gz \
453
563
$(MANDIR)/man8/askpass-fifo.8mandos.gz \
454
564
$(MANDIR)/man8/plymouth.8mandos.gz \
565
$(MANDIR)/man8/password-agent.8mandos.gz \
455
566
-rmdir $(LIBDIR)/mandos/plugins.d $(CONFDIR)/plugins.d \
456
$(LIBDIR)/mandos $(CONFDIR) $(KEYDIR)
457
update-initramfs -k all -u
567
$(LIBDIR)/mandos $(CONFDIR) $(KEYDIR) $(DRACUTMODULE)
568
if command -v update-initramfs >/dev/null; then \
569
update-initramfs -k all -u; \
570
elif command -v dracut >/dev/null; then \
571
for initrd in $(DESTDIR)/boot/initr*-$(LINUXVERSION); do \
572
test -w "$$initrd" && dracut --force "$$initrd"; \
573
done; \
574
fi
458
575
459
576
purge: purge-server purge-client
460
577
469
586
-rmdir $(CONFDIR)
470
587
471
588
purge-client: uninstall-client
472
-shred --remove $(KEYDIR)/seckey.txt
589
-shred --remove $(KEYDIR)/seckey.txt $(KEYDIR)/tls-privkey.pem
473
590
-rm --force $(CONFDIR)/plugin-runner.conf \
474
$(KEYDIR)/pubkey.txt $(KEYDIR)/seckey.txt
591
$(KEYDIR)/pubkey.txt $(KEYDIR)/seckey.txt \
592
$(KEYDIR)/tls-pubkey.txt $(KEYDIR)/tls-privkey.txt
475
593
-rmdir $(KEYDIR) $(CONFDIR)/plugins.d $(CONFDIR)
Loggerhead is a web-based interface for Breezy
Version: 2.0.2.dev0