/mandos/trunk : revision 1111

To get this branch, use:

bzr branch
http://bzr.recompile.se/loggerhead/mandos/trunk

« back to all changes in this revision

Viewing changes to Makefile

Committer: Teddy Hogeborn
Date: 2019-07-14 22:39:15 UTC
Revision ID: teddy@recompile.se-20190714223915-aqjkms3t3taa6tye

Only use sanitizing options when debugging

The C compiler's sanitizing options introduce code in the output
binary which is fragile and not very security conscious.  It has
become clear that sanitizing is only really meant for use while
debugging.

As a side effect, this makes compilation faster, as the Makefile, for
production builds, no longer runs the compiler repeatedly to find all
its currently supported sanitizing options.

* Makefile (DEBUG): Add "$(SANITIZE)".
  (SANITIZE): Comment out.
  (CFLAGS): Remove "$(SANITIZE)".
  (plugins.d/mandos-client): Revert back to use plain $(LINK.c), since
                             we no longer need to remove the leak
                             sanitizer by overriding CFLAGS.

files added:
debian/mandos-client.templates

debian/mandos.templates

initramfs-tools-conf

initramfs-tools-conf-hook

initramfs-tools-script-stop

mandos-to-cryptroot-unlock

tmpfiles.d-mandos.conf

files removed:
initramfs-tools-hook-conf

files modified:
.bzrignore

DBUS-API

INSTALL

Makefile

NEWS

README

TODO

clients.conf

common.ent

debian/changelog

debian/compat

debian/control

debian/copyright

debian/mandos-client.README.Debian

debian/mandos-client.dirs

debian/mandos-client.lintian-overrides

debian/mandos-client.postinst

debian/mandos-client.postrm

debian/mandos.dirs

debian/mandos.lintian-overrides

debian/mandos.postinst

debian/rules

debian/watch

init.d-mandos

initramfs-tools-hook

initramfs-tools-script

initramfs-unpack

intro.xml

legalnotice.xml

mandos

mandos-clients.conf.xml

mandos-ctl

mandos-ctl.xml

mandos-keygen

mandos-keygen.xml

mandos-monitor

mandos-monitor.xml

mandos-options.xml

mandos.conf.xml

mandos.lsm

mandos.service

mandos.xml

network-hooks.d/bridge

network-hooks.d/openvpn

network-hooks.d/wireless

overview.xml

plugin-helpers/mandos-client-iprouteadddel.c

plugin-runner.c

plugin-runner.xml

plugins.d/askpass-fifo.c

plugins.d/askpass-fifo.xml

plugins.d/mandos-client.c

plugins.d/mandos-client.xml

plugins.d/password-prompt.c

plugins.d/password-prompt.xml

plugins.d/plymouth.c

plugins.d/plymouth.xml

plugins.d/splashy.c

plugins.d/splashy.xml

plugins.d/usplash.c

plugins.d/usplash.xml

Show diffs side-by-side

added added

removed removed

Makefile

WARN=-O -Wall -Wextra -Wdouble-promotion -Wformat=2 -Winit-self \

WARN:=-O -Wall -Wextra -Wdouble-promotion -Wformat=2 -Winit-self \

-Wmissing-include-dirs -Wswitch-default -Wswitch-enum \

-Wunused -Wuninitialized -Wstrict-overflow=5 \

-Wsuggest-attribute=pure -Wsuggest-attribute=const \

-Wmissing-format-attribute -Wnormalized=nfc -Wpacked \

-Wredundant-decls -Wnested-externs -Winline -Wvla \

-Wvolatile-register-var -Woverlength-strings

#DEBUG=-ggdb3

# For info about _FORTIFY_SOURCE, see feature_test_macros(7)

# and <http://gcc.gnu.org/ml/gcc-patches/2004-09/msg02055.html>.

FORTIFY=-D_FORTIFY_SOURCE=2 -fstack-protector-all -fPIC

#DEBUG:=-ggdb3 -fsanitize=address $(SANITIZE)

## Check which sanitizing options can be used

#SANITIZE:=$(foreach option,$(ALL_SANITIZE_OPTIONS),$(shell \

# echo 'int main(){}' | $(CC) --language=c $(option) \

# /dev/stdin -o /dev/null >/dev/null 2>&1 && echo $(option)))

# <https://developerblog.redhat.com/2014/10/16/gcc-undefined-behavior-sanitizer-ubsan/>

ALL_SANITIZE_OPTIONS:=-fsanitize=address -fsanitize=undefined \

ALL_SANITIZE_OPTIONS:=-fsanitize=leak -fsanitize=undefined \

-fsanitize=shift -fsanitize=integer-divide-by-zero \

-fsanitize=unreachable -fsanitize=vla-bound -fsanitize=null \

-fsanitize=return -fsanitize=signed-integer-overflow \

-fsanitize=float-cast-overflow -fsanitize=nonnull-attribute \

-fsanitize=returns-nonnull-attribute -fsanitize=bool \

-fsanitize=enum

# Check which sanitizing options can be used

SANITIZE:=$(foreach option,$(ALL_SANITIZE_OPTIONS),$(shell \

echo 'int main(){}' | $(CC) --language=c $(option) /dev/stdin \

-o /dev/null >/dev/null 2>&1 && echo $(option)))

LINK_FORTIFY_LD=-z relro -z now

LINK_FORTIFY=

# For info about _FORTIFY_SOURCE, see feature_test_macros(7)

# and <https://gcc.gnu.org/ml/gcc-patches/2004-09/msg02055.html>.

FORTIFY:=-D_FORTIFY_SOURCE=2 -fstack-protector-all -fPIC

LINK_FORTIFY_LD:=-z relro -z now

LINK_FORTIFY:=

# If BROKEN_PIE is set, do not build with -pie

ifndef BROKEN_PIE

LINK_FORTIFY += -pie

endif

#COVERAGE=--coverage

OPTIMIZE=-Os -fno-strict-aliasing

LANGUAGE=-std=gnu11

htmldir=man

version=1.7.3

SED=sed

OPTIMIZE:=-Os -fno-strict-aliasing

LANGUAGE:=-std=gnu11

htmldir:=man

version:=1.8.4

SED:=sed

USER=$(firstword $(subst :, ,$(shell getent passwd _mandos || getent passwd nobody || echo 65534)))

GROUP=$(firstword $(subst :, ,$(shell getent group _mandos || getent group nogroup || echo 65534)))

USER:=$(firstword $(subst :, ,$(shell getent passwd _mandos || getent passwd nobody || echo 65534)))

GROUP:=$(firstword $(subst :, ,$(shell getent group _mandos || getent group nogroup || echo 65534)))

## Use these settings for a traditional /usr/local install

# PREFIX=$(DESTDIR)/usr/local

# CONFDIR=$(DESTDIR)/etc/mandos

# KEYDIR=$(DESTDIR)/etc/mandos/keys

# MANDIR=$(PREFIX)/man

# INITRAMFSTOOLS=$(DESTDIR)/etc/initramfs-tools

# STATEDIR=$(DESTDIR)/var/lib/mandos

# LIBDIR=$(PREFIX)/lib

# PREFIX:=$(DESTDIR)/usr/local

# CONFDIR:=$(DESTDIR)/etc/mandos

# KEYDIR:=$(DESTDIR)/etc/mandos/keys

# MANDIR:=$(PREFIX)/man

# INITRAMFSTOOLS:=$(DESTDIR)/etc/initramfs-tools

# STATEDIR:=$(DESTDIR)/var/lib/mandos

# LIBDIR:=$(PREFIX)/lib

## These settings are for a package-type install

PREFIX=$(DESTDIR)/usr

CONFDIR=$(DESTDIR)/etc/mandos

KEYDIR=$(DESTDIR)/etc/keys/mandos

MANDIR=$(PREFIX)/share/man

INITRAMFSTOOLS=$(DESTDIR)/usr/share/initramfs-tools

STATEDIR=$(DESTDIR)/var/lib/mandos

LIBDIR=$(shell \

PREFIX:=$(DESTDIR)/usr

CONFDIR:=$(DESTDIR)/etc/mandos

KEYDIR:=$(DESTDIR)/etc/keys/mandos

MANDIR:=$(PREFIX)/share/man

INITRAMFSTOOLS:=$(DESTDIR)/usr/share/initramfs-tools

STATEDIR:=$(DESTDIR)/var/lib/mandos

LIBDIR:=$(shell \

for d in \

"/usr/lib/`dpkg-architecture -qDEB_HOST_MULTIARCH 2>/dev/null`" \

"`rpm --eval='%{_libdir}' 2>/dev/null`" /usr/lib; do \

done)

SYSTEMD=$(DESTDIR)$(shell pkg-config systemd --variable=systemdsystemunitdir)

SYSTEMD:=$(DESTDIR)$(shell pkg-config systemd --variable=systemdsystemunitdir)

TMPFILES:=$(DESTDIR)$(shell pkg-config systemd --variable=tmpfilesdir)

GNUTLS_CFLAGS=$(shell pkg-config --cflags-only-I gnutls)

GNUTLS_LIBS=$(shell pkg-config --libs gnutls)

AVAHI_CFLAGS=$(shell pkg-config --cflags-only-I avahi-core)

AVAHI_LIBS=$(shell pkg-config --libs avahi-core)

GPGME_CFLAGS=$(shell gpgme-config --cflags; getconf LFS_CFLAGS)

GPGME_LIBS=$(shell gpgme-config --libs; getconf LFS_LIBS; \

GNUTLS_CFLAGS:=$(shell pkg-config --cflags-only-I gnutls)

GNUTLS_LIBS:=$(shell pkg-config --libs gnutls)

AVAHI_CFLAGS:=$(shell pkg-config --cflags-only-I avahi-core)

AVAHI_LIBS:=$(shell pkg-config --libs avahi-core)

GPGME_CFLAGS:=$(shell gpgme-config --cflags; getconf LFS_CFLAGS)

GPGME_LIBS:=$(shell gpgme-config --libs; getconf LFS_LIBS; \

getconf LFS_LDFLAGS)

LIBNL3_CFLAGS=$(shell pkg-config --cflags-only-I libnl-route-3.0)

LIBNL3_LIBS=$(shell pkg-config --libs libnl-route-3.0)

LIBNL3_CFLAGS:=$(shell pkg-config --cflags-only-I libnl-route-3.0)

LIBNL3_LIBS:=$(shell pkg-config --libs libnl-route-3.0)

# Do not change these two

CFLAGS+=$(WARN) $(DEBUG) $(FORTIFY) $(SANITIZE) $(COVERAGE) \

$(OPTIMIZE) $(LANGUAGE) $(GNUTLS_CFLAGS) $(AVAHI_CFLAGS) \

$(GPGME_CFLAGS) -DVERSION='"$(version)"'

CFLAGS+=$(WARN) $(DEBUG) $(FORTIFY) $(COVERAGE) \

$(OPTIMIZE) $(LANGUAGE) -DVERSION='"$(version)"'

LDFLAGS+=-Xlinker --as-needed $(COVERAGE) $(LINK_FORTIFY) $(foreach flag,$(LINK_FORTIFY_LD),-Xlinker $(flag))

# Commands to format a DocBook <refentry> document into a manual page

116

118

/usr/share/xml/docbook/stylesheet/nwalsh/xhtml/docbook.xsl \

117

119

$<; $(HTMLPOST) $@)

118

120

# Fix citerefentry links

119

HTMLPOST=$(SED) --in-place \

121

HTMLPOST:=$(SED) --in-place \

120

122

--expression='s/$<a class="citerefentry" href="$$"><span class="citerefentry"><span class="refentrytitle">$$[^<]*$$<\/span>($$[^)]*$$)<\/span><\/a>$/\1\3.\5\2\3\4\5\6/g'

121

123

122

PLUGINS=plugins.d/password-prompt plugins.d/mandos-client \

124

PLUGINS:=plugins.d/password-prompt plugins.d/mandos-client \

123

125

plugins.d/usplash plugins.d/splashy plugins.d/askpass-fifo \

124

126

plugins.d/plymouth

125

PLUGIN_HELPERS=plugin-helpers/mandos-client-iprouteadddel

126

CPROGS=plugin-runner $(PLUGINS) $(PLUGIN_HELPERS)

127

PROGS=mandos mandos-keygen mandos-ctl mandos-monitor $(CPROGS)

128

DOCS=mandos.8 mandos-keygen.8 mandos-monitor.8 mandos-ctl.8 \

127

PLUGIN_HELPERS:=plugin-helpers/mandos-client-iprouteadddel

128

CPROGS:=plugin-runner $(PLUGINS) $(PLUGIN_HELPERS)

129

PROGS:=mandos mandos-keygen mandos-ctl mandos-monitor $(CPROGS)

130

DOCS:=mandos.8 mandos-keygen.8 mandos-monitor.8 mandos-ctl.8 \

129

131

mandos.conf.5 mandos-clients.conf.5 plugin-runner.8mandos \

130

132

plugins.d/mandos-client.8mandos \

131

133

plugins.d/password-prompt.8mandos plugins.d/usplash.8mandos \

132

134

plugins.d/splashy.8mandos plugins.d/askpass-fifo.8mandos \

133

135

plugins.d/plymouth.8mandos intro.8mandos

134

136

135

htmldocs=$(addsuffix .xhtml,$(DOCS))

137

htmldocs:=$(addsuffix .xhtml,$(DOCS))

136

138

137

objects=$(addsuffix .o,$(CPROGS))

139

objects:=$(addsuffix .o,$(CPROGS))

138

140

139

141

all: $(PROGS) mandos.lsm

140

142

252

254

--expression='s/$mandos_$[0-9.]\+$\.orig\.tar\.gz$/\1$(version)\2/' \

253

255

$@)

254

256

257

# Need to add the GnuTLS, Avahi and GPGME libraries

255

258

plugins.d/mandos-client: plugins.d/mandos-client.c

256

$(LINK.c) $^ -lrt $(GNUTLS_LIBS) $(AVAHI_LIBS) $(strip\

257

) $(GPGME_LIBS) $(LOADLIBES) $(LDLIBS) -o $@

259

$(LINK.c) $^ $(GNUTLS_CFLAGS) $(AVAHI_CFLAGS) $(strip\

260

) $(GPGME_CFLAGS) -lrt $(GNUTLS_LIBS) $(strip\

261

) $(AVAHI_LIBS) $(GPGME_LIBS) $(LOADLIBES) $(strip\

262

) $(LDLIBS) -o $@

258

263

259

264

plugin-helpers/mandos-client-iprouteadddel: plugin-helpers/mandos-client-iprouteadddel.c

260

265

$(LINK.c) $(LIBNL3_CFLAGS) $^ $(LIBNL3_LIBS) $(strip\

279

284

./mandos-ctl --check

280

285

281

286

# Run the client with a local config and key

282

run-client: all keydir/seckey.txt keydir/pubkey.txt

287

run-client: all keydir/seckey.txt keydir/pubkey.txt keydir/tls-privkey.pem keydir/tls-pubkey.pem

283

288

@echo "###################################################################"

284

289

@echo "# The following error messages are harmless and can be safely #"

285

@echo "# ignored. The messages are caused by not running as root, but #"

286

@echo "# you should NOT run \"make run-client\" as root unless you also #"

287

@echo "# unpacked and compiled Mandos as root, which is NOT recommended. #"

290

@echo "# ignored: #"

288

291

@echo "# From plugin-runner: setgid: Operation not permitted #"

289

292

@echo "# setuid: Operation not permitted #"

290

293

@echo "# From askpass-fifo: mkfifo: Permission denied #"

291

294

@echo "# From mandos-client: #"

292

295

@echo "# Failed to raise privileges: Operation not permitted #"

293

296

@echo "# Warning: network hook \"*\" exited with status * #"

297

@echo "# #"

298

@echo "# (The messages are caused by not running as root, but you should #"

299

@echo "# NOT run \"make run-client\" as root unless you also unpacked and #"

300

@echo "# compiled Mandos as root, which is also NOT recommended.) #"

294

301

@echo "###################################################################"

295

302

# We set GNOME_KEYRING_CONTROL to block pam_gnome_keyring

296

303

./plugin-runner --plugin-dir=plugins.d \

297

304

--plugin-helper-dir=plugin-helpers \

298

305

--config-file=plugin-runner.conf \

299

--options-for=mandos-client:--seckey=keydir/seckey.txt,--pubkey=keydir/pubkey.txt,--network-hook-dir=network-hooks.d \

306

--options-for=mandos-client:--seckey=keydir/seckey.txt,--pubkey=keydir/pubkey.txt,--tls-privkey=keydir/tls-privkey.pem,--tls-pubkey=keydir/tls-pubkey.pem,--network-hook-dir=network-hooks.d \

300

307

--env-for=mandos-client:GNOME_KEYRING_CONTROL= \

301

308

$(CLIENTARGS)

302

309

303

310

# Used by run-client

304

keydir/seckey.txt keydir/pubkey.txt: mandos-keygen

311

keydir/seckey.txt keydir/pubkey.txt keydir/tls-privkey.pem keydir/tls-pubkey.pem: mandos-keygen

305

312

install --directory keydir

306

313

./mandos-keygen --dir keydir --force

307

314

321

confdir/mandos.conf: mandos.conf

315

322

install --directory confdir

316

323

install --mode=u=rw,go=r $^ $@

317

confdir/clients.conf: clients.conf keydir/seckey.txt

324

confdir/clients.conf: clients.conf keydir/seckey.txt keydir/tls-pubkey.pem

318

325

install --directory confdir

319

326

install --mode=u=rw $< $@

320

327

# Add a client password

337

344

elif install --directory --mode=u=rwx $(STATEDIR); then \

338

345

chown -- $(USER):$(GROUP) $(STATEDIR) || :; \

339

346

347

if [ "$(TMPFILES)" != "$(DESTDIR)" -a -d "$(TMPFILES)" ]; then \

348

install --mode=u=rw,go=r tmpfiles.d-mandos.conf \

349

$(TMPFILES)/mandos.conf; \

350

340

351

install --mode=u=rwx,go=rx mandos $(PREFIX)/sbin/mandos

341

352

install --mode=u=rwx,go=rx --target-directory=$(PREFIX)/sbin \

342

353

mandos-ctl

378

389

$(LIBDIR)/mandos/plugin-helpers

379

390

if [ "$(CONFDIR)" != "$(LIBDIR)/mandos" ]; then \

380

391

install --mode=u=rwx \

381

--directory "$(CONFDIR)/plugins.d"; \

382

install --directory "$(CONFDIR)/plugin-helpers"; \

392

--directory "$(CONFDIR)/plugins.d" \

393

"$(CONFDIR)/plugin-helpers"; \

383

394

384

395

install --mode=u=rwx,go=rx --directory \

385

396

"$(CONFDIR)/network-hooks.d"

386

397

install --mode=u=rwx,go=rx \

387

398

--target-directory=$(LIBDIR)/mandos plugin-runner

399

install --mode=u=rwx,go=rx \

400

--target-directory=$(LIBDIR)/mandos mandos-to-cryptroot-unlock

388

401

install --mode=u=rwx,go=rx --target-directory=$(PREFIX)/sbin \

389

402

mandos-keygen

390

403

install --mode=u=rwx,go=rx \

405

418

install --mode=u=rwxs,go=rx \

406

419

--target-directory=$(LIBDIR)/mandos/plugins.d \

407

420

plugins.d/plymouth

408

install --mode=u=rwxs,go=rx \

421

install --mode=u=rwx,go=rx \

409

422

--target-directory=$(LIBDIR)/mandos/plugin-helpers \

410

423

plugin-helpers/mandos-client-iprouteadddel

411

424

install initramfs-tools-hook \

412

425

$(INITRAMFSTOOLS)/hooks/mandos

413

install --mode=u=rw,go=r initramfs-tools-hook-conf \

414

$(INITRAMFSTOOLS)/conf-hooks.d/mandos

426

install --mode=u=rw,go=r initramfs-tools-conf \

427

$(INITRAMFSTOOLS)/conf.d/mandos-conf

428

install --mode=u=rw,go=r initramfs-tools-conf-hook \

429

$(INITRAMFSTOOLS)/conf-hooks.d/zz-mandos

415

430

install initramfs-tools-script \

416

431

$(INITRAMFSTOOLS)/scripts/init-premount/mandos

432

install initramfs-tools-script-stop \

433

$(INITRAMFSTOOLS)/scripts/local-premount/mandos

417

434

install --mode=u=rw,go=r plugin-runner.conf $(CONFDIR)

418

435

gzip --best --to-stdout mandos-keygen.8 \

419

436

> $(MANDIR)/man8/mandos-keygen.8.gz

493

510

-rmdir $(CONFDIR)

494

511

495

512

purge-client: uninstall-client

496

-shred --remove $(KEYDIR)/seckey.txt

513

-shred --remove $(KEYDIR)/seckey.txt $(KEYDIR)/tls-privkey.pem

497

514

-rm --force $(CONFDIR)/plugin-runner.conf \

498

$(KEYDIR)/pubkey.txt $(KEYDIR)/seckey.txt

515

$(KEYDIR)/pubkey.txt $(KEYDIR)/seckey.txt \

516

$(KEYDIR)/tls-pubkey.txt $(KEYDIR)/tls-privkey.txt

499

517

-rmdir $(KEYDIR) $(CONFDIR)/plugins.d $(CONFDIR)

Older »