2018-11-01 04:36:01 +00:00
|
|
|
PKG?=github.com/smallstep/certificates/cmd/step-ca
|
2018-10-05 21:48:36 +00:00
|
|
|
BINNAME?=step-ca
|
2020-02-19 03:07:12 +00:00
|
|
|
CLOUDKMS_BINNAME?=step-cloudkms-init
|
|
|
|
CLOUDKMS_PKG?=github.com/smallstep/certificates/cmd/step-cloudkms-init
|
2020-05-20 00:35:58 +00:00
|
|
|
AWSKMS_BINNAME?=step-awskms-init
|
|
|
|
AWSKMS_PKG?=github.com/smallstep/certificates/cmd/step-awskms-init
|
2020-05-08 01:40:36 +00:00
|
|
|
YUBIKEY_BINNAME?=step-yubikey-init
|
|
|
|
YUBIKEY_PKG?=github.com/smallstep/certificates/cmd/step-yubikey-init
|
2021-01-27 04:03:53 +00:00
|
|
|
PKCS11_BINNAME?=step-pkcs11-init
|
|
|
|
PKCS11_PKG?=github.com/smallstep/certificates/cmd/step-pkcs11-init
|
2018-10-05 21:48:36 +00:00
|
|
|
|
|
|
|
# Set V to 1 for verbose output from the Makefile
|
|
|
|
Q=$(if $V,,@)
|
|
|
|
PREFIX?=
|
|
|
|
SRC=$(shell find . -type f -name '*.go' -not -path "./vendor/*")
|
|
|
|
GOOS_OVERRIDE ?=
|
2018-11-15 01:53:17 +00:00
|
|
|
OUTPUT_ROOT=output/
|
2021-06-23 20:30:30 +00:00
|
|
|
RELEASE=./.releases
|
2018-10-05 21:48:36 +00:00
|
|
|
|
2020-07-21 01:57:19 +00:00
|
|
|
all: lint test build
|
2018-10-05 21:48:36 +00:00
|
|
|
|
2021-04-13 22:31:33 +00:00
|
|
|
ci: testcgo build
|
2021-02-12 21:18:30 +00:00
|
|
|
|
2021-02-23 05:25:40 +00:00
|
|
|
.PHONY: all ci
|
2018-10-05 21:48:36 +00:00
|
|
|
|
|
|
|
#########################################
|
|
|
|
# Bootstrapping
|
|
|
|
#########################################
|
|
|
|
|
|
|
|
bootstra%:
|
2022-09-20 22:46:59 +00:00
|
|
|
$Q curl -sSfL https://raw.githubusercontent.com/golangci/golangci-lint/master/install.sh | sh -s -- -b $$(go env GOPATH)/bin latest
|
|
|
|
$Q go install golang.org/x/vuln/cmd/govulncheck@latest
|
|
|
|
$Q go install gotest.tools/gotestsum@latest
|
2019-08-27 23:39:48 +00:00
|
|
|
|
2019-10-22 01:45:55 +00:00
|
|
|
.PHONY: bootstra%
|
2018-10-05 21:48:36 +00:00
|
|
|
|
|
|
|
#################################################
|
|
|
|
# Determine the type of `push` and `version`
|
|
|
|
#################################################
|
|
|
|
|
|
|
|
# If TRAVIS_TAG is set then we know this ref has been tagged.
|
|
|
|
ifdef TRAVIS_TAG
|
2021-04-15 22:16:32 +00:00
|
|
|
VERSION ?= $(TRAVIS_TAG)
|
2021-02-23 05:25:40 +00:00
|
|
|
NOT_RC := $(shell echo $(VERSION) | grep -v -e -rc)
|
|
|
|
ifeq ($(NOT_RC),)
|
|
|
|
PUSHTYPE := release-candidate
|
|
|
|
else
|
|
|
|
PUSHTYPE := release
|
|
|
|
endif
|
|
|
|
# GITHUB Actions
|
|
|
|
else ifdef GITHUB_REF
|
2021-04-15 22:16:32 +00:00
|
|
|
VERSION ?= $(shell echo $(GITHUB_REF) | sed 's/^refs\/tags\///')
|
2020-04-10 03:36:54 +00:00
|
|
|
NOT_RC := $(shell echo $(VERSION) | grep -v -e -rc)
|
2019-03-27 18:35:17 +00:00
|
|
|
ifeq ($(NOT_RC),)
|
2020-04-10 03:36:54 +00:00
|
|
|
PUSHTYPE := release-candidate
|
2019-03-27 18:35:17 +00:00
|
|
|
else
|
2020-04-10 03:36:54 +00:00
|
|
|
PUSHTYPE := release
|
2019-03-27 18:35:17 +00:00
|
|
|
endif
|
2018-10-05 21:48:36 +00:00
|
|
|
else
|
2020-04-10 03:36:54 +00:00
|
|
|
VERSION ?= $(shell [ -d .git ] && git describe --tags --always --dirty="-dev")
|
|
|
|
# If we are not in an active git dir then try reading the version from .VERSION.
|
|
|
|
# .VERSION contains a slug populated by `git archive`.
|
|
|
|
VERSION := $(or $(VERSION),$(shell ./.version.sh .VERSION))
|
2020-08-02 20:25:21 +00:00
|
|
|
ifeq ($(TRAVIS_BRANCH),master)
|
2020-04-10 03:36:54 +00:00
|
|
|
PUSHTYPE := master
|
2020-08-02 20:25:21 +00:00
|
|
|
else
|
|
|
|
PUSHTYPE := branch
|
|
|
|
endif
|
2020-04-10 03:36:54 +00:00
|
|
|
endif
|
|
|
|
|
|
|
|
VERSION := $(shell echo $(VERSION) | sed 's/^v//')
|
2021-09-11 20:05:17 +00:00
|
|
|
DEB_VERSION := $(shell echo $(VERSION) | sed 's/-/./g')
|
2020-04-10 03:36:54 +00:00
|
|
|
|
|
|
|
ifdef V
|
|
|
|
$(info TRAVIS_TAG is $(TRAVIS_TAG))
|
2021-02-23 05:25:40 +00:00
|
|
|
$(info GITHUB_REF is $(GITHUB_REF))
|
2020-04-10 03:36:54 +00:00
|
|
|
$(info VERSION is $(VERSION))
|
2020-08-03 16:23:29 +00:00
|
|
|
$(info DEB_VERSION is $(DEB_VERSION))
|
2020-04-10 03:36:54 +00:00
|
|
|
$(info PUSHTYPE is $(PUSHTYPE))
|
2018-10-05 21:48:36 +00:00
|
|
|
endif
|
|
|
|
|
2020-08-02 20:25:21 +00:00
|
|
|
include make/docker.mk
|
|
|
|
|
2018-10-05 21:48:36 +00:00
|
|
|
#########################################
|
|
|
|
# Build
|
|
|
|
#########################################
|
|
|
|
|
|
|
|
DATE := $(shell date -u '+%Y-%m-%d %H:%M UTC')
|
|
|
|
LDFLAGS := -ldflags='-w -X "main.Version=$(VERSION)" -X "main.BuildTime=$(DATE)"'
|
|
|
|
GOFLAGS := CGO_ENABLED=0
|
|
|
|
|
2019-10-22 01:52:01 +00:00
|
|
|
download:
|
|
|
|
$Q go mod download
|
|
|
|
|
2021-01-27 04:03:53 +00:00
|
|
|
build: $(PREFIX)bin/$(BINNAME) $(PREFIX)bin/$(CLOUDKMS_BINNAME) $(PREFIX)bin/$(AWSKMS_BINNAME) $(PREFIX)bin/$(YUBIKEY_BINNAME) $(PREFIX)bin/$(PKCS11_BINNAME)
|
2018-10-05 21:48:36 +00:00
|
|
|
@echo "Build Complete!"
|
|
|
|
|
2019-10-22 01:52:01 +00:00
|
|
|
$(PREFIX)bin/$(BINNAME): download $(call rwildcard,*.go)
|
2018-10-05 21:48:36 +00:00
|
|
|
$Q mkdir -p $(@D)
|
|
|
|
$Q $(GOOS_OVERRIDE) $(GOFLAGS) go build -v -o $(PREFIX)bin/$(BINNAME) $(LDFLAGS) $(PKG)
|
|
|
|
|
2020-02-19 03:07:12 +00:00
|
|
|
$(PREFIX)bin/$(CLOUDKMS_BINNAME): download $(call rwildcard,*.go)
|
|
|
|
$Q mkdir -p $(@D)
|
|
|
|
$Q $(GOOS_OVERRIDE) $(GOFLAGS) go build -v -o $(PREFIX)bin/$(CLOUDKMS_BINNAME) $(LDFLAGS) $(CLOUDKMS_PKG)
|
|
|
|
|
2020-05-20 00:35:58 +00:00
|
|
|
$(PREFIX)bin/$(AWSKMS_BINNAME): download $(call rwildcard,*.go)
|
|
|
|
$Q mkdir -p $(@D)
|
|
|
|
$Q $(GOOS_OVERRIDE) $(GOFLAGS) go build -v -o $(PREFIX)bin/$(AWSKMS_BINNAME) $(LDFLAGS) $(AWSKMS_PKG)
|
|
|
|
|
2020-05-08 01:40:36 +00:00
|
|
|
$(PREFIX)bin/$(YUBIKEY_BINNAME): download $(call rwildcard,*.go)
|
|
|
|
$Q mkdir -p $(@D)
|
|
|
|
$Q $(GOOS_OVERRIDE) $(GOFLAGS) go build -v -o $(PREFIX)bin/$(YUBIKEY_BINNAME) $(LDFLAGS) $(YUBIKEY_PKG)
|
|
|
|
|
2021-01-27 04:03:53 +00:00
|
|
|
$(PREFIX)bin/$(PKCS11_BINNAME): download $(call rwildcard,*.go)
|
|
|
|
$Q mkdir -p $(@D)
|
|
|
|
$Q $(GOOS_OVERRIDE) $(GOFLAGS) go build -v -o $(PREFIX)bin/$(PKCS11_BINNAME) $(LDFLAGS) $(PKCS11_PKG)
|
|
|
|
|
2019-10-22 01:45:55 +00:00
|
|
|
# Target to force a build of step-ca without running tests
|
2020-05-08 01:40:36 +00:00
|
|
|
simple: build
|
2018-10-05 21:48:36 +00:00
|
|
|
|
2019-10-22 01:52:01 +00:00
|
|
|
.PHONY: download build simple
|
2018-10-05 21:48:36 +00:00
|
|
|
|
|
|
|
#########################################
|
|
|
|
# Go generate
|
|
|
|
#########################################
|
|
|
|
|
|
|
|
generate:
|
|
|
|
$Q go generate ./...
|
|
|
|
|
|
|
|
.PHONY: generate
|
|
|
|
|
|
|
|
#########################################
|
|
|
|
# Test
|
|
|
|
#########################################
|
|
|
|
test:
|
2021-02-12 21:18:30 +00:00
|
|
|
$Q $(GOFLAGS) go test -short -coverprofile=coverage.out ./...
|
|
|
|
|
|
|
|
testcgo:
|
2021-02-02 01:04:07 +00:00
|
|
|
$Q go test -short -coverprofile=coverage.out ./...
|
2018-10-05 21:48:36 +00:00
|
|
|
|
2021-02-12 21:18:30 +00:00
|
|
|
.PHONY: test testcgo
|
2018-10-05 21:48:36 +00:00
|
|
|
|
|
|
|
integrate: integration
|
|
|
|
|
|
|
|
integration: bin/$(BINNAME)
|
|
|
|
$Q $(GOFLAGS) go test -tags=integration ./integration/...
|
|
|
|
|
|
|
|
.PHONY: integrate integration
|
|
|
|
|
|
|
|
#########################################
|
|
|
|
# Linting
|
|
|
|
#########################################
|
|
|
|
|
|
|
|
fmt:
|
2022-09-20 22:46:59 +00:00
|
|
|
$Q goimports -l -w $(SRC)
|
2018-10-05 21:48:36 +00:00
|
|
|
|
2022-09-20 22:46:59 +00:00
|
|
|
lint: SHELL:=/bin/bash
|
2019-08-27 23:39:48 +00:00
|
|
|
lint:
|
2022-09-20 22:46:59 +00:00
|
|
|
$Q LOG_LEVEL=error golangci-lint run --config <(curl -s https://raw.githubusercontent.com/smallstep/workflows/master/.golangci.yml) --timeout=30m
|
|
|
|
$Q govulncheck ./...
|
2021-02-12 21:18:30 +00:00
|
|
|
|
2022-09-20 22:46:59 +00:00
|
|
|
.PHONY: fmt lint
|
2018-10-05 21:48:36 +00:00
|
|
|
|
|
|
|
#########################################
|
|
|
|
# Install
|
|
|
|
#########################################
|
|
|
|
|
|
|
|
INSTALL_PREFIX?=/usr/
|
|
|
|
|
2020-08-19 20:21:14 +00:00
|
|
|
install: $(PREFIX)bin/$(BINNAME) $(PREFIX)bin/$(CLOUDKMS_BINNAME) $(PREFIX)bin/$(AWSKMS_BINNAME)
|
2018-10-05 21:48:36 +00:00
|
|
|
$Q install -D $(PREFIX)bin/$(BINNAME) $(DESTDIR)$(INSTALL_PREFIX)bin/$(BINNAME)
|
2020-02-19 03:07:12 +00:00
|
|
|
$Q install -D $(PREFIX)bin/$(CLOUDKMS_BINNAME) $(DESTDIR)$(INSTALL_PREFIX)bin/$(CLOUDKMS_BINNAME)
|
2020-08-19 20:21:14 +00:00
|
|
|
$Q install -D $(PREFIX)bin/$(AWSKMS_BINNAME) $(DESTDIR)$(INSTALL_PREFIX)bin/$(AWSKMS_BINNAME)
|
2018-10-05 21:48:36 +00:00
|
|
|
|
|
|
|
uninstall:
|
|
|
|
$Q rm -f $(DESTDIR)$(INSTALL_PREFIX)/bin/$(BINNAME)
|
2020-02-19 03:07:12 +00:00
|
|
|
$Q rm -f $(DESTDIR)$(INSTALL_PREFIX)/bin/$(CLOUDKMS_BINNAME)
|
2020-08-19 20:21:14 +00:00
|
|
|
$Q rm -f $(DESTDIR)$(INSTALL_PREFIX)/bin/$(AWSKMS_BINNAME)
|
2018-10-05 21:48:36 +00:00
|
|
|
|
|
|
|
.PHONY: install uninstall
|
|
|
|
|
2019-02-20 20:45:10 +00:00
|
|
|
#########################################
|
|
|
|
# Clean
|
|
|
|
#########################################
|
|
|
|
|
|
|
|
clean:
|
|
|
|
ifneq ($(BINNAME),"")
|
|
|
|
$Q rm -f bin/$(BINNAME)
|
|
|
|
endif
|
2020-02-19 03:07:12 +00:00
|
|
|
ifneq ($(CLOUDKMS_BINNAME),"")
|
|
|
|
$Q rm -f bin/$(CLOUDKMS_BINNAME)
|
|
|
|
endif
|
2020-08-19 20:21:14 +00:00
|
|
|
ifneq ($(AWSKMS_BINNAME),"")
|
|
|
|
$Q rm -f bin/$(AWSKMS_BINNAME)
|
|
|
|
endif
|
|
|
|
ifneq ($(YUBIKEY_BINNAME),"")
|
|
|
|
$Q rm -f bin/$(YUBIKEY_BINNAME)
|
|
|
|
endif
|
2021-01-27 04:03:53 +00:00
|
|
|
ifneq ($(PKCS11_BINNAME),"")
|
|
|
|
$Q rm -f bin/$(PKCS11_BINNAME)
|
|
|
|
endif
|
2019-02-20 20:45:10 +00:00
|
|
|
|
|
|
|
.PHONY: clean
|
|
|
|
|
2020-03-25 20:11:03 +00:00
|
|
|
#########################################
|
|
|
|
# Dev
|
|
|
|
#########################################
|
|
|
|
|
|
|
|
run:
|
|
|
|
$Q go run cmd/step-ca/main.go $(shell step path)/config/ca.json
|
|
|
|
|
|
|
|
.PHONY: run
|
|
|
|
|
2018-10-05 21:48:36 +00:00
|
|
|
#########################################
|
|
|
|
# Debian
|
|
|
|
#########################################
|
|
|
|
|
2018-11-02 22:08:50 +00:00
|
|
|
changelog:
|
2021-03-02 19:58:42 +00:00
|
|
|
$Q echo "step-ca ($(DEB_VERSION)) unstable; urgency=medium" > debian/changelog
|
2018-11-02 22:08:50 +00:00
|
|
|
$Q echo >> debian/changelog
|
|
|
|
$Q echo " * See https://github.com/smallstep/certificates/releases" >> debian/changelog
|
|
|
|
$Q echo >> debian/changelog
|
|
|
|
$Q echo " -- Smallstep Labs, Inc. <techadmin@smallstep.com> $(shell date -uR)" >> debian/changelog
|
|
|
|
|
|
|
|
debian: changelog
|
2018-10-05 21:48:36 +00:00
|
|
|
$Q mkdir -p $(RELEASE); \
|
2021-03-02 18:57:17 +00:00
|
|
|
OUTPUT=../step-ca*.deb; \
|
2018-10-05 21:48:36 +00:00
|
|
|
rm $$OUTPUT; \
|
|
|
|
dpkg-buildpackage -b -rfakeroot -us -uc && cp $$OUTPUT $(RELEASE)/
|
|
|
|
|
|
|
|
distclean: clean
|
|
|
|
|
2018-11-02 22:08:50 +00:00
|
|
|
.PHONY: changelog debian distclean
|
2018-10-05 21:48:36 +00:00
|
|
|
|
|
|
|
#################################################
|
|
|
|
# Targets for creating step artifacts
|
|
|
|
#################################################
|
|
|
|
|
2021-02-18 22:28:17 +00:00
|
|
|
docker-artifacts: docker-$(PUSHTYPE)
|
2018-10-05 21:48:36 +00:00
|
|
|
|
2021-02-18 22:28:17 +00:00
|
|
|
.PHONY: docker-artifacts
|