/mandos/trunk : revision 541

To get this branch, use:

bzr branch
http://bzr.recompile.se/loggerhead/mandos/trunk

« back to all changes in this revision

Viewing changes to Makefile

Committer: Teddy Hogeborn
Date: 2011-12-31 20:07:11 UTC
mfrom: (535.1.9 wireless-network-hook)
Revision ID: teddy@recompile.se-20111231200711-6dli3r8drftem57r

Merge new wireless network hook. Fix bridge network hook to use
hardware addresses instead of interface names. Implement and document
new "CONNECT" environment variable for network hooks.

files added:
DBUS-API

dbus-mandos.conf

debian/source

debian/source/format

debian/source/local-options

intro.xml

mandos-ctl.xml

mandos-monitor

mandos-monitor.xml

network-hooks.d

network-hooks.d/bridge

network-hooks.d/bridge.conf

network-hooks.d/openvpn

network-hooks.d/openvpn.conf

network-hooks.d/wireless

network-hooks.d/wireless.conf

plugins.d/plymouth.c

plugins.d/plymouth.xml

files modified:
.bzrignore

INSTALL

Makefile

NEWS

README

TODO

clients.conf

common.ent

debian/changelog

debian/control

debian/copyright

debian/mandos-client.README.Debian

debian/mandos-client.docs

debian/mandos-client.lintian-overrides

debian/mandos-client.postinst

debian/mandos-client.postrm

debian/mandos.README.Debian

debian/mandos.dirs

debian/mandos.docs

debian/mandos.postinst

debian/mandos.prerm

debian/rules

debian/watch

init.d-mandos

initramfs-tools-hook

initramfs-tools-script

mandos

mandos-clients.conf.xml

mandos-ctl

mandos-keygen

mandos-keygen.xml

mandos-options.xml

mandos.conf

mandos.conf.xml

mandos.lsm

mandos.xml

plugin-runner.c

plugin-runner.xml

plugins.d/askpass-fifo.c

plugins.d/askpass-fifo.xml

plugins.d/mandos-client.c

plugins.d/mandos-client.xml

plugins.d/password-prompt.c

plugins.d/password-prompt.xml

plugins.d/splashy.c

plugins.d/splashy.xml

plugins.d/usplash.c

plugins.d/usplash.xml

Show diffs side-by-side

added added

removed removed

Makefile

-Wbad-function-cast -Wcast-qual -Wcast-align -Wwrite-strings \

-Wconversion -Wstrict-prototypes -Wold-style-definition \

-Wpacked -Wnested-externs -Winline -Wvolatile-register-var

# -Wunreachable-code

#DEBUG=-ggdb3

# For info about _FORTIFY_SOURCE, see

# <http://www.kernel.org/doc/man-pages/online/pages/man7/feature_test_macros.7.html>

FORTIFY=-D_FORTIFY_SOURCE=2 -fstack-protector-all -fPIC

LINK_FORTIFY_LD=-z relro -z now

LINK_FORTIFY=

# If BROKEN_PIE is set, do not build with -pie

ifndef BROKEN_PIE

FORTIFY += -fPIE

LINK_FORTIFY_LD += -fPIE

LINK_FORTIFY += -pie

endif

#COVERAGE=--coverage

OPTIMIZE=-Os

LANGUAGE=-std=gnu99

htmldir=man

version=1.0.14

version=1.4.1

SED=sed

USER=$(firstword $(subst :, ,$(shell getent passwd _mandos || getent passwd nobody || echo 65534)))

GROUP=$(firstword $(subst :, ,$(shell getent group _mandos || getent group nobody || echo 65534)))

## Use these settings for a traditional /usr/local install

# PREFIX=$(DESTDIR)/usr/local

# CONFDIR=$(DESTDIR)/etc/mandos

# KEYDIR=$(DESTDIR)/etc/mandos/keys

# MANDIR=$(PREFIX)/man

# INITRAMFSTOOLS=$(DESTDIR)/etc/initramfs-tools

# STATEDIR=$(DESTDIR)/var/lib/mandos

## These settings are for a package-type install

KEYDIR=$(DESTDIR)/etc/keys/mandos

MANDIR=$(PREFIX)/share/man

INITRAMFSTOOLS=$(DESTDIR)/usr/share/initramfs-tools

STATEDIR=$(DESTDIR)/var/lib/mandos

GNUTLS_CFLAGS=$(shell pkg-config --cflags-only-I gnutls)

CFLAGS=$(WARN) $(DEBUG) $(FORTIFY) $(COVERAGE) $(OPTIMIZE) \

$(LANGUAGE) $(GNUTLS_CFLAGS) $(AVAHI_CFLAGS) $(GPGME_CFLAGS) \

-DVERSION='"$(version)"'

LDFLAGS=$(COVERAGE) $(LINK_FORTIFY) $(foreach flag,$(LINK_FORTIFY_LD),-Xlinker $(flag))

LDFLAGS=-Xlinker --as-needed $(COVERAGE) $(LINK_FORTIFY) $(foreach flag,$(LINK_FORTIFY_LD),-Xlinker $(flag))

# Commands to format a DocBook <refentry> document into a manual page

DOCBOOKTOMAN=$(strip cd $(dir $<); xsltproc --nonet --xinclude \

--param man.authors.section.enabled 0 \

/usr/share/xml/docbook/stylesheet/nwalsh/manpages/docbook.xsl \

$(notdir $<); \

$(MANPOST) $(notdir $@))

$(MANPOST) $(notdir $@);\

LANG=en_US.UTF-8 MANWIDTH=80 man --warnings --encoding=UTF-8 \

--local-file $(notdir $@) >/dev/null)

# DocBook-to-man post-processing to fix a '\n' escape bug

MANPOST=$(SED) --in-place --expression='s,\\\\en,\\en,g;s,\\n,\\en,g'

--expression='s/$<a class="citerefentry" href="$$"><span class="citerefentry"><span class="refentrytitle">$$[^<]*$$<\/span>($$[^)]*$$)<\/span><\/a>$/\1\3.\5\2\3\4\5\6/g'

PLUGINS=plugins.d/password-prompt plugins.d/mandos-client \

plugins.d/usplash plugins.d/splashy plugins.d/askpass-fifo

plugins.d/usplash plugins.d/splashy plugins.d/askpass-fifo \

plugins.d/plymouth

CPROGS=plugin-runner $(PLUGINS)

PROGS=mandos mandos-keygen mandos-ctl $(CPROGS)

DOCS=mandos.8 plugin-runner.8mandos mandos-keygen.8 \

PROGS=mandos mandos-keygen mandos-ctl mandos-monitor $(CPROGS)

DOCS=mandos.8 mandos-keygen.8 mandos-monitor.8 mandos-ctl.8 \

mandos.conf.5 mandos-clients.conf.5 plugin-runner.8mandos \

plugins.d/mandos-client.8mandos \

plugins.d/password-prompt.8mandos mandos.conf.5 \

plugins.d/usplash.8mandos plugins.d/splashy.8mandos \

plugins.d/askpass-fifo.8mandos mandos-clients.conf.5

100

plugins.d/password-prompt.8mandos plugins.d/usplash.8mandos \

101

plugins.d/splashy.8mandos plugins.d/askpass-fifo.8mandos \

102

plugins.d/plymouth.8mandos intro.8mandos

103

104

htmldocs=$(addsuffix .xhtml,$(DOCS))

105

116

126

%.8mandos.xhtml: %.xml common.ent legalnotice.xml

117

127

$(DOCBOOKTOHTML)

118

128

129

intro.8mandos: intro.xml common.ent legalnotice.xml

130

$(DOCBOOKTOMAN)

131

intro.8mandos.xhtml: intro.xml common.ent legalnotice.xml

132

$(DOCBOOKTOHTML)

133

119

134

mandos.8: mandos.xml common.ent mandos-options.xml overview.xml \

120

135

legalnotice.xml

121

136

$(DOCBOOKTOMAN)

130

145

legalnotice.xml

131

146

$(DOCBOOKTOHTML)

132

147

148

mandos-monitor.8: mandos-monitor.xml common.ent overview.xml \

149

legalnotice.xml

150

$(DOCBOOKTOMAN)

151

mandos-monitor.8.xhtml: mandos-monitor.xml common.ent overview.xml \

152

legalnotice.xml

153

$(DOCBOOKTOHTML)

154

155

mandos-ctl.8: mandos-ctl.xml common.ent overview.xml \

156

legalnotice.xml

157

$(DOCBOOKTOMAN)

158

mandos-ctl.8.xhtml: mandos-ctl.xml common.ent overview.xml \

159

legalnotice.xml

160

$(DOCBOOKTOHTML)

161

133

162

mandos.conf.5: mandos.conf.xml common.ent mandos-options.xml \

134

163

legalnotice.xml

135

164

$(DOCBOOKTOMAN)

176

205

--expression='s/^$version = "$[^"]*"$$/\1$(version)"/' \

177

206

$@)

178

207

208

mandos-monitor: Makefile

209

$(strip $(SED) --in-place \

210

--expression='s/^$version = "$[^"]*"$$/\1$(version)"/' \

211

$@)

212

179

213

mandos.lsm: Makefile

180

214

$(strip $(SED) --in-place \

181

215

--expression='s/^$Version:$.*/\1\t$(version)/' \

188

222

$@)

189

223

190

224

plugins.d/mandos-client: plugins.d/mandos-client.c

191

$(LINK.c) $(GNUTLS_LIBS) $(AVAHI_LIBS) $(GPGME_LIBS) $(strip\

192

) $(COMMON) $^ $(LOADLIBES) $(LDLIBS) -o $@

225

$(LINK.c) $^ -lrt $(GNUTLS_LIBS) $(AVAHI_LIBS) $(strip\

226

) $(GPGME_LIBS) $(LOADLIBES) $(LDLIBS) -o $@

193

227

194

228

.PHONY : all doc html clean distclean run-client run-server install \

195

229

install-server install-client uninstall uninstall-server \

201

235

distclean: clean

202

236

mostlyclean: clean

203

237

maintainer-clean: clean

204

-rm --force --recursive keydir confdir

238

-rm --force --recursive keydir confdir statedir

205

239

206

240

check: all

207

241

./mandos --check

208

242

209

243

# Run the client with a local config and key

210

244

run-client: all keydir/seckey.txt keydir/pubkey.txt

245

@echo "###################################################################"

246

@echo "# The following error messages are harmless and can be safely #"

247

@echo "# ignored. The messages are caused by not running as root, but #"

248

@echo "# you should NOT run \"make run-client\" as root unless you also #"

249

@echo "# unpacked and compiled Mandos as root, which is NOT recommended. #"

250

@echo "# From plugin-runner: setuid: Operation not permitted #"

251

@echo "# From askpass-fifo: mkfifo: Permission denied #"

252

@echo "# From mandos-client: setuid: Operation not permitted #"

253

@echo "# seteuid: Operation not permitted #"

254

@echo "# klogctl: Operation not permitted #"

255

@echo "###################################################################"

211

256

./plugin-runner --plugin-dir=plugins.d \

212

257

--config-file=plugin-runner.conf \

213

--options-for=mandos-client:--seckey=keydir/seckey.txt,--pubkey=keydir/pubkey.txt \

258

--options-for=mandos-client:--seckey=keydir/seckey.txt,--pubkey=keydir/pubkey.txt,--network-hook-dir=network-hooks.d \

214

259

$(CLIENTARGS)

215

260

216

261

# Used by run-client

220

265

221

266

# Run the server with a local config

222

267

run-server: confdir/mandos.conf confdir/clients.conf

223

./mandos --debug --no-dbus --configdir=confdir $(SERVERARGS)

268

./mandos --debug --no-dbus --configdir=confdir \

269

--statedir=statedir $(SERVERARGS)

224

270

225

271

# Used by run-server

226

272

confdir/mandos.conf: mandos.conf

231

277

install --mode=u=rw $< $@

232

278

# Add a client password

233

279

./mandos-keygen --dir keydir --password >> $@

280

statedir:

281

install --directory statedir

234

282

235

283

install: install-server install-client-nokey

236

284

241

289

242

290

install-server: doc

243

291

install --directory $(CONFDIR)

292

install --directory --mode=u=rwx --owner=$(USER) \

293

--group=$(GROUP) $(STATEDIR)

244

294

install --mode=u=rwx,go=rx mandos $(PREFIX)/sbin/mandos

295

install --mode=u=rwx,go=rx --target-directory=$(PREFIX)/sbin \

296

mandos-ctl

297

install --mode=u=rwx,go=rx --target-directory=$(PREFIX)/sbin \

298

mandos-monitor

245

299

install --mode=u=rw,go=r --target-directory=$(CONFDIR) \

246

300

mandos.conf

247

301

install --mode=u=rw --target-directory=$(CONFDIR) \

248

302

clients.conf

303

install --mode=u=rw,go=r dbus-mandos.conf \

304

$(DESTDIR)/etc/dbus-1/system.d/mandos.conf

249

305

install --mode=u=rwx,go=rx init.d-mandos \

250

306

$(DESTDIR)/etc/init.d/mandos

251

307

install --mode=u=rw,go=r default-mandos \

255

311

256

312

gzip --best --to-stdout mandos.8 \

257

313

> $(MANDIR)/man8/mandos.8.gz

314

gzip --best --to-stdout mandos-monitor.8 \

315

> $(MANDIR)/man8/mandos-monitor.8.gz

316

gzip --best --to-stdout mandos-ctl.8 \

317

> $(MANDIR)/man8/mandos-ctl.8.gz

258

318

gzip --best --to-stdout mandos.conf.5 \

259

319

> $(MANDIR)/man5/mandos.conf.5.gz

260

320

gzip --best --to-stdout mandos-clients.conf.5 \

268

328

install --mode=u=rwx \

269

329

--directory "$(CONFDIR)/plugins.d"; \

270

330

331

install --mode=u=rwx,go=rx --directory \

332

"$(CONFDIR)/network-hooks.d"

271

333

install --mode=u=rwx,go=rx \

272

334

--target-directory=$(PREFIX)/lib/mandos plugin-runner

273

335

install --mode=u=rwx,go=rx --target-directory=$(PREFIX)/sbin \

287

349

install --mode=u=rwxs,go=rx \

288

350

--target-directory=$(PREFIX)/lib/mandos/plugins.d \

289

351

plugins.d/askpass-fifo

352

install --mode=u=rwxs,go=rx \

353

--target-directory=$(PREFIX)/lib/mandos/plugins.d \

354

plugins.d/plymouth

290

355

install initramfs-tools-hook \

291

356

$(INITRAMFSTOOLS)/hooks/mandos

292

357

install --mode=u=rw,go=r initramfs-tools-hook-conf \

298

363

> $(MANDIR)/man8/mandos-keygen.8.gz

299

364

gzip --best --to-stdout plugin-runner.8mandos \

300

365

> $(MANDIR)/man8/plugin-runner.8mandos.gz

366

gzip --best --to-stdout plugins.d/mandos-client.8mandos \

367

> $(MANDIR)/man8/mandos-client.8mandos.gz

301

368

gzip --best --to-stdout plugins.d/password-prompt.8mandos \

302

369

> $(MANDIR)/man8/password-prompt.8mandos.gz

303

gzip --best --to-stdout plugins.d/mandos-client.8mandos \

304

> $(MANDIR)/man8/mandos-client.8mandos.gz

305

370

gzip --best --to-stdout plugins.d/usplash.8mandos \

306

371

> $(MANDIR)/man8/usplash.8mandos.gz

307

372

gzip --best --to-stdout plugins.d/splashy.8mandos \

308

373

> $(MANDIR)/man8/splashy.8mandos.gz

309

374

gzip --best --to-stdout plugins.d/askpass-fifo.8mandos \

310

375

> $(MANDIR)/man8/askpass-fifo.8mandos.gz

376

gzip --best --to-stdout plugins.d/plymouth.8mandos \

377

> $(MANDIR)/man8/plymouth.8mandos.gz

311

378

312

379

install-client: install-client-nokey

313

380

# Post-installation stuff

319

386

320

387

uninstall-server:

321

388

-rm --force $(PREFIX)/sbin/mandos \

389

$(PREFIX)/sbin/mandos-ctl \

390

$(PREFIX)/sbin/mandos-monitor \

322

391

$(MANDIR)/man8/mandos.8.gz \

392

$(MANDIR)/man8/mandos-monitor.8.gz \

393

$(MANDIR)/man8/mandos-ctl.8.gz \

323

394

$(MANDIR)/man5/mandos.conf.5.gz \

324

395

$(MANDIR)/man5/mandos-clients.conf.5.gz

325

396

update-rc.d -f mandos remove

337

408

$(PREFIX)/lib/mandos/plugins.d/usplash \

338

409

$(PREFIX)/lib/mandos/plugins.d/splashy \

339

410

$(PREFIX)/lib/mandos/plugins.d/askpass-fifo \

411

$(PREFIX)/lib/mandos/plugins.d/plymouth \

340

412

$(INITRAMFSTOOLS)/hooks/mandos \

341

413

$(INITRAMFSTOOLS)/conf-hooks.d/mandos \

342

414

$(INITRAMFSTOOLS)/scripts/init-premount/mandos \

415

$(MANDIR)/man8/mandos-keygen.8.gz \

343

416

$(MANDIR)/man8/plugin-runner.8mandos.gz \

344

$(MANDIR)/man8/mandos-keygen.8.gz \

417

$(MANDIR)/man8/mandos-client.8mandos.gz

345

418

$(MANDIR)/man8/password-prompt.8mandos.gz \

346

419

$(MANDIR)/man8/usplash.8mandos.gz \

347

420

$(MANDIR)/man8/splashy.8mandos.gz \

348

421

$(MANDIR)/man8/askpass-fifo.8mandos.gz \

349

$(MANDIR)/man8/mandos-client.8mandos.gz

422

$(MANDIR)/man8/plymouth.8mandos.gz \

350

423

-rmdir $(PREFIX)/lib/mandos/plugins.d $(CONFDIR)/plugins.d \

351

424

$(PREFIX)/lib/mandos $(CONFDIR) $(KEYDIR)

352

425

update-initramfs -k all -u

355

428

356

429

purge-server: uninstall-server

357

430

-rm --force $(CONFDIR)/mandos.conf $(CONFDIR)/clients.conf \

431

$(DESTDIR)/etc/dbus-1/system.d/mandos.conf

358

432

$(DESTDIR)/etc/default/mandos \

359

433

$(DESTDIR)/etc/init.d/mandos \

360

434

$(DESTDIR)/var/run/mandos.pid

Older »