/mandos/trunk

To get this branch, use:
bzr branch http://bzr.recompile.se/loggerhead/mandos/trunk

« back to all changes in this revision

Viewing changes to Makefile

  • Committer: Teddy Hogeborn
  • Date: 2008-09-05 16:24:33 UTC
  • Revision ID: teddy@fukt.bsnet.se-20080905162433-58fgx91ae9foxlh1
* Makefile (PIDDIR, USER, GROUP): Removed.
  (install-server): Do not create $(PIDDIR).
  (uninstall-server): Do not remove $(PIDDIR).

* init.d-mandos (PIDFILE): Changed to "/var/run/$NAME.pid".

* mandos (IPv6_TCPServer.enabled): New attribute.
  (IPv6_TCPServer.server_activate): Only call method of superclass if
                                    "self.enabled".
  (IPv6_TCPServer.enable): Set "self.enabled" to True.
  (main): Create client Set() early.  Create IPv6_TCPServer object
          early.  Switch to user and group "mandos", "nobody" or
          65534, if possible.  Enable IPv6_TCPServer *after* switching
          user.

* mandos-keygen (KEYDIR): Changed to "/etc/keys/mandos".

* mandos.xml (FILES): Changed PID file.
  (SECURITY): The server does need to be privileged, but switches to a
              non-privileged user.

* plugin-runner.xml (EXAMPLE): Changed long example to something more
                               realistic.

Show diffs side-by-side

added added

removed removed

Lines of Context:
Makefile
47
47
# DocBook-to-man post-processing to fix a \n escape bug
48
48
MANPOST=sed --in-place --expression='s,\\\\en,\\en,g;s,\\n,\\en,g'
49
49
 
50
 
PLUGINS=plugins.d/password-prompt plugins.d/mandos-client
 
50
PLUGINS=plugins.d/password-prompt plugins.d/password-request
51
51
PROGS=plugin-runner $(PLUGINS)
52
52
DOCS=mandos.8 plugin-runner.8mandos mandos-keygen.8 \
53
 
        plugins.d/mandos-client.8mandos \
 
53
        plugins.d/password-request.8mandos \
54
54
        plugins.d/password-prompt.8mandos mandos.conf.5 \
55
55
        mandos-clients.conf.5
56
56
 
81
81
plugin-runner.8mandos: plugin-runner.xml overview.xml legalnotice.xml
82
82
        $(DOCBOOKTOMAN)
83
83
 
84
 
plugins.d/mandos-client.8mandos: plugins.d/mandos-client.xml \
 
84
plugins.d/password-request.8mandos: plugins.d/password-request.xml \
85
85
                                        mandos-options.xml \
86
86
                                        overview.xml legalnotice.xml
87
87
        $(DOCBOOKTOMAN)
88
88
 
89
 
plugins.d/mandos-client: plugins.d/mandos-client.o
 
89
plugins.d/password-request: plugins.d/password-request.o
90
90
        $(LINK.o) $(GNUTLS_LIBS) $(AVAHI_LIBS) $(GPGME_LIBS) \
91
91
                $(COMMON) $^ $(LOADLIBES) $(LDLIBS) -o $@
92
92
 
109
109
run-client: all keydir/seckey.txt keydir/pubkey.txt
110
110
        ./plugin-runner --plugin-dir=plugins.d \
111
111
                --config-file=plugin-runner.conf \
112
 
                --options-for=mandos-client:--seckey=keydir/seckey.txt,--pubkey=keydir/pubkey.txt
 
112
                --options-for=password-request:--seckey=keydir/seckey.txt,--pubkey=keydir/pubkey.txt
113
113
 
114
114
# Used by run-client
115
115
keydir/seckey.txt keydir/pubkey.txt: mandos-keygen
126
126
        install --mode=u=rw,go=r $^ $@
127
127
confdir/clients.conf: clients.conf keydir/seckey.txt
128
128
        install --directory confdir
129
 
        install --mode=u=rw $< $@
 
129
        install --mode=u=rw,g=r $< $@
130
130
# Add a client password
131
131
        ./mandos-keygen --dir keydir --password >> $@
132
132
 
138
138
        install --mode=u=rwx,go=rx mandos $(PREFIX)/sbin/mandos
139
139
        install --mode=u=rw,go=r --target-directory=$(CONFDIR) \
140
140
                mandos.conf
141
 
        install --mode=u=rw --target-directory=$(CONFDIR) \
 
141
        install --mode=u=rw,g=r --target-directory=$(CONFDIR) \
142
142
                clients.conf
143
143
        install --mode=u=rwx,go=rx init.d-mandos /etc/init.d/mandos
144
144
        install --mode=u=rw,go=r default-mandos /etc/default/mandos
156
156
        install --directory --mode=u=rwx $(KEYDIR)
157
157
        install --directory --mode=u=rwx \
158
158
                $(PREFIX)/lib/mandos/plugins.d
159
 
        if [ "$(CONFDIR)" != "$(PREFIX)/lib/mandos" ]; then \
160
 
                install --mode=u=rwx \
161
 
                        --directory "$(CONFDIR)/plugins.d"; \
162
 
                install --mode=u=rw,go=r etc-plugins.d-README \
163
 
                        $(CONFDIR)/plugins.d/README ; \
164
 
        fi
 
159
        if [ "$(CONFDIR)/plugins.d" \
 
160
                        != "$(PREFIX)/lib/mandos/plugins.d" ]; then \
 
161
                        install --directory "$(CONFDIR)/plugins.d"; \
 
162
                fi
165
163
        install --mode=u=rwx,go=rx \
166
164
                --target-directory=$(PREFIX)/lib/mandos plugin-runner
167
165
        install --mode=u=rwx,go=rx --target-directory=$(PREFIX)/sbin \
171
169
                plugins.d/password-prompt
172
170
        install --mode=u=rwxs,go=rx \
173
171
                --target-directory=$(PREFIX)/lib/mandos/plugins.d \
174
 
                plugins.d/mandos-client
 
172
                plugins.d/password-request
175
173
        install --mode=u=rwx,go=rx \
176
174
                --target-directory=$(PREFIX)/lib/mandos/plugins.d \
177
175
                plugins.d/usplash
188
186
                > $(MANDIR)/man8/plugin-runner.8mandos.gz
189
187
        gzip --best --to-stdout plugins.d/password-prompt.8mandos \
190
188
                > $(MANDIR)/man8/password-prompt.8mandos.gz
191
 
        gzip --best --to-stdout plugins.d/mandos-client.8mandos \
192
 
                > $(MANDIR)/man8/mandos-client.8mandos.gz
193
 
# Post-installation stuff
 
189
        gzip --best --to-stdout plugins.d/password-request.8mandos \
 
190
                > $(MANDIR)/man8/password-request.8mandos.gz
194
191
        -$(PREFIX)/sbin/mandos-keygen --dir "$(KEYDIR)"
195
192
        update-initramfs -k all -u
196
193
        echo "Now run mandos-keygen --password --dir $(KEYDIR)"
213
210
        -rm --force $(PREFIX)/sbin/mandos-keygen \
214
211
                $(PREFIX)/lib/mandos/plugin-runner \
215
212
                $(PREFIX)/lib/mandos/plugins.d/password-prompt \
216
 
                $(PREFIX)/lib/mandos/plugins.d/mandos-client \
217
 
                $(PREFIX)/lib/mandos/plugins.d/usplash \
 
213
                $(PREFIX)/lib/mandos/plugins.d/password-request \
218
214
                /usr/share/initramfs-tools/hooks/mandos \
219
215
                /usr/share/initramfs-tools/conf-hooks.d/mandos \
220
 
                /usr/share/initramfs-tools/scripts/local-top/mandos \
221
216
                $(MANDIR)/man8/plugin-runner.8mandos.gz \
222
217
                $(MANDIR)/man8/mandos-keygen.8.gz \
223
218
                $(MANDIR)/man8/password-prompt.8mandos.gz \
224
 
                $(MANDIR)/man8/mandos-client.8mandos.gz
225
 
        if [ "$(CONFDIR)" != "$(PREFIX)/lib/mandos" ]; then \
226
 
                rm --force $(CONFDIR)/plugins.d/README; \
227
 
        fi
 
219
                $(MANDIR)/man8/password-request.8mandos.gz
228
220
        -rmdir $(PREFIX)/lib/mandos/plugins.d $(CONFDIR)/plugins.d \
229
 
                 $(PREFIX)/lib/mandos $(CONFDIR) $(KEYDIR)
 
221
                 $(PREFIX)/lib/mandos $(CONFDIR)
230
222
        update-initramfs -k all -u
231
223
 
232
224
purge: purge-server purge-client
233
225
 
234
226
purge-server: uninstall-server
235
227
        -rm --force $(CONFDIR)/mandos.conf $(CONFDIR)/clients.conf \
236
 
                /etc/default/mandos /etc/init.d/mandos \
237
 
                /var/run/mandos.pid
 
228
                /etc/default/mandos /etc/init.d/mandos
238
229
        -rmdir $(CONFDIR)
239
230
 
240
231
purge-client: uninstall-client