/mandos/trunk : revision 541

To get this branch, use:

bzr branch
http://bzr.recompile.se/loggerhead/mandos/trunk

« back to all changes in this revision

Viewing changes to Makefile

Committer: Teddy Hogeborn
Date: 2011-12-31 20:07:11 UTC
mfrom: (535.1.9 wireless-network-hook)
Revision ID: teddy@recompile.se-20111231200711-6dli3r8drftem57r

Merge new wireless network hook. Fix bridge network hook to use
hardware addresses instead of interface names. Implement and document
new "CONNECT" environment variable for network hooks.

files added:
DBUS-API

dbus-mandos.conf

debian/source

debian/source/format

debian/source/local-options

intro.xml

mandos-ctl.xml

mandos-monitor

mandos-monitor.xml

network-hooks.d

network-hooks.d/bridge

network-hooks.d/bridge.conf

network-hooks.d/openvpn

network-hooks.d/openvpn.conf

network-hooks.d/wireless

network-hooks.d/wireless.conf

plugins.d/plymouth.c

plugins.d/plymouth.xml

files modified:
.bzrignore

INSTALL

Makefile

NEWS

README

TODO

clients.conf

common.ent

debian/changelog

debian/control

debian/copyright

debian/mandos-client.README.Debian

debian/mandos-client.docs

debian/mandos-client.lintian-overrides

debian/mandos-client.postinst

debian/mandos-client.postrm

debian/mandos.README.Debian

debian/mandos.dirs

debian/mandos.docs

debian/mandos.postinst

debian/mandos.prerm

debian/rules

debian/watch

init.d-mandos

initramfs-tools-hook

initramfs-tools-script

mandos

mandos-clients.conf.xml

mandos-ctl

mandos-keygen

mandos-keygen.xml

mandos-options.xml

mandos.conf

mandos.conf.xml

mandos.lsm

mandos.xml

plugin-runner.c

plugin-runner.xml

plugins.d/askpass-fifo.c

plugins.d/askpass-fifo.xml

plugins.d/mandos-client.c

plugins.d/mandos-client.xml

plugins.d/password-prompt.c

plugins.d/password-prompt.xml

plugins.d/splashy.c

plugins.d/splashy.xml

plugins.d/usplash.c

plugins.d/usplash.xml

Show diffs side-by-side

added added

removed removed

Makefile

-Wbad-function-cast -Wcast-qual -Wcast-align -Wwrite-strings \

-Wconversion -Wstrict-prototypes -Wold-style-definition \

-Wpacked -Wnested-externs -Winline -Wvolatile-register-var

# -Wunreachable-code

#DEBUG=-ggdb3

# For info about _FORTIFY_SOURCE, see

# <http://www.kernel.org/doc/man-pages/online/pages/man7/feature_test_macros.7.html>

# and <http://gcc.gnu.org/ml/gcc-patches/2004-09/msg02055.html>.

FORTIFY=-D_FORTIFY_SOURCE=2 -fstack-protector-all -fPIC -fPIE

LINK_FORTIFY_LD=-z relro -fPIE

LINK_FORTIFY=-pie

FORTIFY=-D_FORTIFY_SOURCE=2 -fstack-protector-all -fPIC

LINK_FORTIFY_LD=-z relro -z now

LINK_FORTIFY=

# If BROKEN_PIE is set, do not build with -pie

ifndef BROKEN_PIE

FORTIFY += -fPIE

LINK_FORTIFY += -pie

endif

#COVERAGE=--coverage

OPTIMIZE=-Os

LANGUAGE=-std=gnu99

htmldir=man

version=1.0.13

version=1.4.1

SED=sed

USER=$(firstword $(subst :, ,$(shell getent passwd _mandos || getent passwd nobody || echo 65534)))

GROUP=$(firstword $(subst :, ,$(shell getent group _mandos || getent group nobody || echo 65534)))

## Use these settings for a traditional /usr/local install

# PREFIX=$(DESTDIR)/usr/local

# CONFDIR=$(DESTDIR)/etc/mandos

# KEYDIR=$(DESTDIR)/etc/mandos/keys

# MANDIR=$(PREFIX)/man

# INITRAMFSTOOLS=$(DESTDIR)/etc/initramfs-tools

# STATEDIR=$(DESTDIR)/var/lib/mandos

## These settings are for a package-type install

KEYDIR=$(DESTDIR)/etc/keys/mandos

MANDIR=$(PREFIX)/share/man

INITRAMFSTOOLS=$(DESTDIR)/usr/share/initramfs-tools

STATEDIR=$(DESTDIR)/var/lib/mandos

GNUTLS_CFLAGS=$(shell pkg-config --cflags-only-I gnutls)

CFLAGS=$(WARN) $(DEBUG) $(FORTIFY) $(COVERAGE) $(OPTIMIZE) \

$(LANGUAGE) $(GNUTLS_CFLAGS) $(AVAHI_CFLAGS) $(GPGME_CFLAGS) \

-DVERSION='"$(version)"'

LDFLAGS=$(COVERAGE) $(LINK_FORTIFY) $(foreach flag,$(LINK_FORTIFY_LD),-Xlinker $(flag))

LDFLAGS=-Xlinker --as-needed $(COVERAGE) $(LINK_FORTIFY) $(foreach flag,$(LINK_FORTIFY_LD),-Xlinker $(flag))

# Commands to format a DocBook <refentry> document into a manual page

DOCBOOKTOMAN=cd $(dir $<); xsltproc --nonet --xinclude \

DOCBOOKTOMAN=$(strip cd $(dir $<); xsltproc --nonet --xinclude \

--param man.charmap.use.subset 0 \

--param make.year.ranges 1 \

--param make.single.year.ranges 1 \

--param man.authors.section.enabled 0 \

/usr/share/xml/docbook/stylesheet/nwalsh/manpages/docbook.xsl \

$(notdir $<); \

$(MANPOST) $(notdir $@)

$(MANPOST) $(notdir $@);\

LANG=en_US.UTF-8 MANWIDTH=80 man --warnings --encoding=UTF-8 \

--local-file $(notdir $@) >/dev/null)

# DocBook-to-man post-processing to fix a '\n' escape bug

MANPOST=$(SED) --in-place --expression='s,\\\\en,\\en,g;s,\\n,\\en,g'

DOCBOOKTOHTML=xsltproc --nonet --xinclude \

DOCBOOKTOHTML=$(strip xsltproc --nonet --xinclude \

--param make.year.ranges 1 \

--param make.single.year.ranges 1 \

--param man.output.quietly 1 \

--param citerefentry.link 1 \

--output $@ \

/usr/share/xml/docbook/stylesheet/nwalsh/xhtml/docbook.xsl \

$<; $(HTMLPOST) $@

$<; $(HTMLPOST) $@)

# Fix citerefentry links

HTMLPOST=$(SED) --in-place \

--expression='s/$<a class="citerefentry" href="$$"><span class="citerefentry"><span class="refentrytitle">$$[^<]*$$<\/span>($$[^)]*$$)<\/span><\/a>$/\1\3.\5\2\3\4\5\6/g'

PLUGINS=plugins.d/password-prompt plugins.d/mandos-client \

plugins.d/usplash plugins.d/splashy plugins.d/askpass-fifo

plugins.d/usplash plugins.d/splashy plugins.d/askpass-fifo \

plugins.d/plymouth

CPROGS=plugin-runner $(PLUGINS)

PROGS=mandos mandos-keygen mandos-ctl $(CPROGS)

DOCS=mandos.8 plugin-runner.8mandos mandos-keygen.8 \

PROGS=mandos mandos-keygen mandos-ctl mandos-monitor $(CPROGS)

DOCS=mandos.8 mandos-keygen.8 mandos-monitor.8 mandos-ctl.8 \

mandos.conf.5 mandos-clients.conf.5 plugin-runner.8mandos \

plugins.d/mandos-client.8mandos \

plugins.d/password-prompt.8mandos mandos.conf.5 \

plugins.d/usplash.8mandos plugins.d/splashy.8mandos \

plugins.d/askpass-fifo.8mandos mandos-clients.conf.5

100

plugins.d/password-prompt.8mandos plugins.d/usplash.8mandos \

101

plugins.d/splashy.8mandos plugins.d/askpass-fifo.8mandos \

102

plugins.d/plymouth.8mandos intro.8mandos

103

104

htmldocs=$(addsuffix .xhtml,$(DOCS))

105

111

126

%.8mandos.xhtml: %.xml common.ent legalnotice.xml

112

127

$(DOCBOOKTOHTML)

113

128

129

intro.8mandos: intro.xml common.ent legalnotice.xml

130

$(DOCBOOKTOMAN)

131

intro.8mandos.xhtml: intro.xml common.ent legalnotice.xml

132

$(DOCBOOKTOHTML)

133

114

134

mandos.8: mandos.xml common.ent mandos-options.xml overview.xml \

115

135

legalnotice.xml

116

136

$(DOCBOOKTOMAN)

125

145

legalnotice.xml

126

146

$(DOCBOOKTOHTML)

127

147

148

mandos-monitor.8: mandos-monitor.xml common.ent overview.xml \

149

legalnotice.xml

150

$(DOCBOOKTOMAN)

151

mandos-monitor.8.xhtml: mandos-monitor.xml common.ent overview.xml \

152

legalnotice.xml

153

$(DOCBOOKTOHTML)

154

155

mandos-ctl.8: mandos-ctl.xml common.ent overview.xml \

156

legalnotice.xml

157

$(DOCBOOKTOMAN)

158

mandos-ctl.8.xhtml: mandos-ctl.xml common.ent overview.xml \

159

legalnotice.xml

160

$(DOCBOOKTOHTML)

161

128

162

mandos.conf.5: mandos.conf.xml common.ent mandos-options.xml \

129

163

legalnotice.xml

130

164

$(DOCBOOKTOMAN)

152

186

153

187

# Update all these files with version number $(version)

154

188

common.ent: Makefile

155

$(SED) --in-place \

189

$(strip $(SED) --in-place \

156

190

--expression='s/^$<!ENTITY version "$[^"]*">$$/\1$(version)">/' \

157

191

$@)

158

192

159

193

mandos: Makefile

160

$(SED) --in-place \

194

$(strip $(SED) --in-place \

161

195

--expression='s/^$version = "$[^"]*"$$/\1$(version)"/' \

162

196

$@)

163

197

164

198

mandos-keygen: Makefile

165

$(SED) --in-place \

199

$(strip $(SED) --in-place \

166

200

--expression='s/^$VERSION="$[^"]*"$$/\1$(version)"/' \

167

201

$@)

168

202

169

203

mandos-ctl: Makefile

170

$(SED) --in-place \

171

--expression='s/^$version = "$[^"]*"$$/\1$(version)"/' \

172

204

$(strip $(SED) --in-place \

205

--expression='s/^$version = "$[^"]*"$$/\1$(version)"/' \

206

$@)

207

208

mandos-monitor: Makefile

209

$(strip $(SED) --in-place \

210

--expression='s/^$version = "$[^"]*"$$/\1$(version)"/' \

211

$@)

173

212

174

213

mandos.lsm: Makefile

175

$(SED) --in-place \

214

$(strip $(SED) --in-place \

176

215

--expression='s/^$Version:$.*/\1\t$(version)/' \

177

178

$(SED) --in-place \

216

$@)

217

$(strip $(SED) --in-place \

179

218

--expression='s/^$Entered-date:$.*/\1\t$(shell date --rfc-3339=date --reference=Makefile)/' \

180

181

$(SED) --in-place \

219

$@)

220

$(strip $(SED) --in-place \

182

221

--expression='s/$mandos_$[0-9.]\+$\.orig\.tar\.gz$/\1$(version)\2/' \

183

222

$@)

184

223

185

plugins.d/mandos-client: plugins.d/mandos-client.o

186

$(LINK.o) $(GNUTLS_LIBS) $(AVAHI_LIBS) $(GPGME_LIBS) \

187

$(COMMON) $^ $(LOADLIBES) $(LDLIBS) -o $@

224

plugins.d/mandos-client: plugins.d/mandos-client.c

225

$(LINK.c) $^ -lrt $(GNUTLS_LIBS) $(AVAHI_LIBS) $(strip\

226

) $(GPGME_LIBS) $(LOADLIBES) $(LDLIBS) -o $@

188

227

189

228

.PHONY : all doc html clean distclean run-client run-server install \

190

229

install-server install-client uninstall uninstall-server \

196

235

distclean: clean

197

236

mostlyclean: clean

198

237

maintainer-clean: clean

199

-rm --force --recursive keydir confdir

238

-rm --force --recursive keydir confdir statedir

200

239

201

240

check: all

202

241

./mandos --check

203

242

204

243

# Run the client with a local config and key

205

244

run-client: all keydir/seckey.txt keydir/pubkey.txt

245

@echo "###################################################################"

246

@echo "# The following error messages are harmless and can be safely #"

247

@echo "# ignored. The messages are caused by not running as root, but #"

248

@echo "# you should NOT run \"make run-client\" as root unless you also #"

249

@echo "# unpacked and compiled Mandos as root, which is NOT recommended. #"

250

@echo "# From plugin-runner: setuid: Operation not permitted #"

251

@echo "# From askpass-fifo: mkfifo: Permission denied #"

252

@echo "# From mandos-client: setuid: Operation not permitted #"

253

@echo "# seteuid: Operation not permitted #"

254

@echo "# klogctl: Operation not permitted #"

255

@echo "###################################################################"

206

256

./plugin-runner --plugin-dir=plugins.d \

207

257

--config-file=plugin-runner.conf \

208

--options-for=mandos-client:--seckey=keydir/seckey.txt,--pubkey=keydir/pubkey.txt \

258

--options-for=mandos-client:--seckey=keydir/seckey.txt,--pubkey=keydir/pubkey.txt,--network-hook-dir=network-hooks.d \

209

259

$(CLIENTARGS)

210

260

211

261

# Used by run-client

215

265

216

266

# Run the server with a local config

217

267

run-server: confdir/mandos.conf confdir/clients.conf

218

./mandos --debug --no-dbus --configdir=confdir $(SERVERARGS)

268

./mandos --debug --no-dbus --configdir=confdir \

269

--statedir=statedir $(SERVERARGS)

219

270

220

271

# Used by run-server

221

272

confdir/mandos.conf: mandos.conf

226

277

install --mode=u=rw $< $@

227

278

# Add a client password

228

279

./mandos-keygen --dir keydir --password >> $@

280

statedir:

281

install --directory statedir

229

282

230

283

install: install-server install-client-nokey

231

284

236

289

237

290

install-server: doc

238

291

install --directory $(CONFDIR)

292

install --directory --mode=u=rwx --owner=$(USER) \

293

--group=$(GROUP) $(STATEDIR)

239

294

install --mode=u=rwx,go=rx mandos $(PREFIX)/sbin/mandos

295

install --mode=u=rwx,go=rx --target-directory=$(PREFIX)/sbin \

296

mandos-ctl

297

install --mode=u=rwx,go=rx --target-directory=$(PREFIX)/sbin \

298

mandos-monitor

240

299

install --mode=u=rw,go=r --target-directory=$(CONFDIR) \

241

300

mandos.conf

242

301

install --mode=u=rw --target-directory=$(CONFDIR) \

243

302

clients.conf

303

install --mode=u=rw,go=r dbus-mandos.conf \

304

$(DESTDIR)/etc/dbus-1/system.d/mandos.conf

244

305

install --mode=u=rwx,go=rx init.d-mandos \

245

306

$(DESTDIR)/etc/init.d/mandos

246

307

install --mode=u=rw,go=r default-mandos \

250

311

251

312

gzip --best --to-stdout mandos.8 \

252

313

> $(MANDIR)/man8/mandos.8.gz

314

gzip --best --to-stdout mandos-monitor.8 \

315

> $(MANDIR)/man8/mandos-monitor.8.gz

316

gzip --best --to-stdout mandos-ctl.8 \

317

> $(MANDIR)/man8/mandos-ctl.8.gz

253

318

gzip --best --to-stdout mandos.conf.5 \

254

319

> $(MANDIR)/man5/mandos.conf.5.gz

255

320

gzip --best --to-stdout mandos-clients.conf.5 \

263

328

install --mode=u=rwx \

264

329

--directory "$(CONFDIR)/plugins.d"; \

265

330

331

install --mode=u=rwx,go=rx --directory \

332

"$(CONFDIR)/network-hooks.d"

266

333

install --mode=u=rwx,go=rx \

267

334

--target-directory=$(PREFIX)/lib/mandos plugin-runner

268

335

install --mode=u=rwx,go=rx --target-directory=$(PREFIX)/sbin \

282

349

install --mode=u=rwxs,go=rx \

283

350

--target-directory=$(PREFIX)/lib/mandos/plugins.d \

284

351

plugins.d/askpass-fifo

352

install --mode=u=rwxs,go=rx \

353

--target-directory=$(PREFIX)/lib/mandos/plugins.d \

354

plugins.d/plymouth

285

355

install initramfs-tools-hook \

286

356

$(INITRAMFSTOOLS)/hooks/mandos

287

357

install --mode=u=rw,go=r initramfs-tools-hook-conf \

293

363

> $(MANDIR)/man8/mandos-keygen.8.gz

294

364

gzip --best --to-stdout plugin-runner.8mandos \

295

365

> $(MANDIR)/man8/plugin-runner.8mandos.gz

366

gzip --best --to-stdout plugins.d/mandos-client.8mandos \

367

> $(MANDIR)/man8/mandos-client.8mandos.gz

296

368

gzip --best --to-stdout plugins.d/password-prompt.8mandos \

297

369

> $(MANDIR)/man8/password-prompt.8mandos.gz

298

gzip --best --to-stdout plugins.d/mandos-client.8mandos \

299

> $(MANDIR)/man8/mandos-client.8mandos.gz

300

370

gzip --best --to-stdout plugins.d/usplash.8mandos \

301

371

> $(MANDIR)/man8/usplash.8mandos.gz

302

372

gzip --best --to-stdout plugins.d/splashy.8mandos \

303

373

> $(MANDIR)/man8/splashy.8mandos.gz

304

374

gzip --best --to-stdout plugins.d/askpass-fifo.8mandos \

305

375

> $(MANDIR)/man8/askpass-fifo.8mandos.gz

376

gzip --best --to-stdout plugins.d/plymouth.8mandos \

377

> $(MANDIR)/man8/plymouth.8mandos.gz

306

378

307

379

install-client: install-client-nokey

308

380

# Post-installation stuff

314

386

315

387

uninstall-server:

316

388

-rm --force $(PREFIX)/sbin/mandos \

389

$(PREFIX)/sbin/mandos-ctl \

390

$(PREFIX)/sbin/mandos-monitor \

317

391

$(MANDIR)/man8/mandos.8.gz \

392

$(MANDIR)/man8/mandos-monitor.8.gz \

393

$(MANDIR)/man8/mandos-ctl.8.gz \

318

394

$(MANDIR)/man5/mandos.conf.5.gz \

319

395

$(MANDIR)/man5/mandos-clients.conf.5.gz

320

396

update-rc.d -f mandos remove

332

408

$(PREFIX)/lib/mandos/plugins.d/usplash \

333

409

$(PREFIX)/lib/mandos/plugins.d/splashy \

334

410

$(PREFIX)/lib/mandos/plugins.d/askpass-fifo \

411

$(PREFIX)/lib/mandos/plugins.d/plymouth \

335

412

$(INITRAMFSTOOLS)/hooks/mandos \

336

413

$(INITRAMFSTOOLS)/conf-hooks.d/mandos \

337

414

$(INITRAMFSTOOLS)/scripts/init-premount/mandos \

415

$(MANDIR)/man8/mandos-keygen.8.gz \

338

416

$(MANDIR)/man8/plugin-runner.8mandos.gz \

339

$(MANDIR)/man8/mandos-keygen.8.gz \

417

$(MANDIR)/man8/mandos-client.8mandos.gz

340

418

$(MANDIR)/man8/password-prompt.8mandos.gz \

341

419

$(MANDIR)/man8/usplash.8mandos.gz \

342

420

$(MANDIR)/man8/splashy.8mandos.gz \

343

421

$(MANDIR)/man8/askpass-fifo.8mandos.gz \

344

$(MANDIR)/man8/mandos-client.8mandos.gz

422

$(MANDIR)/man8/plymouth.8mandos.gz \

345

423

-rmdir $(PREFIX)/lib/mandos/plugins.d $(CONFDIR)/plugins.d \

346

424

$(PREFIX)/lib/mandos $(CONFDIR) $(KEYDIR)

347

425

update-initramfs -k all -u

350

428

351

429

purge-server: uninstall-server

352

430

-rm --force $(CONFDIR)/mandos.conf $(CONFDIR)/clients.conf \

431

$(DESTDIR)/etc/dbus-1/system.d/mandos.conf

353

432

$(DESTDIR)/etc/default/mandos \

354

433

$(DESTDIR)/etc/init.d/mandos \

355

434

$(DESTDIR)/var/run/mandos.pid

Older »