bzr branch
http://bzr.recompile.se/loggerhead/mandos/trunk
918
by Teddy Hogeborn
Use "simply expanded" variables in Makefile |
1 |
WARN:=-O -Wall -Wextra -Wdouble-promotion -Wformat=2 -Winit-self \ |
672
by Teddy Hogeborn
Update GCC warning flags and function attributes to GCC 4.7. |
2 |
-Wmissing-include-dirs -Wswitch-default -Wswitch-enum \ |
3 |
-Wunused -Wuninitialized -Wstrict-overflow=5 \ |
|
4 |
-Wsuggest-attribute=pure -Wsuggest-attribute=const \ |
|
5 |
-Wsuggest-attribute=noreturn -Wfloat-equal -Wundef -Wshadow \ |
|
67
by Teddy Hogeborn
* mandos-keygen: New program to generate new client keys on |
6 |
-Wunsafe-loop-optimizations -Wpointer-arith \ |
7 |
-Wbad-function-cast -Wcast-qual -Wcast-align -Wwrite-strings \ |
|
672
by Teddy Hogeborn
Update GCC warning flags and function attributes to GCC 4.7. |
8 |
-Wconversion -Wlogical-op -Waggregate-return \ |
9 |
-Wstrict-prototypes -Wold-style-definition \ |
|
10 |
-Wmissing-format-attribute -Wnormalized=nfc -Wpacked \ |
|
11 |
-Wredundant-decls -Wnested-externs -Winline -Wvla \ |
|
12 |
-Wvolatile-register-var -Woverlength-strings |
|
1111
by Teddy Hogeborn
Only use sanitizing options when debugging |
13 |
|
14 |
#DEBUG:=-ggdb3 -fsanitize=address $(SANITIZE)
|
|
15 |
## Check which sanitizing options can be used
|
|
16 |
#SANITIZE:=$(foreach option,$(ALL_SANITIZE_OPTIONS),$(shell \
|
|
17 |
# echo 'int main(){}' | $(CC) --language=c $(option) \
|
|
18 |
# /dev/stdin -o /dev/null >/dev/null 2>&1 && echo $(option)))
|
|
800
by Teddy Hogeborn
Use AddressSanitizer and UndefinedBehaviorSanitizer. |
19 |
# <https://developerblog.redhat.com/2014/10/16/gcc-undefined-behavior-sanitizer-ubsan/>
|
871
by Teddy Hogeborn
Makefile: Replace "-fsanitize=address" with "-fsanitize=leak" |
20 |
ALL_SANITIZE_OPTIONS:=-fsanitize=leak -fsanitize=undefined \ |
817
by Teddy Hogeborn
Only use -fsanitize=... options if they work. |
21 |
-fsanitize=shift -fsanitize=integer-divide-by-zero \ |
22 |
-fsanitize=unreachable -fsanitize=vla-bound -fsanitize=null \ |
|
23 |
-fsanitize=return -fsanitize=signed-integer-overflow \ |
|
24 |
-fsanitize=bounds -fsanitize=alignment \ |
|
25 |
-fsanitize=object-size -fsanitize=float-divide-by-zero \ |
|
26 |
-fsanitize=float-cast-overflow -fsanitize=nonnull-attribute \ |
|
27 |
-fsanitize=returns-nonnull-attribute -fsanitize=bool \ |
|
1117
by Teddy Hogeborn
Add another sanitizer option |
28 |
-fsanitize=enum -fsanitize-address-use-after-scope |
1111
by Teddy Hogeborn
Only use sanitizing options when debugging |
29 |
|
30 |
# For info about _FORTIFY_SOURCE, see feature_test_macros(7)
|
|
31 |
# and <https://gcc.gnu.org/ml/gcc-patches/2004-09/msg02055.html>.
|
|
32 |
FORTIFY:=-D_FORTIFY_SOURCE=2 -fstack-protector-all -fPIC |
|
918
by Teddy Hogeborn
Use "simply expanded" variables in Makefile |
33 |
LINK_FORTIFY_LD:=-z relro -z now |
34 |
LINK_FORTIFY:= |
|
399
by Teddy Hogeborn
* Makefile (BROKEN_PIE): Add comment. |
35 |
|
36 |
# If BROKEN_PIE is set, do not build with -pie
|
|
237.2.31
by Teddy Hogeborn
* Makefile: Don't use PIE if BROKEN_PIE is set. |
37 |
ifndef BROKEN_PIE
|
38 |
FORTIFY += -fPIE |
|
39 |
LINK_FORTIFY += -pie |
|
40 |
endif
|
|
24.1.90
by Björn Påhlsson
fixed two bugs: |
41 |
#COVERAGE=--coverage
|
918
by Teddy Hogeborn
Use "simply expanded" variables in Makefile |
42 |
OPTIMIZE:=-Os -fno-strict-aliasing |
43 |
LANGUAGE:=-std=gnu11 |
|
1146
by Teddy Hogeborn
Client: Always build with LFS enabled |
44 |
FEATURES:=-D_FILE_OFFSET_BITS=64 |
918
by Teddy Hogeborn
Use "simply expanded" variables in Makefile |
45 |
htmldir:=man |
237.4.124
by Teddy Hogeborn
* Makefile (version): Change to 1.8.9. |
46 |
version:=1.8.9 |
918
by Teddy Hogeborn
Use "simply expanded" variables in Makefile |
47 |
SED:=sed |
1137
by Teddy Hogeborn
Makefile: "pkg-config" is now overrideable by PKG_CONFIG |
48 |
PKG_CONFIG?=pkg-config |
175
by Teddy Hogeborn
* Makefile: Clearly separate "local" install variable settings from |
49 |
|
1112
by Teddy Hogeborn
Makefile: Break long lines |
50 |
USER:=$(firstword $(subst :, ,$(shell getent passwd _mandos \ |
51 |
|| getent passwd nobody || echo 65534))) |
|
52 |
GROUP:=$(firstword $(subst :, ,$(shell getent group _mandos \ |
|
53 |
|| getent group nogroup || echo 65534))) |
|
518.2.2
by Teddy Hogeborn
Directory with persistent state can now be changed with the "statedir" |
54 |
|
1136
by Teddy Hogeborn
Break some long lines and refine documentation |
55 |
LINUXVERSION:=$(shell uname --kernel-release) |
56 |
||
175
by Teddy Hogeborn
* Makefile: Clearly separate "local" install variable settings from |
57 |
## Use these settings for a traditional /usr/local install
|
918
by Teddy Hogeborn
Use "simply expanded" variables in Makefile |
58 |
# PREFIX:=$(DESTDIR)/usr/local
|
59 |
# CONFDIR:=$(DESTDIR)/etc/mandos
|
|
60 |
# KEYDIR:=$(DESTDIR)/etc/mandos/keys
|
|
61 |
# MANDIR:=$(PREFIX)/man
|
|
62 |
# INITRAMFSTOOLS:=$(DESTDIR)/etc/initramfs-tools
|
|
1127
by Teddy Hogeborn
Add dracut(8) support |
63 |
# DRACUTMODULE:=$(DESTDIR)/usr/lib/dracut/modules.d/90mandos
|
918
by Teddy Hogeborn
Use "simply expanded" variables in Makefile |
64 |
# STATEDIR:=$(DESTDIR)/var/lib/mandos
|
65 |
# LIBDIR:=$(PREFIX)/lib
|
|
177
by Teddy Hogeborn
* Makefile (CONFDIR): Changed to be the same ("/etc/mandos") in both a |
66 |
##
|
175
by Teddy Hogeborn
* Makefile: Clearly separate "local" install variable settings from |
67 |
|
177
by Teddy Hogeborn
* Makefile (CONFDIR): Changed to be the same ("/etc/mandos") in both a |
68 |
## These settings are for a package-type install
|
918
by Teddy Hogeborn
Use "simply expanded" variables in Makefile |
69 |
PREFIX:=$(DESTDIR)/usr |
70 |
CONFDIR:=$(DESTDIR)/etc/mandos |
|
71 |
KEYDIR:=$(DESTDIR)/etc/keys/mandos |
|
72 |
MANDIR:=$(PREFIX)/share/man |
|
73 |
INITRAMFSTOOLS:=$(DESTDIR)/usr/share/initramfs-tools |
|
1127
by Teddy Hogeborn
Add dracut(8) support |
74 |
DRACUTMODULE:=$(DESTDIR)/usr/lib/dracut/modules.d/90mandos |
918
by Teddy Hogeborn
Use "simply expanded" variables in Makefile |
75 |
STATEDIR:=$(DESTDIR)/var/lib/mandos |
76 |
LIBDIR:=$(shell \ |
|
640
by Teddy Hogeborn
Use architecture libdir. |
77 |
for d in \ |
1136
by Teddy Hogeborn
Break some long lines and refine documentation |
78 |
"/usr/lib/`dpkg-architecture \ |
79 |
-qDEB_HOST_MULTIARCH 2>/dev/null`" \ |
|
640
by Teddy Hogeborn
Use architecture libdir. |
80 |
"`rpm --eval='%{_libdir}' 2>/dev/null`" /usr/lib; do \ |
81 |
if [ -d "$$d" -a "$$d" = "$${d%/}" ]; then \
|
|
82 |
echo "$(DESTDIR)$$d"; \
|
|
83 |
break; \
|
|
84 |
fi; \
|
|
85 |
done)
|
|
177
by Teddy Hogeborn
* Makefile (CONFDIR): Changed to be the same ("/etc/mandos") in both a |
86 |
##
|
21
by Teddy Hogeborn
* Makefile (CFLAGS): Changed to use $(WARN), $(DEBUG), $(COVERAGE) and |
87 |
|
1137
by Teddy Hogeborn
Makefile: "pkg-config" is now overrideable by PKG_CONFIG |
88 |
SYSTEMD:=$(DESTDIR)$(shell $(PKG_CONFIG) systemd \ |
1136
by Teddy Hogeborn
Break some long lines and refine documentation |
89 |
--variable=systemdsystemunitdir) |
1137
by Teddy Hogeborn
Makefile: "pkg-config" is now overrideable by PKG_CONFIG |
90 |
TMPFILES:=$(DESTDIR)$(shell $(PKG_CONFIG) systemd \ |
91 |
--variable=tmpfilesdir) |
|
1159
by Teddy Hogeborn
Use the systemd sysusers.d mechanism, if present |
92 |
SYSUSERS:=$(DESTDIR)$(shell $(PKG_CONFIG) systemd \ |
93 |
--variable=sysusersdir) |
|
638
by Teddy Hogeborn
Add systemd service support for Mandos server. |
94 |
|
1137
by Teddy Hogeborn
Makefile: "pkg-config" is now overrideable by PKG_CONFIG |
95 |
GNUTLS_CFLAGS:=$(shell $(PKG_CONFIG) --cflags-only-I gnutls) |
96 |
GNUTLS_LIBS:=$(shell $(PKG_CONFIG) --libs gnutls) |
|
97 |
AVAHI_CFLAGS:=$(shell $(PKG_CONFIG) --cflags-only-I avahi-core) |
|
98 |
AVAHI_LIBS:=$(shell $(PKG_CONFIG) --libs avahi-core) |
|
918
by Teddy Hogeborn
Use "simply expanded" variables in Makefile |
99 |
GPGME_CFLAGS:=$(shell gpgme-config --cflags; getconf LFS_CFLAGS) |
100 |
GPGME_LIBS:=$(shell gpgme-config --libs; getconf LFS_LIBS; \ |
|
317
by Teddy Hogeborn
Use "getconf" to get correct LFS compile and link flags. |
101 |
getconf LFS_LDFLAGS) |
1137
by Teddy Hogeborn
Makefile: "pkg-config" is now overrideable by PKG_CONFIG |
102 |
LIBNL3_CFLAGS:=$(shell $(PKG_CONFIG) --cflags-only-I libnl-route-3.0) |
103 |
LIBNL3_LIBS:=$(shell $(PKG_CONFIG) --libs libnl-route-3.0) |
|
104 |
GLIB_CFLAGS:=$(shell $(PKG_CONFIG) --cflags glib-2.0) |
|
105 |
GLIB_LIBS:=$(shell $(PKG_CONFIG) --libs glib-2.0) |
|
81
by Teddy Hogeborn
* Makefile (GNUTLS_CFLAGS, GNUTLS_LIBS, AVAHI_CFLAGS, AVAHI_LIBS, |
106 |
|
21
by Teddy Hogeborn
* Makefile (CFLAGS): Changed to use $(WARN), $(DEBUG), $(COVERAGE) and |
107 |
# Do not change these two
|
1146
by Teddy Hogeborn
Client: Always build with LFS enabled |
108 |
CFLAGS+=$(WARN) $(DEBUG) $(FORTIFY) $(COVERAGE) $(OPTIMIZE) \ |
109 |
$(LANGUAGE) $(FEATURES) -DVERSION='"$(version)"' |
|
1112
by Teddy Hogeborn
Makefile: Break long lines |
110 |
LDFLAGS+=-Xlinker --as-needed $(COVERAGE) $(LINK_FORTIFY) $(strip \ |
111 |
) $(foreach flag,$(LINK_FORTIFY_LD),-Xlinker $(flag)) |
|
16
by Teddy Hogeborn
* Makefile: Include targets for all binaries. |
112 |
|
175
by Teddy Hogeborn
* Makefile: Clearly separate "local" install variable settings from |
113 |
# Commands to format a DocBook <refentry> document into a manual page
|
398
by Teddy Hogeborn
* Makefile (DOCBOOKTOMAN, DOCBOOKTOHTML, common.ent, mandos, |
114 |
DOCBOOKTOMAN=$(strip cd $(dir $<); xsltproc --nonet --xinclude \ |
62
by Teddy Hogeborn
* Makefile (DOCBOOKTOMAN): Do not generate AUTHORS section. |
115 |
--param man.charmap.use.subset 0 \ |
116 |
--param make.year.ranges 1 \ |
|
117 |
--param make.single.year.ranges 1 \ |
|
118 |
--param man.output.quietly 1 \ |
|
84
by Teddy Hogeborn
* Makefile (DOCBOOKTOMAN): Use the local manpages/docbook.xsl file, do |
119 |
--param man.authors.section.enabled 0 \ |
595
by Teddy Hogeborn
* Makefile (DOCBOOKTOMAN): Don't show errors from "locale". |
120 |
/usr/share/xml/docbook/stylesheet/nwalsh/manpages/docbook.xsl \ |
91
by Teddy Hogeborn
* Makefile (DOCBOOKTOMAN): Include all DocBook-to-manpage-related |
121 |
$(notdir $<); \ |
595
by Teddy Hogeborn
* Makefile (DOCBOOKTOMAN): Don't show errors from "locale". |
122 |
if locale --all 2>/dev/null | grep --regexp='^en_US\.utf8$$' \
|
1122
by Teddy Hogeborn
Fix bashisms: Use "command -v" instead of "type" |
123 |
&& command -v man >/dev/null; then LANG=en_US.UTF-8 \
|
124 |
MANWIDTH=80 man --warnings --encoding=UTF-8 --local-file \
|
|
125 |
$(notdir $@); fi >/dev/null)
|
|
24.1.25
by Björn Påhlsson
* clients.conf.xml: Renamed to "mandos-clients.conf.xml". |
126 |
|
398
by Teddy Hogeborn
* Makefile (DOCBOOKTOMAN, DOCBOOKTOHTML, common.ent, mandos, |
127 |
DOCBOOKTOHTML=$(strip xsltproc --nonet --xinclude \ |
216
by Teddy Hogeborn
* Makefile: Add HTML rules for manual pages. |
128 |
--param make.year.ranges 1 \ |
129 |
--param make.single.year.ranges 1 \ |
|
130 |
--param man.output.quietly 1 \ |
|
131 |
--param man.authors.section.enabled 0 \ |
|
132 |
--param citerefentry.link 1 \ |
|
133 |
--output $@ \ |
|
134 |
/usr/share/xml/docbook/stylesheet/nwalsh/xhtml/docbook.xsl \ |
|
398
by Teddy Hogeborn
* Makefile (DOCBOOKTOMAN, DOCBOOKTOHTML, common.ent, mandos, |
135 |
$<; $(HTMLPOST) $@) |
216
by Teddy Hogeborn
* Makefile: Add HTML rules for manual pages. |
136 |
# Fix citerefentry links
|
918
by Teddy Hogeborn
Use "simply expanded" variables in Makefile |
137 |
HTMLPOST:=$(SED) --in-place \ |
235
by Teddy Hogeborn
* INSTALL: Fixed typo. |
138 |
--expression='s/\(<a class="citerefentry" href="\)\("><span class="citerefentry"><span class="refentrytitle">\)\([^<]*\)\(<\/span>(\)\([^)]*\)\()<\/span><\/a>\)/\1\3.\5\2\3\4\5\6/g' |
216
by Teddy Hogeborn
* Makefile: Add HTML rules for manual pages. |
139 |
|
918
by Teddy Hogeborn
Use "simply expanded" variables in Makefile |
140 |
PLUGINS:=plugins.d/password-prompt plugins.d/mandos-client \ |
425
by Teddy Hogeborn
* Makefile: Compile and install new "plymouth" plugin. |
141 |
plugins.d/usplash plugins.d/splashy plugins.d/askpass-fifo \ |
142 |
plugins.d/plymouth
|
|
918
by Teddy Hogeborn
Use "simply expanded" variables in Makefile |
143 |
PLUGIN_HELPERS:=plugin-helpers/mandos-client-iprouteadddel |
1127
by Teddy Hogeborn
Add dracut(8) support |
144 |
CPROGS:=plugin-runner dracut-module/password-agent $(PLUGINS) \ |
145 |
$(PLUGIN_HELPERS) |
|
918
by Teddy Hogeborn
Use "simply expanded" variables in Makefile |
146 |
PROGS:=mandos mandos-keygen mandos-ctl mandos-monitor $(CPROGS) |
147 |
DOCS:=mandos.8 mandos-keygen.8 mandos-monitor.8 mandos-ctl.8 \ |
|
435
by teddy at bsnet
* Makefile (DOCS): Added "plymouth.8mandos". |
148 |
mandos.conf.5 mandos-clients.conf.5 plugin-runner.8mandos \ |
1127
by Teddy Hogeborn
Add dracut(8) support |
149 |
dracut-module/password-agent.8mandos \ |
171
by Teddy Hogeborn
Renamed "password-request" to "mandos-client". |
150 |
plugins.d/mandos-client.8mandos \ |
435
by teddy at bsnet
* Makefile (DOCS): Added "plymouth.8mandos". |
151 |
plugins.d/password-prompt.8mandos plugins.d/usplash.8mandos \ |
152 |
plugins.d/splashy.8mandos plugins.d/askpass-fifo.8mandos \ |
|
493
by Teddy Hogeborn
* Makefile (DOCS): Added "intro.8mandos". |
153 |
plugins.d/plymouth.8mandos intro.8mandos |
16
by Teddy Hogeborn
* Makefile: Include targets for all binaries. |
154 |
|
918
by Teddy Hogeborn
Use "simply expanded" variables in Makefile |
155 |
htmldocs:=$(addsuffix .xhtml,$(DOCS)) |
216
by Teddy Hogeborn
* Makefile: Add HTML rules for manual pages. |
156 |
|
918
by Teddy Hogeborn
Use "simply expanded" variables in Makefile |
157 |
objects:=$(addsuffix .o,$(CPROGS)) |
16
by Teddy Hogeborn
* Makefile: Include targets for all binaries. |
158 |
|
233
by Teddy Hogeborn
* Makefile (all): Also depend on "mandos.lsm". |
159 |
all: $(PROGS) mandos.lsm |
67
by Teddy Hogeborn
* mandos-keygen: New program to generate new client keys on |
160 |
|
161 |
doc: $(DOCS) |
|
24.1.25
by Björn Påhlsson
* clients.conf.xml: Renamed to "mandos-clients.conf.xml". |
162 |
|
216
by Teddy Hogeborn
* Makefile: Add HTML rules for manual pages. |
163 |
html: $(htmldocs) |
164 |
||
217
by Teddy Hogeborn
* .bzrignore: Added "man" directory (created by "make install-html"). |
165 |
%.5: %.xml common.ent legalnotice.xml |
166 |
$(DOCBOOKTOMAN) |
|
167 |
%.5.xhtml: %.xml common.ent legalnotice.xml |
|
168 |
$(DOCBOOKTOHTML) |
|
169 |
||
170 |
%.8: %.xml common.ent legalnotice.xml |
|
171 |
$(DOCBOOKTOMAN) |
|
172 |
%.8.xhtml: %.xml common.ent legalnotice.xml |
|
173 |
$(DOCBOOKTOHTML) |
|
174 |
||
175 |
%.8mandos: %.xml common.ent legalnotice.xml |
|
176 |
$(DOCBOOKTOMAN) |
|
177 |
%.8mandos.xhtml: %.xml common.ent legalnotice.xml |
|
178 |
$(DOCBOOKTOHTML) |
|
179 |
||
493
by Teddy Hogeborn
* Makefile (DOCS): Added "intro.8mandos". |
180 |
intro.8mandos: intro.xml common.ent legalnotice.xml |
181 |
$(DOCBOOKTOMAN) |
|
182 |
intro.8mandos.xhtml: intro.xml common.ent legalnotice.xml |
|
183 |
$(DOCBOOKTOHTML) |
|
184 |
||
217
by Teddy Hogeborn
* .bzrignore: Added "man" directory (created by "make install-html"). |
185 |
mandos.8: mandos.xml common.ent mandos-options.xml overview.xml \ |
186 |
legalnotice.xml |
|
187 |
$(DOCBOOKTOMAN) |
|
188 |
mandos.8.xhtml: mandos.xml common.ent mandos-options.xml \ |
|
189 |
overview.xml legalnotice.xml |
|
190 |
$(DOCBOOKTOHTML) |
|
191 |
||
192 |
mandos-keygen.8: mandos-keygen.xml common.ent overview.xml \ |
|
193 |
legalnotice.xml |
|
194 |
$(DOCBOOKTOMAN) |
|
195 |
mandos-keygen.8.xhtml: mandos-keygen.xml common.ent overview.xml \ |
|
196 |
legalnotice.xml |
|
197 |
$(DOCBOOKTOHTML) |
|
198 |
||
430
by teddy at bsnet
* mandos-monitor.xml: New. |
199 |
mandos-monitor.8: mandos-monitor.xml common.ent overview.xml \ |
200 |
legalnotice.xml |
|
201 |
$(DOCBOOKTOMAN) |
|
202 |
mandos-monitor.8.xhtml: mandos-monitor.xml common.ent overview.xml \ |
|
203 |
legalnotice.xml |
|
204 |
$(DOCBOOKTOHTML) |
|
205 |
||
434
by teddy at bsnet
* mandos-ctl.xml: New. |
206 |
mandos-ctl.8: mandos-ctl.xml common.ent overview.xml \ |
207 |
legalnotice.xml |
|
208 |
$(DOCBOOKTOMAN) |
|
209 |
mandos-ctl.8.xhtml: mandos-ctl.xml common.ent overview.xml \ |
|
210 |
legalnotice.xml |
|
211 |
$(DOCBOOKTOHTML) |
|
212 |
||
217
by Teddy Hogeborn
* .bzrignore: Added "man" directory (created by "make install-html"). |
213 |
mandos.conf.5: mandos.conf.xml common.ent mandos-options.xml \ |
214 |
legalnotice.xml |
|
215 |
$(DOCBOOKTOMAN) |
|
216 |
mandos.conf.5.xhtml: mandos.conf.xml common.ent mandos-options.xml \ |
|
217 |
legalnotice.xml |
|
218 |
$(DOCBOOKTOHTML) |
|
219 |
||
220 |
plugin-runner.8mandos: plugin-runner.xml common.ent overview.xml \ |
|
221 |
legalnotice.xml |
|
222 |
$(DOCBOOKTOMAN) |
|
223 |
plugin-runner.8mandos.xhtml: plugin-runner.xml common.ent \ |
|
224 |
overview.xml legalnotice.xml |
|
216
by Teddy Hogeborn
* Makefile: Add HTML rules for manual pages. |
225 |
$(DOCBOOKTOHTML) |
143
by Teddy Hogeborn
* Makefile (mandos.8): Add dependency on "overview.xml" and |
226 |
|
1127
by Teddy Hogeborn
Add dracut(8) support |
227 |
dracut-module/password-agent.8mandos: \ |
228 |
dracut-module/password-agent.xml common.ent \ |
|
229 |
overview.xml legalnotice.xml |
|
230 |
$(DOCBOOKTOMAN) |
|
231 |
dracut-module/password-agent.8mandos.xhtml: \ |
|
232 |
dracut-module/password-agent.xml common.ent \ |
|
233 |
overview.xml legalnotice.xml |
|
234 |
$(DOCBOOKTOHTML) |
|
235 |
||
171
by Teddy Hogeborn
Renamed "password-request" to "mandos-client". |
236 |
plugins.d/mandos-client.8mandos: plugins.d/mandos-client.xml \ |
217
by Teddy Hogeborn
* .bzrignore: Added "man" directory (created by "make install-html"). |
237 |
common.ent \ |
143
by Teddy Hogeborn
* Makefile (mandos.8): Add dependency on "overview.xml" and |
238 |
mandos-options.xml \ |
239 |
overview.xml legalnotice.xml |
|
91
by Teddy Hogeborn
* Makefile (DOCBOOKTOMAN): Include all DocBook-to-manpage-related |
240 |
$(DOCBOOKTOMAN) |
216
by Teddy Hogeborn
* Makefile: Add HTML rules for manual pages. |
241 |
plugins.d/mandos-client.8mandos.xhtml: plugins.d/mandos-client.xml \ |
217
by Teddy Hogeborn
* .bzrignore: Added "man" directory (created by "make install-html"). |
242 |
common.ent \ |
216
by Teddy Hogeborn
* Makefile: Add HTML rules for manual pages. |
243 |
mandos-options.xml \ |
244 |
overview.xml legalnotice.xml |
|
245 |
$(DOCBOOKTOHTML) |
|
16
by Teddy Hogeborn
* Makefile: Include targets for all binaries. |
246 |
|
217
by Teddy Hogeborn
* .bzrignore: Added "man" directory (created by "make install-html"). |
247 |
# Update all these files with version number $(version)
|
248 |
common.ent: Makefile |
|
398
by Teddy Hogeborn
* Makefile (DOCBOOKTOMAN, DOCBOOKTOHTML, common.ent, mandos, |
249 |
$(strip $(SED) --in-place \ |
318
by Teddy Hogeborn
* Makefile (common.ent): Update "version" entity correctly. |
250 |
--expression='s/^\(<!ENTITY version "\)[^"]*">$$/\1$(version)">/' \ |
398
by Teddy Hogeborn
* Makefile (DOCBOOKTOMAN, DOCBOOKTOHTML, common.ent, mandos, |
251 |
$@) |
217
by Teddy Hogeborn
* .bzrignore: Added "man" directory (created by "make install-html"). |
252 |
|
253 |
mandos: Makefile |
|
398
by Teddy Hogeborn
* Makefile (DOCBOOKTOMAN, DOCBOOKTOHTML, common.ent, mandos, |
254 |
$(strip $(SED) --in-place \ |
235
by Teddy Hogeborn
* INSTALL: Fixed typo. |
255 |
--expression='s/^\(version = "\)[^"]*"$$/\1$(version)"/' \ |
398
by Teddy Hogeborn
* Makefile (DOCBOOKTOMAN, DOCBOOKTOHTML, common.ent, mandos, |
256 |
$@) |
217
by Teddy Hogeborn
* .bzrignore: Added "man" directory (created by "make install-html"). |
257 |
|
258 |
mandos-keygen: Makefile |
|
398
by Teddy Hogeborn
* Makefile (DOCBOOKTOMAN, DOCBOOKTOHTML, common.ent, mandos, |
259 |
$(strip $(SED) --in-place \ |
235
by Teddy Hogeborn
* INSTALL: Fixed typo. |
260 |
--expression='s/^\(VERSION="\)[^"]*"$$/\1$(version)"/' \ |
398
by Teddy Hogeborn
* Makefile (DOCBOOKTOMAN, DOCBOOKTOHTML, common.ent, mandos, |
261 |
$@) |
217
by Teddy Hogeborn
* .bzrignore: Added "man" directory (created by "make install-html"). |
262 |
|
24.1.121
by Björn Påhlsson
mandos-ctl: Added support for all client calls |
263 |
mandos-ctl: Makefile |
398
by Teddy Hogeborn
* Makefile (DOCBOOKTOMAN, DOCBOOKTOHTML, common.ent, mandos, |
264 |
$(strip $(SED) --in-place \ |
240
by Teddy Hogeborn
Merge "mandos-list" from belorn. |
265 |
--expression='s/^\(version = "\)[^"]*"$$/\1$(version)"/' \ |
398
by Teddy Hogeborn
* Makefile (DOCBOOKTOMAN, DOCBOOKTOHTML, common.ent, mandos, |
266 |
$@) |
240
by Teddy Hogeborn
Merge "mandos-list" from belorn. |
267 |
|
430
by teddy at bsnet
* mandos-monitor.xml: New. |
268 |
mandos-monitor: Makefile |
269 |
$(strip $(SED) --in-place \ |
|
270 |
--expression='s/^\(version = "\)[^"]*"$$/\1$(version)"/' \ |
|
271 |
$@) |
|
272 |
||
233
by Teddy Hogeborn
* Makefile (all): Also depend on "mandos.lsm". |
273 |
mandos.lsm: Makefile |
398
by Teddy Hogeborn
* Makefile (DOCBOOKTOMAN, DOCBOOKTOHTML, common.ent, mandos, |
274 |
$(strip $(SED) --in-place \ |
235
by Teddy Hogeborn
* INSTALL: Fixed typo. |
275 |
--expression='s/^\(Version:\).*/\1\t$(version)/' \ |
398
by Teddy Hogeborn
* Makefile (DOCBOOKTOMAN, DOCBOOKTOHTML, common.ent, mandos, |
276 |
$@) |
277 |
$(strip $(SED) --in-place \ |
|
235
by Teddy Hogeborn
* INSTALL: Fixed typo. |
278 |
--expression='s/^\(Entered-date:\).*/\1\t$(shell date --rfc-3339=date --reference=Makefile)/' \ |
398
by Teddy Hogeborn
* Makefile (DOCBOOKTOMAN, DOCBOOKTOHTML, common.ent, mandos, |
279 |
$@) |
280 |
$(strip $(SED) --in-place \ |
|
255
by Teddy Hogeborn
* Makefile (mandos.lsm): Also update file name using version number. |
281 |
--expression='s/\(mandos_\)[0-9.]\+\(\.orig\.tar\.gz\)/\1$(version)\2/' \ |
398
by Teddy Hogeborn
* Makefile (DOCBOOKTOMAN, DOCBOOKTOHTML, common.ent, mandos, |
282 |
$@) |
233
by Teddy Hogeborn
* Makefile (all): Also depend on "mandos.lsm". |
283 |
|
1111
by Teddy Hogeborn
Only use sanitizing options when debugging |
284 |
# Need to add the GnuTLS, Avahi and GPGME libraries
|
1188
by Teddy Hogeborn
Makefile: Use target-specific variables |
285 |
plugins.d/mandos-client: CFLAGS += $(GNUTLS_CFLAGS) $(strip \ |
286 |
) $(AVAHI_CFLAGS) $(GPGME_CFLAGS) |
|
287 |
plugins.d/mandos-client: LDLIBS += $(GNUTLS_LIBS) $(strip \ |
|
288 |
) $(AVAHI_LIBS) $(GPGME_LIBS) |
|
81
by Teddy Hogeborn
* Makefile (GNUTLS_CFLAGS, GNUTLS_LIBS, AVAHI_CFLAGS, AVAHI_LIBS, |
289 |
|
1118
by Teddy Hogeborn
Client: Document requirement of libnl-route library |
290 |
# Need to add the libnl-route library
|
1188
by Teddy Hogeborn
Makefile: Use target-specific variables |
291 |
plugin-helpers/mandos-client-iprouteadddel: CFLAGS += $(LIBNL3_CFLAGS) |
292 |
plugin-helpers/mandos-client-iprouteadddel: LDLIBS += $(LIBNL3_LIBS) |
|
738.1.4
by Teddy Hogeborn
Add plugin for mandos-client to add and delete local routes. |
293 |
|
1127
by Teddy Hogeborn
Add dracut(8) support |
294 |
# Need to add the GLib and pthread libraries
|
1188
by Teddy Hogeborn
Makefile: Use target-specific variables |
295 |
dracut-module/password-agent: CFLAGS += $(GLIB_CFLAGS) |
296 |
dracut-module/password-agent: LDLIBS += $(GLIB_LIBS) -lpthread |
|
1127
by Teddy Hogeborn
Add dracut(8) support |
297 |
|
665
by Teddy Hogeborn
* Makefile (WARN): Re-add "-Wunreachable-code". |
298 |
.PHONY : all doc html clean distclean mostlyclean maintainer-clean \ |
299 |
check run-client run-server install install-html \ |
|
300 |
install-server install-client-nokey install-client uninstall \ |
|
301 |
uninstall-server uninstall-client purge purge-server \ |
|
302 |
purge-client |
|
47
by Teddy Hogeborn
* plugbasedclient.c: Renamed to "mandos-client.c". All users changed. |
303 |
|
1
by Björn Påhlsson
First working version with: IPv6, GnuTLS, X.509 certificates, DN |
304 |
clean: |
217
by Teddy Hogeborn
* .bzrignore: Added "man" directory (created by "make install-html"). |
305 |
-rm --force $(CPROGS) $(objects) $(htmldocs) $(DOCS) core |
47
by Teddy Hogeborn
* plugbasedclient.c: Renamed to "mandos-client.c". All users changed. |
306 |
|
307 |
distclean: clean |
|
308 |
mostlyclean: clean |
|
309 |
maintainer-clean: clean |
|
518.2.2
by Teddy Hogeborn
Directory with persistent state can now be changed with the "statedir" |
310 |
-rm --force --recursive keydir confdir statedir |
47
by Teddy Hogeborn
* plugbasedclient.c: Renamed to "mandos-client.c". All users changed. |
311 |
|
1116
by Teddy Hogeborn
Debian package change: Add autopkgtest support |
312 |
check: all |
47
by Teddy Hogeborn
* plugbasedclient.c: Renamed to "mandos-client.c". All users changed. |
313 |
./mandos --check |
608
by Teddy Hogeborn
* Makefile (check): Also check mandos-ctl. |
314 |
./mandos-ctl --check |
1116
by Teddy Hogeborn
Debian package change: Add autopkgtest support |
315 |
./mandos-keygen --version |
316 |
./plugin-runner --version |
|
317 |
./plugin-helpers/mandos-client-iprouteadddel --version |
|
1127
by Teddy Hogeborn
Add dracut(8) support |
318 |
./dracut-module/password-agent --test |
47
by Teddy Hogeborn
* plugbasedclient.c: Renamed to "mandos-client.c". All users changed. |
319 |
|
141
by Teddy Hogeborn
* Makefile (run-client): Add "--config-file=plugin-runner.conf". |
320 |
# Run the client with a local config and key
|
1136
by Teddy Hogeborn
Break some long lines and refine documentation |
321 |
run-client: all keydir/seckey.txt keydir/pubkey.txt \ |
322 |
keydir/tls-privkey.pem keydir/tls-pubkey.pem |
|
323 |
@echo '######################################################' |
|
324 |
@echo '# The following error messages are harmless and can #' |
|
325 |
@echo '# be safely ignored: #' |
|
326 |
@echo '## From plugin-runner: #' |
|
327 |
@echo '# setgid: Operation not permitted #' |
|
328 |
@echo '# setuid: Operation not permitted #' |
|
329 |
@echo '## From askpass-fifo: #' |
|
330 |
@echo '# mkfifo: Permission denied #' |
|
331 |
@echo '## From mandos-client: #' |
|
332 |
@echo '# Failed to raise privileges: Operation not permi... #' |
|
333 |
@echo '# Warning: network hook "*" exited with status * #' |
|
334 |
@echo '# ioctl SIOCSIFFLAGS +IFF_UP: Operation not permi... #' |
|
335 |
@echo '# Failed to bring up interface "*": Operation not... #' |
|
336 |
@echo '# #' |
|
337 |
@echo '# (The messages are caused by not running as root, #' |
|
338 |
@echo '# but you should NOT run "make run-client" as root #' |
|
339 |
@echo '# unless you also unpacked and compiled Mandos as #' |
|
340 |
@echo '# root, which is also NOT recommended.) #' |
|
341 |
@echo '######################################################' |
|
706
by Teddy Hogeborn
mandos-client: Better error messages. |
342 |
# We set GNOME_KEYRING_CONTROL to block pam_gnome_keyring
|
74
by Teddy Hogeborn
* Makefile (PREFIX, CONFDIR): New. |
343 |
./plugin-runner --plugin-dir=plugins.d \ |
738.1.1
by Teddy Hogeborn
Add a plugin helper directory, available to all plugins. |
344 |
--plugin-helper-dir=plugin-helpers \ |
141
by Teddy Hogeborn
* Makefile (run-client): Add "--config-file=plugin-runner.conf". |
345 |
--config-file=plugin-runner.conf \ |
962
by Teddy Hogeborn
Add support for using raw public keys in TLS (RFC 7250) |
346 |
--options-for=mandos-client:--seckey=keydir/seckey.txt,--pubkey=keydir/pubkey.txt,--tls-privkey=keydir/tls-privkey.pem,--tls-pubkey=keydir/tls-pubkey.pem,--network-hook-dir=network-hooks.d \ |
706
by Teddy Hogeborn
mandos-client: Better error messages. |
347 |
--env-for=mandos-client:GNOME_KEYRING_CONTROL= \ |
260
by Teddy Hogeborn
* Makefile (run-client): Pass $(CLIENTARGS) to plugin-runner. |
348 |
$(CLIENTARGS) |
47
by Teddy Hogeborn
* plugbasedclient.c: Renamed to "mandos-client.c". All users changed. |
349 |
|
104
by Teddy Hogeborn
* Makefile (maintainer-clean): Also remove "confdir". |
350 |
# Used by run-client
|
962
by Teddy Hogeborn
Add support for using raw public keys in TLS (RFC 7250) |
351 |
keydir/seckey.txt keydir/pubkey.txt keydir/tls-privkey.pem keydir/tls-pubkey.pem: mandos-keygen |
104
by Teddy Hogeborn
* Makefile (maintainer-clean): Also remove "confdir". |
352 |
install --directory keydir |
353 |
./mandos-keygen --dir keydir --force |
|
354 |
||
355 |
# Run the server with a local config
|
|
574
by Teddy Hogeborn
* mandos: White space and other misc. format fixes only. |
356 |
run-server: confdir/mandos.conf confdir/clients.conf statedir |
518.2.2
by Teddy Hogeborn
Directory with persistent state can now be changed with the "statedir" |
357 |
./mandos --debug --no-dbus --configdir=confdir \ |
358 |
--statedir=statedir $(SERVERARGS) |
|
104
by Teddy Hogeborn
* Makefile (maintainer-clean): Also remove "confdir". |
359 |
|
360 |
# Used by run-server
|
|
361 |
confdir/mandos.conf: mandos.conf |
|
362 |
install --directory confdir |
|
160
by Teddy Hogeborn
* Makefile: Changed to use symbolic instead of octal modes throughout. |
363 |
install --mode=u=rw,go=r $^ $@ |
962
by Teddy Hogeborn
Add support for using raw public keys in TLS (RFC 7250) |
364 |
confdir/clients.conf: clients.conf keydir/seckey.txt keydir/tls-pubkey.pem |
104
by Teddy Hogeborn
* Makefile (maintainer-clean): Also remove "confdir". |
365 |
install --directory confdir |
166
by Teddy Hogeborn
* Makefile (confdir/clients.conf): Tighten permissions to "u=rw". |
366 |
install --mode=u=rw $< $@ |
104
by Teddy Hogeborn
* Makefile (maintainer-clean): Also remove "confdir". |
367 |
# Add a client password
|
708
by Teddy Hogeborn
mandos-keygen: Generate "checker" option to use SSH fingerprints. |
368 |
./mandos-keygen --dir keydir --password --no-ssh >> $@ |
518.2.2
by Teddy Hogeborn
Directory with persistent state can now be changed with the "statedir" |
369 |
statedir: |
370 |
install --directory statedir |
|
67
by Teddy Hogeborn
* mandos-keygen: New program to generate new client keys on |
371 |
|
182
by Teddy Hogeborn
* Makefile (install): Use "install-client-nokey". |
372 |
install: install-server install-client-nokey |
67
by Teddy Hogeborn
* mandos-keygen: New program to generate new client keys on |
373 |
|
235
by Teddy Hogeborn
* INSTALL: Fixed typo. |
374 |
install-html: html |
217
by Teddy Hogeborn
* .bzrignore: Added "man" directory (created by "make install-html"). |
375 |
install --directory $(htmldir) |
376 |
install --mode=u=rw,go=r --target-directory=$(htmldir) \ |
|
377 |
$(htmldocs) |
|
216
by Teddy Hogeborn
* Makefile: Add HTML rules for manual pages. |
378 |
|
67
by Teddy Hogeborn
* mandos-keygen: New program to generate new client keys on |
379 |
install-server: doc |
185
by Teddy Hogeborn
* .bzr-builddeb/default.conf: New. |
380 |
install --directory $(CONFDIR) |
643
by Teddy Hogeborn
Don't require /var/lib/mandos to be installed with user & group. |
381 |
if install --directory --mode=u=rwx --owner=$(USER) \
|
382 |
--group=$(GROUP) $(STATEDIR); then \
|
|
383 |
:; \
|
|
384 |
elif install --directory --mode=u=rwx $(STATEDIR); then \
|
|
385 |
chown -- $(USER):$(GROUP) $(STATEDIR) || :; \
|
|
386 |
fi
|
|
1136
by Teddy Hogeborn
Break some long lines and refine documentation |
387 |
if [ "$(TMPFILES)" != "$(DESTDIR)" \
|
388 |
-a -d "$(TMPFILES)" ]; then \
|
|
842
by Teddy Hogeborn
Server: Do not set execute bit on tmpfiles.d/mandos.conf |
389 |
install --mode=u=rw,go=r tmpfiles.d-mandos.conf \
|
838
by Teddy Hogeborn
Server: New tmpfiles.d file for persistent state directory |
390 |
$(TMPFILES)/mandos.conf; \
|
391 |
fi
|
|
1159
by Teddy Hogeborn
Use the systemd sysusers.d mechanism, if present |
392 |
if [ "$(SYSUSERS)" != "$(DESTDIR)" \
|
393 |
-a -d "$(SYSUSERS)" ]; then \
|
|
394 |
install --mode=u=rw,go=r sysusers.d-mandos.conf \
|
|
395 |
$(SYSUSERS)/mandos.conf; \
|
|
396 |
fi
|
|
160
by Teddy Hogeborn
* Makefile: Changed to use symbolic instead of octal modes throughout. |
397 |
install --mode=u=rwx,go=rx mandos $(PREFIX)/sbin/mandos |
430
by teddy at bsnet
* mandos-monitor.xml: New. |
398 |
install --mode=u=rwx,go=rx --target-directory=$(PREFIX)/sbin \ |
399 |
mandos-ctl
|
|
400 |
install --mode=u=rwx,go=rx --target-directory=$(PREFIX)/sbin \ |
|
401 |
mandos-monitor
|
|
162
by Teddy Hogeborn
* Makefile (PIDDIR, USER, GROUP): New variables. |
402 |
install --mode=u=rw,go=r --target-directory=$(CONFDIR) \ |
403 |
mandos.conf
|
|
166
by Teddy Hogeborn
* Makefile (confdir/clients.conf): Tighten permissions to "u=rw". |
404 |
install --mode=u=rw --target-directory=$(CONFDIR) \ |
67
by Teddy Hogeborn
* mandos-keygen: New program to generate new client keys on |
405 |
clients.conf
|
420.1.1
by teddy at bsnet
* Makefile (install-server): Install dbus-mandos.conf as |
406 |
install --mode=u=rw,go=r dbus-mandos.conf \ |
407 |
$(DESTDIR)/etc/dbus-1/system.d/mandos.conf |
|
175
by Teddy Hogeborn
* Makefile: Clearly separate "local" install variable settings from |
408 |
install --mode=u=rwx,go=rx init.d-mandos \ |
409 |
$(DESTDIR)/etc/init.d/mandos |
|
638
by Teddy Hogeborn
Add systemd service support for Mandos server. |
410 |
if [ "$(SYSTEMD)" != "$(DESTDIR)" -a -d "$(SYSTEMD)" ]; then \
|
639
by Teddy Hogeborn
Bug fix: Make sure systemd service file is installed. |
411 |
install --mode=u=rw,go=r mandos.service $(SYSTEMD); \
|
638
by Teddy Hogeborn
Add systemd service support for Mandos server. |
412 |
fi
|
175
by Teddy Hogeborn
* Makefile: Clearly separate "local" install variable settings from |
413 |
install --mode=u=rw,go=r default-mandos \ |
414 |
$(DESTDIR)/etc/default/mandos |
|
200
by Teddy Hogeborn
* Makefile: Put the init script before avahi-daemon. |
415 |
if [ -z $(DESTDIR) ]; then \
|
416 |
update-rc.d mandos defaults 25 15;\
|
|
417 |
fi
|
|
67
by Teddy Hogeborn
* mandos-keygen: New program to generate new client keys on |
418 |
gzip --best --to-stdout mandos.8 \ |
74
by Teddy Hogeborn
* Makefile (PREFIX, CONFDIR): New. |
419 |
> $(MANDIR)/man8/mandos.8.gz |
435
by teddy at bsnet
* Makefile (DOCS): Added "plymouth.8mandos". |
420 |
gzip --best --to-stdout mandos-monitor.8 \ |
421 |
> $(MANDIR)/man8/mandos-monitor.8.gz |
|
422 |
gzip --best --to-stdout mandos-ctl.8 \ |
|
423 |
> $(MANDIR)/man8/mandos-ctl.8.gz |
|
67
by Teddy Hogeborn
* mandos-keygen: New program to generate new client keys on |
424 |
gzip --best --to-stdout mandos.conf.5 \ |
74
by Teddy Hogeborn
* Makefile (PREFIX, CONFDIR): New. |
425 |
> $(MANDIR)/man5/mandos.conf.5.gz |
67
by Teddy Hogeborn
* mandos-keygen: New program to generate new client keys on |
426 |
gzip --best --to-stdout mandos-clients.conf.5 \ |
74
by Teddy Hogeborn
* Makefile (PREFIX, CONFDIR): New. |
427 |
> $(MANDIR)/man5/mandos-clients.conf.5.gz |
549
by teddy at recompile
* Makefile (install-server): Add intro(8mandos) man page. |
428 |
gzip --best --to-stdout intro.8mandos \ |
429 |
> $(MANDIR)/man8/intro.8mandos.gz |
|
67
by Teddy Hogeborn
* mandos-keygen: New program to generate new client keys on |
430 |
|
182
by Teddy Hogeborn
* Makefile (install): Use "install-client-nokey". |
431 |
install-client-nokey: all doc |
640
by Teddy Hogeborn
Use architecture libdir. |
432 |
install --directory $(LIBDIR)/mandos $(CONFDIR) |
185
by Teddy Hogeborn
* .bzr-builddeb/default.conf: New. |
433 |
install --directory --mode=u=rwx $(KEYDIR) \ |
738.1.6
by Teddy Hogeborn
Fix minor bugs and typos and add some more debug output. |
434 |
$(LIBDIR)/mandos/plugins.d \ |
435 |
$(LIBDIR)/mandos/plugin-helpers |
|
1160
by Teddy Hogeborn
Client: Use the systemd sysusers.d mechanism, if present |
436 |
if [ "$(SYSUSERS)" != "$(DESTDIR)" \
|
437 |
-a -d "$(SYSUSERS)" ]; then \
|
|
438 |
install --mode=u=rw,go=r sysusers.d-mandos.conf \
|
|
439 |
$(SYSUSERS)/mandos-client.conf; \
|
|
440 |
fi
|
|
640
by Teddy Hogeborn
Use architecture libdir. |
441 |
if [ "$(CONFDIR)" != "$(LIBDIR)/mandos" ]; then \
|
166
by Teddy Hogeborn
* Makefile (confdir/clients.conf): Tighten permissions to "u=rw". |
442 |
install --mode=u=rwx \
|
839
by Teddy Hogeborn
Client: Make plugin helper override directory mode u=rwx,go= |
443 |
--directory "$(CONFDIR)/plugins.d" \
|
444 |
"$(CONFDIR)/plugin-helpers"; \
|
|
166
by Teddy Hogeborn
* Makefile (confdir/clients.conf): Tighten permissions to "u=rw". |
445 |
fi
|
505.3.17
by Teddy Hogeborn
* Makefile (install-client-nokey): Create network hook directory. |
446 |
install --mode=u=rwx,go=rx --directory \ |
447 |
"$(CONFDIR)/network-hooks.d" |
|
162
by Teddy Hogeborn
* Makefile (PIDDIR, USER, GROUP): New variables. |
448 |
install --mode=u=rwx,go=rx \ |
640
by Teddy Hogeborn
Use architecture libdir. |
449 |
--target-directory=$(LIBDIR)/mandos plugin-runner |
953
by Teddy Hogeborn
Adapt to changes in cryptsetup; use "cryptroot-unlock" program |
450 |
install --mode=u=rwx,go=rx \ |
1136
by Teddy Hogeborn
Break some long lines and refine documentation |
451 |
--target-directory=$(LIBDIR)/mandos \ |
452 |
mandos-to-cryptroot-unlock
|
|
160
by Teddy Hogeborn
* Makefile: Changed to use symbolic instead of octal modes throughout. |
453 |
install --mode=u=rwx,go=rx --target-directory=$(PREFIX)/sbin \ |
74
by Teddy Hogeborn
* Makefile (PREFIX, CONFDIR): New. |
454 |
mandos-keygen
|
160
by Teddy Hogeborn
* Makefile: Changed to use symbolic instead of octal modes throughout. |
455 |
install --mode=u=rwx,go=rx \ |
640
by Teddy Hogeborn
Use architecture libdir. |
456 |
--target-directory=$(LIBDIR)/mandos/plugins.d \ |
67
by Teddy Hogeborn
* mandos-keygen: New program to generate new client keys on |
457 |
plugins.d/password-prompt
|
160
by Teddy Hogeborn
* Makefile: Changed to use symbolic instead of octal modes throughout. |
458 |
install --mode=u=rwxs,go=rx \ |
640
by Teddy Hogeborn
Use architecture libdir. |
459 |
--target-directory=$(LIBDIR)/mandos/plugins.d \ |
171
by Teddy Hogeborn
Renamed "password-request" to "mandos-client". |
460 |
plugins.d/mandos-client
|
208
by Teddy Hogeborn
* Makefile (PLUGINS): Added "plugins.d/usplash". |
461 |
install --mode=u=rwxs,go=rx \ |
640
by Teddy Hogeborn
Use architecture libdir. |
462 |
--target-directory=$(LIBDIR)/mandos/plugins.d \ |
160
by Teddy Hogeborn
* Makefile: Changed to use symbolic instead of octal modes throughout. |
463 |
plugins.d/usplash
|
205
by Teddy Hogeborn
* Makefile (PLUGINS, uninstall-client, |
464 |
install --mode=u=rwxs,go=rx \ |
640
by Teddy Hogeborn
Use architecture libdir. |
465 |
--target-directory=$(LIBDIR)/mandos/plugins.d \ |
205
by Teddy Hogeborn
* Makefile (PLUGINS, uninstall-client, |
466 |
plugins.d/splashy
|
214
by Teddy Hogeborn
* Makefile (PLUGINS): Added "plugins.d/askpass-fifo". |
467 |
install --mode=u=rwxs,go=rx \ |
640
by Teddy Hogeborn
Use architecture libdir. |
468 |
--target-directory=$(LIBDIR)/mandos/plugins.d \ |
214
by Teddy Hogeborn
* Makefile (PLUGINS): Added "plugins.d/askpass-fifo". |
469 |
plugins.d/askpass-fifo
|
425
by Teddy Hogeborn
* Makefile: Compile and install new "plymouth" plugin. |
470 |
install --mode=u=rwxs,go=rx \ |
640
by Teddy Hogeborn
Use architecture libdir. |
471 |
--target-directory=$(LIBDIR)/mandos/plugins.d \ |
425
by Teddy Hogeborn
* Makefile: Compile and install new "plymouth" plugin. |
472 |
plugins.d/plymouth
|
836
by Teddy Hogeborn
Client: Fix permissions on plugin helper directory. |
473 |
install --mode=u=rwx,go=rx \ |
738.1.6
by Teddy Hogeborn
Fix minor bugs and typos and add some more debug output. |
474 |
--target-directory=$(LIBDIR)/mandos/plugin-helpers \ |
475 |
plugin-helpers/mandos-client-iprouteadddel
|
|
67
by Teddy Hogeborn
* mandos-keygen: New program to generate new client keys on |
476 |
install initramfs-tools-hook \ |
175
by Teddy Hogeborn
* Makefile: Clearly separate "local" install variable settings from |
477 |
$(INITRAMFSTOOLS)/hooks/mandos |
954
by Teddy Hogeborn
Move UMASK setting to more proper place |
478 |
install --mode=u=rw,go=r initramfs-tools-conf \ |
479 |
$(INITRAMFSTOOLS)/conf.d/mandos-conf |
|
1099
by Teddy Hogeborn
Installation: Fix UMASK even if set by some other initramfs hook |
480 |
install --mode=u=rw,go=r initramfs-tools-conf-hook \ |
481 |
$(INITRAMFSTOOLS)/conf-hooks.d/zz-mandos |
|
74
by Teddy Hogeborn
* Makefile (PREFIX, CONFDIR): New. |
482 |
install initramfs-tools-script \ |
302
by Teddy Hogeborn
* Makefile (install-client-nokey): Move "initramfs-tools-script" from |
483 |
$(INITRAMFSTOOLS)/scripts/init-premount/mandos |
953
by Teddy Hogeborn
Adapt to changes in cryptsetup; use "cryptroot-unlock" program |
484 |
install initramfs-tools-script-stop \ |
485 |
$(INITRAMFSTOOLS)/scripts/local-premount/mandos |
|
1127
by Teddy Hogeborn
Add dracut(8) support |
486 |
install --directory $(DRACUTMODULE) |
487 |
install --mode=u=rw,go=r --target-directory=$(DRACUTMODULE) \ |
|
488 |
dracut-module/ask-password-mandos.path \ |
|
489 |
dracut-module/ask-password-mandos.service
|
|
490 |
install --mode=u=rwxs,go=rx \ |
|
491 |
--target-directory=$(DRACUTMODULE) \ |
|
492 |
dracut-module/module-setup.sh \ |
|
493 |
dracut-module/cmdline-mandos.sh \ |
|
494 |
dracut-module/password-agent
|
|
160
by Teddy Hogeborn
* Makefile: Changed to use symbolic instead of octal modes throughout. |
495 |
install --mode=u=rw,go=r plugin-runner.conf $(CONFDIR) |
67
by Teddy Hogeborn
* mandos-keygen: New program to generate new client keys on |
496 |
gzip --best --to-stdout mandos-keygen.8 \ |
74
by Teddy Hogeborn
* Makefile (PREFIX, CONFDIR): New. |
497 |
> $(MANDIR)/man8/mandos-keygen.8.gz |
498 |
gzip --best --to-stdout plugin-runner.8mandos \ |
|
499 |
> $(MANDIR)/man8/plugin-runner.8mandos.gz |
|
435
by teddy at bsnet
* Makefile (DOCS): Added "plymouth.8mandos". |
500 |
gzip --best --to-stdout plugins.d/mandos-client.8mandos \ |
501 |
> $(MANDIR)/man8/mandos-client.8mandos.gz |
|
67
by Teddy Hogeborn
* mandos-keygen: New program to generate new client keys on |
502 |
gzip --best --to-stdout plugins.d/password-prompt.8mandos \ |
74
by Teddy Hogeborn
* Makefile (PREFIX, CONFDIR): New. |
503 |
> $(MANDIR)/man8/password-prompt.8mandos.gz |
225
by Teddy Hogeborn
* Makefile (DOCS): Added "plugins.d/usplash.8mandos" and |
504 |
gzip --best --to-stdout plugins.d/usplash.8mandos \ |
505 |
> $(MANDIR)/man8/usplash.8mandos.gz |
|
506 |
gzip --best --to-stdout plugins.d/splashy.8mandos \ |
|
507 |
> $(MANDIR)/man8/splashy.8mandos.gz |
|
226
by Teddy Hogeborn
* Makefile (DOCS): Added "plugins.d/askpass-fifo.8mandos". |
508 |
gzip --best --to-stdout plugins.d/askpass-fifo.8mandos \ |
509 |
> $(MANDIR)/man8/askpass-fifo.8mandos.gz |
|
435
by teddy at bsnet
* Makefile (DOCS): Added "plymouth.8mandos". |
510 |
gzip --best --to-stdout plugins.d/plymouth.8mandos \ |
511 |
> $(MANDIR)/man8/plymouth.8mandos.gz |
|
1127
by Teddy Hogeborn
Add dracut(8) support |
512 |
gzip --best --to-stdout dracut-module/password-agent.8mandos \ |
513 |
> $(MANDIR)/man8/password-agent.8mandos.gz |
|
182
by Teddy Hogeborn
* Makefile (install): Use "install-client-nokey". |
514 |
|
515 |
install-client: install-client-nokey |
|
166
by Teddy Hogeborn
* Makefile (confdir/clients.conf): Tighten permissions to "u=rw". |
516 |
# Post-installation stuff
|
160
by Teddy Hogeborn
* Makefile: Changed to use symbolic instead of octal modes throughout. |
517 |
-$(PREFIX)/sbin/mandos-keygen --dir "$(KEYDIR)" |
1127
by Teddy Hogeborn
Add dracut(8) support |
518 |
if command -v update-initramfs >/dev/null; then \
|
519 |
update-initramfs -k all -u; \
|
|
520 |
elif command -v dracut >/dev/null; then \
|
|
1136
by Teddy Hogeborn
Break some long lines and refine documentation |
521 |
for initrd in $(DESTDIR)/boot/initr*-$(LINUXVERSION); do \
|
1127
by Teddy Hogeborn
Add dracut(8) support |
522 |
if [ -w "$$initrd" ]; then \
|
523 |
chmod go-r "$$initrd"; \
|
|
524 |
dracut --force "$$initrd"; \
|
|
525 |
fi; \
|
|
526 |
done; \
|
|
527 |
fi
|
|
160
by Teddy Hogeborn
* Makefile: Changed to use symbolic instead of octal modes throughout. |
528 |
echo "Now run mandos-keygen --password --dir $(KEYDIR)" |
67
by Teddy Hogeborn
* mandos-keygen: New program to generate new client keys on |
529 |
|
530 |
uninstall: uninstall-server uninstall-client |
|
531 |
||
160
by Teddy Hogeborn
* Makefile: Changed to use symbolic instead of octal modes throughout. |
532 |
uninstall-server: |
74
by Teddy Hogeborn
* Makefile (PREFIX, CONFDIR): New. |
533 |
-rm --force $(PREFIX)/sbin/mandos \ |
430
by teddy at bsnet
* mandos-monitor.xml: New. |
534 |
$(PREFIX)/sbin/mandos-ctl \ |
535 |
$(PREFIX)/sbin/mandos-monitor \ |
|
74
by Teddy Hogeborn
* Makefile (PREFIX, CONFDIR): New. |
536 |
$(MANDIR)/man8/mandos.8.gz \ |
435
by teddy at bsnet
* Makefile (DOCS): Added "plymouth.8mandos". |
537 |
$(MANDIR)/man8/mandos-monitor.8.gz \ |
538 |
$(MANDIR)/man8/mandos-ctl.8.gz \ |
|
74
by Teddy Hogeborn
* Makefile (PREFIX, CONFDIR): New. |
539 |
$(MANDIR)/man5/mandos.conf.5.gz \ |
540 |
$(MANDIR)/man5/mandos-clients.conf.5.gz |
|
162
by Teddy Hogeborn
* Makefile (PIDDIR, USER, GROUP): New variables. |
541 |
update-rc.d -f mandos remove |
163
by Teddy Hogeborn
* Makefile (PIDDIR, USER, GROUP): Removed. |
542 |
-rmdir $(CONFDIR) |
67
by Teddy Hogeborn
* mandos-keygen: New program to generate new client keys on |
543 |
|
544 |
uninstall-client: |
|
74
by Teddy Hogeborn
* Makefile (PREFIX, CONFDIR): New. |
545 |
# Refuse to uninstall client if /etc/crypttab is explicitly configured
|
546 |
# to use it.
|
|
547 |
! grep --regexp='^ *[^ #].*keyscript=[^,=]*/mandos/' \ |
|
175
by Teddy Hogeborn
* Makefile: Clearly separate "local" install variable settings from |
548 |
$(DESTDIR)/etc/crypttab |
74
by Teddy Hogeborn
* Makefile (PREFIX, CONFDIR): New. |
549 |
-rm --force $(PREFIX)/sbin/mandos-keygen \ |
640
by Teddy Hogeborn
Use architecture libdir. |
550 |
$(LIBDIR)/mandos/plugin-runner \ |
551 |
$(LIBDIR)/mandos/plugins.d/password-prompt \ |
|
552 |
$(LIBDIR)/mandos/plugins.d/mandos-client \ |
|
553 |
$(LIBDIR)/mandos/plugins.d/usplash \ |
|
554 |
$(LIBDIR)/mandos/plugins.d/splashy \ |
|
555 |
$(LIBDIR)/mandos/plugins.d/askpass-fifo \ |
|
556 |
$(LIBDIR)/mandos/plugins.d/plymouth \ |
|
175
by Teddy Hogeborn
* Makefile: Clearly separate "local" install variable settings from |
557 |
$(INITRAMFSTOOLS)/hooks/mandos \ |
558 |
$(INITRAMFSTOOLS)/conf-hooks.d/mandos \ |
|
302
by Teddy Hogeborn
* Makefile (install-client-nokey): Move "initramfs-tools-script" from |
559 |
$(INITRAMFSTOOLS)/scripts/init-premount/mandos \ |
1127
by Teddy Hogeborn
Add dracut(8) support |
560 |
$(INITRAMFSTOOLS)/scripts/local-premount/mandos \ |
561 |
$(DRACUTMODULE)/ask-password-mandos.path \ |
|
562 |
$(DRACUTMODULE)/ask-password-mandos.service \ |
|
563 |
$(DRACUTMODULE)/module-setup.sh \ |
|
564 |
$(DRACUTMODULE)/cmdline-mandos.sh \ |
|
565 |
$(DRACUTMODULE)/password-agent \ |
|
435
by teddy at bsnet
* Makefile (DOCS): Added "plymouth.8mandos". |
566 |
$(MANDIR)/man8/mandos-keygen.8.gz \ |
74
by Teddy Hogeborn
* Makefile (PREFIX, CONFDIR): New. |
567 |
$(MANDIR)/man8/plugin-runner.8mandos.gz \ |
435
by teddy at bsnet
* Makefile (DOCS): Added "plymouth.8mandos". |
568 |
$(MANDIR)/man8/mandos-client.8mandos.gz |
74
by Teddy Hogeborn
* Makefile (PREFIX, CONFDIR): New. |
569 |
$(MANDIR)/man8/password-prompt.8mandos.gz \ |
225
by Teddy Hogeborn
* Makefile (DOCS): Added "plugins.d/usplash.8mandos" and |
570 |
$(MANDIR)/man8/usplash.8mandos.gz \ |
571 |
$(MANDIR)/man8/splashy.8mandos.gz \ |
|
226
by Teddy Hogeborn
* Makefile (DOCS): Added "plugins.d/askpass-fifo.8mandos". |
572 |
$(MANDIR)/man8/askpass-fifo.8mandos.gz \ |
435
by teddy at bsnet
* Makefile (DOCS): Added "plymouth.8mandos". |
573 |
$(MANDIR)/man8/plymouth.8mandos.gz \ |
1127
by Teddy Hogeborn
Add dracut(8) support |
574 |
$(MANDIR)/man8/password-agent.8mandos.gz \ |
640
by Teddy Hogeborn
Use architecture libdir. |
575 |
-rmdir $(LIBDIR)/mandos/plugins.d $(CONFDIR)/plugins.d \ |
1127
by Teddy Hogeborn
Add dracut(8) support |
576 |
$(LIBDIR)/mandos $(CONFDIR) $(KEYDIR) $(DRACUTMODULE) |
577 |
if command -v update-initramfs >/dev/null; then \
|
|
578 |
update-initramfs -k all -u; \
|
|
579 |
elif command -v dracut >/dev/null; then \
|
|
1136
by Teddy Hogeborn
Break some long lines and refine documentation |
580 |
for initrd in $(DESTDIR)/boot/initr*-$(LINUXVERSION); do \
|
1127
by Teddy Hogeborn
Add dracut(8) support |
581 |
test -w "$$initrd" && dracut --force "$$initrd"; \
|
582 |
done; \
|
|
583 |
fi
|
|
67
by Teddy Hogeborn
* mandos-keygen: New program to generate new client keys on |
584 |
|
585 |
purge: purge-server purge-client |
|
586 |
||
587 |
purge-server: uninstall-server |
|
162
by Teddy Hogeborn
* Makefile (PIDDIR, USER, GROUP): New variables. |
588 |
-rm --force $(CONFDIR)/mandos.conf $(CONFDIR)/clients.conf \ |
420.1.1
by teddy at bsnet
* Makefile (install-server): Install dbus-mandos.conf as |
589 |
$(DESTDIR)/etc/dbus-1/system.d/mandos.conf |
175
by Teddy Hogeborn
* Makefile: Clearly separate "local" install variable settings from |
590 |
$(DESTDIR)/etc/default/mandos \ |
591 |
$(DESTDIR)/etc/init.d/mandos \ |
|
638
by Teddy Hogeborn
Add systemd service support for Mandos server. |
592 |
$(SYSTEMD)/mandos.service \ |
637
by Teddy Hogeborn
Fix fallback to /var/run if /run does not exist for Makefile. |
593 |
$(DESTDIR)/run/mandos.pid \ |
594 |
$(DESTDIR)/var/run/mandos.pid |
|
74
by Teddy Hogeborn
* Makefile (PREFIX, CONFDIR): New. |
595 |
-rmdir $(CONFDIR) |
67
by Teddy Hogeborn
* mandos-keygen: New program to generate new client keys on |
596 |
|
597 |
purge-client: uninstall-client |
|
962
by Teddy Hogeborn
Add support for using raw public keys in TLS (RFC 7250) |
598 |
-shred --remove $(KEYDIR)/seckey.txt $(KEYDIR)/tls-privkey.pem |
161
by Teddy Hogeborn
* Makefile (purge-client): Also remove "plugin-runner.conf". |
599 |
-rm --force $(CONFDIR)/plugin-runner.conf \ |
962
by Teddy Hogeborn
Add support for using raw public keys in TLS (RFC 7250) |
600 |
$(KEYDIR)/pubkey.txt $(KEYDIR)/seckey.txt \ |
601 |
$(KEYDIR)/tls-pubkey.txt $(KEYDIR)/tls-privkey.txt |
|
160
by Teddy Hogeborn
* Makefile: Changed to use symbolic instead of octal modes throughout. |
602 |
-rmdir $(KEYDIR) $(CONFDIR)/plugins.d $(CONFDIR) |