/mandos/trunk : revision 1111

To get this branch, use:

bzr branch
http://bzr.recompile.se/loggerhead/mandos/trunk

« back to all changes in this revision

Viewing changes to Makefile

Committer: Teddy Hogeborn
Date: 2019-07-14 22:39:15 UTC
Revision ID: teddy@recompile.se-20190714223915-aqjkms3t3taa6tye

Only use sanitizing options when debugging

The C compiler's sanitizing options introduce code in the output
binary which is fragile and not very security conscious.  It has
become clear that sanitizing is only really meant for use while
debugging.

As a side effect, this makes compilation faster, as the Makefile, for
production builds, no longer runs the compiler repeatedly to find all
its currently supported sanitizing options.

* Makefile (DEBUG): Add "$(SANITIZE)".
  (SANITIZE): Comment out.
  (CFLAGS): Remove "$(SANITIZE)".
  (plugins.d/mandos-client): Revert back to use plain $(LINK.c), since
                             we no longer need to remove the leak
                             sanitizer by overriding CFLAGS.

files added:
bugs.xml

debian/mandos-client.templates

debian/mandos.templates

initramfs-tools-conf

initramfs-tools-conf-hook

initramfs-tools-script-stop

mandos-to-cryptroot-unlock

plugin-helpers

plugin-helpers/mandos-client-iprouteadddel.c

tmpfiles.d-mandos.conf

files removed:
initramfs-tools-hook-conf

files modified:
.bzrignore

DBUS-API

INSTALL

Makefile

NEWS

README

TODO

clients.conf

common.ent

debian/changelog

debian/compat

debian/control

debian/copyright

debian/mandos-client.README.Debian

debian/mandos-client.dirs

debian/mandos-client.lintian-overrides

debian/mandos-client.postinst

debian/mandos-client.postrm

debian/mandos.dirs

debian/mandos.lintian-overrides

debian/mandos.postinst

debian/mandos.prerm

debian/rules

debian/watch

init.d-mandos

initramfs-tools-hook

initramfs-tools-script

initramfs-unpack

intro.xml

legalnotice.xml

mandos

mandos-clients.conf.xml

mandos-ctl

mandos-ctl.xml

mandos-keygen

mandos-keygen.xml

mandos-monitor

mandos-monitor.xml

mandos-options.xml

mandos.conf

mandos.conf.xml

mandos.lsm

mandos.service

mandos.xml

network-hooks.d/bridge

network-hooks.d/openvpn

network-hooks.d/wireless

overview.xml

plugin-runner.c

plugin-runner.xml

plugins.d/askpass-fifo.c

plugins.d/askpass-fifo.xml

plugins.d/mandos-client.c

plugins.d/mandos-client.xml

plugins.d/password-prompt.c

plugins.d/password-prompt.xml

plugins.d/plymouth.c

plugins.d/plymouth.xml

plugins.d/splashy.c

plugins.d/splashy.xml

plugins.d/usplash.c

plugins.d/usplash.xml

Show diffs side-by-side

added added

removed removed

Makefile

WARN=-O -Wall -Wextra -Wdouble-promotion -Wformat=2 -Winit-self \

WARN:=-O -Wall -Wextra -Wdouble-promotion -Wformat=2 -Winit-self \

-Wmissing-include-dirs -Wswitch-default -Wswitch-enum \

-Wunused -Wuninitialized -Wstrict-overflow=5 \

-Wsuggest-attribute=pure -Wsuggest-attribute=const \

-Wmissing-format-attribute -Wnormalized=nfc -Wpacked \

-Wredundant-decls -Wnested-externs -Winline -Wvla \

-Wvolatile-register-var -Woverlength-strings

#DEBUG=-ggdb3

#DEBUG:=-ggdb3 -fsanitize=address $(SANITIZE)

## Check which sanitizing options can be used

#SANITIZE:=$(foreach option,$(ALL_SANITIZE_OPTIONS),$(shell \

# echo 'int main(){}' | $(CC) --language=c $(option) \

# /dev/stdin -o /dev/null >/dev/null 2>&1 && echo $(option)))

# <https://developerblog.redhat.com/2014/10/16/gcc-undefined-behavior-sanitizer-ubsan/>

ALL_SANITIZE_OPTIONS:=-fsanitize=leak -fsanitize=undefined \

-fsanitize=shift -fsanitize=integer-divide-by-zero \

-fsanitize=unreachable -fsanitize=vla-bound -fsanitize=null \

-fsanitize=return -fsanitize=signed-integer-overflow \

-fsanitize=bounds -fsanitize=alignment \

-fsanitize=object-size -fsanitize=float-divide-by-zero \

-fsanitize=float-cast-overflow -fsanitize=nonnull-attribute \

-fsanitize=returns-nonnull-attribute -fsanitize=bool \

-fsanitize=enum

# For info about _FORTIFY_SOURCE, see feature_test_macros(7)

# and <http://gcc.gnu.org/ml/gcc-patches/2004-09/msg02055.html>.

FORTIFY=-D_FORTIFY_SOURCE=2 -fstack-protector-all -fPIC

LINK_FORTIFY_LD=-z relro -z now

LINK_FORTIFY=

# and <https://gcc.gnu.org/ml/gcc-patches/2004-09/msg02055.html>.

FORTIFY:=-D_FORTIFY_SOURCE=2 -fstack-protector-all -fPIC

LINK_FORTIFY_LD:=-z relro -z now

LINK_FORTIFY:=

# If BROKEN_PIE is set, do not build with -pie

ifndef BROKEN_PIE

LINK_FORTIFY += -pie

endif

#COVERAGE=--coverage

OPTIMIZE=-Os -fno-strict-aliasing

LANGUAGE=-std=gnu99

htmldir=man

version=1.6.5

SED=sed

OPTIMIZE:=-Os -fno-strict-aliasing

LANGUAGE:=-std=gnu11

htmldir:=man

version:=1.8.4

SED:=sed

USER=$(firstword $(subst :, ,$(shell getent passwd _mandos || getent passwd nobody || echo 65534)))

GROUP=$(firstword $(subst :, ,$(shell getent group _mandos || getent group nobody || echo 65534)))

USER:=$(firstword $(subst :, ,$(shell getent passwd _mandos || getent passwd nobody || echo 65534)))

GROUP:=$(firstword $(subst :, ,$(shell getent group _mandos || getent group nogroup || echo 65534)))

## Use these settings for a traditional /usr/local install

# PREFIX=$(DESTDIR)/usr/local

# CONFDIR=$(DESTDIR)/etc/mandos

# KEYDIR=$(DESTDIR)/etc/mandos/keys

# MANDIR=$(PREFIX)/man

# INITRAMFSTOOLS=$(DESTDIR)/etc/initramfs-tools

# STATEDIR=$(DESTDIR)/var/lib/mandos

# LIBDIR=$(PREFIX)/lib

# PREFIX:=$(DESTDIR)/usr/local

# CONFDIR:=$(DESTDIR)/etc/mandos

# KEYDIR:=$(DESTDIR)/etc/mandos/keys

# MANDIR:=$(PREFIX)/man

# INITRAMFSTOOLS:=$(DESTDIR)/etc/initramfs-tools

# STATEDIR:=$(DESTDIR)/var/lib/mandos

# LIBDIR:=$(PREFIX)/lib

## These settings are for a package-type install

PREFIX=$(DESTDIR)/usr

CONFDIR=$(DESTDIR)/etc/mandos

KEYDIR=$(DESTDIR)/etc/keys/mandos

MANDIR=$(PREFIX)/share/man

INITRAMFSTOOLS=$(DESTDIR)/usr/share/initramfs-tools

STATEDIR=$(DESTDIR)/var/lib/mandos

LIBDIR=$(shell \

PREFIX:=$(DESTDIR)/usr

CONFDIR:=$(DESTDIR)/etc/mandos

KEYDIR:=$(DESTDIR)/etc/keys/mandos

MANDIR:=$(PREFIX)/share/man

INITRAMFSTOOLS:=$(DESTDIR)/usr/share/initramfs-tools

STATEDIR:=$(DESTDIR)/var/lib/mandos

LIBDIR:=$(shell \

for d in \

"/usr/lib/`dpkg-architecture -qDEB_HOST_MULTIARCH 2>/dev/null`" \

"`rpm --eval='%{_libdir}' 2>/dev/null`" /usr/lib; do \

done)

SYSTEMD=$(DESTDIR)$(shell pkg-config systemd --variable=systemdsystemunitdir)

SYSTEMD:=$(DESTDIR)$(shell pkg-config systemd --variable=systemdsystemunitdir)

TMPFILES:=$(DESTDIR)$(shell pkg-config systemd --variable=tmpfilesdir)

GNUTLS_CFLAGS=$(shell pkg-config --cflags-only-I gnutls)

GNUTLS_LIBS=$(shell pkg-config --libs gnutls)

AVAHI_CFLAGS=$(shell pkg-config --cflags-only-I avahi-core)

AVAHI_LIBS=$(shell pkg-config --libs avahi-core)

GPGME_CFLAGS=$(shell gpgme-config --cflags; getconf LFS_CFLAGS)

GPGME_LIBS=$(shell gpgme-config --libs; getconf LFS_LIBS; \

GNUTLS_CFLAGS:=$(shell pkg-config --cflags-only-I gnutls)

GNUTLS_LIBS:=$(shell pkg-config --libs gnutls)

AVAHI_CFLAGS:=$(shell pkg-config --cflags-only-I avahi-core)

AVAHI_LIBS:=$(shell pkg-config --libs avahi-core)

GPGME_CFLAGS:=$(shell gpgme-config --cflags; getconf LFS_CFLAGS)

GPGME_LIBS:=$(shell gpgme-config --libs; getconf LFS_LIBS; \

getconf LFS_LDFLAGS)

LIBNL3_CFLAGS:=$(shell pkg-config --cflags-only-I libnl-route-3.0)

LIBNL3_LIBS:=$(shell pkg-config --libs libnl-route-3.0)

# Do not change these two

CFLAGS+=$(WARN) $(DEBUG) $(FORTIFY) $(COVERAGE) $(OPTIMIZE) \

$(LANGUAGE) $(GNUTLS_CFLAGS) $(AVAHI_CFLAGS) $(GPGME_CFLAGS) \

-DVERSION='"$(version)"'

CFLAGS+=$(WARN) $(DEBUG) $(FORTIFY) $(COVERAGE) \

$(OPTIMIZE) $(LANGUAGE) -DVERSION='"$(version)"'

LDFLAGS+=-Xlinker --as-needed $(COVERAGE) $(LINK_FORTIFY) $(foreach flag,$(LINK_FORTIFY_LD),-Xlinker $(flag))

# Commands to format a DocBook <refentry> document into a manual page

100

118

/usr/share/xml/docbook/stylesheet/nwalsh/xhtml/docbook.xsl \

101

119

$<; $(HTMLPOST) $@)

102

120

# Fix citerefentry links

103

HTMLPOST=$(SED) --in-place \

121

HTMLPOST:=$(SED) --in-place \

104

122

--expression='s/$<a class="citerefentry" href="$$"><span class="citerefentry"><span class="refentrytitle">$$[^<]*$$<\/span>($$[^)]*$$)<\/span><\/a>$/\1\3.\5\2\3\4\5\6/g'

105

123

106

PLUGINS=plugins.d/password-prompt plugins.d/mandos-client \

124

PLUGINS:=plugins.d/password-prompt plugins.d/mandos-client \

107

125

plugins.d/usplash plugins.d/splashy plugins.d/askpass-fifo \

108

126

plugins.d/plymouth

109

CPROGS=plugin-runner $(PLUGINS)

110

PROGS=mandos mandos-keygen mandos-ctl mandos-monitor $(CPROGS)

111

DOCS=mandos.8 mandos-keygen.8 mandos-monitor.8 mandos-ctl.8 \

127

PLUGIN_HELPERS:=plugin-helpers/mandos-client-iprouteadddel

128

CPROGS:=plugin-runner $(PLUGINS) $(PLUGIN_HELPERS)

129

PROGS:=mandos mandos-keygen mandos-ctl mandos-monitor $(CPROGS)

130

DOCS:=mandos.8 mandos-keygen.8 mandos-monitor.8 mandos-ctl.8 \

112

131

mandos.conf.5 mandos-clients.conf.5 plugin-runner.8mandos \

113

132

plugins.d/mandos-client.8mandos \

114

133

plugins.d/password-prompt.8mandos plugins.d/usplash.8mandos \

115

134

plugins.d/splashy.8mandos plugins.d/askpass-fifo.8mandos \

116

135

plugins.d/plymouth.8mandos intro.8mandos

117

136

118

htmldocs=$(addsuffix .xhtml,$(DOCS))

137

htmldocs:=$(addsuffix .xhtml,$(DOCS))

119

138

120

objects=$(addsuffix .o,$(CPROGS))

139

objects:=$(addsuffix .o,$(CPROGS))

121

140

122

141

all: $(PROGS) mandos.lsm

123

142

235

254

--expression='s/$mandos_$[0-9.]\+$\.orig\.tar\.gz$/\1$(version)\2/' \

236

255

$@)

237

256

257

# Need to add the GnuTLS, Avahi and GPGME libraries

238

258

plugins.d/mandos-client: plugins.d/mandos-client.c

239

$(LINK.c) $^ -lrt $(GNUTLS_LIBS) $(AVAHI_LIBS) $(strip\

240

) $(GPGME_LIBS) $(LOADLIBES) $(LDLIBS) -o $@

259

$(LINK.c) $^ $(GNUTLS_CFLAGS) $(AVAHI_CFLAGS) $(strip\

260

) $(GPGME_CFLAGS) -lrt $(GNUTLS_LIBS) $(strip\

261

) $(AVAHI_LIBS) $(GPGME_LIBS) $(LOADLIBES) $(strip\

262

) $(LDLIBS) -o $@

263

264

plugin-helpers/mandos-client-iprouteadddel: plugin-helpers/mandos-client-iprouteadddel.c

265

$(LINK.c) $(LIBNL3_CFLAGS) $^ $(LIBNL3_LIBS) $(strip\

266

) $(LOADLIBES) $(LDLIBS) -o $@

241

267

242

268

.PHONY : all doc html clean distclean mostlyclean maintainer-clean \

243

269

check run-client run-server install install-html \

258

284

./mandos-ctl --check

259

285

260

286

# Run the client with a local config and key

261

run-client: all keydir/seckey.txt keydir/pubkey.txt

287

run-client: all keydir/seckey.txt keydir/pubkey.txt keydir/tls-privkey.pem keydir/tls-pubkey.pem

262

288

@echo "###################################################################"

263

289

@echo "# The following error messages are harmless and can be safely #"

264

@echo "# ignored. The messages are caused by not running as root, but #"

265

@echo "# you should NOT run \"make run-client\" as root unless you also #"

266

@echo "# unpacked and compiled Mandos as root, which is NOT recommended. #"

267

@echo "# From plugin-runner: setuid: Operation not permitted #"

290

@echo "# ignored: #"

291

@echo "# From plugin-runner: setgid: Operation not permitted #"

292

@echo "# setuid: Operation not permitted #"

268

293

@echo "# From askpass-fifo: mkfifo: Permission denied #"

269

@echo "# From mandos-client: setuid: Operation not permitted #"

270

@echo "# seteuid: Operation not permitted #"

271

@echo "# klogctl: Operation not permitted #"

294

@echo "# From mandos-client: #"

295

@echo "# Failed to raise privileges: Operation not permitted #"

296

@echo "# Warning: network hook \"*\" exited with status * #"

297

@echo "# #"

298

@echo "# (The messages are caused by not running as root, but you should #"

299

@echo "# NOT run \"make run-client\" as root unless you also unpacked and #"

300

@echo "# compiled Mandos as root, which is also NOT recommended.) #"

272

301

@echo "###################################################################"

302

# We set GNOME_KEYRING_CONTROL to block pam_gnome_keyring

273

303

./plugin-runner --plugin-dir=plugins.d \

304

--plugin-helper-dir=plugin-helpers \

274

305

--config-file=plugin-runner.conf \

275

--options-for=mandos-client:--seckey=keydir/seckey.txt,--pubkey=keydir/pubkey.txt,--network-hook-dir=network-hooks.d \

306

--options-for=mandos-client:--seckey=keydir/seckey.txt,--pubkey=keydir/pubkey.txt,--tls-privkey=keydir/tls-privkey.pem,--tls-pubkey=keydir/tls-pubkey.pem,--network-hook-dir=network-hooks.d \

307

--env-for=mandos-client:GNOME_KEYRING_CONTROL= \

276

308

$(CLIENTARGS)

277

309

278

310

# Used by run-client

279

keydir/seckey.txt keydir/pubkey.txt: mandos-keygen

311

keydir/seckey.txt keydir/pubkey.txt keydir/tls-privkey.pem keydir/tls-pubkey.pem: mandos-keygen

280

312

install --directory keydir

281

313

./mandos-keygen --dir keydir --force

282

314

289

321

confdir/mandos.conf: mandos.conf

290

322

install --directory confdir

291

323

install --mode=u=rw,go=r $^ $@

292

confdir/clients.conf: clients.conf keydir/seckey.txt

324

confdir/clients.conf: clients.conf keydir/seckey.txt keydir/tls-pubkey.pem

293

325

install --directory confdir

294

326

install --mode=u=rw $< $@

295

327

# Add a client password

296

./mandos-keygen --dir keydir --password >> $@

328

./mandos-keygen --dir keydir --password --no-ssh >> $@

297

329

statedir:

298

330

install --directory statedir

299

331

312

344

elif install --directory --mode=u=rwx $(STATEDIR); then \

313

345

chown -- $(USER):$(GROUP) $(STATEDIR) || :; \

314

346

347

if [ "$(TMPFILES)" != "$(DESTDIR)" -a -d "$(TMPFILES)" ]; then \

348

install --mode=u=rw,go=r tmpfiles.d-mandos.conf \

349

$(TMPFILES)/mandos.conf; \

350

315

351

install --mode=u=rwx,go=rx mandos $(PREFIX)/sbin/mandos

316

352

install --mode=u=rwx,go=rx --target-directory=$(PREFIX)/sbin \

317

353

mandos-ctl

349

385

install-client-nokey: all doc

350

386

install --directory $(LIBDIR)/mandos $(CONFDIR)

351

387

install --directory --mode=u=rwx $(KEYDIR) \

352

$(LIBDIR)/mandos/plugins.d

388

$(LIBDIR)/mandos/plugins.d \

389

$(LIBDIR)/mandos/plugin-helpers

353

390

if [ "$(CONFDIR)" != "$(LIBDIR)/mandos" ]; then \

354

391

install --mode=u=rwx \

355

--directory "$(CONFDIR)/plugins.d"; \

392

--directory "$(CONFDIR)/plugins.d" \

393

"$(CONFDIR)/plugin-helpers"; \

356

394

357

395

install --mode=u=rwx,go=rx --directory \

358

396

"$(CONFDIR)/network-hooks.d"

359

397

install --mode=u=rwx,go=rx \

360

398

--target-directory=$(LIBDIR)/mandos plugin-runner

399

install --mode=u=rwx,go=rx \

400

--target-directory=$(LIBDIR)/mandos mandos-to-cryptroot-unlock

361

401

install --mode=u=rwx,go=rx --target-directory=$(PREFIX)/sbin \

362

402

mandos-keygen

363

403

install --mode=u=rwx,go=rx \

378

418

install --mode=u=rwxs,go=rx \

379

419

--target-directory=$(LIBDIR)/mandos/plugins.d \

380

420

plugins.d/plymouth

421

install --mode=u=rwx,go=rx \

422

--target-directory=$(LIBDIR)/mandos/plugin-helpers \

423

plugin-helpers/mandos-client-iprouteadddel

381

424

install initramfs-tools-hook \

382

425

$(INITRAMFSTOOLS)/hooks/mandos

383

install --mode=u=rw,go=r initramfs-tools-hook-conf \

384

$(INITRAMFSTOOLS)/conf-hooks.d/mandos

426

install --mode=u=rw,go=r initramfs-tools-conf \

427

$(INITRAMFSTOOLS)/conf.d/mandos-conf

428

install --mode=u=rw,go=r initramfs-tools-conf-hook \

429

$(INITRAMFSTOOLS)/conf-hooks.d/zz-mandos

385

430

install initramfs-tools-script \

386

431

$(INITRAMFSTOOLS)/scripts/init-premount/mandos

432

install initramfs-tools-script-stop \

433

$(INITRAMFSTOOLS)/scripts/local-premount/mandos

387

434

install --mode=u=rw,go=r plugin-runner.conf $(CONFDIR)

388

435

gzip --best --to-stdout mandos-keygen.8 \

389

436

> $(MANDIR)/man8/mandos-keygen.8.gz

463

510

-rmdir $(CONFDIR)

464

511

465

512

purge-client: uninstall-client

466

-shred --remove $(KEYDIR)/seckey.txt

513

-shred --remove $(KEYDIR)/seckey.txt $(KEYDIR)/tls-privkey.pem

467

514

-rm --force $(CONFDIR)/plugin-runner.conf \

468

$(KEYDIR)/pubkey.txt $(KEYDIR)/seckey.txt

515

$(KEYDIR)/pubkey.txt $(KEYDIR)/seckey.txt \

516

$(KEYDIR)/tls-pubkey.txt $(KEYDIR)/tls-privkey.txt

469

517

-rmdir $(KEYDIR) $(CONFDIR)/plugins.d $(CONFDIR)

Older »