bzr branch
http://bzr.recompile.se/loggerhead/mandos/trunk
918
by Teddy Hogeborn
Use "simply expanded" variables in Makefile |
1 |
WARN:=-O -Wall -Wextra -Wdouble-promotion -Wformat=2 -Winit-self \ |
672
by Teddy Hogeborn
Update GCC warning flags and function attributes to GCC 4.7. |
2 |
-Wmissing-include-dirs -Wswitch-default -Wswitch-enum \ |
3 |
-Wunused -Wuninitialized -Wstrict-overflow=5 \ |
|
4 |
-Wsuggest-attribute=pure -Wsuggest-attribute=const \ |
|
5 |
-Wsuggest-attribute=noreturn -Wfloat-equal -Wundef -Wshadow \ |
|
67
by Teddy Hogeborn
* mandos-keygen: New program to generate new client keys on |
6 |
-Wunsafe-loop-optimizations -Wpointer-arith \ |
7 |
-Wbad-function-cast -Wcast-qual -Wcast-align -Wwrite-strings \ |
|
672
by Teddy Hogeborn
Update GCC warning flags and function attributes to GCC 4.7. |
8 |
-Wconversion -Wlogical-op -Waggregate-return \ |
9 |
-Wstrict-prototypes -Wold-style-definition \ |
|
10 |
-Wmissing-format-attribute -Wnormalized=nfc -Wpacked \ |
|
11 |
-Wredundant-decls -Wnested-externs -Winline -Wvla \ |
|
12 |
-Wvolatile-register-var -Woverlength-strings |
|
1111
by Teddy Hogeborn
Only use sanitizing options when debugging |
13 |
|
14 |
#DEBUG:=-ggdb3 -fsanitize=address $(SANITIZE)
|
|
15 |
## Check which sanitizing options can be used
|
|
16 |
#SANITIZE:=$(foreach option,$(ALL_SANITIZE_OPTIONS),$(shell \
|
|
17 |
# echo 'int main(){}' | $(CC) --language=c $(option) \
|
|
18 |
# /dev/stdin -o /dev/null >/dev/null 2>&1 && echo $(option)))
|
|
800
by Teddy Hogeborn
Use AddressSanitizer and UndefinedBehaviorSanitizer. |
19 |
# <https://developerblog.redhat.com/2014/10/16/gcc-undefined-behavior-sanitizer-ubsan/>
|
871
by Teddy Hogeborn
Makefile: Replace "-fsanitize=address" with "-fsanitize=leak" |
20 |
ALL_SANITIZE_OPTIONS:=-fsanitize=leak -fsanitize=undefined \ |
817
by Teddy Hogeborn
Only use -fsanitize=... options if they work. |
21 |
-fsanitize=shift -fsanitize=integer-divide-by-zero \ |
22 |
-fsanitize=unreachable -fsanitize=vla-bound -fsanitize=null \ |
|
23 |
-fsanitize=return -fsanitize=signed-integer-overflow \ |
|
24 |
-fsanitize=bounds -fsanitize=alignment \ |
|
25 |
-fsanitize=object-size -fsanitize=float-divide-by-zero \ |
|
26 |
-fsanitize=float-cast-overflow -fsanitize=nonnull-attribute \ |
|
27 |
-fsanitize=returns-nonnull-attribute -fsanitize=bool \ |
|
1117
by Teddy Hogeborn
Add another sanitizer option |
28 |
-fsanitize=enum -fsanitize-address-use-after-scope |
1111
by Teddy Hogeborn
Only use sanitizing options when debugging |
29 |
|
30 |
# For info about _FORTIFY_SOURCE, see feature_test_macros(7)
|
|
31 |
# and <https://gcc.gnu.org/ml/gcc-patches/2004-09/msg02055.html>.
|
|
1273
by Teddy Hogeborn
Really enable FORTIFY_SOURCE=3 |
32 |
FORTIFY:=-fstack-protector-all -fPIC |
33 |
CPPFLAGS+=-D_FORTIFY_SOURCE=3 |
|
918
by Teddy Hogeborn
Use "simply expanded" variables in Makefile |
34 |
LINK_FORTIFY_LD:=-z relro -z now |
35 |
LINK_FORTIFY:= |
|
399
by Teddy Hogeborn
* Makefile (BROKEN_PIE): Add comment. |
36 |
|
37 |
# If BROKEN_PIE is set, do not build with -pie
|
|
237.2.31
by Teddy Hogeborn
* Makefile: Don't use PIE if BROKEN_PIE is set. |
38 |
ifndef BROKEN_PIE
|
39 |
FORTIFY += -fPIE |
|
40 |
LINK_FORTIFY += -pie |
|
41 |
endif
|
|
24.1.90
by Björn Påhlsson
fixed two bugs: |
42 |
#COVERAGE=--coverage
|
918
by Teddy Hogeborn
Use "simply expanded" variables in Makefile |
43 |
OPTIMIZE:=-Os -fno-strict-aliasing |
44 |
LANGUAGE:=-std=gnu11 |
|
1281
by Teddy Hogeborn
Fix Y2038 |
45 |
CPPFLAGS+=-D_FILE_OFFSET_BITS=64 -D_TIME_BITS=64 |
918
by Teddy Hogeborn
Use "simply expanded" variables in Makefile |
46 |
htmldir:=man |
237.4.140
by Teddy Hogeborn
Version 1.8.16-1 |
47 |
version:=1.8.16 |
918
by Teddy Hogeborn
Use "simply expanded" variables in Makefile |
48 |
SED:=sed |
1137
by Teddy Hogeborn
Makefile: "pkg-config" is now overrideable by PKG_CONFIG |
49 |
PKG_CONFIG?=pkg-config |
175
by Teddy Hogeborn
* Makefile: Clearly separate "local" install variable settings from |
50 |
|
1112
by Teddy Hogeborn
Makefile: Break long lines |
51 |
USER:=$(firstword $(subst :, ,$(shell getent passwd _mandos \ |
52 |
|| getent passwd nobody || echo 65534))) |
|
53 |
GROUP:=$(firstword $(subst :, ,$(shell getent group _mandos \ |
|
54 |
|| getent group nogroup || echo 65534))) |
|
518.2.2
by Teddy Hogeborn
Directory with persistent state can now be changed with the "statedir" |
55 |
|
1136
by Teddy Hogeborn
Break some long lines and refine documentation |
56 |
LINUXVERSION:=$(shell uname --kernel-release) |
57 |
||
175
by Teddy Hogeborn
* Makefile: Clearly separate "local" install variable settings from |
58 |
## Use these settings for a traditional /usr/local install
|
918
by Teddy Hogeborn
Use "simply expanded" variables in Makefile |
59 |
# PREFIX:=$(DESTDIR)/usr/local
|
60 |
# CONFDIR:=$(DESTDIR)/etc/mandos
|
|
61 |
# KEYDIR:=$(DESTDIR)/etc/mandos/keys
|
|
62 |
# MANDIR:=$(PREFIX)/man
|
|
63 |
# INITRAMFSTOOLS:=$(DESTDIR)/etc/initramfs-tools
|
|
1127
by Teddy Hogeborn
Add dracut(8) support |
64 |
# DRACUTMODULE:=$(DESTDIR)/usr/lib/dracut/modules.d/90mandos
|
918
by Teddy Hogeborn
Use "simply expanded" variables in Makefile |
65 |
# STATEDIR:=$(DESTDIR)/var/lib/mandos
|
66 |
# LIBDIR:=$(PREFIX)/lib
|
|
1275
by Teddy Hogeborn
Move D-Bus policy file to /usr/share/dbus-1/session.d |
67 |
# DBUSPOLICYDIR:=$(DESTDIR)/etc/dbus-1/system.d
|
177
by Teddy Hogeborn
* Makefile (CONFDIR): Changed to be the same ("/etc/mandos") in both a |
68 |
##
|
175
by Teddy Hogeborn
* Makefile: Clearly separate "local" install variable settings from |
69 |
|
177
by Teddy Hogeborn
* Makefile (CONFDIR): Changed to be the same ("/etc/mandos") in both a |
70 |
## These settings are for a package-type install
|
918
by Teddy Hogeborn
Use "simply expanded" variables in Makefile |
71 |
PREFIX:=$(DESTDIR)/usr |
72 |
CONFDIR:=$(DESTDIR)/etc/mandos |
|
73 |
KEYDIR:=$(DESTDIR)/etc/keys/mandos |
|
74 |
MANDIR:=$(PREFIX)/share/man |
|
75 |
INITRAMFSTOOLS:=$(DESTDIR)/usr/share/initramfs-tools |
|
1127
by Teddy Hogeborn
Add dracut(8) support |
76 |
DRACUTMODULE:=$(DESTDIR)/usr/lib/dracut/modules.d/90mandos |
918
by Teddy Hogeborn
Use "simply expanded" variables in Makefile |
77 |
STATEDIR:=$(DESTDIR)/var/lib/mandos |
78 |
LIBDIR:=$(shell \ |
|
640
by Teddy Hogeborn
Use architecture libdir. |
79 |
for d in \ |
1136
by Teddy Hogeborn
Break some long lines and refine documentation |
80 |
"/usr/lib/`dpkg-architecture \ |
81 |
-qDEB_HOST_MULTIARCH 2>/dev/null`" \ |
|
640
by Teddy Hogeborn
Use architecture libdir. |
82 |
"`rpm --eval='%{_libdir}' 2>/dev/null`" /usr/lib; do \ |
83 |
if [ -d "$$d" -a "$$d" = "$${d%/}" ]; then \
|
|
84 |
echo "$(DESTDIR)$$d"; \
|
|
85 |
break; \
|
|
86 |
fi; \
|
|
87 |
done)
|
|
1275
by Teddy Hogeborn
Move D-Bus policy file to /usr/share/dbus-1/session.d |
88 |
DBUSPOLICYDIR:=$(DESTDIR)/usr/share/dbus-1/system.d |
177
by Teddy Hogeborn
* Makefile (CONFDIR): Changed to be the same ("/etc/mandos") in both a |
89 |
##
|
21
by Teddy Hogeborn
* Makefile (CFLAGS): Changed to use $(WARN), $(DEBUG), $(COVERAGE) and |
90 |
|
1137
by Teddy Hogeborn
Makefile: "pkg-config" is now overrideable by PKG_CONFIG |
91 |
SYSTEMD:=$(DESTDIR)$(shell $(PKG_CONFIG) systemd \ |
1136
by Teddy Hogeborn
Break some long lines and refine documentation |
92 |
--variable=systemdsystemunitdir) |
1137
by Teddy Hogeborn
Makefile: "pkg-config" is now overrideable by PKG_CONFIG |
93 |
TMPFILES:=$(DESTDIR)$(shell $(PKG_CONFIG) systemd \ |
94 |
--variable=tmpfilesdir) |
|
1159
by Teddy Hogeborn
Use the systemd sysusers.d mechanism, if present |
95 |
SYSUSERS:=$(DESTDIR)$(shell $(PKG_CONFIG) systemd \ |
96 |
--variable=sysusersdir) |
|
638
by Teddy Hogeborn
Add systemd service support for Mandos server. |
97 |
|
1137
by Teddy Hogeborn
Makefile: "pkg-config" is now overrideable by PKG_CONFIG |
98 |
GNUTLS_CFLAGS:=$(shell $(PKG_CONFIG) --cflags-only-I gnutls) |
99 |
GNUTLS_LIBS:=$(shell $(PKG_CONFIG) --libs gnutls) |
|
100 |
AVAHI_CFLAGS:=$(shell $(PKG_CONFIG) --cflags-only-I avahi-core) |
|
101 |
AVAHI_LIBS:=$(shell $(PKG_CONFIG) --libs avahi-core) |
|
1262
by Teddy Hogeborn
Prefer "pkg-config" over the old "gpgme-config" command. |
102 |
GPGME_CFLAGS:=$(shell $(PKG_CONFIG) --cflags-only-I gpgme 2>/dev/null \ |
103 |
|| gpgme-config --cflags; getconf LFS_CFLAGS) |
|
104 |
GPGME_LIBS:=$(shell $(PKG_CONFIG) --libs gpgme 2>/dev/null \ |
|
105 |
|| gpgme-config --libs; getconf LFS_LIBS; \ |
|
317
by Teddy Hogeborn
Use "getconf" to get correct LFS compile and link flags. |
106 |
getconf LFS_LDFLAGS) |
1137
by Teddy Hogeborn
Makefile: "pkg-config" is now overrideable by PKG_CONFIG |
107 |
LIBNL3_CFLAGS:=$(shell $(PKG_CONFIG) --cflags-only-I libnl-route-3.0) |
108 |
LIBNL3_LIBS:=$(shell $(PKG_CONFIG) --libs libnl-route-3.0) |
|
109 |
GLIB_CFLAGS:=$(shell $(PKG_CONFIG) --cflags glib-2.0) |
|
110 |
GLIB_LIBS:=$(shell $(PKG_CONFIG) --libs glib-2.0) |
|
81
by Teddy Hogeborn
* Makefile (GNUTLS_CFLAGS, GNUTLS_LIBS, AVAHI_CFLAGS, AVAHI_LIBS, |
111 |
|
21
by Teddy Hogeborn
* Makefile (CFLAGS): Changed to use $(WARN), $(DEBUG), $(COVERAGE) and |
112 |
# Do not change these two
|
1146
by Teddy Hogeborn
Client: Always build with LFS enabled |
113 |
CFLAGS+=$(WARN) $(DEBUG) $(FORTIFY) $(COVERAGE) $(OPTIMIZE) \ |
1273
by Teddy Hogeborn
Really enable FORTIFY_SOURCE=3 |
114 |
$(LANGUAGE) -DVERSION='"$(version)"' |
1112
by Teddy Hogeborn
Makefile: Break long lines |
115 |
LDFLAGS+=-Xlinker --as-needed $(COVERAGE) $(LINK_FORTIFY) $(strip \ |
116 |
) $(foreach flag,$(LINK_FORTIFY_LD),-Xlinker $(flag)) |
|
16
by Teddy Hogeborn
* Makefile: Include targets for all binaries. |
117 |
|
175
by Teddy Hogeborn
* Makefile: Clearly separate "local" install variable settings from |
118 |
# Commands to format a DocBook <refentry> document into a manual page
|
398
by Teddy Hogeborn
* Makefile (DOCBOOKTOMAN, DOCBOOKTOHTML, common.ent, mandos, |
119 |
DOCBOOKTOMAN=$(strip cd $(dir $<); xsltproc --nonet --xinclude \ |
62
by Teddy Hogeborn
* Makefile (DOCBOOKTOMAN): Do not generate AUTHORS section. |
120 |
--param man.charmap.use.subset 0 \ |
121 |
--param make.year.ranges 1 \ |
|
122 |
--param make.single.year.ranges 1 \ |
|
123 |
--param man.output.quietly 1 \ |
|
84
by Teddy Hogeborn
* Makefile (DOCBOOKTOMAN): Use the local manpages/docbook.xsl file, do |
124 |
--param man.authors.section.enabled 0 \ |
595
by Teddy Hogeborn
* Makefile (DOCBOOKTOMAN): Don't show errors from "locale". |
125 |
/usr/share/xml/docbook/stylesheet/nwalsh/manpages/docbook.xsl \ |
91
by Teddy Hogeborn
* Makefile (DOCBOOKTOMAN): Include all DocBook-to-manpage-related |
126 |
$(notdir $<); \ |
595
by Teddy Hogeborn
* Makefile (DOCBOOKTOMAN): Don't show errors from "locale". |
127 |
if locale --all 2>/dev/null | grep --regexp='^en_US\.utf8$$' \
|
1122
by Teddy Hogeborn
Fix bashisms: Use "command -v" instead of "type" |
128 |
&& command -v man >/dev/null; then LANG=en_US.UTF-8 \
|
129 |
MANWIDTH=80 man --warnings --encoding=UTF-8 --local-file \
|
|
130 |
$(notdir $@); fi >/dev/null)
|
|
24.1.25
by Björn Påhlsson
* clients.conf.xml: Renamed to "mandos-clients.conf.xml". |
131 |
|
398
by Teddy Hogeborn
* Makefile (DOCBOOKTOMAN, DOCBOOKTOHTML, common.ent, mandos, |
132 |
DOCBOOKTOHTML=$(strip xsltproc --nonet --xinclude \ |
216
by Teddy Hogeborn
* Makefile: Add HTML rules for manual pages. |
133 |
--param make.year.ranges 1 \ |
134 |
--param make.single.year.ranges 1 \ |
|
135 |
--param man.output.quietly 1 \ |
|
136 |
--param man.authors.section.enabled 0 \ |
|
137 |
--param citerefentry.link 1 \ |
|
138 |
--output $@ \ |
|
139 |
/usr/share/xml/docbook/stylesheet/nwalsh/xhtml/docbook.xsl \ |
|
398
by Teddy Hogeborn
* Makefile (DOCBOOKTOMAN, DOCBOOKTOHTML, common.ent, mandos, |
140 |
$<; $(HTMLPOST) $@) |
216
by Teddy Hogeborn
* Makefile: Add HTML rules for manual pages. |
141 |
# Fix citerefentry links
|
918
by Teddy Hogeborn
Use "simply expanded" variables in Makefile |
142 |
HTMLPOST:=$(SED) --in-place \ |
235
by Teddy Hogeborn
* INSTALL: Fixed typo. |
143 |
--expression='s/\(<a class="citerefentry" href="\)\("><span class="citerefentry"><span class="refentrytitle">\)\([^<]*\)\(<\/span>(\)\([^)]*\)\()<\/span><\/a>\)/\1\3.\5\2\3\4\5\6/g' |
216
by Teddy Hogeborn
* Makefile: Add HTML rules for manual pages. |
144 |
|
918
by Teddy Hogeborn
Use "simply expanded" variables in Makefile |
145 |
PLUGINS:=plugins.d/password-prompt plugins.d/mandos-client \ |
425
by Teddy Hogeborn
* Makefile: Compile and install new "plymouth" plugin. |
146 |
plugins.d/usplash plugins.d/splashy plugins.d/askpass-fifo \ |
147 |
plugins.d/plymouth
|
|
918
by Teddy Hogeborn
Use "simply expanded" variables in Makefile |
148 |
PLUGIN_HELPERS:=plugin-helpers/mandos-client-iprouteadddel |
1127
by Teddy Hogeborn
Add dracut(8) support |
149 |
CPROGS:=plugin-runner dracut-module/password-agent $(PLUGINS) \ |
150 |
$(PLUGIN_HELPERS) |
|
918
by Teddy Hogeborn
Use "simply expanded" variables in Makefile |
151 |
PROGS:=mandos mandos-keygen mandos-ctl mandos-monitor $(CPROGS) |
152 |
DOCS:=mandos.8 mandos-keygen.8 mandos-monitor.8 mandos-ctl.8 \ |
|
435
by teddy at bsnet
* Makefile (DOCS): Added "plymouth.8mandos". |
153 |
mandos.conf.5 mandos-clients.conf.5 plugin-runner.8mandos \ |
1127
by Teddy Hogeborn
Add dracut(8) support |
154 |
dracut-module/password-agent.8mandos \ |
171
by Teddy Hogeborn
Renamed "password-request" to "mandos-client". |
155 |
plugins.d/mandos-client.8mandos \ |
435
by teddy at bsnet
* Makefile (DOCS): Added "plymouth.8mandos". |
156 |
plugins.d/password-prompt.8mandos plugins.d/usplash.8mandos \ |
157 |
plugins.d/splashy.8mandos plugins.d/askpass-fifo.8mandos \ |
|
493
by Teddy Hogeborn
* Makefile (DOCS): Added "intro.8mandos". |
158 |
plugins.d/plymouth.8mandos intro.8mandos |
16
by Teddy Hogeborn
* Makefile: Include targets for all binaries. |
159 |
|
918
by Teddy Hogeborn
Use "simply expanded" variables in Makefile |
160 |
htmldocs:=$(addsuffix .xhtml,$(DOCS)) |
216
by Teddy Hogeborn
* Makefile: Add HTML rules for manual pages. |
161 |
|
918
by Teddy Hogeborn
Use "simply expanded" variables in Makefile |
162 |
objects:=$(addsuffix .o,$(CPROGS)) |
16
by Teddy Hogeborn
* Makefile: Include targets for all binaries. |
163 |
|
1189
by Teddy Hogeborn
Makefile: Declare phoniness of targets at each target |
164 |
.PHONY: all |
233
by Teddy Hogeborn
* Makefile (all): Also depend on "mandos.lsm". |
165 |
all: $(PROGS) mandos.lsm |
67
by Teddy Hogeborn
* mandos-keygen: New program to generate new client keys on |
166 |
|
1189
by Teddy Hogeborn
Makefile: Declare phoniness of targets at each target |
167 |
.PHONY: doc |
67
by Teddy Hogeborn
* mandos-keygen: New program to generate new client keys on |
168 |
doc: $(DOCS) |
24.1.25
by Björn Påhlsson
* clients.conf.xml: Renamed to "mandos-clients.conf.xml". |
169 |
|
1189
by Teddy Hogeborn
Makefile: Declare phoniness of targets at each target |
170 |
.PHONY: html |
216
by Teddy Hogeborn
* Makefile: Add HTML rules for manual pages. |
171 |
html: $(htmldocs) |
172 |
||
217
by Teddy Hogeborn
* .bzrignore: Added "man" directory (created by "make install-html"). |
173 |
%.5: %.xml common.ent legalnotice.xml |
174 |
$(DOCBOOKTOMAN) |
|
175 |
%.5.xhtml: %.xml common.ent legalnotice.xml |
|
176 |
$(DOCBOOKTOHTML) |
|
177 |
||
178 |
%.8: %.xml common.ent legalnotice.xml |
|
179 |
$(DOCBOOKTOMAN) |
|
180 |
%.8.xhtml: %.xml common.ent legalnotice.xml |
|
181 |
$(DOCBOOKTOHTML) |
|
182 |
||
183 |
%.8mandos: %.xml common.ent legalnotice.xml |
|
184 |
$(DOCBOOKTOMAN) |
|
185 |
%.8mandos.xhtml: %.xml common.ent legalnotice.xml |
|
186 |
$(DOCBOOKTOHTML) |
|
187 |
||
493
by Teddy Hogeborn
* Makefile (DOCS): Added "intro.8mandos". |
188 |
intro.8mandos: intro.xml common.ent legalnotice.xml |
189 |
$(DOCBOOKTOMAN) |
|
190 |
intro.8mandos.xhtml: intro.xml common.ent legalnotice.xml |
|
191 |
$(DOCBOOKTOHTML) |
|
192 |
||
217
by Teddy Hogeborn
* .bzrignore: Added "man" directory (created by "make install-html"). |
193 |
mandos.8: mandos.xml common.ent mandos-options.xml overview.xml \ |
194 |
legalnotice.xml |
|
195 |
$(DOCBOOKTOMAN) |
|
196 |
mandos.8.xhtml: mandos.xml common.ent mandos-options.xml \ |
|
197 |
overview.xml legalnotice.xml |
|
198 |
$(DOCBOOKTOHTML) |
|
199 |
||
200 |
mandos-keygen.8: mandos-keygen.xml common.ent overview.xml \ |
|
201 |
legalnotice.xml |
|
202 |
$(DOCBOOKTOMAN) |
|
203 |
mandos-keygen.8.xhtml: mandos-keygen.xml common.ent overview.xml \ |
|
204 |
legalnotice.xml |
|
205 |
$(DOCBOOKTOHTML) |
|
206 |
||
430
by teddy at bsnet
* mandos-monitor.xml: New. |
207 |
mandos-monitor.8: mandos-monitor.xml common.ent overview.xml \ |
208 |
legalnotice.xml |
|
209 |
$(DOCBOOKTOMAN) |
|
210 |
mandos-monitor.8.xhtml: mandos-monitor.xml common.ent overview.xml \ |
|
211 |
legalnotice.xml |
|
212 |
$(DOCBOOKTOHTML) |
|
213 |
||
434
by teddy at bsnet
* mandos-ctl.xml: New. |
214 |
mandos-ctl.8: mandos-ctl.xml common.ent overview.xml \ |
215 |
legalnotice.xml |
|
216 |
$(DOCBOOKTOMAN) |
|
217 |
mandos-ctl.8.xhtml: mandos-ctl.xml common.ent overview.xml \ |
|
218 |
legalnotice.xml |
|
219 |
$(DOCBOOKTOHTML) |
|
220 |
||
217
by Teddy Hogeborn
* .bzrignore: Added "man" directory (created by "make install-html"). |
221 |
mandos.conf.5: mandos.conf.xml common.ent mandos-options.xml \ |
222 |
legalnotice.xml |
|
223 |
$(DOCBOOKTOMAN) |
|
224 |
mandos.conf.5.xhtml: mandos.conf.xml common.ent mandos-options.xml \ |
|
225 |
legalnotice.xml |
|
226 |
$(DOCBOOKTOHTML) |
|
227 |
||
228 |
plugin-runner.8mandos: plugin-runner.xml common.ent overview.xml \ |
|
229 |
legalnotice.xml |
|
230 |
$(DOCBOOKTOMAN) |
|
231 |
plugin-runner.8mandos.xhtml: plugin-runner.xml common.ent \ |
|
232 |
overview.xml legalnotice.xml |
|
216
by Teddy Hogeborn
* Makefile: Add HTML rules for manual pages. |
233 |
$(DOCBOOKTOHTML) |
143
by Teddy Hogeborn
* Makefile (mandos.8): Add dependency on "overview.xml" and |
234 |
|
1127
by Teddy Hogeborn
Add dracut(8) support |
235 |
dracut-module/password-agent.8mandos: \ |
236 |
dracut-module/password-agent.xml common.ent \ |
|
237 |
overview.xml legalnotice.xml |
|
238 |
$(DOCBOOKTOMAN) |
|
239 |
dracut-module/password-agent.8mandos.xhtml: \ |
|
240 |
dracut-module/password-agent.xml common.ent \ |
|
241 |
overview.xml legalnotice.xml |
|
242 |
$(DOCBOOKTOHTML) |
|
243 |
||
171
by Teddy Hogeborn
Renamed "password-request" to "mandos-client". |
244 |
plugins.d/mandos-client.8mandos: plugins.d/mandos-client.xml \ |
217
by Teddy Hogeborn
* .bzrignore: Added "man" directory (created by "make install-html"). |
245 |
common.ent \ |
143
by Teddy Hogeborn
* Makefile (mandos.8): Add dependency on "overview.xml" and |
246 |
mandos-options.xml \ |
247 |
overview.xml legalnotice.xml |
|
91
by Teddy Hogeborn
* Makefile (DOCBOOKTOMAN): Include all DocBook-to-manpage-related |
248 |
$(DOCBOOKTOMAN) |
216
by Teddy Hogeborn
* Makefile: Add HTML rules for manual pages. |
249 |
plugins.d/mandos-client.8mandos.xhtml: plugins.d/mandos-client.xml \ |
217
by Teddy Hogeborn
* .bzrignore: Added "man" directory (created by "make install-html"). |
250 |
common.ent \ |
216
by Teddy Hogeborn
* Makefile: Add HTML rules for manual pages. |
251 |
mandos-options.xml \ |
252 |
overview.xml legalnotice.xml |
|
253 |
$(DOCBOOKTOHTML) |
|
16
by Teddy Hogeborn
* Makefile: Include targets for all binaries. |
254 |
|
217
by Teddy Hogeborn
* .bzrignore: Added "man" directory (created by "make install-html"). |
255 |
# Update all these files with version number $(version)
|
256 |
common.ent: Makefile |
|
398
by Teddy Hogeborn
* Makefile (DOCBOOKTOMAN, DOCBOOKTOHTML, common.ent, mandos, |
257 |
$(strip $(SED) --in-place \ |
318
by Teddy Hogeborn
* Makefile (common.ent): Update "version" entity correctly. |
258 |
--expression='s/^\(<!ENTITY version "\)[^"]*">$$/\1$(version)">/' \ |
398
by Teddy Hogeborn
* Makefile (DOCBOOKTOMAN, DOCBOOKTOHTML, common.ent, mandos, |
259 |
$@) |
217
by Teddy Hogeborn
* .bzrignore: Added "man" directory (created by "make install-html"). |
260 |
|
261 |
mandos: Makefile |
|
398
by Teddy Hogeborn
* Makefile (DOCBOOKTOMAN, DOCBOOKTOHTML, common.ent, mandos, |
262 |
$(strip $(SED) --in-place \ |
235
by Teddy Hogeborn
* INSTALL: Fixed typo. |
263 |
--expression='s/^\(version = "\)[^"]*"$$/\1$(version)"/' \ |
398
by Teddy Hogeborn
* Makefile (DOCBOOKTOMAN, DOCBOOKTOHTML, common.ent, mandos, |
264 |
$@) |
217
by Teddy Hogeborn
* .bzrignore: Added "man" directory (created by "make install-html"). |
265 |
|
266 |
mandos-keygen: Makefile |
|
398
by Teddy Hogeborn
* Makefile (DOCBOOKTOMAN, DOCBOOKTOHTML, common.ent, mandos, |
267 |
$(strip $(SED) --in-place \ |
235
by Teddy Hogeborn
* INSTALL: Fixed typo. |
268 |
--expression='s/^\(VERSION="\)[^"]*"$$/\1$(version)"/' \ |
398
by Teddy Hogeborn
* Makefile (DOCBOOKTOMAN, DOCBOOKTOHTML, common.ent, mandos, |
269 |
$@) |
217
by Teddy Hogeborn
* .bzrignore: Added "man" directory (created by "make install-html"). |
270 |
|
24.1.121
by Björn Påhlsson
mandos-ctl: Added support for all client calls |
271 |
mandos-ctl: Makefile |
398
by Teddy Hogeborn
* Makefile (DOCBOOKTOMAN, DOCBOOKTOHTML, common.ent, mandos, |
272 |
$(strip $(SED) --in-place \ |
240
by Teddy Hogeborn
Merge "mandos-list" from belorn. |
273 |
--expression='s/^\(version = "\)[^"]*"$$/\1$(version)"/' \ |
398
by Teddy Hogeborn
* Makefile (DOCBOOKTOMAN, DOCBOOKTOHTML, common.ent, mandos, |
274 |
$@) |
240
by Teddy Hogeborn
Merge "mandos-list" from belorn. |
275 |
|
430
by teddy at bsnet
* mandos-monitor.xml: New. |
276 |
mandos-monitor: Makefile |
277 |
$(strip $(SED) --in-place \ |
|
278 |
--expression='s/^\(version = "\)[^"]*"$$/\1$(version)"/' \ |
|
279 |
$@) |
|
280 |
||
233
by Teddy Hogeborn
* Makefile (all): Also depend on "mandos.lsm". |
281 |
mandos.lsm: Makefile |
398
by Teddy Hogeborn
* Makefile (DOCBOOKTOMAN, DOCBOOKTOHTML, common.ent, mandos, |
282 |
$(strip $(SED) --in-place \ |
235
by Teddy Hogeborn
* INSTALL: Fixed typo. |
283 |
--expression='s/^\(Version:\).*/\1\t$(version)/' \ |
398
by Teddy Hogeborn
* Makefile (DOCBOOKTOMAN, DOCBOOKTOHTML, common.ent, mandos, |
284 |
$@) |
285 |
$(strip $(SED) --in-place \ |
|
235
by Teddy Hogeborn
* INSTALL: Fixed typo. |
286 |
--expression='s/^\(Entered-date:\).*/\1\t$(shell date --rfc-3339=date --reference=Makefile)/' \ |
398
by Teddy Hogeborn
* Makefile (DOCBOOKTOMAN, DOCBOOKTOHTML, common.ent, mandos, |
287 |
$@) |
288 |
$(strip $(SED) --in-place \ |
|
255
by Teddy Hogeborn
* Makefile (mandos.lsm): Also update file name using version number. |
289 |
--expression='s/\(mandos_\)[0-9.]\+\(\.orig\.tar\.gz\)/\1$(version)\2/' \ |
398
by Teddy Hogeborn
* Makefile (DOCBOOKTOMAN, DOCBOOKTOHTML, common.ent, mandos, |
290 |
$@) |
233
by Teddy Hogeborn
* Makefile (all): Also depend on "mandos.lsm". |
291 |
|
1111
by Teddy Hogeborn
Only use sanitizing options when debugging |
292 |
# Need to add the GnuTLS, Avahi and GPGME libraries
|
1188
by Teddy Hogeborn
Makefile: Use target-specific variables |
293 |
plugins.d/mandos-client: CFLAGS += $(GNUTLS_CFLAGS) $(strip \ |
294 |
) $(AVAHI_CFLAGS) $(GPGME_CFLAGS) |
|
295 |
plugins.d/mandos-client: LDLIBS += $(GNUTLS_LIBS) $(strip \ |
|
296 |
) $(AVAHI_LIBS) $(GPGME_LIBS) |
|
81
by Teddy Hogeborn
* Makefile (GNUTLS_CFLAGS, GNUTLS_LIBS, AVAHI_CFLAGS, AVAHI_LIBS, |
297 |
|
1118
by Teddy Hogeborn
Client: Document requirement of libnl-route library |
298 |
# Need to add the libnl-route library
|
1188
by Teddy Hogeborn
Makefile: Use target-specific variables |
299 |
plugin-helpers/mandos-client-iprouteadddel: CFLAGS += $(LIBNL3_CFLAGS) |
300 |
plugin-helpers/mandos-client-iprouteadddel: LDLIBS += $(LIBNL3_LIBS) |
|
738.1.4
by Teddy Hogeborn
Add plugin for mandos-client to add and delete local routes. |
301 |
|
1127
by Teddy Hogeborn
Add dracut(8) support |
302 |
# Need to add the GLib and pthread libraries
|
1188
by Teddy Hogeborn
Makefile: Use target-specific variables |
303 |
dracut-module/password-agent: CFLAGS += $(GLIB_CFLAGS) |
1245
by Teddy Hogeborn
Makefile: Add comment about phase out of -lpthread |
304 |
# Note: -lpthread is unnecessary with the GNU C library 2.34 or later
|
1188
by Teddy Hogeborn
Makefile: Use target-specific variables |
305 |
dracut-module/password-agent: LDLIBS += $(GLIB_LIBS) -lpthread |
1127
by Teddy Hogeborn
Add dracut(8) support |
306 |
|
1189
by Teddy Hogeborn
Makefile: Declare phoniness of targets at each target |
307 |
.PHONY: clean |
1
by Björn Påhlsson
First working version with: IPv6, GnuTLS, X.509 certificates, DN |
308 |
clean: |
217
by Teddy Hogeborn
* .bzrignore: Added "man" directory (created by "make install-html"). |
309 |
-rm --force $(CPROGS) $(objects) $(htmldocs) $(DOCS) core |
47
by Teddy Hogeborn
* plugbasedclient.c: Renamed to "mandos-client.c". All users changed. |
310 |
|
1189
by Teddy Hogeborn
Makefile: Declare phoniness of targets at each target |
311 |
.PHONY: distclean |
47
by Teddy Hogeborn
* plugbasedclient.c: Renamed to "mandos-client.c". All users changed. |
312 |
distclean: clean |
1189
by Teddy Hogeborn
Makefile: Declare phoniness of targets at each target |
313 |
.PHONY: mostlyclean |
47
by Teddy Hogeborn
* plugbasedclient.c: Renamed to "mandos-client.c". All users changed. |
314 |
mostlyclean: clean |
1189
by Teddy Hogeborn
Makefile: Declare phoniness of targets at each target |
315 |
.PHONY: maintainer-clean |
47
by Teddy Hogeborn
* plugbasedclient.c: Renamed to "mandos-client.c". All users changed. |
316 |
maintainer-clean: clean |
518.2.2
by Teddy Hogeborn
Directory with persistent state can now be changed with the "statedir" |
317 |
-rm --force --recursive keydir confdir statedir |
47
by Teddy Hogeborn
* plugbasedclient.c: Renamed to "mandos-client.c". All users changed. |
318 |
|
1189
by Teddy Hogeborn
Makefile: Declare phoniness of targets at each target |
319 |
.PHONY: check |
1116
by Teddy Hogeborn
Debian package change: Add autopkgtest support |
320 |
check: all |
47
by Teddy Hogeborn
* plugbasedclient.c: Renamed to "mandos-client.c". All users changed. |
321 |
./mandos --check |
608
by Teddy Hogeborn
* Makefile (check): Also check mandos-ctl. |
322 |
./mandos-ctl --check |
1116
by Teddy Hogeborn
Debian package change: Add autopkgtest support |
323 |
./mandos-keygen --version |
324 |
./plugin-runner --version |
|
325 |
./plugin-helpers/mandos-client-iprouteadddel --version |
|
1127
by Teddy Hogeborn
Add dracut(8) support |
326 |
./dracut-module/password-agent --test |
47
by Teddy Hogeborn
* plugbasedclient.c: Renamed to "mandos-client.c". All users changed. |
327 |
|
141
by Teddy Hogeborn
* Makefile (run-client): Add "--config-file=plugin-runner.conf". |
328 |
# Run the client with a local config and key
|
1189
by Teddy Hogeborn
Makefile: Declare phoniness of targets at each target |
329 |
.PHONY: run-client |
1136
by Teddy Hogeborn
Break some long lines and refine documentation |
330 |
run-client: all keydir/seckey.txt keydir/pubkey.txt \ |
331 |
keydir/tls-privkey.pem keydir/tls-pubkey.pem |
|
332 |
@echo '######################################################' |
|
333 |
@echo '# The following error messages are harmless and can #' |
|
334 |
@echo '# be safely ignored: #' |
|
335 |
@echo '## From plugin-runner: #' |
|
336 |
@echo '# setgid: Operation not permitted #' |
|
337 |
@echo '# setuid: Operation not permitted #' |
|
338 |
@echo '## From askpass-fifo: #' |
|
339 |
@echo '# mkfifo: Permission denied #' |
|
340 |
@echo '## From mandos-client: #' |
|
341 |
@echo '# Failed to raise privileges: Operation not permi... #' |
|
342 |
@echo '# Warning: network hook "*" exited with status * #' |
|
343 |
@echo '# ioctl SIOCSIFFLAGS +IFF_UP: Operation not permi... #' |
|
344 |
@echo '# Failed to bring up interface "*": Operation not... #' |
|
345 |
@echo '# #' |
|
346 |
@echo '# (The messages are caused by not running as root, #' |
|
347 |
@echo '# but you should NOT run "make run-client" as root #' |
|
348 |
@echo '# unless you also unpacked and compiled Mandos as #' |
|
349 |
@echo '# root, which is also NOT recommended.) #' |
|
350 |
@echo '######################################################' |
|
706
by Teddy Hogeborn
mandos-client: Better error messages. |
351 |
# We set GNOME_KEYRING_CONTROL to block pam_gnome_keyring
|
74
by Teddy Hogeborn
* Makefile (PREFIX, CONFDIR): New. |
352 |
./plugin-runner --plugin-dir=plugins.d \ |
738.1.1
by Teddy Hogeborn
Add a plugin helper directory, available to all plugins. |
353 |
--plugin-helper-dir=plugin-helpers \ |
141
by Teddy Hogeborn
* Makefile (run-client): Add "--config-file=plugin-runner.conf". |
354 |
--config-file=plugin-runner.conf \ |
962
by Teddy Hogeborn
Add support for using raw public keys in TLS (RFC 7250) |
355 |
--options-for=mandos-client:--seckey=keydir/seckey.txt,--pubkey=keydir/pubkey.txt,--tls-privkey=keydir/tls-privkey.pem,--tls-pubkey=keydir/tls-pubkey.pem,--network-hook-dir=network-hooks.d \ |
706
by Teddy Hogeborn
mandos-client: Better error messages. |
356 |
--env-for=mandos-client:GNOME_KEYRING_CONTROL= \ |
260
by Teddy Hogeborn
* Makefile (run-client): Pass $(CLIENTARGS) to plugin-runner. |
357 |
$(CLIENTARGS) |
47
by Teddy Hogeborn
* plugbasedclient.c: Renamed to "mandos-client.c". All users changed. |
358 |
|
104
by Teddy Hogeborn
* Makefile (maintainer-clean): Also remove "confdir". |
359 |
# Used by run-client
|
962
by Teddy Hogeborn
Add support for using raw public keys in TLS (RFC 7250) |
360 |
keydir/seckey.txt keydir/pubkey.txt keydir/tls-privkey.pem keydir/tls-pubkey.pem: mandos-keygen |
104
by Teddy Hogeborn
* Makefile (maintainer-clean): Also remove "confdir". |
361 |
install --directory keydir |
362 |
./mandos-keygen --dir keydir --force |
|
1207
by teddy at recompile
Makefile: fix targets run-server & run-client with GnuTLS 3.5.9 |
363 |
if ! [ -e keydir/tls-privkey.pem ]; then \
|
364 |
install --mode=u=rw /dev/null keydir/tls-privkey.pem; \
|
|
365 |
fi
|
|
366 |
if ! [ -e keydir/tls-pubkey.pem ]; then \
|
|
367 |
install --mode=u=rw /dev/null keydir/tls-pubkey.pem; \
|
|
368 |
fi
|
|
104
by Teddy Hogeborn
* Makefile (maintainer-clean): Also remove "confdir". |
369 |
|
370 |
# Run the server with a local config
|
|
1189
by Teddy Hogeborn
Makefile: Declare phoniness of targets at each target |
371 |
.PHONY: run-server |
574
by Teddy Hogeborn
* mandos: White space and other misc. format fixes only. |
372 |
run-server: confdir/mandos.conf confdir/clients.conf statedir |
518.2.2
by Teddy Hogeborn
Directory with persistent state can now be changed with the "statedir" |
373 |
./mandos --debug --no-dbus --configdir=confdir \ |
374 |
--statedir=statedir $(SERVERARGS) |
|
104
by Teddy Hogeborn
* Makefile (maintainer-clean): Also remove "confdir". |
375 |
|
376 |
# Used by run-server
|
|
377 |
confdir/mandos.conf: mandos.conf |
|
1294
by Teddy Hogeborn
Make all required directories when installing |
378 |
install -D --mode=u=rw,go=r $^ $@ |
962
by Teddy Hogeborn
Add support for using raw public keys in TLS (RFC 7250) |
379 |
confdir/clients.conf: clients.conf keydir/seckey.txt keydir/tls-pubkey.pem |
1294
by Teddy Hogeborn
Make all required directories when installing |
380 |
install -D --mode=u=rw $< $@ |
104
by Teddy Hogeborn
* Makefile (maintainer-clean): Also remove "confdir". |
381 |
# Add a client password
|
708
by Teddy Hogeborn
mandos-keygen: Generate "checker" option to use SSH fingerprints. |
382 |
./mandos-keygen --dir keydir --password --no-ssh >> $@ |
518.2.2
by Teddy Hogeborn
Directory with persistent state can now be changed with the "statedir" |
383 |
statedir: |
384 |
install --directory statedir |
|
67
by Teddy Hogeborn
* mandos-keygen: New program to generate new client keys on |
385 |
|
1189
by Teddy Hogeborn
Makefile: Declare phoniness of targets at each target |
386 |
.PHONY: install |
182
by Teddy Hogeborn
* Makefile (install): Use "install-client-nokey". |
387 |
install: install-server install-client-nokey |
67
by Teddy Hogeborn
* mandos-keygen: New program to generate new client keys on |
388 |
|
1189
by Teddy Hogeborn
Makefile: Declare phoniness of targets at each target |
389 |
.PHONY: install-html |
235
by Teddy Hogeborn
* INSTALL: Fixed typo. |
390 |
install-html: html |
1294
by Teddy Hogeborn
Make all required directories when installing |
391 |
install -D --mode=u=rw,go=r --target-directory=$(htmldir) \ |
217
by Teddy Hogeborn
* .bzrignore: Added "man" directory (created by "make install-html"). |
392 |
$(htmldocs) |
216
by Teddy Hogeborn
* Makefile: Add HTML rules for manual pages. |
393 |
|
1189
by Teddy Hogeborn
Makefile: Declare phoniness of targets at each target |
394 |
.PHONY: install-server |
67
by Teddy Hogeborn
* mandos-keygen: New program to generate new client keys on |
395 |
install-server: doc |
643
by Teddy Hogeborn
Don't require /var/lib/mandos to be installed with user & group. |
396 |
if install --directory --mode=u=rwx --owner=$(USER) \
|
397 |
--group=$(GROUP) $(STATEDIR); then \
|
|
398 |
:; \
|
|
399 |
elif install --directory --mode=u=rwx $(STATEDIR); then \
|
|
400 |
chown -- $(USER):$(GROUP) $(STATEDIR) || :; \
|
|
401 |
fi
|
|
1294
by Teddy Hogeborn
Make all required directories when installing |
402 |
if [ "$(TMPFILES)" != "$(DESTDIR)" ]; then \
|
403 |
install -D --mode=u=rw,go=r tmpfiles.d-mandos.conf \
|
|
838
by Teddy Hogeborn
Server: New tmpfiles.d file for persistent state directory |
404 |
$(TMPFILES)/mandos.conf; \
|
405 |
fi
|
|
1294
by Teddy Hogeborn
Make all required directories when installing |
406 |
if [ "$(SYSUSERS)" != "$(DESTDIR)" ]; then \
|
407 |
install -D --mode=u=rw,go=r sysusers.d-mandos.conf \
|
|
1159
by Teddy Hogeborn
Use the systemd sysusers.d mechanism, if present |
408 |
$(SYSUSERS)/mandos.conf; \
|
409 |
fi
|
|
1294
by Teddy Hogeborn
Make all required directories when installing |
410 |
install --directory $(PREFIX)/sbin |
411 |
install --mode=u=rwx,go=rx --target-directory=$(PREFIX)/sbin \ |
|
412 |
mandos
|
|
430
by teddy at bsnet
* mandos-monitor.xml: New. |
413 |
install --mode=u=rwx,go=rx --target-directory=$(PREFIX)/sbin \ |
414 |
mandos-ctl
|
|
415 |
install --mode=u=rwx,go=rx --target-directory=$(PREFIX)/sbin \ |
|
416 |
mandos-monitor
|
|
1294
by Teddy Hogeborn
Make all required directories when installing |
417 |
install --directory $(CONFDIR) |
162
by Teddy Hogeborn
* Makefile (PIDDIR, USER, GROUP): New variables. |
418 |
install --mode=u=rw,go=r --target-directory=$(CONFDIR) \ |
419 |
mandos.conf
|
|
166
by Teddy Hogeborn
* Makefile (confdir/clients.conf): Tighten permissions to "u=rw". |
420 |
install --mode=u=rw --target-directory=$(CONFDIR) \ |
67
by Teddy Hogeborn
* mandos-keygen: New program to generate new client keys on |
421 |
clients.conf
|
1294
by Teddy Hogeborn
Make all required directories when installing |
422 |
install -D --mode=u=rw,go=r dbus-mandos.conf \ |
1275
by Teddy Hogeborn
Move D-Bus policy file to /usr/share/dbus-1/session.d |
423 |
$(DBUSPOLICYDIR)/mandos.conf |
1294
by Teddy Hogeborn
Make all required directories when installing |
424 |
install -D --mode=u=rwx,go=rx init.d-mandos \ |
175
by Teddy Hogeborn
* Makefile: Clearly separate "local" install variable settings from |
425 |
$(DESTDIR)/etc/init.d/mandos |
1294
by Teddy Hogeborn
Make all required directories when installing |
426 |
if [ "$(SYSTEMD)" != "$(DESTDIR)" ]; then \
|
427 |
install -D --mode=u=rw,go=r mandos.service \
|
|
428 |
$(SYSTEMD); \
|
|
638
by Teddy Hogeborn
Add systemd service support for Mandos server. |
429 |
fi
|
1294
by Teddy Hogeborn
Make all required directories when installing |
430 |
install -D --mode=u=rw,go=r default-mandos \ |
175
by Teddy Hogeborn
* Makefile: Clearly separate "local" install variable settings from |
431 |
$(DESTDIR)/etc/default/mandos |
200
by Teddy Hogeborn
* Makefile: Put the init script before avahi-daemon. |
432 |
if [ -z $(DESTDIR) ]; then \
|
433 |
update-rc.d mandos defaults 25 15;\
|
|
434 |
fi
|
|
1294
by Teddy Hogeborn
Make all required directories when installing |
435 |
install --directory $(MANDIR)/man8 $(MANDIR)/man5 |
67
by Teddy Hogeborn
* mandos-keygen: New program to generate new client keys on |
436 |
gzip --best --to-stdout mandos.8 \ |
74
by Teddy Hogeborn
* Makefile (PREFIX, CONFDIR): New. |
437 |
> $(MANDIR)/man8/mandos.8.gz |
435
by teddy at bsnet
* Makefile (DOCS): Added "plymouth.8mandos". |
438 |
gzip --best --to-stdout mandos-monitor.8 \ |
439 |
> $(MANDIR)/man8/mandos-monitor.8.gz |
|
440 |
gzip --best --to-stdout mandos-ctl.8 \ |
|
441 |
> $(MANDIR)/man8/mandos-ctl.8.gz |
|
67
by Teddy Hogeborn
* mandos-keygen: New program to generate new client keys on |
442 |
gzip --best --to-stdout mandos.conf.5 \ |
74
by Teddy Hogeborn
* Makefile (PREFIX, CONFDIR): New. |
443 |
> $(MANDIR)/man5/mandos.conf.5.gz |
67
by Teddy Hogeborn
* mandos-keygen: New program to generate new client keys on |
444 |
gzip --best --to-stdout mandos-clients.conf.5 \ |
74
by Teddy Hogeborn
* Makefile (PREFIX, CONFDIR): New. |
445 |
> $(MANDIR)/man5/mandos-clients.conf.5.gz |
549
by teddy at recompile
* Makefile (install-server): Add intro(8mandos) man page. |
446 |
gzip --best --to-stdout intro.8mandos \ |
447 |
> $(MANDIR)/man8/intro.8mandos.gz |
|
67
by Teddy Hogeborn
* mandos-keygen: New program to generate new client keys on |
448 |
|
1189
by Teddy Hogeborn
Makefile: Declare phoniness of targets at each target |
449 |
.PHONY: install-client-nokey |
182
by Teddy Hogeborn
* Makefile (install): Use "install-client-nokey". |
450 |
install-client-nokey: all doc |
185
by Teddy Hogeborn
* .bzr-builddeb/default.conf: New. |
451 |
install --directory --mode=u=rwx $(KEYDIR) \ |
738.1.6
by Teddy Hogeborn
Fix minor bugs and typos and add some more debug output. |
452 |
$(LIBDIR)/mandos/plugins.d \ |
453 |
$(LIBDIR)/mandos/plugin-helpers |
|
1294
by Teddy Hogeborn
Make all required directories when installing |
454 |
if [ "$(SYSUSERS)" != "$(DESTDIR)" ]; then \
|
455 |
install -D --mode=u=rw,go=r sysusers.d-mandos.conf \
|
|
1160
by Teddy Hogeborn
Client: Use the systemd sysusers.d mechanism, if present |
456 |
$(SYSUSERS)/mandos-client.conf; \
|
457 |
fi
|
|
640
by Teddy Hogeborn
Use architecture libdir. |
458 |
if [ "$(CONFDIR)" != "$(LIBDIR)/mandos" ]; then \
|
1294
by Teddy Hogeborn
Make all required directories when installing |
459 |
install --directory \
|
460 |
--mode=u=rwx "$(CONFDIR)/plugins.d" \
|
|
839
by Teddy Hogeborn
Client: Make plugin helper override directory mode u=rwx,go= |
461 |
"$(CONFDIR)/plugin-helpers"; \
|
166
by Teddy Hogeborn
* Makefile (confdir/clients.conf): Tighten permissions to "u=rw". |
462 |
fi
|
1294
by Teddy Hogeborn
Make all required directories when installing |
463 |
install --directory --mode=u=rwx,go=rx \ |
505.3.17
by Teddy Hogeborn
* Makefile (install-client-nokey): Create network hook directory. |
464 |
"$(CONFDIR)/network-hooks.d" |
162
by Teddy Hogeborn
* Makefile (PIDDIR, USER, GROUP): New variables. |
465 |
install --mode=u=rwx,go=rx \ |
640
by Teddy Hogeborn
Use architecture libdir. |
466 |
--target-directory=$(LIBDIR)/mandos plugin-runner |
953
by Teddy Hogeborn
Adapt to changes in cryptsetup; use "cryptroot-unlock" program |
467 |
install --mode=u=rwx,go=rx \ |
1136
by Teddy Hogeborn
Break some long lines and refine documentation |
468 |
--target-directory=$(LIBDIR)/mandos \ |
469 |
mandos-to-cryptroot-unlock
|
|
1294
by Teddy Hogeborn
Make all required directories when installing |
470 |
install --directory $(PREFIX)/sbin |
160
by Teddy Hogeborn
* Makefile: Changed to use symbolic instead of octal modes throughout. |
471 |
install --mode=u=rwx,go=rx --target-directory=$(PREFIX)/sbin \ |
74
by Teddy Hogeborn
* Makefile (PREFIX, CONFDIR): New. |
472 |
mandos-keygen
|
160
by Teddy Hogeborn
* Makefile: Changed to use symbolic instead of octal modes throughout. |
473 |
install --mode=u=rwx,go=rx \ |
640
by Teddy Hogeborn
Use architecture libdir. |
474 |
--target-directory=$(LIBDIR)/mandos/plugins.d \ |
67
by Teddy Hogeborn
* mandos-keygen: New program to generate new client keys on |
475 |
plugins.d/password-prompt
|
160
by Teddy Hogeborn
* Makefile: Changed to use symbolic instead of octal modes throughout. |
476 |
install --mode=u=rwxs,go=rx \ |
640
by Teddy Hogeborn
Use architecture libdir. |
477 |
--target-directory=$(LIBDIR)/mandos/plugins.d \ |
171
by Teddy Hogeborn
Renamed "password-request" to "mandos-client". |
478 |
plugins.d/mandos-client
|
208
by Teddy Hogeborn
* Makefile (PLUGINS): Added "plugins.d/usplash". |
479 |
install --mode=u=rwxs,go=rx \ |
640
by Teddy Hogeborn
Use architecture libdir. |
480 |
--target-directory=$(LIBDIR)/mandos/plugins.d \ |
160
by Teddy Hogeborn
* Makefile: Changed to use symbolic instead of octal modes throughout. |
481 |
plugins.d/usplash
|
205
by Teddy Hogeborn
* Makefile (PLUGINS, uninstall-client, |
482 |
install --mode=u=rwxs,go=rx \ |
640
by Teddy Hogeborn
Use architecture libdir. |
483 |
--target-directory=$(LIBDIR)/mandos/plugins.d \ |
205
by Teddy Hogeborn
* Makefile (PLUGINS, uninstall-client, |
484 |
plugins.d/splashy
|
214
by Teddy Hogeborn
* Makefile (PLUGINS): Added "plugins.d/askpass-fifo". |
485 |
install --mode=u=rwxs,go=rx \ |
640
by Teddy Hogeborn
Use architecture libdir. |
486 |
--target-directory=$(LIBDIR)/mandos/plugins.d \ |
214
by Teddy Hogeborn
* Makefile (PLUGINS): Added "plugins.d/askpass-fifo". |
487 |
plugins.d/askpass-fifo
|
425
by Teddy Hogeborn
* Makefile: Compile and install new "plymouth" plugin. |
488 |
install --mode=u=rwxs,go=rx \ |
640
by Teddy Hogeborn
Use architecture libdir. |
489 |
--target-directory=$(LIBDIR)/mandos/plugins.d \ |
425
by Teddy Hogeborn
* Makefile: Compile and install new "plymouth" plugin. |
490 |
plugins.d/plymouth
|
836
by Teddy Hogeborn
Client: Fix permissions on plugin helper directory. |
491 |
install --mode=u=rwx,go=rx \ |
738.1.6
by Teddy Hogeborn
Fix minor bugs and typos and add some more debug output. |
492 |
--target-directory=$(LIBDIR)/mandos/plugin-helpers \ |
493 |
plugin-helpers/mandos-client-iprouteadddel
|
|
1294
by Teddy Hogeborn
Make all required directories when installing |
494 |
install -D initramfs-tools-hook \ |
175
by Teddy Hogeborn
* Makefile: Clearly separate "local" install variable settings from |
495 |
$(INITRAMFSTOOLS)/hooks/mandos |
1294
by Teddy Hogeborn
Make all required directories when installing |
496 |
install -D --mode=u=rw,go=r initramfs-tools-conf \ |
954
by Teddy Hogeborn
Move UMASK setting to more proper place |
497 |
$(INITRAMFSTOOLS)/conf.d/mandos-conf |
1294
by Teddy Hogeborn
Make all required directories when installing |
498 |
install -D --mode=u=rw,go=r initramfs-tools-conf-hook \ |
1099
by Teddy Hogeborn
Installation: Fix UMASK even if set by some other initramfs hook |
499 |
$(INITRAMFSTOOLS)/conf-hooks.d/zz-mandos |
1294
by Teddy Hogeborn
Make all required directories when installing |
500 |
install -D initramfs-tools-script \ |
302
by Teddy Hogeborn
* Makefile (install-client-nokey): Move "initramfs-tools-script" from |
501 |
$(INITRAMFSTOOLS)/scripts/init-premount/mandos |
1294
by Teddy Hogeborn
Make all required directories when installing |
502 |
install -D initramfs-tools-script-stop \ |
953
by Teddy Hogeborn
Adapt to changes in cryptsetup; use "cryptroot-unlock" program |
503 |
$(INITRAMFSTOOLS)/scripts/local-premount/mandos |
1294
by Teddy Hogeborn
Make all required directories when installing |
504 |
install -D --mode=u=rw,go=r \ |
505 |
--target-directory=$(DRACUTMODULE) \ |
|
1127
by Teddy Hogeborn
Add dracut(8) support |
506 |
dracut-module/ask-password-mandos.path \ |
507 |
dracut-module/ask-password-mandos.service
|
|
508 |
install --mode=u=rwxs,go=rx \ |
|
509 |
--target-directory=$(DRACUTMODULE) \ |
|
510 |
dracut-module/module-setup.sh \ |
|
511 |
dracut-module/cmdline-mandos.sh \ |
|
512 |
dracut-module/password-agent
|
|
160
by Teddy Hogeborn
* Makefile: Changed to use symbolic instead of octal modes throughout. |
513 |
install --mode=u=rw,go=r plugin-runner.conf $(CONFDIR) |
1294
by Teddy Hogeborn
Make all required directories when installing |
514 |
install --directory $(MANDIR)/man8 |
67
by Teddy Hogeborn
* mandos-keygen: New program to generate new client keys on |
515 |
gzip --best --to-stdout mandos-keygen.8 \ |
74
by Teddy Hogeborn
* Makefile (PREFIX, CONFDIR): New. |
516 |
> $(MANDIR)/man8/mandos-keygen.8.gz |
517 |
gzip --best --to-stdout plugin-runner.8mandos \ |
|
518 |
> $(MANDIR)/man8/plugin-runner.8mandos.gz |
|
435
by teddy at bsnet
* Makefile (DOCS): Added "plymouth.8mandos". |
519 |
gzip --best --to-stdout plugins.d/mandos-client.8mandos \ |
520 |
> $(MANDIR)/man8/mandos-client.8mandos.gz |
|
67
by Teddy Hogeborn
* mandos-keygen: New program to generate new client keys on |
521 |
gzip --best --to-stdout plugins.d/password-prompt.8mandos \ |
74
by Teddy Hogeborn
* Makefile (PREFIX, CONFDIR): New. |
522 |
> $(MANDIR)/man8/password-prompt.8mandos.gz |
225
by Teddy Hogeborn
* Makefile (DOCS): Added "plugins.d/usplash.8mandos" and |
523 |
gzip --best --to-stdout plugins.d/usplash.8mandos \ |
524 |
> $(MANDIR)/man8/usplash.8mandos.gz |
|
525 |
gzip --best --to-stdout plugins.d/splashy.8mandos \ |
|
526 |
> $(MANDIR)/man8/splashy.8mandos.gz |
|
226
by Teddy Hogeborn
* Makefile (DOCS): Added "plugins.d/askpass-fifo.8mandos". |
527 |
gzip --best --to-stdout plugins.d/askpass-fifo.8mandos \ |
528 |
> $(MANDIR)/man8/askpass-fifo.8mandos.gz |
|
435
by teddy at bsnet
* Makefile (DOCS): Added "plymouth.8mandos". |
529 |
gzip --best --to-stdout plugins.d/plymouth.8mandos \ |
530 |
> $(MANDIR)/man8/plymouth.8mandos.gz |
|
1127
by Teddy Hogeborn
Add dracut(8) support |
531 |
gzip --best --to-stdout dracut-module/password-agent.8mandos \ |
532 |
> $(MANDIR)/man8/password-agent.8mandos.gz |
|
182
by Teddy Hogeborn
* Makefile (install): Use "install-client-nokey". |
533 |
|
1189
by Teddy Hogeborn
Makefile: Declare phoniness of targets at each target |
534 |
.PHONY: install-client |
182
by Teddy Hogeborn
* Makefile (install): Use "install-client-nokey". |
535 |
install-client: install-client-nokey |
166
by Teddy Hogeborn
* Makefile (confdir/clients.conf): Tighten permissions to "u=rw". |
536 |
# Post-installation stuff
|
160
by Teddy Hogeborn
* Makefile: Changed to use symbolic instead of octal modes throughout. |
537 |
-$(PREFIX)/sbin/mandos-keygen --dir "$(KEYDIR)" |
1127
by Teddy Hogeborn
Add dracut(8) support |
538 |
if command -v update-initramfs >/dev/null; then \
|
539 |
update-initramfs -k all -u; \
|
|
540 |
elif command -v dracut >/dev/null; then \
|
|
1136
by Teddy Hogeborn
Break some long lines and refine documentation |
541 |
for initrd in $(DESTDIR)/boot/initr*-$(LINUXVERSION); do \
|
1127
by Teddy Hogeborn
Add dracut(8) support |
542 |
if [ -w "$$initrd" ]; then \
|
543 |
chmod go-r "$$initrd"; \
|
|
544 |
dracut --force "$$initrd"; \
|
|
545 |
fi; \
|
|
546 |
done; \
|
|
547 |
fi
|
|
160
by Teddy Hogeborn
* Makefile: Changed to use symbolic instead of octal modes throughout. |
548 |
echo "Now run mandos-keygen --password --dir $(KEYDIR)" |
67
by Teddy Hogeborn
* mandos-keygen: New program to generate new client keys on |
549 |
|
1189
by Teddy Hogeborn
Makefile: Declare phoniness of targets at each target |
550 |
.PHONY: uninstall |
67
by Teddy Hogeborn
* mandos-keygen: New program to generate new client keys on |
551 |
uninstall: uninstall-server uninstall-client |
552 |
||
1189
by Teddy Hogeborn
Makefile: Declare phoniness of targets at each target |
553 |
.PHONY: uninstall-server |
160
by Teddy Hogeborn
* Makefile: Changed to use symbolic instead of octal modes throughout. |
554 |
uninstall-server: |
74
by Teddy Hogeborn
* Makefile (PREFIX, CONFDIR): New. |
555 |
-rm --force $(PREFIX)/sbin/mandos \ |
430
by teddy at bsnet
* mandos-monitor.xml: New. |
556 |
$(PREFIX)/sbin/mandos-ctl \ |
557 |
$(PREFIX)/sbin/mandos-monitor \ |
|
74
by Teddy Hogeborn
* Makefile (PREFIX, CONFDIR): New. |
558 |
$(MANDIR)/man8/mandos.8.gz \ |
435
by teddy at bsnet
* Makefile (DOCS): Added "plymouth.8mandos". |
559 |
$(MANDIR)/man8/mandos-monitor.8.gz \ |
560 |
$(MANDIR)/man8/mandos-ctl.8.gz \ |
|
74
by Teddy Hogeborn
* Makefile (PREFIX, CONFDIR): New. |
561 |
$(MANDIR)/man5/mandos.conf.5.gz \ |
562 |
$(MANDIR)/man5/mandos-clients.conf.5.gz |
|
162
by Teddy Hogeborn
* Makefile (PIDDIR, USER, GROUP): New variables. |
563 |
update-rc.d -f mandos remove |
163
by Teddy Hogeborn
* Makefile (PIDDIR, USER, GROUP): Removed. |
564 |
-rmdir $(CONFDIR) |
67
by Teddy Hogeborn
* mandos-keygen: New program to generate new client keys on |
565 |
|
1189
by Teddy Hogeborn
Makefile: Declare phoniness of targets at each target |
566 |
.PHONY: uninstall-client |
67
by Teddy Hogeborn
* mandos-keygen: New program to generate new client keys on |
567 |
uninstall-client: |
74
by Teddy Hogeborn
* Makefile (PREFIX, CONFDIR): New. |
568 |
# Refuse to uninstall client if /etc/crypttab is explicitly configured
|
569 |
# to use it.
|
|
570 |
! grep --regexp='^ *[^ #].*keyscript=[^,=]*/mandos/' \ |
|
175
by Teddy Hogeborn
* Makefile: Clearly separate "local" install variable settings from |
571 |
$(DESTDIR)/etc/crypttab |
74
by Teddy Hogeborn
* Makefile (PREFIX, CONFDIR): New. |
572 |
-rm --force $(PREFIX)/sbin/mandos-keygen \ |
640
by Teddy Hogeborn
Use architecture libdir. |
573 |
$(LIBDIR)/mandos/plugin-runner \ |
574 |
$(LIBDIR)/mandos/plugins.d/password-prompt \ |
|
575 |
$(LIBDIR)/mandos/plugins.d/mandos-client \ |
|
576 |
$(LIBDIR)/mandos/plugins.d/usplash \ |
|
577 |
$(LIBDIR)/mandos/plugins.d/splashy \ |
|
578 |
$(LIBDIR)/mandos/plugins.d/askpass-fifo \ |
|
579 |
$(LIBDIR)/mandos/plugins.d/plymouth \ |
|
175
by Teddy Hogeborn
* Makefile: Clearly separate "local" install variable settings from |
580 |
$(INITRAMFSTOOLS)/hooks/mandos \ |
581 |
$(INITRAMFSTOOLS)/conf-hooks.d/mandos \ |
|
302
by Teddy Hogeborn
* Makefile (install-client-nokey): Move "initramfs-tools-script" from |
582 |
$(INITRAMFSTOOLS)/scripts/init-premount/mandos \ |
1127
by Teddy Hogeborn
Add dracut(8) support |
583 |
$(INITRAMFSTOOLS)/scripts/local-premount/mandos \ |
584 |
$(DRACUTMODULE)/ask-password-mandos.path \ |
|
585 |
$(DRACUTMODULE)/ask-password-mandos.service \ |
|
586 |
$(DRACUTMODULE)/module-setup.sh \ |
|
587 |
$(DRACUTMODULE)/cmdline-mandos.sh \ |
|
588 |
$(DRACUTMODULE)/password-agent \ |
|
435
by teddy at bsnet
* Makefile (DOCS): Added "plymouth.8mandos". |
589 |
$(MANDIR)/man8/mandos-keygen.8.gz \ |
74
by Teddy Hogeborn
* Makefile (PREFIX, CONFDIR): New. |
590 |
$(MANDIR)/man8/plugin-runner.8mandos.gz \ |
435
by teddy at bsnet
* Makefile (DOCS): Added "plymouth.8mandos". |
591 |
$(MANDIR)/man8/mandos-client.8mandos.gz |
74
by Teddy Hogeborn
* Makefile (PREFIX, CONFDIR): New. |
592 |
$(MANDIR)/man8/password-prompt.8mandos.gz \ |
225
by Teddy Hogeborn
* Makefile (DOCS): Added "plugins.d/usplash.8mandos" and |
593 |
$(MANDIR)/man8/usplash.8mandos.gz \ |
594 |
$(MANDIR)/man8/splashy.8mandos.gz \ |
|
226
by Teddy Hogeborn
* Makefile (DOCS): Added "plugins.d/askpass-fifo.8mandos". |
595 |
$(MANDIR)/man8/askpass-fifo.8mandos.gz \ |
435
by teddy at bsnet
* Makefile (DOCS): Added "plymouth.8mandos". |
596 |
$(MANDIR)/man8/plymouth.8mandos.gz \ |
1127
by Teddy Hogeborn
Add dracut(8) support |
597 |
$(MANDIR)/man8/password-agent.8mandos.gz \ |
640
by Teddy Hogeborn
Use architecture libdir. |
598 |
-rmdir $(LIBDIR)/mandos/plugins.d $(CONFDIR)/plugins.d \ |
1127
by Teddy Hogeborn
Add dracut(8) support |
599 |
$(LIBDIR)/mandos $(CONFDIR) $(KEYDIR) $(DRACUTMODULE) |
600 |
if command -v update-initramfs >/dev/null; then \
|
|
601 |
update-initramfs -k all -u; \
|
|
602 |
elif command -v dracut >/dev/null; then \
|
|
1136
by Teddy Hogeborn
Break some long lines and refine documentation |
603 |
for initrd in $(DESTDIR)/boot/initr*-$(LINUXVERSION); do \
|
1127
by Teddy Hogeborn
Add dracut(8) support |
604 |
test -w "$$initrd" && dracut --force "$$initrd"; \
|
605 |
done; \
|
|
606 |
fi
|
|
67
by Teddy Hogeborn
* mandos-keygen: New program to generate new client keys on |
607 |
|
1189
by Teddy Hogeborn
Makefile: Declare phoniness of targets at each target |
608 |
.PHONY: purge |
67
by Teddy Hogeborn
* mandos-keygen: New program to generate new client keys on |
609 |
purge: purge-server purge-client |
610 |
||
1189
by Teddy Hogeborn
Makefile: Declare phoniness of targets at each target |
611 |
.PHONY: purge-server |
67
by Teddy Hogeborn
* mandos-keygen: New program to generate new client keys on |
612 |
purge-server: uninstall-server |
162
by Teddy Hogeborn
* Makefile (PIDDIR, USER, GROUP): New variables. |
613 |
-rm --force $(CONFDIR)/mandos.conf $(CONFDIR)/clients.conf \ |
420.1.1
by teddy at bsnet
* Makefile (install-server): Install dbus-mandos.conf as |
614 |
$(DESTDIR)/etc/dbus-1/system.d/mandos.conf |
175
by Teddy Hogeborn
* Makefile: Clearly separate "local" install variable settings from |
615 |
$(DESTDIR)/etc/default/mandos \ |
616 |
$(DESTDIR)/etc/init.d/mandos \ |
|
637
by Teddy Hogeborn
Fix fallback to /var/run if /run does not exist for Makefile. |
617 |
$(DESTDIR)/run/mandos.pid \ |
618 |
$(DESTDIR)/var/run/mandos.pid |
|
1290
by Teddy Hogeborn
Minor fix for manual Makefile uninstallations |
619 |
if [ "$(SYSTEMD)" != "$(DESTDIR)" -a -d "$(SYSTEMD)" ]; then \
|
620 |
-rm --force -- $(SYSTEMD)/mandos.service; \
|
|
621 |
fi
|
|
74
by Teddy Hogeborn
* Makefile (PREFIX, CONFDIR): New. |
622 |
-rmdir $(CONFDIR) |
67
by Teddy Hogeborn
* mandos-keygen: New program to generate new client keys on |
623 |
|
1189
by Teddy Hogeborn
Makefile: Declare phoniness of targets at each target |
624 |
.PHONY: purge-client |
67
by Teddy Hogeborn
* mandos-keygen: New program to generate new client keys on |
625 |
purge-client: uninstall-client |
962
by Teddy Hogeborn
Add support for using raw public keys in TLS (RFC 7250) |
626 |
-shred --remove $(KEYDIR)/seckey.txt $(KEYDIR)/tls-privkey.pem |
161
by Teddy Hogeborn
* Makefile (purge-client): Also remove "plugin-runner.conf". |
627 |
-rm --force $(CONFDIR)/plugin-runner.conf \ |
962
by Teddy Hogeborn
Add support for using raw public keys in TLS (RFC 7250) |
628 |
$(KEYDIR)/pubkey.txt $(KEYDIR)/seckey.txt \ |
629 |
$(KEYDIR)/tls-pubkey.txt $(KEYDIR)/tls-privkey.txt |
|
160
by Teddy Hogeborn
* Makefile: Changed to use symbolic instead of octal modes throughout. |
630 |
-rmdir $(KEYDIR) $(CONFDIR)/plugins.d $(CONFDIR) |