Commit d0fd3732 authored by Raphaël Hertzog's avatar Raphaël Hertzog

Merge tag 'upstream/3.4.0'

Upstream version 3.4.0
parents aff4fe93 a30bcb76
openvas-scanner 3.4.0 (2012-04-11)
This is the first release of the openvas-scanner 3.4 module for the Open
Vulnerability Assessment System release 6 (OpenVAS-6). Compared
to the previous major release it covers a set of various improvements.
Many thanks to everyone who has contributed to the 3.4.0 release:
Hani Benhabiles, Werner Koch, Michael Meyer, Matthew Mundell, Timo Pollmeier,
Thomas Reinke, Jan-Oliver Wagner and Michael Wiegand.
Main changes compared to 3.3.x:
* Minimum requirements for openvas-libraries: Increased from 5.0 to 6.0.
* Minimum requirements for GnuTLS: Increased from 2.2 to 2.8.
* New optional OTP version 1.1 which is like 1.0 but sends less info
to the client initially.
* Changed behaviour of NVT sync script "openvas-nvt-sync":
It will now delete scripts not part of the when using rsync,
except for the directory "private/".
A Migration option "--migrate-to-private" of the sync-script will
move private scripts into the "private/" directory.
The Feed Sync will stop with an error until the "private/" is created.
As soon as this directory is created, the synchronisation will ultimately
delete all files in the local feed directory that are not part of the
regular Feed.
* Changed: The magic that NVTs of category ACT_SETTINGS were always enabled
even when user disabled them has been removed. OTP clients now have
to take care to enable as needed.
* Send NODESC and NOSUMMARY instead of whole plugin description and summary when
no result is returned and plugin has all new nvt tags.
* Newline in script tags are now escaped.
* The size of tags is not limited anymore.
* Internal use of NVTI references by OID to allow using the NVTI
cache properly. This significantly lowers the memory consumption
per Scanner process.
* Improve bug tracking by directing diagnostics to the log file.
* Removed deprecated code.
* Closed a number of memory leaks.
* Various code and build cleanups.
* Removed built-in logfile rotation. It is not a good idea to try
to circumvent system environment technology for logrotate.
* New command line switch "--only-cache" to just build the cache and exit.
* Fixed a bug when NVT lacks family specification.
openvas-scanner 3.4+rc1 (2013-03-15)
This is the first release candidate of the openvas-scanner 3.4 module for the
Open Vulnerability Assessment System (OpenVAS). It will be part of the upcoming
"OpenVAS-6".
Major changes include not appending summary and description when no result is
sent and plugin is of new style and ability for greenbone-nvt-sync to use
private directory feature for RSYNC_DELETE.
Many thanks to everyone who has contributed to this release:
Timo Pollmeier, Hani Benhabiles, Matthew Mundell.
Main changes compared to 3.4+beta3:
* Send NODESC and NOSUMMARY instead of whole plugin description and summary when
no result is returned and plugin has all new nvt tags.
* Add private directory for RSYNC_DELETE to greenbone-nvt-sync.
openvas-scanner 3.4+beta2 (2013-02-20)
This is the second beta release of the openvas-scanner 3.4 module for the Open
Vulnerability Assessment System (OpenVAS). It will be part of the upcoming
"OpenVAS-6".
Main changes since last beta release are the behaviour change of the Feed
Synchronization routine and the more flexible handling of script tags.
Many thanks to everyone who has contributed to this release:
Hani Benhabiles, Werner Koch, Matthew Mundell, Timo Pollmeier,
Jan-Oliver Wagner, Michael Wiegand.
Main changes compared to 3.4+beta1:
* Changed behaviour of NVT sync script "openvas-nvt-sync":
It will now delete scripts not part of the when using rsync,
except for the directory "private/".
A Migration option "--migrate-to-private" of the sync-script will
move private scripts into the "private/" directory.
The Feed Sync will stop with an error until the "private/" is created.
As soon as this directory is created, the synchronisation will ultimately
delete all files in the local feed directory that are not part of the
regular Feed.
* Newline in script tags are now escaped.
* The size of tags is not limited anymore.
* Internal use of NVTI references by OID to allow using the NVTI
cache properly. This significantly lowers the memory consumption
per Scanner process.
* Improve bug tracking by directing diagnostics to the log file.
* Memleak fixes and other small bugfixes.
* Various code and build cleanups.
openvas-scanner 3.4+beta1 (2012-10-26)
This is the first beta release of the openvas-scanner 3.4 module for the Open
Vulnerability Assessment System (OpenVAS). It will be part of the upcoming
"OpenVAS-6".
Main new feature and other changes of 3.4 compared to 3.3 include:
A collection internal and other small improvements, introducing
OTP 1.1 as optional protocol.
Many thanks to everyone who has contributed to this release:
Michael Meyer, Matthew Mundell, Thomas Reinke, Jan-Oliver Wagner
and Michael Wiegand.
Main changes compared to 3.3.x:
* Minimum requirements for openvas-libraries: Increased from 5.0 to 6.0.
* Removed built-in logfile rotation. It is not a good idea to try
to circumvent system environment technology for logrotate.
* New optional OTP version 1.1 which is like 1.0 but sends less info
to the client initially.
* New: command line switch "--only-cache" to just build the cache and exit.
* Changed: The magic that NVTs of category ACT_SETTINGS were always enabled
even when user disabled them has been removed. OTP clients now have
to take care to enable as needed.
* Internal code cleanups for NVTI cache handling.
* Fixed a bug when NVT lacks family specification.
* Removed deprecated code.
* Closed a number of memory leaks.
openvas-scanner 3.3.1 (2012-04-24)
This is the first maintenance release of the openvas-scanner 3.3 module for the Open
......
......@@ -78,12 +78,15 @@ set (CPACK_SOURCE_TOPLEVEL_TAG "")
set (CPACK_SYSTEM_NAME "")
set (CPACK_TOPLEVEL_TAG "")
set (CPACK_PACKAGE_VERSION_MAJOR "3")
set (CPACK_PACKAGE_VERSION_MINOR "3")
set (CPACK_PACKAGE_VERSION_PATCH "1${SVN_REVISION}")
set (CPACK_PACKAGE_VERSION_MINOR "4")
# Use this scheme for stable releases
set (CPACK_PACKAGE_VERSION_PATCH "0${SVN_REVISION}")
set (CPACK_PACKAGE_VERSION "${CPACK_PACKAGE_VERSION_MAJOR}.${CPACK_PACKAGE_VERSION_MINOR}.${CPACK_PACKAGE_VERSION_PATCH}")
# Use this scheme for +betaN and +rcN releases:
#set (CPACK_PACKAGE_VERSION_PATCH "+rc2${SVN_REVISION}")
#set (CPACK_PACKAGE_VERSION_PATCH "+beta1${SVN_REVISION}")
#set (CPACK_PACKAGE_VERSION "${CPACK_PACKAGE_VERSION_MAJOR}.${CPACK_PACKAGE_VERSION_MINOR}${CPACK_PACKAGE_VERSION_PATCH}")
set (CPACK_PACKAGE_FILE_NAME "${PROJECT_NAME}-${CPACK_PACKAGE_VERSION}")
set (CPACK_SOURCE_PACKAGE_FILE_NAME "${PROJECT_NAME}-${CPACK_PACKAGE_VERSION}")
set (CPACK_PACKAGE_VENDOR "The OpenVAS Project")
......@@ -101,6 +104,7 @@ set (CPACK_SOURCE_IGNORE_FILES
"log.conf$"
"Doxyfile$"
"Doxyfile_full$"
"openvassd.8$"
"VERSION$"
"tools/openvas-adduser$"
"tools/openvas-mkcert$"
......@@ -182,8 +186,8 @@ message ("-- Install prefix: ${CMAKE_INSTALL_PREFIX}")
## list and throw an error, otherwise long install-cmake-install-cmake cycles
## might occur.
pkg_check_modules (LIBOPENVAS REQUIRED libopenvas>=5.0.0)
pkg_check_modules (GNUTLS REQUIRED gnutls>=2.2)
pkg_check_modules (LIBOPENVAS REQUIRED libopenvas>=6.0.0)
pkg_check_modules (GNUTLS REQUIRED gnutls>=2.8)
pkg_check_modules (GLIB REQUIRED glib-2.0>=2.16)
message (STATUS "Looking for pcap...")
......@@ -243,8 +247,8 @@ configure_file (tools/openvas-nvt-sync.in tools/openvas-nvt-sync @ONLY)
set (HARDENING_FLAGS "-Wformat -Wformat-security -O2 -D_FORTIFY_SOURCE=2 -fstack-protector -Wl,-z,relro -Wl,-z,now")
set (CMAKE_C_FLAGS_DEBUG "${CMAKE_C_FLAGS_DEBUG}")
set (CMAKE_C_FLAGS "${CMAKE_C_FLAGS} ${HARDENING_FLAGS} -Wall -Werror -D_BSD_SOURCE -D_ISOC99_SOURCE -D_SVID_SOURCE")
set (CMAKE_C_FLAGS_DEBUG "${CMAKE_C_FLAGS_DEBUG} -Werror")
set (CMAKE_C_FLAGS "${CMAKE_C_FLAGS} ${HARDENING_FLAGS} -Wall -D_BSD_SOURCE -D_ISOC99_SOURCE -D_SVID_SOURCE")
add_subdirectory (src)
......
2013-04-11 Michael Wiegand <michael.wiegand@greenbone.net>
Preparing the openvas-scanner 3.4.0 release.
* CHANGES: Updated.
* CMakeLists.txt: Set version to 3.4.0, switch version scheme.
2013-04-11 Michael Wiegand <michael.wiegand@greenbone.net>
Backport r15971. Patch by Matthew Mundell.
* src/log.c (log_init): Print fail messages about log file to stderr, so
that tools wanting to parse "openvassd -s" output can separate out the
the actual settings.
2013-04-11 Michael Wiegand <michael.wiegand@greenbone.net>
* CMakeLists.txt: Increase GnuTLS dependency from 2.2 to 2.8.
2013-04-11 Michael Wiegand <michael.wiegand@greenbone.net>
* INSTALL: Note increased GnuTLS dependency.
2013-03-18 Hani Benhabiles <hani.benhabiles@greenbone.net>
Post release version bump.
* CMakeLists.txt: Set version to 3.4+rc2.
2013-03-15 Hani Benhabiles <hani.benhabiles@greenbone.net>
Preparing the openvas-scanner 3.4+rc1 release.
* CHANGES: Updated.
* CMakeLists.txt: Set version to 3.4+rc1.
2013-03-15 Hani Benhabiles <hani.benhabiles@greenbone.net>
Backport r15613. Patch by Hani Benhabiles.
* src/comm.c (plugin_is_newstyle): Remove function. Now part of
plugutils.c in libraries.
2013-03-15 Hani Benhabiles <hani.benhabiles@greenbone.net>
Backport r15610. Patch by Matthew Mundell.
* src/nasl_plugins.c (plugin_is_newstyle): Check tag in case it is NULL.
Also move &&'s to front of line for consistency.
2013-03-15 Hani Benhabiles <hani.benhabiles@greenbone.net>
Backport r15596. Patch by Hani Benhabiles.
* src/comm.c (send_plug_info): Send NOSUMMARY instead of whole summary
when script tag summary is present.
(plug_is_newstyle): Rename to plugin_is_newstyle.
2013-03-15 Hani Benhabiles <hani.benhabiles@greenbone.net>
Backport r15594. Patch by Hani Benhabiles.
* src/comm.c (plug_is_newstyle): New function to check if plugin has all
newly added tags (summary, affected, insight, detection, impact,
solution).
(send_plug_info): Send NODESC instead of whole description when plugin
has all new style tags.
2013-03-15 Hani Benhabiles <hani.benhabiles@greenbone.net>
Backport r15585. Patch by Timo Pollmeier.
* tools/greenbone-nvt-sync (RSYNC_DELETE): Remove quotes causing
exclude of private directory to be ignored.
2013-03-15 Hani Benhabiles <hani.benhabiles@greenbone.net>
Backport r15561. Patch by Timo Pollmeier.
* tools/greenbone-nvt-sync: Update version number.
2013-03-15 Hani Benhabiles <hani.benhabiles@greenbone.net>
Backport r15558. Patch by Timo Pollmeier.
* tools/greenbone-nvt-sync: Add PRIVATE_SUBDIR and private directory
functionality to RSYNC_DELETE.
2013-02-22 Michael Wiegand <michael.wiegand@greenbone.net>
* src/openvassd.c (main): Update year in copyright notice.
2013-02-20 Michael Wiegand <michael.wiegand@greenbone.net>
Post release version bump.
* CMakeLists.txt: Set version to 3.4+beta3.
2013-02-20 Michael Wiegand <michael.wiegand@greenbone.net>
Move "-Werror" flag to the "Debug" build type.
* CMakeLists.txt: Move "-Werror" from CMAKE_C_FLAGS to
CMAKE_C_FLAGS_DEBUG to keep it out of the "Release" build type.
2013-02-20 Michael Wiegand <michael.wiegand@greenbone.net>
* CHANGES: Updated.
2013-02-18 Jan-Oliver Wagner <jan-oliver.wagner@greenbone.net>
Preparing the openvas-scanner 3.4+beta2 release.
* CHANGES: Updated.
2013-02-11 Hani Benhabiles <hani.benhabiles@greenbone.net>
* src/comm.c (send_plug_info): Refactor code to remove fixed size of
string regrouping nvt elements and calculate size dynamically.
Rename variables to be more readable.
2013-02-11 Hani Benhabiles <hani.benhabiles@greenbone.net>
* src/comm.c (send_plug_info): Escape new lines in script tags when
sending plugin information.
2013-02-07 Timo Pollmeier <timo.pollmeier@greenbone.net>
* tools/openvas-nvt-sync.in: Will now delete scripts not part of the
feed like greenbone-nvt-sync when using rsync, except for a private
directory. These scripts should be migrated by calling the sync script
with option --migrate-to-private.
(): Add new command line option --migrate-to-private.
(IFS0, NEWLINE, PRIVATE_SUBDIR, OPENVAS_KEY_ID, RSYNC_DELETE, CMD_GPG):
New variables.
(do_help): Add new option and variable PRIVATE_SUBDIR.
Change indentation.
(chk_system_tools): Add warning if GPG is not found.
(do_rsync): Add RSYNC_DELETE to delete files not part of the feed and
prompt for migration if no private directory is found.
(do_migrate_to_private): New function to migrate files without
an OpenVAS signature to a private subdirectory.
(check_signature): New helper function to check if a file has an
OpenVAS signature.
(move_file): New helper function to move files.
2013-02-06 Jan-Oliver Wagner <jan-oliver.wagner@greenbone.net>
* tools/greenbone-nvt-sync: Extended license from GPLv2 to
GPLv2+. Removed special exception for .nes binaries. These will
from now on be deleted.
2013-01-25 Matthew Mundell <matthew.mundell@greenbone.net>
* src/nasl_plugins.c (nasl_plugin_add): Revert second plugin_args if
block that I wrongly merged with the first one, and that Jan
subsequently removed. plugin_args is assigned within the first if
block, so it is valid to recheck it for the second block.
2013-01-24 Jan-Oliver Wagner <jan-oliver.wagner@greenbone.net>
* src/nasl_plugins.c (nasl_plugin_add): Removed (leftover?)
error message and too early exit. The error message and exit
was executed always when a new NVT (not in cache) is parsed.
2013-01-24 Werner Koch <wk@gnupg.org>
Improve bug tracking by directing diagnostics to the log file.
* src/openvassd.c: Include openvas_logging.h.
(init_openvassd): Add arg DONT_FORK and call
setup_legacy_log_handler.
(main): Pass DONT_FORK to init_openvassd.
* src/log.c (log_write): Factor most code out to ..
(log_vwrite): new function.
* src/log.h: Add prototype for log_vwrite.
* src/pluginload.c (plugins_reload_from_dir): fflush stdout to not
mess up output to stderr.
2013-01-22 Matthew Mundell <matthew.mundell@greenbone.net>
* src/nasl_plugins.c (nasl_plugin_add): Remove NULL initialisation of
nvti which is actually initialised lower down, as this gives the wrong
impression of how the variable will be used. Remove free of nvti before
plugins_args block. Enable free of nvti after plugin_args block and
remove note about crash -- free'ing twice leads to crashes. Free nvti
in plugin_arg block now that the free before plugin_arg block is gone.
Free nvti in plugin_arg block before reassigning to it, otherwise the
memory will leak. Remove free that follows this reassignment because
the nvti is freed after the plugin block. Merge duplicate plugin_args
block into first one, because having two is just confusing.
2013-01-11 Jan-Oliver Wagner <jan-oliver.wagner@greenbone.net>
* src/ntp_11.c: Resolved some overlong lines.
2013-01-11 Jan-Oliver Wagner <jan-oliver.wagner@greenbone.net>
* src/attack.c (launch_plugin): Retrieve src of nvti directly.
* src/plugs_hash.c (plugins_send_md5): Retrieve src of nvti directly.
2013-01-11 Jan-Oliver Wagner <jan-oliver.wagner@greenbone.net>
* src/attack.c (launch_plugin): Fix wrong reference. name was
truncated in rare cases.
2013-01-07 Michael Wiegand <michael.wiegand@greenbone.net>
* tools/greenbone-nvt-sync: Add support for proxy authentication.
Patch submitted by Christian Schmidt.
2013-01-06 Jan-Oliver Wagner <jan-oliver.wagner@greenbone.net>
Third part towards clean separation of NVTI into the NVTI Cache:
Copyies are returned, so these need to be free'd.
* src/nasl_plugins.c (nasl_plugin_add, nasl_plugin_launch): Free the
nvti object once it is not needed anymore.
* src/ntp_11.c (_find_plugin): Free the nvti object once it is not
needed anymore.
(ntp_1x_send_dependencies): The filename needs to be free'd because
it was strdup'ed before. Free the nvti object once it is note
needed anymore.
* src/attack.c (launch_plugin): We need the oid later on and have
many exits, so better store it locally without need to free it.
Free the nvti.
* src/plugs_hash.c (plugins_send_md5): Free the nvti object.
* src/oval_plugins.c (oval_plugin_add): Free the nvti object.
* src/comm.c (send_plug_info): Free the nvti object.
* src/pluginscheduler.c (hash_add): Free the nvti object.
(plugins_scheduler_init): Added safety heck for missing OID.
2013-01-06 Jan-Oliver Wagner <jan-oliver.wagner@greenbone.net>
Second part towards clean separation of NVTI into the NVTI Cache:
All remaining access to NVTI object via "NVTI" is replaced
by access via OID.
The only exception is the parsing code for the description
block where the OID is not necessarily known at the beginning
and therefore can not be relied on.
* src/nasl_plugins.c (nasl_plugin_add): Remove the NVTI object
after we added it for parsing the NASL file.
(nasl_plugin_add): Use OID instead of NVTI.
(nasl_plugin_launch): Use OID instead of NVTI. Fix setting of
"name" and "preferences".
* src/ntp_11.c (_find_plugin, ntp_1x_send_dependencies): Use OID
instead of NVTI.
* src/attack.c (launch_plugin): Use OID instead of NVTI.
* src/pluginlaunch.c (plugin_launch): Use OID instead of NVTI.
* src/plugs_hash.c (plugins_send_md5): Use OID instead of NVTI.
* src/comm.c (send_plug_info): Use OID instead of NVTI.
* src/pluginscheduler.c (hash_add, plugins_scheduler_init): Use OID
instead of NVTI.
2013-01-06 Jan-Oliver Wagner <jan-oliver.wagner@greenbone.net>
First part towards clean separation of NVTI into the NVTI Cache:
Plugin arg_list are provided with explicit OID element.
And whereever only the OID is required, it is directly retrieved
instead via NVTI.
* src/pluginlaunch.c (update_running_processes): Use OID element
directly instead of NVTI.
* src/comm.c (plugin_send_infos, _get_plug_by_oid): Use OID element
directly instead of NVTI.
2013-01-04 Jan-Oliver Wagner <jan-oliver.wagner@greenbone.net>
* src/pluginscheduler.c (plugins_scheduler_init): Fixed a
memleak.
2012-11-09 Michael Wiegand <michael.wiegand@greenbone.net>
* doc/CMakeLists.txt: Remove configuration no longer necessary for
out-of-source builds.
2012-10-26 Michael Wiegand <michael.wiegand@greenbone.net>
Post release version bump.
* CMakeLists.txt: Set version to 3.4+beta2.
2012-10-26 Michael Wiegand <michael.wiegand@greenbone.net>
Preparing the openvas-scanner 3.4+beta1 release.
* CHANGES: Updated.
2012-10-26 Michael Wiegand <michael.wiegand@greenbone.net>
* CMakeLists.txt: Update CPACK_SOURCE_IGNORE_FILES.
2012-10-26 Michael Wiegand <michael.wiegand@greenbone.net>
* INSTALL: Update instructions to use out-of-source building, remove
outdated information.
2012-10-26 Michael Wiegand <michael.wiegand@greenbone.net>
Update "doc" and "doc-full" targets for out-of-source builds.
* doc/CMakeLists.txt: Update commands and targets to work with
out-of-source builds.
* doc/Doxyfile.in: Updated to work with out-of-source builds.
* doc/Doxyfile_full.in: Harmonized with Doxyfile.in.
2012-10-25 Jan-Oliver Wagner <jan-oliver.wagner@greenbone.net>
* src/pluginscheduler.c (hash_link_destroy): Closed memleak.
2012-10-25 Jan-Oliver Wagner <jan-oliver.wagner@greenbone.net>
* src/pluginscheduler.c (hash_add): Closed memleak. Thanks to Felix
Wolfsteller for spotting.
2012-10-23 Jan-Oliver Wagner <jan-oliver.wagner@greenbone.net>
* INSTALL: Updated for upcoming release.
2012-10-23 Jan-Oliver Wagner <jan-oliver.wagner@greenbone.net>
* CHANGES: Prepared for soon release of first 3.4 beta.
2012-10-08 Jan-Oliver Wagner <jan-oliver.wagner@greenbone.net>
* src/pluginscheduler.c (plugins_scheduler_init): Removed the
cleverness feature to enable ACT_SETTINGS that were explicitely
disabled. This behaviour is too clever for its own good.
This means that clients can not rely on this behaviour anymore
and must select the NVTs with corresponding care from now on.
2012-10-01 Michael Wiegand <michael.wiegand@greenbone.net>
* src/openvassd.c (main): Add command line switch to exit once the NVT
cache has been initialized or updated.
2012-09-10 Thomas reinke <reinke@securityspace.com>
* src/comm.c (send_plug_info): Fixed SIGSEGV coredump that would
occur if no family specified in a nasl script (would core dump
if client connected and requested complete nasl test list)
2012-09-07 Jan-Oliver Wagner <jan-oliver.wagner@greenbone.net>
* src/ntp_11.c (ntp_1x_send_dependencies): Use str2arglist
directly instead of plug_get_deps.
* src/pluginscheduler.c (hash_add, plugins_scheduler_init):
Use str2arglist directly instead of plug_get_*.
2012-07-19 Michael Meyer <michael.meyer@greenbone.net>
* src/openvassd.c:
store.h was deleted in r13728. So don't include it.
2012-07-19 Matthew Mundell <matthew.mundell@greenbone.net>
Add new OTP version 1.1 which is like 1.0 but sends less info to the
client initially. Patch by Jan-Oliver Wagner.
* src/comm.c (comm_init): Add OTP/1.1 case.
* src/openvassd.c (scanner_thread): Skip sending some of the init info for
OTP > 1.0.
2012-07-18 Jan-Oliver Wagner <jan-oliver.wagner@greenbone.net>
* src/openvassd.c (deny_severity, allow_severity): Removed. Global
vars are never used.
2012-07-16 Jan-Oliver Wagner <jan-oliver.wagner@greenbone.net>
Removed built-in logfile rotation. It is not a good idea to try
to circumvent system enviroment technology for logrotate.
* src/log.c (MAX_LOG_SIZE_MEGS, rotate_log_file): Removed.
(log_init): Removed call of rotate_log_file).
2012-07-13 Jan-Oliver Wagner <jan-oliver.wagner@greenbone.net>
* src/comm.c (comm_send_preferences): Removed deprectated prefs sind 3.0.
2012-07-12 Jan-Oliver Wagner <jan-oliver.wagner@greenbone.net>
* src/nasl_plugins.c, src/oval_plugins.c: Replace calls
of store_load_plugin by subsequent calls of nvticache_get
and plug_create_from_nvti_and_prefs.
2012-07-12 Jan-Oliver Wagner <jan-oliver.wagner@greenbone.net>
Use nvticache API instead of store_* API in a first step.
Now it is mandatory that a cache directory really exists.
* src/nasl_plugins.c (nasl_plugin_add): Replace use of store_
API by nvticache API.
* src/oval_plugins.c (oval_plugin_add): Replace use of store_
API by nvticache API.
* src/openvassd.c (init_openvassd): Replaced init via store_
by direct nvtichache calls. Make it mandatory that a
cache directory exists. Fallback of nvi directory not
used anymore.
* CMakeLists.txt: Increase dependency to openvas-libaries
to 6.0.0.
2012-07-10 Jan-Oliver Wagner <jan-oliver.wagner@greenbone.net>
Post branch version bump.
* CMakeLists.txt: Set to version to 3.4.0 and beta status.
2012-04-24 Michael Wiegand <michael.wiegand@greenbone.net>
Post release version bump.
* CMakeLists.txt: Set version to 3.3.2.
2012-04-24 Michael Wiegand <michael.wiegand@greenbone.net>
Preparing the openvas-scanner 3.3.1 release.
......
INSTALLATION INSTRUCTIONS FOR OPENVAS-SCANNER
=============================================
Please note: The reference systems used by most of the developers are Debian
GNU/Linux 'Lenny' 5.0 and Debian GNU/Linux 'Squeeze' 6.0. The build might fail
on any other systems. Also it is necessary to install dependent development
packages.
Please note: The reference system used by most of the developers is Debian
Debian GNU/Linux 'Squeeze' 6.0. The build might fail on any other systems.
Also it is necessary to install dependent development packages.
Prerequisites for openvas-scanner
......@@ -13,8 +12,8 @@ Prerequisites for openvas-scanner
Prerequisites:
* cmake
* glib-2.0 >= 2.16
* gnutls >= 2.2
* openvas-libraries >= 5.0.0
* gnutls >= 2.8
* openvas-libraries >= 6.0.0
* pkg-config
Prerequisites for building documentation:
......@@ -32,17 +31,20 @@ files before configuring:
$ export PKG_CONFIG_PATH=$PKG_CONFIG_PATH:/your/location/lib/pkgconfig
Create a build directory and change into it with
$ mkdir build
$ cd build
Then configure the build with
$ cmake -DCMAKE_INSTALL_PREFIX=/path/to/your/installation .
$ cmake -DCMAKE_INSTALL_PREFIX=/path/to/your/installation ..
or (if you want to use the default installation path /usr/local)
$ cmake .
$ cmake ..
This only needs to be done once. Note: It is assumed that the other
OpenVAS components are installed to the same path. If not, you need to set
some paths separately, see below for details.
This only needs to be done once.
Thereafter, the following commands are useful.
......@@ -50,13 +52,13 @@ Thereafter, the following commands are useful.
$ make doc # build the documentation
$ make doc-full # build more developer-oriented documentation
$ make install # install the build
$ make rebuild_cache # rebuild the make system cache
$ make rebuild_cache # rebuild the cmake cache
$ make install
Please note that you may have to execute "make install" as root, especially if
you have specified a prefix for which your user does not have full permissions.
Please note that you may have to execute this command as root, especially if you
have specified a prefix for which your user does not have full permissions.
To clean up the build environment, simply remove the contents of the "build"
directory you created above.
Setting up openvas-scanner
......
......@@ -25,38 +25,24 @@
## build
set_directory_properties (PROPERTIES CLEAN_NO_CUSTOM true)
set_directory_properties (PROPERTIES ADDITIONAL_MAKE_CLEAN_FILES ".built-html;.built-html_full")
include (FindDoxygen)
if (NOT DOXYGEN_EXECUTABLE)
message (STATUS "WARNING: Doxygen is required to build the HTML docs.")
else (NOT DOXYGEN_EXECUTABLE)
set (DOC_FILES
../src/attack.c ../src/auth.c ../src/comm.c ../src/hosts.c
../src/locks.c ../src/log.c ../src/nasl_plugins.c ../src/ntp_11.c
../src/openvassd.c ../src/otp_1_0.c ../src/oval_plugins.c ../src/parser.c
../src/piic.c ../src/pluginlaunch.c ../src/pluginload.c
../src/pluginscheduler.c ../src/plugs_hash.c ../src/plugs_req.c
../src/preferences.c ../src/processes.c ../src/rules.c ../src/save_kb.c
../src/sighand.c ../src/users.c ../src/utils.c
../README ../INSTALL)
add_custom_target (doc COMMENT "Building documentation..."
DEPENDS Doxyfile .built-html)
DEPENDS ${CMAKE_CURRENT_BINARY_DIR}/Doxyfile ${CMAKE_CURRENT_BINARY_DIR}/.built-html)
add_custom_target (doc-full COMMENT "Building documentation..."
DEPENDS Doxyfile_full .built-html_full)
endif (NOT DOXYGEN_EXECUTABLE)
add_custom_command (OUTPUT .built-html
COMMAND sh
ARGS -c \"${DOXYGEN_EXECUTABLE} ${CMAKE_CURRENT_BINARY_DIR}/Doxyfile && touch ${CMAKE_CURRENT_BINARY_DIR}/.built-html\;\"
DEPENDS ${CMAKE_CURRENT_BINARY_DIR}/Doxyfile)
add_custom_command (OUTPUT .built-html
COMMAND sh
ARGS -c \"cd .. && ${DOXYGEN_EXECUTABLE} doc/Doxyfile && touch doc/.built-html\;\"
DEPENDS Doxyfile ${DOC_FILES})
add_custom_command (OUTPUT .built-html_full
COMMAND sh
ARGS -c \"cd .. && ${DOXYGEN_EXECUTABLE} doc/Doxyfile_full && touch doc/.built-html_full\;\"
DEPENDS Doxyfile_full ${DOC_FILES})
add_custom_target (doc-full COMMENT "Building documentation..."
DEPENDS ${CMAKE_CURRENT_BINARY_DIR}/Doxyfile_full ${CMAKE_CURRENT_BINARY_DIR}/.built-html_full)
add_custom_command (OUTPUT .built-html_full
COMMAND sh
ARGS -c \"${DOXYGEN_EXECUTABLE} ${CMAKE_CURRENT_BINARY_DIR}/Doxyfile_full && touch ${CMAKE_CURRENT_BINARY_DIR}/.built-html_full\;\"
DEPENDS ${CMAKE_CURRENT_BINARY_DIR}/Doxyfile_full)
endif (NOT DOXYGEN_EXECUTABLE)
......@@ -30,7 +30,7 @@ PROJECT_NUMBER = @CPACK_PACKAGE_VERSION@
# If a relative path is entered, it will be relative to the location
# where doxygen was started. If left blank the current directory will be used.
OUTPUT_DIRECTORY = doc/generated
OUTPUT_DIRECTORY = @CMAKE_BINARY_DIR@/doc/generated
# If the CREATE_SUBDIRS tag is set to YES, then doxygen will create
# 4096 sub-directories (in 2 levels) under the output directory of each output
......@@ -115,7 +115,7 @@ FULL_PATH_NAMES = YES
# If left blank the directory from which doxygen is run is used as the
# path to strip.
STRIP_FROM_PATH =
STRIP_FROM_PATH = @CMAKE_SOURCE_DIR@
# The STRIP_FROM_INC_PATH tag can be used to strip a user-defined part of
# the path mentioned in the documentation of a class, which tells
......@@ -459,7 +459,7 @@ WARN_LOGFILE =
# directories like "/usr/src/myproject". Separate the files or directories
# with spaces.
INPUT = src
INPUT = @CMAKE_SOURCE_DIR@/src
# If the value of the INPUT tag contains directories, you can use the
# FILE_PATTERNS tag to specify one or more wildcard pattern (like *.cpp
......@@ -474,7 +474,7 @@ FILE_PATTERNS =