/mandos/release : revision 78

To get this branch, use:

bzr branch
http://bzr.recompile.se/loggerhead/mandos/release

« back to all changes in this revision

Viewing changes to Makefile

Committer: Teddy Hogeborn
Date: 2008-08-16 03:29:08 UTC
Revision ID: teddy@fukt.bsnet.se-20080816032908-ihw7c05r2mnyk389

Add feature to specify custom environment variables for plugins.

* plugin-runner.c (plugin): New members "environ" and "envc" to
                            contain possible custom environment.
  (getplugin): Return NULL on failure instead of doing exit(); all
               callers changed.
  (add_to_char_array): New helper function for "add_argument" and
                       "add_environment".
  (addargument): Renamed to "add_argument".  Return bool.  Call
                 "add_to_char_array" to actually do things.
  (add_environment): New; analogous to "add_argument".
  (addcustomargument): Renamed to "add_to_argv" to avoid confusion
                       with "add_argument".
  (main): New options "--global-envs" and "--envs-for" to specify
          custom environment for plugins.  Print environment for
          plugins in debug mode.  Use asprintf instead of strcpy and
          strcat.  Use execve() for plugins with custom environments.
          Free environment for plugin when freeing plugin list.

files added:
network-protocol.txt

plugins.d/usplash

files removed:
.bzr-builddeb

.bzr-builddeb/default.conf

.bzrignore

INSTALL

README

common.ent

debian

debian/changelog

debian/compat

debian/control

debian/copyright

debian/mandos-client.README.Debian

debian/mandos-client.config

debian/mandos-client.dirs

debian/mandos-client.docs

debian/mandos-client.links

debian/mandos-client.lintian-overrides

debian/mandos-client.postinst

debian/mandos-client.postrm

debian/mandos-client.templates

debian/mandos.README.Debian

debian/mandos.config

debian/mandos.dirs

debian/mandos.docs

debian/mandos.lintian-overrides

debian/mandos.postinst

debian/mandos.prerm

debian/mandos.templates

debian/po

debian/po/POTFILES.in

debian/po/sv.po

debian/rules

default-mandos

init.d-mandos

legalnotice.xml

mandos-keygen.xml

mandos-options.xml

overview.xml

plugin-runner.conf

plugins.d/askpass-fifo.c

plugins.d/splashy.c

plugins.d/usplash.c

files renamed:
plugins.d/mandos-client.c => plugins.d/password-request.c

plugins.d/mandos-client.xml => plugins.d/password-request.xml

files modified:
Makefile

TODO

clients.conf

initramfs-tools-hook

initramfs-tools-script

mandos

mandos-clients.conf.xml

mandos-keygen

mandos.conf

mandos.conf.xml

mandos.xml

plugin-runner.c

plugin-runner.xml

plugins.d/password-prompt.c

plugins.d/password-prompt.xml

Show diffs side-by-side

added added

removed removed

Makefile

-Wunsafe-loop-optimizations -Wpointer-arith \

-Wbad-function-cast -Wcast-qual -Wcast-align -Wwrite-strings \

-Wconversion -Wstrict-prototypes -Wold-style-definition \

-Wpacked -Wnested-externs -Winline -Wvolatile-register-var

# -Wunreachable-code

#DEBUG=-ggdb3

-Wpacked -Wnested-externs -Wunreachable-code -Winline \

-Wvolatile-register-var

DEBUG=-ggdb3

# For info about _FORTIFY_SOURCE, see

# <http://gcc.gnu.org/ml/gcc-patches/2004-09/msg02055.html>

FORTIFY=-D_FORTIFY_SOURCE=2 # -fstack-protector-all

#COVERAGE=--coverage

OPTIMIZE=-Os

LANGUAGE=-std=gnu99

htmldir=man

version=1.0

SED=sed

## Use these settings for a traditional /usr/local install

# PREFIX=$(DESTDIR)/usr/local

# CONFDIR=$(DESTDIR)/etc/mandos

# KEYDIR=$(DESTDIR)/etc/mandos/keys

# MANDIR=$(PREFIX)/man

# INITRAMFSTOOLS=$(DESTDIR)/etc/initramfs-tools

## These settings are for a package-type install

PREFIX=$(DESTDIR)/usr

CONFDIR=$(DESTDIR)/etc/mandos

KEYDIR=$(DESTDIR)/etc/keys/mandos

MANDIR=$(PREFIX)/share/man

INITRAMFSTOOLS=$(DESTDIR)/usr/share/initramfs-tools

GNUTLS_CFLAGS=$(shell libgnutls-config --cflags)

GNUTLS_LIBS=$(shell libgnutls-config --libs)

AVAHI_CFLAGS=$(shell pkg-config --cflags-only-I avahi-core)

AVAHI_LIBS=$(shell pkg-config --libs avahi-core)

GPGME_CFLAGS=$(shell gpgme-config --cflags)

GPGME_LIBS=$(shell gpgme-config --libs)

# PREFIX=/usr/local

PREFIX=/usr

# CONFDIR=/usr/local/lib/mandos

CONFDIR=/etc/mandos

# MANDIR=/usr/local/man

MANDIR=/usr/share/man

# Do not change these two

CFLAGS=$(WARN) $(DEBUG) $(FORTIFY) $(COVERAGE) $(OPTIMIZE) \

$(LANGUAGE) $(GNUTLS_CFLAGS) $(AVAHI_CFLAGS) $(GPGME_CFLAGS) \

-DVERSION='"$(version)"'

CFLAGS=$(WARN) $(DEBUG) $(FORTIFY) $(COVERAGE) $(OPTIMIZE) $(LANGUAGE)

LDFLAGS=$(COVERAGE)

# Commands to format a DocBook <refentry> document into a manual page

DOCBOOKTOMAN=cd $(dir $<); xsltproc --nonet --xinclude \

DOCBOOKTOMAN=xsltproc --nonet \

--param man.charmap.use.subset 0 \

--param make.year.ranges 1 \

--param make.single.year.ranges 1 \

--param man.output.quietly 1 \

--param man.authors.section.enabled 0 \

/usr/share/xml/docbook/stylesheet/nwalsh/manpages/docbook.xsl \

$(notdir $<); \

$(MANPOST) $(notdir $@)

# DocBook-to-man post-processing to fix a '\n' escape bug

MANPOST=$(SED) --in-place --expression='s,\\\\en,\\en,g;s,\\n,\\en,g'

DOCBOOKTOHTML=xsltproc --nonet --xinclude \

--param make.year.ranges 1 \

--param make.single.year.ranges 1 \

--param man.output.quietly 1 \

--param man.authors.section.enabled 0 \

--param citerefentry.link 1 \

--output $@ \

/usr/share/xml/docbook/stylesheet/nwalsh/xhtml/docbook.xsl \

$<; $(HTMLPOST) $@

# Fix citerefentry links

HTMLPOST=$(SED) --in-place --expression='s/$<a class="citerefentry" href="$$"><span class="citerefentry"><span class="refentrytitle">$$[^<]*$$<\/span>($$[^)]*$$)<\/span><\/a>$/\1\3.\5\2\3\4\5\6/g'

PLUGINS=plugins.d/password-prompt plugins.d/mandos-client \

plugins.d/usplash plugins.d/splashy plugins.d/askpass-fifo

CPROGS=plugin-runner $(PLUGINS)

PROGS=mandos mandos-keygen $(CPROGS)

--param man.authors.section.enabled 0

PLUGINS=plugins.d/password-prompt plugins.d/password-request

PROGS=plugin-runner $(PLUGINS)

DOCS=mandos.8 plugin-runner.8mandos mandos-keygen.8 \

plugins.d/mandos-client.8mandos \

plugins.d/password-request.8mandos \

plugins.d/password-prompt.8mandos mandos.conf.5 \

mandos-clients.conf.5

htmldocs=$(addsuffix .xhtml,$(DOCS))

objects=$(addsuffix .o,$(CPROGS))

objects=$(shell for p in $(PROGS); do echo $${p}.o; done)

all: $(PROGS)

doc: $(DOCS)

html: $(htmldocs)

%.5: %.xml common.ent legalnotice.xml

$(DOCBOOKTOMAN)

%.5.xhtml: %.xml common.ent legalnotice.xml

$(DOCBOOKTOHTML)

%.8: %.xml common.ent legalnotice.xml

$(DOCBOOKTOMAN)

100

%.8.xhtml: %.xml common.ent legalnotice.xml

101

$(DOCBOOKTOHTML)

102

103

%.8mandos: %.xml common.ent legalnotice.xml

104

$(DOCBOOKTOMAN)

105

%.8mandos.xhtml: %.xml common.ent legalnotice.xml

106

$(DOCBOOKTOHTML)

107

108

mandos.8: mandos.xml common.ent mandos-options.xml overview.xml \

109

legalnotice.xml

110

$(DOCBOOKTOMAN)

111

mandos.8.xhtml: mandos.xml common.ent mandos-options.xml \

112

overview.xml legalnotice.xml

113

$(DOCBOOKTOHTML)

114

115

mandos-keygen.8: mandos-keygen.xml common.ent overview.xml \

116

legalnotice.xml

117

$(DOCBOOKTOMAN)

118

mandos-keygen.8.xhtml: mandos-keygen.xml common.ent overview.xml \

119

legalnotice.xml

120

$(DOCBOOKTOHTML)

121

122

mandos.conf.5: mandos.conf.xml common.ent mandos-options.xml \

123

legalnotice.xml

124

$(DOCBOOKTOMAN)

125

mandos.conf.5.xhtml: mandos.conf.xml common.ent mandos-options.xml \

126

legalnotice.xml

127

$(DOCBOOKTOHTML)

128

129

plugin-runner.8mandos: plugin-runner.xml common.ent overview.xml \

130

legalnotice.xml

131

$(DOCBOOKTOMAN)

132

plugin-runner.8mandos.xhtml: plugin-runner.xml common.ent \

133

overview.xml legalnotice.xml

134

$(DOCBOOKTOHTML)

135

136

plugins.d/mandos-client.8mandos: plugins.d/mandos-client.xml \

137

common.ent \

138

mandos-options.xml \

139

overview.xml legalnotice.xml

140

$(DOCBOOKTOMAN)

141

plugins.d/mandos-client.8mandos.xhtml: plugins.d/mandos-client.xml \

142

common.ent \

143

mandos-options.xml \

144

overview.xml legalnotice.xml

145

$(DOCBOOKTOHTML)

146

147

# Update all these files with version number $(version)

148

common.ent: Makefile

149

$(SED) --in-place --expression='s/^$<ENTITY VERSION "$[^"]*">$$/\1$(version)"/' $@

150

151

mandos: Makefile

152

$(SED) --in-place --expression='s/^$version = "$[^"]*"/\1$(version)"/' $@

153

154

mandos-keygen: Makefile

155

$(SED) --in-place --expression='s/^$VERSION="$[^"]*"/\1$(version)"/' $@

156

157

plugins.d/mandos-client: plugins.d/mandos-client.o

158

$(LINK.o) $(GNUTLS_LIBS) $(AVAHI_LIBS) $(GPGME_LIBS) \

159

$(COMMON) $^ $(LOADLIBES) $(LDLIBS) -o $@

160

161

.PHONY : all doc html clean distclean run-client run-server install \

%.5: %.xml

cd $(dir $^); $(DOCBOOKTOMAN) $(notdir $^)

%.8: %.xml

cd $(dir $^); $(DOCBOOKTOMAN) $(notdir $^)

%.8mandos: %.xml

cd $(dir $^); $(DOCBOOKTOMAN) $(notdir $^)

plugin-runner: plugin-runner.o

$(LINK.o) -lgnutls $(COMMON) $^ $(LOADLIBES) $(LDLIBS) -o $@

plugins.d/password-request: plugins.d/password-request.o

$(LINK.o) -lgnutls -lavahi-core -lgpgme $(COMMON) $^ \

$(LOADLIBES) $(LDLIBS) -o $@

plugins.d/password-prompt: plugins.d/password-prompt.o

$(LINK.o) $(COMMON) $^ $(LOADLIBES) $(LDLIBS) -o $@

.PHONY : all clean distclean run-client run-server install \

162

install-server install-client uninstall uninstall-server \

163

uninstall-client purge purge-server purge-client

164

165

clean:

166

-rm --force $(CPROGS) $(objects) $(htmldocs) $(DOCS) core

-rm --force $(PROGS) $(objects) $(DOCS) core

167

168

distclean: clean

169

mostlyclean: clean

170

maintainer-clean: clean

171

-rm --force --recursive keydir confdir

-rm --force --recursive keydir

172

173

check: all

check:

174

./mandos --check

175

176

# Run the client with a local config and key

177

run-client: all keydir/seckey.txt keydir/pubkey.txt

run-client: all

-mkdir keydir

-./mandos-keygen --dir keydir

178

./plugin-runner --plugin-dir=plugins.d \

179

--config-file=plugin-runner.conf \

180

--options-for=mandos-client:--seckey=keydir/seckey.txt,--pubkey=keydir/pubkey.txt

181

182

# Used by run-client

183

keydir/seckey.txt keydir/pubkey.txt: mandos-keygen

184

install --directory keydir

185

./mandos-keygen --dir keydir --force

186

187

# Run the server with a local config

188

run-server: confdir/mandos.conf confdir/clients.conf

189

./mandos --debug --configdir=confdir

190

191

# Used by run-server

192

confdir/mandos.conf: mandos.conf

193

install --directory confdir

194

install --mode=u=rw,go=r $^ $@

195

confdir/clients.conf: clients.conf keydir/seckey.txt

196

install --directory confdir

197

install --mode=u=rw $< $@

198

# Add a client password

199

./mandos-keygen --dir keydir --password >> $@

200

201

install: install-server install-client-nokey

202

203

install-html: $(htmldocs)

204

install --directory $(htmldir)

205

install --mode=u=rw,go=r --target-directory=$(htmldir) \

206

$(htmldocs)

--options-for=password-request:--keydir=keydir

run-server:

./mandos --debug --configdir=.

install: install-server install-client

207

208

install-server: doc

209

install --directory $(CONFDIR)

210

install --mode=u=rwx,go=rx mandos $(PREFIX)/sbin/mandos

211

install --mode=u=rw,go=r --target-directory=$(CONFDIR) \

212

mandos.conf

213

install --mode=u=rw --target-directory=$(CONFDIR) \

mkdir --mode=0755 --parents $(CONFDIR) $(MANDIR)/man5 \

$(MANDIR)/man8

install --mode=0755 mandos $(PREFIX)/sbin/mandos

install --mode=0644 --target-directory=$(CONFDIR) mandos.conf

install --mode=0640 --target-directory=$(CONFDIR) \

214

clients.conf

215

install --mode=u=rwx,go=rx init.d-mandos \

216

$(DESTDIR)/etc/init.d/mandos

217

install --mode=u=rw,go=r default-mandos \

218

$(DESTDIR)/etc/default/mandos

219

if [ -z $(DESTDIR) ]; then \

220

update-rc.d mandos defaults 25 15;\

221

222

gzip --best --to-stdout mandos.8 \

223

100

> $(MANDIR)/man8/mandos.8.gz

224

101

gzip --best --to-stdout mandos.conf.5 \

226

103

gzip --best --to-stdout mandos-clients.conf.5 \

227

104

> $(MANDIR)/man5/mandos-clients.conf.5.gz

228

105

229

install-client-nokey: all doc

230

install --directory $(PREFIX)/lib/mandos $(CONFDIR)

231

install --directory --mode=u=rwx $(KEYDIR) \

232

$(PREFIX)/lib/mandos/plugins.d

233

if [ "$(CONFDIR)" != "$(PREFIX)/lib/mandos" ]; then \

234

install --mode=u=rwx \

235

--directory "$(CONFDIR)/plugins.d"; \

236

237

install --mode=u=rwx,go=rx \

238

--target-directory=$(PREFIX)/lib/mandos plugin-runner

239

install --mode=u=rwx,go=rx --target-directory=$(PREFIX)/sbin \

106

install-client: all doc /usr/share/initramfs-tools/hooks/.

107

mkdir --mode=0755 --parents $(PREFIX)/lib/mandos $(CONFDIR) \

108

$(MANDIR)/man8

109

-mkdir --mode=0700 $(PREFIX)/lib/mandos/plugins.d

110

chmod u=rwx,g=,o= $(PREFIX)/lib/mandos/plugins.d

111

install --mode=0755 --target-directory=$(PREFIX)/lib/mandos \

112

plugin-runner

113

install --mode=0755 --target-directory=$(PREFIX)/sbin \

240

114

mandos-keygen

241

install --mode=u=rwx,go=rx \

115

install --mode=0755 \

242

116

--target-directory=$(PREFIX)/lib/mandos/plugins.d \

243

117

plugins.d/password-prompt

244

install --mode=u=rwxs,go=rx \

245

--target-directory=$(PREFIX)/lib/mandos/plugins.d \

246

plugins.d/mandos-client

247

install --mode=u=rwxs,go=rx \

248

--target-directory=$(PREFIX)/lib/mandos/plugins.d \

249

plugins.d/usplash

250

install --mode=u=rwxs,go=rx \

251

--target-directory=$(PREFIX)/lib/mandos/plugins.d \

252

plugins.d/splashy

253

install --mode=u=rwxs,go=rx \

254

--target-directory=$(PREFIX)/lib/mandos/plugins.d \

255

plugins.d/askpass-fifo

118

install --mode=4755 \

119

--target-directory=$(PREFIX)/lib/mandos/plugins.d \

120

plugins.d/password-request

256

121

install initramfs-tools-hook \

257

$(INITRAMFSTOOLS)/hooks/mandos

258

install --mode=u=rw,go=r initramfs-tools-hook-conf \

259

$(INITRAMFSTOOLS)/conf-hooks.d/mandos

122

/usr/share/initramfs-tools/hooks/mandos

123

install initramfs-tools-hook-conf \

124

/usr/share/initramfs-tools/conf-hooks.d/mandos

260

125

install initramfs-tools-script \

261

$(INITRAMFSTOOLS)/scripts/local-top/mandos

262

install --mode=u=rw,go=r plugin-runner.conf $(CONFDIR)

126

/usr/share/initramfs-tools/scripts/local-top/mandos

263

127

gzip --best --to-stdout mandos-keygen.8 \

264

128

> $(MANDIR)/man8/mandos-keygen.8.gz

265

129

gzip --best --to-stdout plugin-runner.8mandos \

266

130

> $(MANDIR)/man8/plugin-runner.8mandos.gz

267

131

gzip --best --to-stdout plugins.d/password-prompt.8mandos \

268

132

> $(MANDIR)/man8/password-prompt.8mandos.gz

269

gzip --best --to-stdout plugins.d/mandos-client.8mandos \

270

> $(MANDIR)/man8/mandos-client.8mandos.gz

271

272

install-client: install-client-nokey

273

# Post-installation stuff

274

-$(PREFIX)/sbin/mandos-keygen --dir "$(KEYDIR)"

133

gzip --best --to-stdout plugins.d/password-request.8mandos \

134

> $(MANDIR)/man8/password-request.8mandos.gz

135

-$(PREFIX)/sbin/mandos-keygen

275

136

update-initramfs -k all -u

276

echo "Now run mandos-keygen --password --dir $(KEYDIR)"

277

137

278

138

uninstall: uninstall-server uninstall-client

279

139

280

uninstall-server:

140

uninstall-server: $(PREFIX)/sbin/mandos

281

141

-rm --force $(PREFIX)/sbin/mandos \

282

142

$(MANDIR)/man8/mandos.8.gz \

283

143

$(MANDIR)/man5/mandos.conf.5.gz \

284

144

$(MANDIR)/man5/mandos-clients.conf.5.gz

285

update-rc.d -f mandos remove

286

145

-rmdir $(CONFDIR)

287

146

288

147

uninstall-client:

289

148

# Refuse to uninstall client if /etc/crypttab is explicitly configured

290

149

# to use it.

291

150

! grep --regexp='^ *[^ #].*keyscript=[^,=]*/mandos/' \

292

$(DESTDIR)/etc/crypttab

151

/etc/crypttab

293

152

-rm --force $(PREFIX)/sbin/mandos-keygen \

294

153

$(PREFIX)/lib/mandos/plugin-runner \

295

154

$(PREFIX)/lib/mandos/plugins.d/password-prompt \

296

$(PREFIX)/lib/mandos/plugins.d/mandos-client \

297

$(PREFIX)/lib/mandos/plugins.d/usplash \

298

$(PREFIX)/lib/mandos/plugins.d/splashy \

299

$(INITRAMFSTOOLS)/hooks/mandos \

300

$(INITRAMFSTOOLS)/conf-hooks.d/mandos \

301

$(INITRAMFSTOOLS)/scripts/local-top/mandos \

155

$(PREFIX)/lib/mandos/plugins.d/password-request \

156

/usr/share/initramfs-tools/hooks/mandos \

157

/usr/share/initramfs-tools/conf-hooks.d/mandos \

302

158

$(MANDIR)/man8/plugin-runner.8mandos.gz \

303

159

$(MANDIR)/man8/mandos-keygen.8.gz \

304

160

$(MANDIR)/man8/password-prompt.8mandos.gz \

305

$(MANDIR)/man8/mandos-client.8mandos.gz

161

$(MANDIR)/man8/password-request.8mandos.gz

306

162

-rmdir $(PREFIX)/lib/mandos/plugins.d $(CONFDIR)/plugins.d \

307

$(PREFIX)/lib/mandos $(CONFDIR) $(KEYDIR)

163

$(PREFIX)/lib/mandos $(CONFDIR)

308

164

update-initramfs -k all -u

309

165

310

166

purge: purge-server purge-client

311

167

312

168

purge-server: uninstall-server

313

-rm --force $(CONFDIR)/mandos.conf $(CONFDIR)/clients.conf \

314

$(DESTDIR)/etc/default/mandos \

315

$(DESTDIR)/etc/init.d/mandos \

316

$(DESTDIR)/var/run/mandos.pid

169

-rm --force $(CONFDIR)/mandos.conf $(CONFDIR)/clients.conf

317

170

-rmdir $(CONFDIR)

318

171

319

172

purge-client: uninstall-client

320

-shred --remove $(KEYDIR)/seckey.txt

321

-rm --force $(CONFDIR)/plugin-runner.conf \

322

$(KEYDIR)/pubkey.txt $(KEYDIR)/seckey.txt

323

-rmdir $(KEYDIR) $(CONFDIR)/plugins.d $(CONFDIR)

173

-rm --force $(CONFDIR)/seckey.txt $(CONFDIR)/pubkey.txt

174

-rmdir $(CONFDIR) $(CONFDIR)/plugins.d

Older »