bzr branch
http://bzr.recompile.se/loggerhead/mandos/trunk
918
by Teddy Hogeborn
Use "simply expanded" variables in Makefile |
1 |
WARN:=-O -Wall -Wextra -Wdouble-promotion -Wformat=2 -Winit-self \ |
672
by Teddy Hogeborn
Update GCC warning flags and function attributes to GCC 4.7. |
2 |
-Wmissing-include-dirs -Wswitch-default -Wswitch-enum \ |
3 |
-Wunused -Wuninitialized -Wstrict-overflow=5 \ |
|
4 |
-Wsuggest-attribute=pure -Wsuggest-attribute=const \ |
|
5 |
-Wsuggest-attribute=noreturn -Wfloat-equal -Wundef -Wshadow \ |
|
67
by Teddy Hogeborn
* mandos-keygen: New program to generate new client keys on |
6 |
-Wunsafe-loop-optimizations -Wpointer-arith \ |
7 |
-Wbad-function-cast -Wcast-qual -Wcast-align -Wwrite-strings \ |
|
672
by Teddy Hogeborn
Update GCC warning flags and function attributes to GCC 4.7. |
8 |
-Wconversion -Wlogical-op -Waggregate-return \ |
9 |
-Wstrict-prototypes -Wold-style-definition \ |
|
10 |
-Wmissing-format-attribute -Wnormalized=nfc -Wpacked \ |
|
11 |
-Wredundant-decls -Wnested-externs -Winline -Wvla \ |
|
12 |
-Wvolatile-register-var -Woverlength-strings |
|
1111
by Teddy Hogeborn
Only use sanitizing options when debugging |
13 |
|
14 |
#DEBUG:=-ggdb3 -fsanitize=address $(SANITIZE)
|
|
15 |
## Check which sanitizing options can be used
|
|
16 |
#SANITIZE:=$(foreach option,$(ALL_SANITIZE_OPTIONS),$(shell \
|
|
17 |
# echo 'int main(){}' | $(CC) --language=c $(option) \
|
|
18 |
# /dev/stdin -o /dev/null >/dev/null 2>&1 && echo $(option)))
|
|
800
by Teddy Hogeborn
Use AddressSanitizer and UndefinedBehaviorSanitizer. |
19 |
# <https://developerblog.redhat.com/2014/10/16/gcc-undefined-behavior-sanitizer-ubsan/>
|
871
by Teddy Hogeborn
Makefile: Replace "-fsanitize=address" with "-fsanitize=leak" |
20 |
ALL_SANITIZE_OPTIONS:=-fsanitize=leak -fsanitize=undefined \ |
817
by Teddy Hogeborn
Only use -fsanitize=... options if they work. |
21 |
-fsanitize=shift -fsanitize=integer-divide-by-zero \ |
22 |
-fsanitize=unreachable -fsanitize=vla-bound -fsanitize=null \ |
|
23 |
-fsanitize=return -fsanitize=signed-integer-overflow \ |
|
24 |
-fsanitize=bounds -fsanitize=alignment \ |
|
25 |
-fsanitize=object-size -fsanitize=float-divide-by-zero \ |
|
26 |
-fsanitize=float-cast-overflow -fsanitize=nonnull-attribute \ |
|
27 |
-fsanitize=returns-nonnull-attribute -fsanitize=bool \ |
|
1117
by Teddy Hogeborn
Add another sanitizer option |
28 |
-fsanitize=enum -fsanitize-address-use-after-scope |
1111
by Teddy Hogeborn
Only use sanitizing options when debugging |
29 |
|
30 |
# For info about _FORTIFY_SOURCE, see feature_test_macros(7)
|
|
31 |
# and <https://gcc.gnu.org/ml/gcc-patches/2004-09/msg02055.html>.
|
|
1240
by Teddy Hogeborn
Use _FORTIFY_SOURCE=3, supported by GNU C Library version 2.33 |
32 |
FORTIFY:=-D_FORTIFY_SOURCE=3 -fstack-protector-all -fPIC |
918
by Teddy Hogeborn
Use "simply expanded" variables in Makefile |
33 |
LINK_FORTIFY_LD:=-z relro -z now |
34 |
LINK_FORTIFY:= |
|
399
by Teddy Hogeborn
* Makefile (BROKEN_PIE): Add comment. |
35 |
|
36 |
# If BROKEN_PIE is set, do not build with -pie
|
|
237.2.31
by Teddy Hogeborn
* Makefile: Don't use PIE if BROKEN_PIE is set. |
37 |
ifndef BROKEN_PIE
|
38 |
FORTIFY += -fPIE |
|
39 |
LINK_FORTIFY += -pie |
|
40 |
endif
|
|
24.1.90
by Björn Påhlsson
fixed two bugs: |
41 |
#COVERAGE=--coverage
|
918
by Teddy Hogeborn
Use "simply expanded" variables in Makefile |
42 |
OPTIMIZE:=-Os -fno-strict-aliasing |
43 |
LANGUAGE:=-std=gnu11 |
|
1146
by Teddy Hogeborn
Client: Always build with LFS enabled |
44 |
FEATURES:=-D_FILE_OFFSET_BITS=64 |
918
by Teddy Hogeborn
Use "simply expanded" variables in Makefile |
45 |
htmldir:=man |
237.4.136
by Teddy Hogeborn
Version 1.8.14-1 |
46 |
version:=1.8.14 |
918
by Teddy Hogeborn
Use "simply expanded" variables in Makefile |
47 |
SED:=sed |
1137
by Teddy Hogeborn
Makefile: "pkg-config" is now overrideable by PKG_CONFIG |
48 |
PKG_CONFIG?=pkg-config |
175
by Teddy Hogeborn
* Makefile: Clearly separate "local" install variable settings from |
49 |
|
1112
by Teddy Hogeborn
Makefile: Break long lines |
50 |
USER:=$(firstword $(subst :, ,$(shell getent passwd _mandos \ |
51 |
|| getent passwd nobody || echo 65534))) |
|
52 |
GROUP:=$(firstword $(subst :, ,$(shell getent group _mandos \ |
|
53 |
|| getent group nogroup || echo 65534))) |
|
518.2.2
by Teddy Hogeborn
Directory with persistent state can now be changed with the "statedir" |
54 |
|
1136
by Teddy Hogeborn
Break some long lines and refine documentation |
55 |
LINUXVERSION:=$(shell uname --kernel-release) |
56 |
||
175
by Teddy Hogeborn
* Makefile: Clearly separate "local" install variable settings from |
57 |
## Use these settings for a traditional /usr/local install
|
918
by Teddy Hogeborn
Use "simply expanded" variables in Makefile |
58 |
# PREFIX:=$(DESTDIR)/usr/local
|
59 |
# CONFDIR:=$(DESTDIR)/etc/mandos
|
|
60 |
# KEYDIR:=$(DESTDIR)/etc/mandos/keys
|
|
61 |
# MANDIR:=$(PREFIX)/man
|
|
62 |
# INITRAMFSTOOLS:=$(DESTDIR)/etc/initramfs-tools
|
|
1127
by Teddy Hogeborn
Add dracut(8) support |
63 |
# DRACUTMODULE:=$(DESTDIR)/usr/lib/dracut/modules.d/90mandos
|
918
by Teddy Hogeborn
Use "simply expanded" variables in Makefile |
64 |
# STATEDIR:=$(DESTDIR)/var/lib/mandos
|
65 |
# LIBDIR:=$(PREFIX)/lib
|
|
177
by Teddy Hogeborn
* Makefile (CONFDIR): Changed to be the same ("/etc/mandos") in both a |
66 |
##
|
175
by Teddy Hogeborn
* Makefile: Clearly separate "local" install variable settings from |
67 |
|
177
by Teddy Hogeborn
* Makefile (CONFDIR): Changed to be the same ("/etc/mandos") in both a |
68 |
## These settings are for a package-type install
|
918
by Teddy Hogeborn
Use "simply expanded" variables in Makefile |
69 |
PREFIX:=$(DESTDIR)/usr |
70 |
CONFDIR:=$(DESTDIR)/etc/mandos |
|
71 |
KEYDIR:=$(DESTDIR)/etc/keys/mandos |
|
72 |
MANDIR:=$(PREFIX)/share/man |
|
73 |
INITRAMFSTOOLS:=$(DESTDIR)/usr/share/initramfs-tools |
|
1127
by Teddy Hogeborn
Add dracut(8) support |
74 |
DRACUTMODULE:=$(DESTDIR)/usr/lib/dracut/modules.d/90mandos |
918
by Teddy Hogeborn
Use "simply expanded" variables in Makefile |
75 |
STATEDIR:=$(DESTDIR)/var/lib/mandos |
76 |
LIBDIR:=$(shell \ |
|
640
by Teddy Hogeborn
Use architecture libdir. |
77 |
for d in \ |
1136
by Teddy Hogeborn
Break some long lines and refine documentation |
78 |
"/usr/lib/`dpkg-architecture \ |
79 |
-qDEB_HOST_MULTIARCH 2>/dev/null`" \ |
|
640
by Teddy Hogeborn
Use architecture libdir. |
80 |
"`rpm --eval='%{_libdir}' 2>/dev/null`" /usr/lib; do \ |
81 |
if [ -d "$$d" -a "$$d" = "$${d%/}" ]; then \
|
|
82 |
echo "$(DESTDIR)$$d"; \
|
|
83 |
break; \
|
|
84 |
fi; \
|
|
85 |
done)
|
|
177
by Teddy Hogeborn
* Makefile (CONFDIR): Changed to be the same ("/etc/mandos") in both a |
86 |
##
|
21
by Teddy Hogeborn
* Makefile (CFLAGS): Changed to use $(WARN), $(DEBUG), $(COVERAGE) and |
87 |
|
1137
by Teddy Hogeborn
Makefile: "pkg-config" is now overrideable by PKG_CONFIG |
88 |
SYSTEMD:=$(DESTDIR)$(shell $(PKG_CONFIG) systemd \ |
1136
by Teddy Hogeborn
Break some long lines and refine documentation |
89 |
--variable=systemdsystemunitdir) |
1137
by Teddy Hogeborn
Makefile: "pkg-config" is now overrideable by PKG_CONFIG |
90 |
TMPFILES:=$(DESTDIR)$(shell $(PKG_CONFIG) systemd \ |
91 |
--variable=tmpfilesdir) |
|
1159
by Teddy Hogeborn
Use the systemd sysusers.d mechanism, if present |
92 |
SYSUSERS:=$(DESTDIR)$(shell $(PKG_CONFIG) systemd \ |
93 |
--variable=sysusersdir) |
|
638
by Teddy Hogeborn
Add systemd service support for Mandos server. |
94 |
|
1137
by Teddy Hogeborn
Makefile: "pkg-config" is now overrideable by PKG_CONFIG |
95 |
GNUTLS_CFLAGS:=$(shell $(PKG_CONFIG) --cflags-only-I gnutls) |
96 |
GNUTLS_LIBS:=$(shell $(PKG_CONFIG) --libs gnutls) |
|
97 |
AVAHI_CFLAGS:=$(shell $(PKG_CONFIG) --cflags-only-I avahi-core) |
|
98 |
AVAHI_LIBS:=$(shell $(PKG_CONFIG) --libs avahi-core) |
|
918
by Teddy Hogeborn
Use "simply expanded" variables in Makefile |
99 |
GPGME_CFLAGS:=$(shell gpgme-config --cflags; getconf LFS_CFLAGS) |
100 |
GPGME_LIBS:=$(shell gpgme-config --libs; getconf LFS_LIBS; \ |
|
317
by Teddy Hogeborn
Use "getconf" to get correct LFS compile and link flags. |
101 |
getconf LFS_LDFLAGS) |
1137
by Teddy Hogeborn
Makefile: "pkg-config" is now overrideable by PKG_CONFIG |
102 |
LIBNL3_CFLAGS:=$(shell $(PKG_CONFIG) --cflags-only-I libnl-route-3.0) |
103 |
LIBNL3_LIBS:=$(shell $(PKG_CONFIG) --libs libnl-route-3.0) |
|
104 |
GLIB_CFLAGS:=$(shell $(PKG_CONFIG) --cflags glib-2.0) |
|
105 |
GLIB_LIBS:=$(shell $(PKG_CONFIG) --libs glib-2.0) |
|
81
by Teddy Hogeborn
* Makefile (GNUTLS_CFLAGS, GNUTLS_LIBS, AVAHI_CFLAGS, AVAHI_LIBS, |
106 |
|
21
by Teddy Hogeborn
* Makefile (CFLAGS): Changed to use $(WARN), $(DEBUG), $(COVERAGE) and |
107 |
# Do not change these two
|
1146
by Teddy Hogeborn
Client: Always build with LFS enabled |
108 |
CFLAGS+=$(WARN) $(DEBUG) $(FORTIFY) $(COVERAGE) $(OPTIMIZE) \ |
109 |
$(LANGUAGE) $(FEATURES) -DVERSION='"$(version)"' |
|
1112
by Teddy Hogeborn
Makefile: Break long lines |
110 |
LDFLAGS+=-Xlinker --as-needed $(COVERAGE) $(LINK_FORTIFY) $(strip \ |
111 |
) $(foreach flag,$(LINK_FORTIFY_LD),-Xlinker $(flag)) |
|
16
by Teddy Hogeborn
* Makefile: Include targets for all binaries. |
112 |
|
175
by Teddy Hogeborn
* Makefile: Clearly separate "local" install variable settings from |
113 |
# Commands to format a DocBook <refentry> document into a manual page
|
398
by Teddy Hogeborn
* Makefile (DOCBOOKTOMAN, DOCBOOKTOHTML, common.ent, mandos, |
114 |
DOCBOOKTOMAN=$(strip cd $(dir $<); xsltproc --nonet --xinclude \ |
62
by Teddy Hogeborn
* Makefile (DOCBOOKTOMAN): Do not generate AUTHORS section. |
115 |
--param man.charmap.use.subset 0 \ |
116 |
--param make.year.ranges 1 \ |
|
117 |
--param make.single.year.ranges 1 \ |
|
118 |
--param man.output.quietly 1 \ |
|
84
by Teddy Hogeborn
* Makefile (DOCBOOKTOMAN): Use the local manpages/docbook.xsl file, do |
119 |
--param man.authors.section.enabled 0 \ |
595
by Teddy Hogeborn
* Makefile (DOCBOOKTOMAN): Don't show errors from "locale". |
120 |
/usr/share/xml/docbook/stylesheet/nwalsh/manpages/docbook.xsl \ |
91
by Teddy Hogeborn
* Makefile (DOCBOOKTOMAN): Include all DocBook-to-manpage-related |
121 |
$(notdir $<); \ |
595
by Teddy Hogeborn
* Makefile (DOCBOOKTOMAN): Don't show errors from "locale". |
122 |
if locale --all 2>/dev/null | grep --regexp='^en_US\.utf8$$' \
|
1122
by Teddy Hogeborn
Fix bashisms: Use "command -v" instead of "type" |
123 |
&& command -v man >/dev/null; then LANG=en_US.UTF-8 \
|
124 |
MANWIDTH=80 man --warnings --encoding=UTF-8 --local-file \
|
|
125 |
$(notdir $@); fi >/dev/null)
|
|
24.1.25
by Björn Påhlsson
* clients.conf.xml: Renamed to "mandos-clients.conf.xml". |
126 |
|
398
by Teddy Hogeborn
* Makefile (DOCBOOKTOMAN, DOCBOOKTOHTML, common.ent, mandos, |
127 |
DOCBOOKTOHTML=$(strip xsltproc --nonet --xinclude \ |
216
by Teddy Hogeborn
* Makefile: Add HTML rules for manual pages. |
128 |
--param make.year.ranges 1 \ |
129 |
--param make.single.year.ranges 1 \ |
|
130 |
--param man.output.quietly 1 \ |
|
131 |
--param man.authors.section.enabled 0 \ |
|
132 |
--param citerefentry.link 1 \ |
|
133 |
--output $@ \ |
|
134 |
/usr/share/xml/docbook/stylesheet/nwalsh/xhtml/docbook.xsl \ |
|
398
by Teddy Hogeborn
* Makefile (DOCBOOKTOMAN, DOCBOOKTOHTML, common.ent, mandos, |
135 |
$<; $(HTMLPOST) $@) |
216
by Teddy Hogeborn
* Makefile: Add HTML rules for manual pages. |
136 |
# Fix citerefentry links
|
918
by Teddy Hogeborn
Use "simply expanded" variables in Makefile |
137 |
HTMLPOST:=$(SED) --in-place \ |
235
by Teddy Hogeborn
* INSTALL: Fixed typo. |
138 |
--expression='s/\(<a class="citerefentry" href="\)\("><span class="citerefentry"><span class="refentrytitle">\)\([^<]*\)\(<\/span>(\)\([^)]*\)\()<\/span><\/a>\)/\1\3.\5\2\3\4\5\6/g' |
216
by Teddy Hogeborn
* Makefile: Add HTML rules for manual pages. |
139 |
|
918
by Teddy Hogeborn
Use "simply expanded" variables in Makefile |
140 |
PLUGINS:=plugins.d/password-prompt plugins.d/mandos-client \ |
425
by Teddy Hogeborn
* Makefile: Compile and install new "plymouth" plugin. |
141 |
plugins.d/usplash plugins.d/splashy plugins.d/askpass-fifo \ |
142 |
plugins.d/plymouth
|
|
918
by Teddy Hogeborn
Use "simply expanded" variables in Makefile |
143 |
PLUGIN_HELPERS:=plugin-helpers/mandos-client-iprouteadddel |
1127
by Teddy Hogeborn
Add dracut(8) support |
144 |
CPROGS:=plugin-runner dracut-module/password-agent $(PLUGINS) \ |
145 |
$(PLUGIN_HELPERS) |
|
918
by Teddy Hogeborn
Use "simply expanded" variables in Makefile |
146 |
PROGS:=mandos mandos-keygen mandos-ctl mandos-monitor $(CPROGS) |
147 |
DOCS:=mandos.8 mandos-keygen.8 mandos-monitor.8 mandos-ctl.8 \ |
|
435
by teddy at bsnet
* Makefile (DOCS): Added "plymouth.8mandos". |
148 |
mandos.conf.5 mandos-clients.conf.5 plugin-runner.8mandos \ |
1127
by Teddy Hogeborn
Add dracut(8) support |
149 |
dracut-module/password-agent.8mandos \ |
171
by Teddy Hogeborn
Renamed "password-request" to "mandos-client". |
150 |
plugins.d/mandos-client.8mandos \ |
435
by teddy at bsnet
* Makefile (DOCS): Added "plymouth.8mandos". |
151 |
plugins.d/password-prompt.8mandos plugins.d/usplash.8mandos \ |
152 |
plugins.d/splashy.8mandos plugins.d/askpass-fifo.8mandos \ |
|
493
by Teddy Hogeborn
* Makefile (DOCS): Added "intro.8mandos". |
153 |
plugins.d/plymouth.8mandos intro.8mandos |
16
by Teddy Hogeborn
* Makefile: Include targets for all binaries. |
154 |
|
918
by Teddy Hogeborn
Use "simply expanded" variables in Makefile |
155 |
htmldocs:=$(addsuffix .xhtml,$(DOCS)) |
216
by Teddy Hogeborn
* Makefile: Add HTML rules for manual pages. |
156 |
|
918
by Teddy Hogeborn
Use "simply expanded" variables in Makefile |
157 |
objects:=$(addsuffix .o,$(CPROGS)) |
16
by Teddy Hogeborn
* Makefile: Include targets for all binaries. |
158 |
|
1189
by Teddy Hogeborn
Makefile: Declare phoniness of targets at each target |
159 |
.PHONY: all |
233
by Teddy Hogeborn
* Makefile (all): Also depend on "mandos.lsm". |
160 |
all: $(PROGS) mandos.lsm |
67
by Teddy Hogeborn
* mandos-keygen: New program to generate new client keys on |
161 |
|
1189
by Teddy Hogeborn
Makefile: Declare phoniness of targets at each target |
162 |
.PHONY: doc |
67
by Teddy Hogeborn
* mandos-keygen: New program to generate new client keys on |
163 |
doc: $(DOCS) |
24.1.25
by Björn Påhlsson
* clients.conf.xml: Renamed to "mandos-clients.conf.xml". |
164 |
|
1189
by Teddy Hogeborn
Makefile: Declare phoniness of targets at each target |
165 |
.PHONY: html |
216
by Teddy Hogeborn
* Makefile: Add HTML rules for manual pages. |
166 |
html: $(htmldocs) |
167 |
||
217
by Teddy Hogeborn
* .bzrignore: Added "man" directory (created by "make install-html"). |
168 |
%.5: %.xml common.ent legalnotice.xml |
169 |
$(DOCBOOKTOMAN) |
|
170 |
%.5.xhtml: %.xml common.ent legalnotice.xml |
|
171 |
$(DOCBOOKTOHTML) |
|
172 |
||
173 |
%.8: %.xml common.ent legalnotice.xml |
|
174 |
$(DOCBOOKTOMAN) |
|
175 |
%.8.xhtml: %.xml common.ent legalnotice.xml |
|
176 |
$(DOCBOOKTOHTML) |
|
177 |
||
178 |
%.8mandos: %.xml common.ent legalnotice.xml |
|
179 |
$(DOCBOOKTOMAN) |
|
180 |
%.8mandos.xhtml: %.xml common.ent legalnotice.xml |
|
181 |
$(DOCBOOKTOHTML) |
|
182 |
||
493
by Teddy Hogeborn
* Makefile (DOCS): Added "intro.8mandos". |
183 |
intro.8mandos: intro.xml common.ent legalnotice.xml |
184 |
$(DOCBOOKTOMAN) |
|
185 |
intro.8mandos.xhtml: intro.xml common.ent legalnotice.xml |
|
186 |
$(DOCBOOKTOHTML) |
|
187 |
||
217
by Teddy Hogeborn
* .bzrignore: Added "man" directory (created by "make install-html"). |
188 |
mandos.8: mandos.xml common.ent mandos-options.xml overview.xml \ |
189 |
legalnotice.xml |
|
190 |
$(DOCBOOKTOMAN) |
|
191 |
mandos.8.xhtml: mandos.xml common.ent mandos-options.xml \ |
|
192 |
overview.xml legalnotice.xml |
|
193 |
$(DOCBOOKTOHTML) |
|
194 |
||
195 |
mandos-keygen.8: mandos-keygen.xml common.ent overview.xml \ |
|
196 |
legalnotice.xml |
|
197 |
$(DOCBOOKTOMAN) |
|
198 |
mandos-keygen.8.xhtml: mandos-keygen.xml common.ent overview.xml \ |
|
199 |
legalnotice.xml |
|
200 |
$(DOCBOOKTOHTML) |
|
201 |
||
430
by teddy at bsnet
* mandos-monitor.xml: New. |
202 |
mandos-monitor.8: mandos-monitor.xml common.ent overview.xml \ |
203 |
legalnotice.xml |
|
204 |
$(DOCBOOKTOMAN) |
|
205 |
mandos-monitor.8.xhtml: mandos-monitor.xml common.ent overview.xml \ |
|
206 |
legalnotice.xml |
|
207 |
$(DOCBOOKTOHTML) |
|
208 |
||
434
by teddy at bsnet
* mandos-ctl.xml: New. |
209 |
mandos-ctl.8: mandos-ctl.xml common.ent overview.xml \ |
210 |
legalnotice.xml |
|
211 |
$(DOCBOOKTOMAN) |
|
212 |
mandos-ctl.8.xhtml: mandos-ctl.xml common.ent overview.xml \ |
|
213 |
legalnotice.xml |
|
214 |
$(DOCBOOKTOHTML) |
|
215 |
||
217
by Teddy Hogeborn
* .bzrignore: Added "man" directory (created by "make install-html"). |
216 |
mandos.conf.5: mandos.conf.xml common.ent mandos-options.xml \ |
217 |
legalnotice.xml |
|
218 |
$(DOCBOOKTOMAN) |
|
219 |
mandos.conf.5.xhtml: mandos.conf.xml common.ent mandos-options.xml \ |
|
220 |
legalnotice.xml |
|
221 |
$(DOCBOOKTOHTML) |
|
222 |
||
223 |
plugin-runner.8mandos: plugin-runner.xml common.ent overview.xml \ |
|
224 |
legalnotice.xml |
|
225 |
$(DOCBOOKTOMAN) |
|
226 |
plugin-runner.8mandos.xhtml: plugin-runner.xml common.ent \ |
|
227 |
overview.xml legalnotice.xml |
|
216
by Teddy Hogeborn
* Makefile: Add HTML rules for manual pages. |
228 |
$(DOCBOOKTOHTML) |
143
by Teddy Hogeborn
* Makefile (mandos.8): Add dependency on "overview.xml" and |
229 |
|
1127
by Teddy Hogeborn
Add dracut(8) support |
230 |
dracut-module/password-agent.8mandos: \ |
231 |
dracut-module/password-agent.xml common.ent \ |
|
232 |
overview.xml legalnotice.xml |
|
233 |
$(DOCBOOKTOMAN) |
|
234 |
dracut-module/password-agent.8mandos.xhtml: \ |
|
235 |
dracut-module/password-agent.xml common.ent \ |
|
236 |
overview.xml legalnotice.xml |
|
237 |
$(DOCBOOKTOHTML) |
|
238 |
||
171
by Teddy Hogeborn
Renamed "password-request" to "mandos-client". |
239 |
plugins.d/mandos-client.8mandos: plugins.d/mandos-client.xml \ |
217
by Teddy Hogeborn
* .bzrignore: Added "man" directory (created by "make install-html"). |
240 |
common.ent \ |
143
by Teddy Hogeborn
* Makefile (mandos.8): Add dependency on "overview.xml" and |
241 |
mandos-options.xml \ |
242 |
overview.xml legalnotice.xml |
|
91
by Teddy Hogeborn
* Makefile (DOCBOOKTOMAN): Include all DocBook-to-manpage-related |
243 |
$(DOCBOOKTOMAN) |
216
by Teddy Hogeborn
* Makefile: Add HTML rules for manual pages. |
244 |
plugins.d/mandos-client.8mandos.xhtml: plugins.d/mandos-client.xml \ |
217
by Teddy Hogeborn
* .bzrignore: Added "man" directory (created by "make install-html"). |
245 |
common.ent \ |
216
by Teddy Hogeborn
* Makefile: Add HTML rules for manual pages. |
246 |
mandos-options.xml \ |
247 |
overview.xml legalnotice.xml |
|
248 |
$(DOCBOOKTOHTML) |
|
16
by Teddy Hogeborn
* Makefile: Include targets for all binaries. |
249 |
|
217
by Teddy Hogeborn
* .bzrignore: Added "man" directory (created by "make install-html"). |
250 |
# Update all these files with version number $(version)
|
251 |
common.ent: Makefile |
|
398
by Teddy Hogeborn
* Makefile (DOCBOOKTOMAN, DOCBOOKTOHTML, common.ent, mandos, |
252 |
$(strip $(SED) --in-place \ |
318
by Teddy Hogeborn
* Makefile (common.ent): Update "version" entity correctly. |
253 |
--expression='s/^\(<!ENTITY version "\)[^"]*">$$/\1$(version)">/' \ |
398
by Teddy Hogeborn
* Makefile (DOCBOOKTOMAN, DOCBOOKTOHTML, common.ent, mandos, |
254 |
$@) |
217
by Teddy Hogeborn
* .bzrignore: Added "man" directory (created by "make install-html"). |
255 |
|
256 |
mandos: Makefile |
|
398
by Teddy Hogeborn
* Makefile (DOCBOOKTOMAN, DOCBOOKTOHTML, common.ent, mandos, |
257 |
$(strip $(SED) --in-place \ |
235
by Teddy Hogeborn
* INSTALL: Fixed typo. |
258 |
--expression='s/^\(version = "\)[^"]*"$$/\1$(version)"/' \ |
398
by Teddy Hogeborn
* Makefile (DOCBOOKTOMAN, DOCBOOKTOHTML, common.ent, mandos, |
259 |
$@) |
217
by Teddy Hogeborn
* .bzrignore: Added "man" directory (created by "make install-html"). |
260 |
|
261 |
mandos-keygen: Makefile |
|
398
by Teddy Hogeborn
* Makefile (DOCBOOKTOMAN, DOCBOOKTOHTML, common.ent, mandos, |
262 |
$(strip $(SED) --in-place \ |
235
by Teddy Hogeborn
* INSTALL: Fixed typo. |
263 |
--expression='s/^\(VERSION="\)[^"]*"$$/\1$(version)"/' \ |
398
by Teddy Hogeborn
* Makefile (DOCBOOKTOMAN, DOCBOOKTOHTML, common.ent, mandos, |
264 |
$@) |
217
by Teddy Hogeborn
* .bzrignore: Added "man" directory (created by "make install-html"). |
265 |
|
24.1.121
by Björn Påhlsson
mandos-ctl: Added support for all client calls |
266 |
mandos-ctl: Makefile |
398
by Teddy Hogeborn
* Makefile (DOCBOOKTOMAN, DOCBOOKTOHTML, common.ent, mandos, |
267 |
$(strip $(SED) --in-place \ |
240
by Teddy Hogeborn
Merge "mandos-list" from belorn. |
268 |
--expression='s/^\(version = "\)[^"]*"$$/\1$(version)"/' \ |
398
by Teddy Hogeborn
* Makefile (DOCBOOKTOMAN, DOCBOOKTOHTML, common.ent, mandos, |
269 |
$@) |
240
by Teddy Hogeborn
Merge "mandos-list" from belorn. |
270 |
|
430
by teddy at bsnet
* mandos-monitor.xml: New. |
271 |
mandos-monitor: Makefile |
272 |
$(strip $(SED) --in-place \ |
|
273 |
--expression='s/^\(version = "\)[^"]*"$$/\1$(version)"/' \ |
|
274 |
$@) |
|
275 |
||
233
by Teddy Hogeborn
* Makefile (all): Also depend on "mandos.lsm". |
276 |
mandos.lsm: Makefile |
398
by Teddy Hogeborn
* Makefile (DOCBOOKTOMAN, DOCBOOKTOHTML, common.ent, mandos, |
277 |
$(strip $(SED) --in-place \ |
235
by Teddy Hogeborn
* INSTALL: Fixed typo. |
278 |
--expression='s/^\(Version:\).*/\1\t$(version)/' \ |
398
by Teddy Hogeborn
* Makefile (DOCBOOKTOMAN, DOCBOOKTOHTML, common.ent, mandos, |
279 |
$@) |
280 |
$(strip $(SED) --in-place \ |
|
235
by Teddy Hogeborn
* INSTALL: Fixed typo. |
281 |
--expression='s/^\(Entered-date:\).*/\1\t$(shell date --rfc-3339=date --reference=Makefile)/' \ |
398
by Teddy Hogeborn
* Makefile (DOCBOOKTOMAN, DOCBOOKTOHTML, common.ent, mandos, |
282 |
$@) |
283 |
$(strip $(SED) --in-place \ |
|
255
by Teddy Hogeborn
* Makefile (mandos.lsm): Also update file name using version number. |
284 |
--expression='s/\(mandos_\)[0-9.]\+\(\.orig\.tar\.gz\)/\1$(version)\2/' \ |
398
by Teddy Hogeborn
* Makefile (DOCBOOKTOMAN, DOCBOOKTOHTML, common.ent, mandos, |
285 |
$@) |
233
by Teddy Hogeborn
* Makefile (all): Also depend on "mandos.lsm". |
286 |
|
1111
by Teddy Hogeborn
Only use sanitizing options when debugging |
287 |
# Need to add the GnuTLS, Avahi and GPGME libraries
|
1188
by Teddy Hogeborn
Makefile: Use target-specific variables |
288 |
plugins.d/mandos-client: CFLAGS += $(GNUTLS_CFLAGS) $(strip \ |
289 |
) $(AVAHI_CFLAGS) $(GPGME_CFLAGS) |
|
290 |
plugins.d/mandos-client: LDLIBS += $(GNUTLS_LIBS) $(strip \ |
|
291 |
) $(AVAHI_LIBS) $(GPGME_LIBS) |
|
81
by Teddy Hogeborn
* Makefile (GNUTLS_CFLAGS, GNUTLS_LIBS, AVAHI_CFLAGS, AVAHI_LIBS, |
292 |
|
1118
by Teddy Hogeborn
Client: Document requirement of libnl-route library |
293 |
# Need to add the libnl-route library
|
1188
by Teddy Hogeborn
Makefile: Use target-specific variables |
294 |
plugin-helpers/mandos-client-iprouteadddel: CFLAGS += $(LIBNL3_CFLAGS) |
295 |
plugin-helpers/mandos-client-iprouteadddel: LDLIBS += $(LIBNL3_LIBS) |
|
738.1.4
by Teddy Hogeborn
Add plugin for mandos-client to add and delete local routes. |
296 |
|
1127
by Teddy Hogeborn
Add dracut(8) support |
297 |
# Need to add the GLib and pthread libraries
|
1188
by Teddy Hogeborn
Makefile: Use target-specific variables |
298 |
dracut-module/password-agent: CFLAGS += $(GLIB_CFLAGS) |
1245
by Teddy Hogeborn
Makefile: Add comment about phase out of -lpthread |
299 |
# Note: -lpthread is unnecessary with the GNU C library 2.34 or later
|
1188
by Teddy Hogeborn
Makefile: Use target-specific variables |
300 |
dracut-module/password-agent: LDLIBS += $(GLIB_LIBS) -lpthread |
1127
by Teddy Hogeborn
Add dracut(8) support |
301 |
|
1189
by Teddy Hogeborn
Makefile: Declare phoniness of targets at each target |
302 |
.PHONY: clean |
1
by Björn Påhlsson
First working version with: IPv6, GnuTLS, X.509 certificates, DN |
303 |
clean: |
217
by Teddy Hogeborn
* .bzrignore: Added "man" directory (created by "make install-html"). |
304 |
-rm --force $(CPROGS) $(objects) $(htmldocs) $(DOCS) core |
47
by Teddy Hogeborn
* plugbasedclient.c: Renamed to "mandos-client.c". All users changed. |
305 |
|
1189
by Teddy Hogeborn
Makefile: Declare phoniness of targets at each target |
306 |
.PHONY: distclean |
47
by Teddy Hogeborn
* plugbasedclient.c: Renamed to "mandos-client.c". All users changed. |
307 |
distclean: clean |
1189
by Teddy Hogeborn
Makefile: Declare phoniness of targets at each target |
308 |
.PHONY: mostlyclean |
47
by Teddy Hogeborn
* plugbasedclient.c: Renamed to "mandos-client.c". All users changed. |
309 |
mostlyclean: clean |
1189
by Teddy Hogeborn
Makefile: Declare phoniness of targets at each target |
310 |
.PHONY: maintainer-clean |
47
by Teddy Hogeborn
* plugbasedclient.c: Renamed to "mandos-client.c". All users changed. |
311 |
maintainer-clean: clean |
518.2.2
by Teddy Hogeborn
Directory with persistent state can now be changed with the "statedir" |
312 |
-rm --force --recursive keydir confdir statedir |
47
by Teddy Hogeborn
* plugbasedclient.c: Renamed to "mandos-client.c". All users changed. |
313 |
|
1189
by Teddy Hogeborn
Makefile: Declare phoniness of targets at each target |
314 |
.PHONY: check |
1116
by Teddy Hogeborn
Debian package change: Add autopkgtest support |
315 |
check: all |
47
by Teddy Hogeborn
* plugbasedclient.c: Renamed to "mandos-client.c". All users changed. |
316 |
./mandos --check |
608
by Teddy Hogeborn
* Makefile (check): Also check mandos-ctl. |
317 |
./mandos-ctl --check |
1116
by Teddy Hogeborn
Debian package change: Add autopkgtest support |
318 |
./mandos-keygen --version |
319 |
./plugin-runner --version |
|
320 |
./plugin-helpers/mandos-client-iprouteadddel --version |
|
1127
by Teddy Hogeborn
Add dracut(8) support |
321 |
./dracut-module/password-agent --test |
47
by Teddy Hogeborn
* plugbasedclient.c: Renamed to "mandos-client.c". All users changed. |
322 |
|
141
by Teddy Hogeborn
* Makefile (run-client): Add "--config-file=plugin-runner.conf". |
323 |
# Run the client with a local config and key
|
1189
by Teddy Hogeborn
Makefile: Declare phoniness of targets at each target |
324 |
.PHONY: run-client |
1136
by Teddy Hogeborn
Break some long lines and refine documentation |
325 |
run-client: all keydir/seckey.txt keydir/pubkey.txt \ |
326 |
keydir/tls-privkey.pem keydir/tls-pubkey.pem |
|
327 |
@echo '######################################################' |
|
328 |
@echo '# The following error messages are harmless and can #' |
|
329 |
@echo '# be safely ignored: #' |
|
330 |
@echo '## From plugin-runner: #' |
|
331 |
@echo '# setgid: Operation not permitted #' |
|
332 |
@echo '# setuid: Operation not permitted #' |
|
333 |
@echo '## From askpass-fifo: #' |
|
334 |
@echo '# mkfifo: Permission denied #' |
|
335 |
@echo '## From mandos-client: #' |
|
336 |
@echo '# Failed to raise privileges: Operation not permi... #' |
|
337 |
@echo '# Warning: network hook "*" exited with status * #' |
|
338 |
@echo '# ioctl SIOCSIFFLAGS +IFF_UP: Operation not permi... #' |
|
339 |
@echo '# Failed to bring up interface "*": Operation not... #' |
|
340 |
@echo '# #' |
|
341 |
@echo '# (The messages are caused by not running as root, #' |
|
342 |
@echo '# but you should NOT run "make run-client" as root #' |
|
343 |
@echo '# unless you also unpacked and compiled Mandos as #' |
|
344 |
@echo '# root, which is also NOT recommended.) #' |
|
345 |
@echo '######################################################' |
|
706
by Teddy Hogeborn
mandos-client: Better error messages. |
346 |
# We set GNOME_KEYRING_CONTROL to block pam_gnome_keyring
|
74
by Teddy Hogeborn
* Makefile (PREFIX, CONFDIR): New. |
347 |
./plugin-runner --plugin-dir=plugins.d \ |
738.1.1
by Teddy Hogeborn
Add a plugin helper directory, available to all plugins. |
348 |
--plugin-helper-dir=plugin-helpers \ |
141
by Teddy Hogeborn
* Makefile (run-client): Add "--config-file=plugin-runner.conf". |
349 |
--config-file=plugin-runner.conf \ |
962
by Teddy Hogeborn
Add support for using raw public keys in TLS (RFC 7250) |
350 |
--options-for=mandos-client:--seckey=keydir/seckey.txt,--pubkey=keydir/pubkey.txt,--tls-privkey=keydir/tls-privkey.pem,--tls-pubkey=keydir/tls-pubkey.pem,--network-hook-dir=network-hooks.d \ |
706
by Teddy Hogeborn
mandos-client: Better error messages. |
351 |
--env-for=mandos-client:GNOME_KEYRING_CONTROL= \ |
260
by Teddy Hogeborn
* Makefile (run-client): Pass $(CLIENTARGS) to plugin-runner. |
352 |
$(CLIENTARGS) |
47
by Teddy Hogeborn
* plugbasedclient.c: Renamed to "mandos-client.c". All users changed. |
353 |
|
104
by Teddy Hogeborn
* Makefile (maintainer-clean): Also remove "confdir". |
354 |
# Used by run-client
|
962
by Teddy Hogeborn
Add support for using raw public keys in TLS (RFC 7250) |
355 |
keydir/seckey.txt keydir/pubkey.txt keydir/tls-privkey.pem keydir/tls-pubkey.pem: mandos-keygen |
104
by Teddy Hogeborn
* Makefile (maintainer-clean): Also remove "confdir". |
356 |
install --directory keydir |
357 |
./mandos-keygen --dir keydir --force |
|
1207
by teddy at recompile
Makefile: fix targets run-server & run-client with GnuTLS 3.5.9 |
358 |
if ! [ -e keydir/tls-privkey.pem ]; then \
|
359 |
install --mode=u=rw /dev/null keydir/tls-privkey.pem; \
|
|
360 |
fi
|
|
361 |
if ! [ -e keydir/tls-pubkey.pem ]; then \
|
|
362 |
install --mode=u=rw /dev/null keydir/tls-pubkey.pem; \
|
|
363 |
fi
|
|
104
by Teddy Hogeborn
* Makefile (maintainer-clean): Also remove "confdir". |
364 |
|
365 |
# Run the server with a local config
|
|
1189
by Teddy Hogeborn
Makefile: Declare phoniness of targets at each target |
366 |
.PHONY: run-server |
574
by Teddy Hogeborn
* mandos: White space and other misc. format fixes only. |
367 |
run-server: confdir/mandos.conf confdir/clients.conf statedir |
518.2.2
by Teddy Hogeborn
Directory with persistent state can now be changed with the "statedir" |
368 |
./mandos --debug --no-dbus --configdir=confdir \ |
369 |
--statedir=statedir $(SERVERARGS) |
|
104
by Teddy Hogeborn
* Makefile (maintainer-clean): Also remove "confdir". |
370 |
|
371 |
# Used by run-server
|
|
372 |
confdir/mandos.conf: mandos.conf |
|
373 |
install --directory confdir |
|
160
by Teddy Hogeborn
* Makefile: Changed to use symbolic instead of octal modes throughout. |
374 |
install --mode=u=rw,go=r $^ $@ |
962
by Teddy Hogeborn
Add support for using raw public keys in TLS (RFC 7250) |
375 |
confdir/clients.conf: clients.conf keydir/seckey.txt keydir/tls-pubkey.pem |
104
by Teddy Hogeborn
* Makefile (maintainer-clean): Also remove "confdir". |
376 |
install --directory confdir |
166
by Teddy Hogeborn
* Makefile (confdir/clients.conf): Tighten permissions to "u=rw". |
377 |
install --mode=u=rw $< $@ |
104
by Teddy Hogeborn
* Makefile (maintainer-clean): Also remove "confdir". |
378 |
# Add a client password
|
708
by Teddy Hogeborn
mandos-keygen: Generate "checker" option to use SSH fingerprints. |
379 |
./mandos-keygen --dir keydir --password --no-ssh >> $@ |
518.2.2
by Teddy Hogeborn
Directory with persistent state can now be changed with the "statedir" |
380 |
statedir: |
381 |
install --directory statedir |
|
67
by Teddy Hogeborn
* mandos-keygen: New program to generate new client keys on |
382 |
|
1189
by Teddy Hogeborn
Makefile: Declare phoniness of targets at each target |
383 |
.PHONY: install |
182
by Teddy Hogeborn
* Makefile (install): Use "install-client-nokey". |
384 |
install: install-server install-client-nokey |
67
by Teddy Hogeborn
* mandos-keygen: New program to generate new client keys on |
385 |
|
1189
by Teddy Hogeborn
Makefile: Declare phoniness of targets at each target |
386 |
.PHONY: install-html |
235
by Teddy Hogeborn
* INSTALL: Fixed typo. |
387 |
install-html: html |
217
by Teddy Hogeborn
* .bzrignore: Added "man" directory (created by "make install-html"). |
388 |
install --directory $(htmldir) |
389 |
install --mode=u=rw,go=r --target-directory=$(htmldir) \ |
|
390 |
$(htmldocs) |
|
216
by Teddy Hogeborn
* Makefile: Add HTML rules for manual pages. |
391 |
|
1189
by Teddy Hogeborn
Makefile: Declare phoniness of targets at each target |
392 |
.PHONY: install-server |
67
by Teddy Hogeborn
* mandos-keygen: New program to generate new client keys on |
393 |
install-server: doc |
185
by Teddy Hogeborn
* .bzr-builddeb/default.conf: New. |
394 |
install --directory $(CONFDIR) |
643
by Teddy Hogeborn
Don't require /var/lib/mandos to be installed with user & group. |
395 |
if install --directory --mode=u=rwx --owner=$(USER) \
|
396 |
--group=$(GROUP) $(STATEDIR); then \
|
|
397 |
:; \
|
|
398 |
elif install --directory --mode=u=rwx $(STATEDIR); then \
|
|
399 |
chown -- $(USER):$(GROUP) $(STATEDIR) || :; \
|
|
400 |
fi
|
|
1136
by Teddy Hogeborn
Break some long lines and refine documentation |
401 |
if [ "$(TMPFILES)" != "$(DESTDIR)" \
|
402 |
-a -d "$(TMPFILES)" ]; then \
|
|
842
by Teddy Hogeborn
Server: Do not set execute bit on tmpfiles.d/mandos.conf |
403 |
install --mode=u=rw,go=r tmpfiles.d-mandos.conf \
|
838
by Teddy Hogeborn
Server: New tmpfiles.d file for persistent state directory |
404 |
$(TMPFILES)/mandos.conf; \
|
405 |
fi
|
|
1159
by Teddy Hogeborn
Use the systemd sysusers.d mechanism, if present |
406 |
if [ "$(SYSUSERS)" != "$(DESTDIR)" \
|
407 |
-a -d "$(SYSUSERS)" ]; then \
|
|
408 |
install --mode=u=rw,go=r sysusers.d-mandos.conf \
|
|
409 |
$(SYSUSERS)/mandos.conf; \
|
|
410 |
fi
|
|
160
by Teddy Hogeborn
* Makefile: Changed to use symbolic instead of octal modes throughout. |
411 |
install --mode=u=rwx,go=rx mandos $(PREFIX)/sbin/mandos |
430
by teddy at bsnet
* mandos-monitor.xml: New. |
412 |
install --mode=u=rwx,go=rx --target-directory=$(PREFIX)/sbin \ |
413 |
mandos-ctl
|
|
414 |
install --mode=u=rwx,go=rx --target-directory=$(PREFIX)/sbin \ |
|
415 |
mandos-monitor
|
|
162
by Teddy Hogeborn
* Makefile (PIDDIR, USER, GROUP): New variables. |
416 |
install --mode=u=rw,go=r --target-directory=$(CONFDIR) \ |
417 |
mandos.conf
|
|
166
by Teddy Hogeborn
* Makefile (confdir/clients.conf): Tighten permissions to "u=rw". |
418 |
install --mode=u=rw --target-directory=$(CONFDIR) \ |
67
by Teddy Hogeborn
* mandos-keygen: New program to generate new client keys on |
419 |
clients.conf
|
420.1.1
by teddy at bsnet
* Makefile (install-server): Install dbus-mandos.conf as |
420 |
install --mode=u=rw,go=r dbus-mandos.conf \ |
421 |
$(DESTDIR)/etc/dbus-1/system.d/mandos.conf |
|
175
by Teddy Hogeborn
* Makefile: Clearly separate "local" install variable settings from |
422 |
install --mode=u=rwx,go=rx init.d-mandos \ |
423 |
$(DESTDIR)/etc/init.d/mandos |
|
638
by Teddy Hogeborn
Add systemd service support for Mandos server. |
424 |
if [ "$(SYSTEMD)" != "$(DESTDIR)" -a -d "$(SYSTEMD)" ]; then \
|
639
by Teddy Hogeborn
Bug fix: Make sure systemd service file is installed. |
425 |
install --mode=u=rw,go=r mandos.service $(SYSTEMD); \
|
638
by Teddy Hogeborn
Add systemd service support for Mandos server. |
426 |
fi
|
175
by Teddy Hogeborn
* Makefile: Clearly separate "local" install variable settings from |
427 |
install --mode=u=rw,go=r default-mandos \ |
428 |
$(DESTDIR)/etc/default/mandos |
|
200
by Teddy Hogeborn
* Makefile: Put the init script before avahi-daemon. |
429 |
if [ -z $(DESTDIR) ]; then \
|
430 |
update-rc.d mandos defaults 25 15;\
|
|
431 |
fi
|
|
67
by Teddy Hogeborn
* mandos-keygen: New program to generate new client keys on |
432 |
gzip --best --to-stdout mandos.8 \ |
74
by Teddy Hogeborn
* Makefile (PREFIX, CONFDIR): New. |
433 |
> $(MANDIR)/man8/mandos.8.gz |
435
by teddy at bsnet
* Makefile (DOCS): Added "plymouth.8mandos". |
434 |
gzip --best --to-stdout mandos-monitor.8 \ |
435 |
> $(MANDIR)/man8/mandos-monitor.8.gz |
|
436 |
gzip --best --to-stdout mandos-ctl.8 \ |
|
437 |
> $(MANDIR)/man8/mandos-ctl.8.gz |
|
67
by Teddy Hogeborn
* mandos-keygen: New program to generate new client keys on |
438 |
gzip --best --to-stdout mandos.conf.5 \ |
74
by Teddy Hogeborn
* Makefile (PREFIX, CONFDIR): New. |
439 |
> $(MANDIR)/man5/mandos.conf.5.gz |
67
by Teddy Hogeborn
* mandos-keygen: New program to generate new client keys on |
440 |
gzip --best --to-stdout mandos-clients.conf.5 \ |
74
by Teddy Hogeborn
* Makefile (PREFIX, CONFDIR): New. |
441 |
> $(MANDIR)/man5/mandos-clients.conf.5.gz |
549
by teddy at recompile
* Makefile (install-server): Add intro(8mandos) man page. |
442 |
gzip --best --to-stdout intro.8mandos \ |
443 |
> $(MANDIR)/man8/intro.8mandos.gz |
|
67
by Teddy Hogeborn
* mandos-keygen: New program to generate new client keys on |
444 |
|
1189
by Teddy Hogeborn
Makefile: Declare phoniness of targets at each target |
445 |
.PHONY: install-client-nokey |
182
by Teddy Hogeborn
* Makefile (install): Use "install-client-nokey". |
446 |
install-client-nokey: all doc |
640
by Teddy Hogeborn
Use architecture libdir. |
447 |
install --directory $(LIBDIR)/mandos $(CONFDIR) |
185
by Teddy Hogeborn
* .bzr-builddeb/default.conf: New. |
448 |
install --directory --mode=u=rwx $(KEYDIR) \ |
738.1.6
by Teddy Hogeborn
Fix minor bugs and typos and add some more debug output. |
449 |
$(LIBDIR)/mandos/plugins.d \ |
450 |
$(LIBDIR)/mandos/plugin-helpers |
|
1160
by Teddy Hogeborn
Client: Use the systemd sysusers.d mechanism, if present |
451 |
if [ "$(SYSUSERS)" != "$(DESTDIR)" \
|
452 |
-a -d "$(SYSUSERS)" ]; then \
|
|
453 |
install --mode=u=rw,go=r sysusers.d-mandos.conf \
|
|
454 |
$(SYSUSERS)/mandos-client.conf; \
|
|
455 |
fi
|
|
640
by Teddy Hogeborn
Use architecture libdir. |
456 |
if [ "$(CONFDIR)" != "$(LIBDIR)/mandos" ]; then \
|
166
by Teddy Hogeborn
* Makefile (confdir/clients.conf): Tighten permissions to "u=rw". |
457 |
install --mode=u=rwx \
|
839
by Teddy Hogeborn
Client: Make plugin helper override directory mode u=rwx,go= |
458 |
--directory "$(CONFDIR)/plugins.d" \
|
459 |
"$(CONFDIR)/plugin-helpers"; \
|
|
166
by Teddy Hogeborn
* Makefile (confdir/clients.conf): Tighten permissions to "u=rw". |
460 |
fi
|
505.3.17
by Teddy Hogeborn
* Makefile (install-client-nokey): Create network hook directory. |
461 |
install --mode=u=rwx,go=rx --directory \ |
462 |
"$(CONFDIR)/network-hooks.d" |
|
162
by Teddy Hogeborn
* Makefile (PIDDIR, USER, GROUP): New variables. |
463 |
install --mode=u=rwx,go=rx \ |
640
by Teddy Hogeborn
Use architecture libdir. |
464 |
--target-directory=$(LIBDIR)/mandos plugin-runner |
953
by Teddy Hogeborn
Adapt to changes in cryptsetup; use "cryptroot-unlock" program |
465 |
install --mode=u=rwx,go=rx \ |
1136
by Teddy Hogeborn
Break some long lines and refine documentation |
466 |
--target-directory=$(LIBDIR)/mandos \ |
467 |
mandos-to-cryptroot-unlock
|
|
160
by Teddy Hogeborn
* Makefile: Changed to use symbolic instead of octal modes throughout. |
468 |
install --mode=u=rwx,go=rx --target-directory=$(PREFIX)/sbin \ |
74
by Teddy Hogeborn
* Makefile (PREFIX, CONFDIR): New. |
469 |
mandos-keygen
|
160
by Teddy Hogeborn
* Makefile: Changed to use symbolic instead of octal modes throughout. |
470 |
install --mode=u=rwx,go=rx \ |
640
by Teddy Hogeborn
Use architecture libdir. |
471 |
--target-directory=$(LIBDIR)/mandos/plugins.d \ |
67
by Teddy Hogeborn
* mandos-keygen: New program to generate new client keys on |
472 |
plugins.d/password-prompt
|
160
by Teddy Hogeborn
* Makefile: Changed to use symbolic instead of octal modes throughout. |
473 |
install --mode=u=rwxs,go=rx \ |
640
by Teddy Hogeborn
Use architecture libdir. |
474 |
--target-directory=$(LIBDIR)/mandos/plugins.d \ |
171
by Teddy Hogeborn
Renamed "password-request" to "mandos-client". |
475 |
plugins.d/mandos-client
|
208
by Teddy Hogeborn
* Makefile (PLUGINS): Added "plugins.d/usplash". |
476 |
install --mode=u=rwxs,go=rx \ |
640
by Teddy Hogeborn
Use architecture libdir. |
477 |
--target-directory=$(LIBDIR)/mandos/plugins.d \ |
160
by Teddy Hogeborn
* Makefile: Changed to use symbolic instead of octal modes throughout. |
478 |
plugins.d/usplash
|
205
by Teddy Hogeborn
* Makefile (PLUGINS, uninstall-client, |
479 |
install --mode=u=rwxs,go=rx \ |
640
by Teddy Hogeborn
Use architecture libdir. |
480 |
--target-directory=$(LIBDIR)/mandos/plugins.d \ |
205
by Teddy Hogeborn
* Makefile (PLUGINS, uninstall-client, |
481 |
plugins.d/splashy
|
214
by Teddy Hogeborn
* Makefile (PLUGINS): Added "plugins.d/askpass-fifo". |
482 |
install --mode=u=rwxs,go=rx \ |
640
by Teddy Hogeborn
Use architecture libdir. |
483 |
--target-directory=$(LIBDIR)/mandos/plugins.d \ |
214
by Teddy Hogeborn
* Makefile (PLUGINS): Added "plugins.d/askpass-fifo". |
484 |
plugins.d/askpass-fifo
|
425
by Teddy Hogeborn
* Makefile: Compile and install new "plymouth" plugin. |
485 |
install --mode=u=rwxs,go=rx \ |
640
by Teddy Hogeborn
Use architecture libdir. |
486 |
--target-directory=$(LIBDIR)/mandos/plugins.d \ |
425
by Teddy Hogeborn
* Makefile: Compile and install new "plymouth" plugin. |
487 |
plugins.d/plymouth
|
836
by Teddy Hogeborn
Client: Fix permissions on plugin helper directory. |
488 |
install --mode=u=rwx,go=rx \ |
738.1.6
by Teddy Hogeborn
Fix minor bugs and typos and add some more debug output. |
489 |
--target-directory=$(LIBDIR)/mandos/plugin-helpers \ |
490 |
plugin-helpers/mandos-client-iprouteadddel
|
|
67
by Teddy Hogeborn
* mandos-keygen: New program to generate new client keys on |
491 |
install initramfs-tools-hook \ |
175
by Teddy Hogeborn
* Makefile: Clearly separate "local" install variable settings from |
492 |
$(INITRAMFSTOOLS)/hooks/mandos |
954
by Teddy Hogeborn
Move UMASK setting to more proper place |
493 |
install --mode=u=rw,go=r initramfs-tools-conf \ |
494 |
$(INITRAMFSTOOLS)/conf.d/mandos-conf |
|
1099
by Teddy Hogeborn
Installation: Fix UMASK even if set by some other initramfs hook |
495 |
install --mode=u=rw,go=r initramfs-tools-conf-hook \ |
496 |
$(INITRAMFSTOOLS)/conf-hooks.d/zz-mandos |
|
74
by Teddy Hogeborn
* Makefile (PREFIX, CONFDIR): New. |
497 |
install initramfs-tools-script \ |
302
by Teddy Hogeborn
* Makefile (install-client-nokey): Move "initramfs-tools-script" from |
498 |
$(INITRAMFSTOOLS)/scripts/init-premount/mandos |
953
by Teddy Hogeborn
Adapt to changes in cryptsetup; use "cryptroot-unlock" program |
499 |
install initramfs-tools-script-stop \ |
500 |
$(INITRAMFSTOOLS)/scripts/local-premount/mandos |
|
1127
by Teddy Hogeborn
Add dracut(8) support |
501 |
install --directory $(DRACUTMODULE) |
502 |
install --mode=u=rw,go=r --target-directory=$(DRACUTMODULE) \ |
|
503 |
dracut-module/ask-password-mandos.path \ |
|
504 |
dracut-module/ask-password-mandos.service
|
|
505 |
install --mode=u=rwxs,go=rx \ |
|
506 |
--target-directory=$(DRACUTMODULE) \ |
|
507 |
dracut-module/module-setup.sh \ |
|
508 |
dracut-module/cmdline-mandos.sh \ |
|
509 |
dracut-module/password-agent
|
|
160
by Teddy Hogeborn
* Makefile: Changed to use symbolic instead of octal modes throughout. |
510 |
install --mode=u=rw,go=r plugin-runner.conf $(CONFDIR) |
67
by Teddy Hogeborn
* mandos-keygen: New program to generate new client keys on |
511 |
gzip --best --to-stdout mandos-keygen.8 \ |
74
by Teddy Hogeborn
* Makefile (PREFIX, CONFDIR): New. |
512 |
> $(MANDIR)/man8/mandos-keygen.8.gz |
513 |
gzip --best --to-stdout plugin-runner.8mandos \ |
|
514 |
> $(MANDIR)/man8/plugin-runner.8mandos.gz |
|
435
by teddy at bsnet
* Makefile (DOCS): Added "plymouth.8mandos". |
515 |
gzip --best --to-stdout plugins.d/mandos-client.8mandos \ |
516 |
> $(MANDIR)/man8/mandos-client.8mandos.gz |
|
67
by Teddy Hogeborn
* mandos-keygen: New program to generate new client keys on |
517 |
gzip --best --to-stdout plugins.d/password-prompt.8mandos \ |
74
by Teddy Hogeborn
* Makefile (PREFIX, CONFDIR): New. |
518 |
> $(MANDIR)/man8/password-prompt.8mandos.gz |
225
by Teddy Hogeborn
* Makefile (DOCS): Added "plugins.d/usplash.8mandos" and |
519 |
gzip --best --to-stdout plugins.d/usplash.8mandos \ |
520 |
> $(MANDIR)/man8/usplash.8mandos.gz |
|
521 |
gzip --best --to-stdout plugins.d/splashy.8mandos \ |
|
522 |
> $(MANDIR)/man8/splashy.8mandos.gz |
|
226
by Teddy Hogeborn
* Makefile (DOCS): Added "plugins.d/askpass-fifo.8mandos". |
523 |
gzip --best --to-stdout plugins.d/askpass-fifo.8mandos \ |
524 |
> $(MANDIR)/man8/askpass-fifo.8mandos.gz |
|
435
by teddy at bsnet
* Makefile (DOCS): Added "plymouth.8mandos". |
525 |
gzip --best --to-stdout plugins.d/plymouth.8mandos \ |
526 |
> $(MANDIR)/man8/plymouth.8mandos.gz |
|
1127
by Teddy Hogeborn
Add dracut(8) support |
527 |
gzip --best --to-stdout dracut-module/password-agent.8mandos \ |
528 |
> $(MANDIR)/man8/password-agent.8mandos.gz |
|
182
by Teddy Hogeborn
* Makefile (install): Use "install-client-nokey". |
529 |
|
1189
by Teddy Hogeborn
Makefile: Declare phoniness of targets at each target |
530 |
.PHONY: install-client |
182
by Teddy Hogeborn
* Makefile (install): Use "install-client-nokey". |
531 |
install-client: install-client-nokey |
166
by Teddy Hogeborn
* Makefile (confdir/clients.conf): Tighten permissions to "u=rw". |
532 |
# Post-installation stuff
|
160
by Teddy Hogeborn
* Makefile: Changed to use symbolic instead of octal modes throughout. |
533 |
-$(PREFIX)/sbin/mandos-keygen --dir "$(KEYDIR)" |
1127
by Teddy Hogeborn
Add dracut(8) support |
534 |
if command -v update-initramfs >/dev/null; then \
|
535 |
update-initramfs -k all -u; \
|
|
536 |
elif command -v dracut >/dev/null; then \
|
|
1136
by Teddy Hogeborn
Break some long lines and refine documentation |
537 |
for initrd in $(DESTDIR)/boot/initr*-$(LINUXVERSION); do \
|
1127
by Teddy Hogeborn
Add dracut(8) support |
538 |
if [ -w "$$initrd" ]; then \
|
539 |
chmod go-r "$$initrd"; \
|
|
540 |
dracut --force "$$initrd"; \
|
|
541 |
fi; \
|
|
542 |
done; \
|
|
543 |
fi
|
|
160
by Teddy Hogeborn
* Makefile: Changed to use symbolic instead of octal modes throughout. |
544 |
echo "Now run mandos-keygen --password --dir $(KEYDIR)" |
67
by Teddy Hogeborn
* mandos-keygen: New program to generate new client keys on |
545 |
|
1189
by Teddy Hogeborn
Makefile: Declare phoniness of targets at each target |
546 |
.PHONY: uninstall |
67
by Teddy Hogeborn
* mandos-keygen: New program to generate new client keys on |
547 |
uninstall: uninstall-server uninstall-client |
548 |
||
1189
by Teddy Hogeborn
Makefile: Declare phoniness of targets at each target |
549 |
.PHONY: uninstall-server |
160
by Teddy Hogeborn
* Makefile: Changed to use symbolic instead of octal modes throughout. |
550 |
uninstall-server: |
74
by Teddy Hogeborn
* Makefile (PREFIX, CONFDIR): New. |
551 |
-rm --force $(PREFIX)/sbin/mandos \ |
430
by teddy at bsnet
* mandos-monitor.xml: New. |
552 |
$(PREFIX)/sbin/mandos-ctl \ |
553 |
$(PREFIX)/sbin/mandos-monitor \ |
|
74
by Teddy Hogeborn
* Makefile (PREFIX, CONFDIR): New. |
554 |
$(MANDIR)/man8/mandos.8.gz \ |
435
by teddy at bsnet
* Makefile (DOCS): Added "plymouth.8mandos". |
555 |
$(MANDIR)/man8/mandos-monitor.8.gz \ |
556 |
$(MANDIR)/man8/mandos-ctl.8.gz \ |
|
74
by Teddy Hogeborn
* Makefile (PREFIX, CONFDIR): New. |
557 |
$(MANDIR)/man5/mandos.conf.5.gz \ |
558 |
$(MANDIR)/man5/mandos-clients.conf.5.gz |
|
162
by Teddy Hogeborn
* Makefile (PIDDIR, USER, GROUP): New variables. |
559 |
update-rc.d -f mandos remove |
163
by Teddy Hogeborn
* Makefile (PIDDIR, USER, GROUP): Removed. |
560 |
-rmdir $(CONFDIR) |
67
by Teddy Hogeborn
* mandos-keygen: New program to generate new client keys on |
561 |
|
1189
by Teddy Hogeborn
Makefile: Declare phoniness of targets at each target |
562 |
.PHONY: uninstall-client |
67
by Teddy Hogeborn
* mandos-keygen: New program to generate new client keys on |
563 |
uninstall-client: |
74
by Teddy Hogeborn
* Makefile (PREFIX, CONFDIR): New. |
564 |
# Refuse to uninstall client if /etc/crypttab is explicitly configured
|
565 |
# to use it.
|
|
566 |
! grep --regexp='^ *[^ #].*keyscript=[^,=]*/mandos/' \ |
|
175
by Teddy Hogeborn
* Makefile: Clearly separate "local" install variable settings from |
567 |
$(DESTDIR)/etc/crypttab |
74
by Teddy Hogeborn
* Makefile (PREFIX, CONFDIR): New. |
568 |
-rm --force $(PREFIX)/sbin/mandos-keygen \ |
640
by Teddy Hogeborn
Use architecture libdir. |
569 |
$(LIBDIR)/mandos/plugin-runner \ |
570 |
$(LIBDIR)/mandos/plugins.d/password-prompt \ |
|
571 |
$(LIBDIR)/mandos/plugins.d/mandos-client \ |
|
572 |
$(LIBDIR)/mandos/plugins.d/usplash \ |
|
573 |
$(LIBDIR)/mandos/plugins.d/splashy \ |
|
574 |
$(LIBDIR)/mandos/plugins.d/askpass-fifo \ |
|
575 |
$(LIBDIR)/mandos/plugins.d/plymouth \ |
|
175
by Teddy Hogeborn
* Makefile: Clearly separate "local" install variable settings from |
576 |
$(INITRAMFSTOOLS)/hooks/mandos \ |
577 |
$(INITRAMFSTOOLS)/conf-hooks.d/mandos \ |
|
302
by Teddy Hogeborn
* Makefile (install-client-nokey): Move "initramfs-tools-script" from |
578 |
$(INITRAMFSTOOLS)/scripts/init-premount/mandos \ |
1127
by Teddy Hogeborn
Add dracut(8) support |
579 |
$(INITRAMFSTOOLS)/scripts/local-premount/mandos \ |
580 |
$(DRACUTMODULE)/ask-password-mandos.path \ |
|
581 |
$(DRACUTMODULE)/ask-password-mandos.service \ |
|
582 |
$(DRACUTMODULE)/module-setup.sh \ |
|
583 |
$(DRACUTMODULE)/cmdline-mandos.sh \ |
|
584 |
$(DRACUTMODULE)/password-agent \ |
|
435
by teddy at bsnet
* Makefile (DOCS): Added "plymouth.8mandos". |
585 |
$(MANDIR)/man8/mandos-keygen.8.gz \ |
74
by Teddy Hogeborn
* Makefile (PREFIX, CONFDIR): New. |
586 |
$(MANDIR)/man8/plugin-runner.8mandos.gz \ |
435
by teddy at bsnet
* Makefile (DOCS): Added "plymouth.8mandos". |
587 |
$(MANDIR)/man8/mandos-client.8mandos.gz |
74
by Teddy Hogeborn
* Makefile (PREFIX, CONFDIR): New. |
588 |
$(MANDIR)/man8/password-prompt.8mandos.gz \ |
225
by Teddy Hogeborn
* Makefile (DOCS): Added "plugins.d/usplash.8mandos" and |
589 |
$(MANDIR)/man8/usplash.8mandos.gz \ |
590 |
$(MANDIR)/man8/splashy.8mandos.gz \ |
|
226
by Teddy Hogeborn
* Makefile (DOCS): Added "plugins.d/askpass-fifo.8mandos". |
591 |
$(MANDIR)/man8/askpass-fifo.8mandos.gz \ |
435
by teddy at bsnet
* Makefile (DOCS): Added "plymouth.8mandos". |
592 |
$(MANDIR)/man8/plymouth.8mandos.gz \ |
1127
by Teddy Hogeborn
Add dracut(8) support |
593 |
$(MANDIR)/man8/password-agent.8mandos.gz \ |
640
by Teddy Hogeborn
Use architecture libdir. |
594 |
-rmdir $(LIBDIR)/mandos/plugins.d $(CONFDIR)/plugins.d \ |
1127
by Teddy Hogeborn
Add dracut(8) support |
595 |
$(LIBDIR)/mandos $(CONFDIR) $(KEYDIR) $(DRACUTMODULE) |
596 |
if command -v update-initramfs >/dev/null; then \
|
|
597 |
update-initramfs -k all -u; \
|
|
598 |
elif command -v dracut >/dev/null; then \
|
|
1136
by Teddy Hogeborn
Break some long lines and refine documentation |
599 |
for initrd in $(DESTDIR)/boot/initr*-$(LINUXVERSION); do \
|
1127
by Teddy Hogeborn
Add dracut(8) support |
600 |
test -w "$$initrd" && dracut --force "$$initrd"; \
|
601 |
done; \
|
|
602 |
fi
|
|
67
by Teddy Hogeborn
* mandos-keygen: New program to generate new client keys on |
603 |
|
1189
by Teddy Hogeborn
Makefile: Declare phoniness of targets at each target |
604 |
.PHONY: purge |
67
by Teddy Hogeborn
* mandos-keygen: New program to generate new client keys on |
605 |
purge: purge-server purge-client |
606 |
||
1189
by Teddy Hogeborn
Makefile: Declare phoniness of targets at each target |
607 |
.PHONY: purge-server |
67
by Teddy Hogeborn
* mandos-keygen: New program to generate new client keys on |
608 |
purge-server: uninstall-server |
162
by Teddy Hogeborn
* Makefile (PIDDIR, USER, GROUP): New variables. |
609 |
-rm --force $(CONFDIR)/mandos.conf $(CONFDIR)/clients.conf \ |
420.1.1
by teddy at bsnet
* Makefile (install-server): Install dbus-mandos.conf as |
610 |
$(DESTDIR)/etc/dbus-1/system.d/mandos.conf |
175
by Teddy Hogeborn
* Makefile: Clearly separate "local" install variable settings from |
611 |
$(DESTDIR)/etc/default/mandos \ |
612 |
$(DESTDIR)/etc/init.d/mandos \ |
|
638
by Teddy Hogeborn
Add systemd service support for Mandos server. |
613 |
$(SYSTEMD)/mandos.service \ |
637
by Teddy Hogeborn
Fix fallback to /var/run if /run does not exist for Makefile. |
614 |
$(DESTDIR)/run/mandos.pid \ |
615 |
$(DESTDIR)/var/run/mandos.pid |
|
74
by Teddy Hogeborn
* Makefile (PREFIX, CONFDIR): New. |
616 |
-rmdir $(CONFDIR) |
67
by Teddy Hogeborn
* mandos-keygen: New program to generate new client keys on |
617 |
|
1189
by Teddy Hogeborn
Makefile: Declare phoniness of targets at each target |
618 |
.PHONY: purge-client |
67
by Teddy Hogeborn
* mandos-keygen: New program to generate new client keys on |
619 |
purge-client: uninstall-client |
962
by Teddy Hogeborn
Add support for using raw public keys in TLS (RFC 7250) |
620 |
-shred --remove $(KEYDIR)/seckey.txt $(KEYDIR)/tls-privkey.pem |
161
by Teddy Hogeborn
* Makefile (purge-client): Also remove "plugin-runner.conf". |
621 |
-rm --force $(CONFDIR)/plugin-runner.conf \ |
962
by Teddy Hogeborn
Add support for using raw public keys in TLS (RFC 7250) |
622 |
$(KEYDIR)/pubkey.txt $(KEYDIR)/seckey.txt \ |
623 |
$(KEYDIR)/tls-pubkey.txt $(KEYDIR)/tls-privkey.txt |
|
160
by Teddy Hogeborn
* Makefile: Changed to use symbolic instead of octal modes throughout. |
624 |
-rmdir $(KEYDIR) $(CONFDIR)/plugins.d $(CONFDIR) |