proxmox-utils/wireguard/templates/root/Makefile



SERVER_DIR := /etc/wireguard/
SERVER_TPL := templates/wg0.conf
SERVER_CLIENT_TPL := templates/wg0-client.tpl
SERVER_CONF := $(SERVER_DIR)/wg0.conf
SERVER_KEY := $(SERVER_DIR)/server_id
SERVER_PUBLIC_KEY := $(SERVER_DIR)/server_id.pub

CLIENT_TPL := templates/client.conf
CLIENT_DIR := $(SERVER_DIR)/clients/

CLIENT_IPS ?= ${CLIENT_IPS}
ENDPOINT_PORT ?= ${ENDPOINT_PORT}
ENDPOINT ?= ${ENDPOINT}

DNS ?= ${DNS}
ALLOWED_IPS ?= 0.0.0.0/0
# XXX need to generate this...
CLIENT_IP ?= 10.42.0.1/32


test:
	$(call newIP)


%_id:
	@ mkdir -p $$(dirname $@)
	wg genkey 2> /dev/null > $@
	chmod 600 $@

%_id.pub: %_id
	cat $< | wg pubkey > $@


# NOTE: the first letter of each pattern is quoted to prevent it from 
# 	being substituted when generating this Makefile from template.
$(SERVER_CONF): $(SERVER_TPL) $(SERVER_KEY)
	cat $< \
		| sed \
			-e 's/\$${\ENDPOINT_PORT}/$(ENDPOINT_PORT)/g' \
			-e 's/\$${\CLIENT_IPS}/$(subst /,\/,$(CLIENT_IPS))/g' \
			-e 's/\$${\SERVER_PRIVATE_KEY}/'$$(sed -e 's/\//\\\//g' "$(SERVER_KEY)")'/g' \
		> "$@"

%.client: $(CLIENT_TPL) $(SERVER_CLIENT_TPL) \
		$(CLIENT_DIR)/%_id $(CLIENT_DIR)/%_id.pub \
		$(SERVER_CONF) $(SERVER_PUBLIC_KEY)
	@ mkdir -p $(CLIENT_DIR)
	cat "$<" \
		| sed \
			-e 's/\$${\DNS}/$(DNS)/g' \
			-e 's/\$${\ENDPOINT}/$(ENDPOINT)/g' \
			-e 's/\$${\ENDPOINT_PORT}/$(ENDPOINT_PORT)/g' \
			-e 's/\$${\ALLOWED_IPS}/$(subst /,\/,$(ALLOWED_IPS))/g' \
			-e 's/\$${\CLIENT_IP}/$(subst /,\/,$(CLIENT_IP))/g' \
			-e 's/\$${\CLIENT_PRIVATE_KEY}/'$$(sed -e 's/\//\\\//g' "$(CLIENT_DIR)/$*_id")'/g' \
			-e 's/\$${\SERVER_PUBLIC_KEY}/'$$(sed -e 's/\//\\\//g' "$(SERVER_PUBLIC_KEY)")'/g' \
		> "$(CLIENT_DIR)/$*.conf"
	cat "$(SERVER_CLIENT_TPL)" \
		| sed \
			-e 's/\$${\CLIENT_IP}/$(subst /,\/,$(CLIENT_IP))/g' \
			-e 's/\$${\ENDPOINT}/$(ENDPOINT)/g' \
			-e 's/\$${\ENDPOINT_PORT}/$(ENDPOINT_PORT)/g' \
			-e 's/\$${\CLIENT_PUBLIC_KEY}/'$$(sed -e 's/\//\\\//g' "$(CLIENT_DIR)/$*_id.pub")'/g' \
			-e 's/\$${\SERVER_PUBLIC_KEY}/'$$(sed -e 's/\//\\\//g' "$(SERVER_PUBLIC_KEY)")'/g' \
		>> "$(SERVER_CONF)"


server: $(SERVER_CONF)
added wireguard (untested)... Signed-off-by: Alex A. Naanou <alex.nanou@gmail.com> 2024-01-09 03:21:36 +03:00


dir creation... Signed-off-by: Alex A. Naanou <alex.nanou@gmail.com> 2024-01-09 14:05:06 +03:00			`SERVER_DIR := /etc/wireguard/`
added wireguard (untested)... Signed-off-by: Alex A. Naanou <alex.nanou@gmail.com> 2024-01-09 03:21:36 +03:00			`SERVER_TPL := templates/wg0.conf`
tweaks... Signed-off-by: Alex A. Naanou <alex.nanou@gmail.com> 2024-01-09 15:16:25 +03:00			`SERVER_CLIENT_TPL := templates/wg0-client.tpl`
dir creation... Signed-off-by: Alex A. Naanou <alex.nanou@gmail.com> 2024-01-09 14:05:06 +03:00			`SERVER_CONF := $(SERVER_DIR)/wg0.conf`
			`SERVER_KEY := $(SERVER_DIR)/server_id`
			`SERVER_PUBLIC_KEY := $(SERVER_DIR)/server_id.pub`
added wireguard (untested)... Signed-off-by: Alex A. Naanou <alex.nanou@gmail.com> 2024-01-09 03:21:36 +03:00
			`CLIENT_TPL := templates/client.conf`
dir creation... Signed-off-by: Alex A. Naanou <alex.nanou@gmail.com> 2024-01-09 14:05:06 +03:00			`CLIENT_DIR := $(SERVER_DIR)/clients/`
added wireguard (untested)... Signed-off-by: Alex A. Naanou <alex.nanou@gmail.com> 2024-01-09 03:21:36 +03:00
... Signed-off-by: Alex A. Naanou <alex.nanou@gmail.com> 2024-01-10 06:09:25 +03:00			`CLIENT_IPS ?= ${CLIENT_IPS}`
fix... Signed-off-by: Alex A. Naanou <alex.nanou@gmail.com> 2024-01-10 04:46:43 +03:00			`ENDPOINT_PORT ?= ${ENDPOINT_PORT}`
refactoring... Signed-off-by: Alex A. Naanou <alex.nanou@gmail.com> 2024-01-10 03:57:49 +03:00			`ENDPOINT ?= ${ENDPOINT}`
wireguard almost done... Signed-off-by: Alex A. Naanou <alex.nanou@gmail.com> 2024-01-09 15:49:42 +03:00
fix... Signed-off-by: Alex A. Naanou <alex.nanou@gmail.com> 2024-01-10 04:46:43 +03:00			`DNS ?= ${DNS}`
tweaks... Signed-off-by: Alex A. Naanou <alex.nanou@gmail.com> 2024-01-10 01:15:28 +03:00			`ALLOWED_IPS ?= 0.0.0.0/0`
tweaks... Signed-off-by: Alex A. Naanou <alex.nanou@gmail.com> 2024-01-09 15:34:24 +03:00			`# XXX need to generate this...`
wireguard almost done... Signed-off-by: Alex A. Naanou <alex.nanou@gmail.com> 2024-01-09 15:49:42 +03:00			`CLIENT_IP ?= 10.42.0.1/32`
added wireguard (untested)... Signed-off-by: Alex A. Naanou <alex.nanou@gmail.com> 2024-01-09 03:21:36 +03:00

added ip generation... Signed-off-by: Alex A. Naanou <alex.nanou@gmail.com> 2024-01-10 06:01:28 +03:00			`test:`
			`$(call newIP)`


added wireguard (untested)... Signed-off-by: Alex A. Naanou <alex.nanou@gmail.com> 2024-01-09 03:21:36 +03:00			`%_id:`
dir creation... Signed-off-by: Alex A. Naanou <alex.nanou@gmail.com> 2024-01-09 14:05:06 +03:00			`@ mkdir -p $$(dirname $@)`
tweaks... Signed-off-by: Alex A. Naanou <alex.nanou@gmail.com> 2024-01-09 15:16:25 +03:00			`wg genkey 2> /dev/null > $@`
			`chmod 600 $@`
added wireguard (untested)... Signed-off-by: Alex A. Naanou <alex.nanou@gmail.com> 2024-01-09 03:21:36 +03:00
			`%_id.pub: %_id`
			`cat $< \| wg pubkey > $@`


tweaking... Signed-off-by: Alex A. Naanou <alex.nanou@gmail.com> 2024-01-10 02:14:36 +03:00			`# NOTE: the first letter of each pattern is quoted to prevent it from`
			`# being substituted when generating this Makefile from template.`
added wireguard (untested)... Signed-off-by: Alex A. Naanou <alex.nanou@gmail.com> 2024-01-09 03:21:36 +03:00			`$(SERVER_CONF): $(SERVER_TPL) $(SERVER_KEY)`
			`cat $< \`
			`\| sed \`
moved Makefile to templates... Signed-off-by: Alex A. Naanou <alex.nanou@gmail.com> 2024-01-10 01:22:06 +03:00			`-e 's/\$${\ENDPOINT_PORT}/$(ENDPOINT_PORT)/g' \`
			`-e 's/\$${\CLIENT_IPS}/$(subst /,\/,$(CLIENT_IPS))/g' \`
			`-e 's/\$${\SERVER_PRIVATE_KEY}/'$$(sed -e 's/\//\\\//g' "$(SERVER_KEY)")'/g' \`
added wireguard (untested)... Signed-off-by: Alex A. Naanou <alex.nanou@gmail.com> 2024-01-09 03:21:36 +03:00			`> "$@"`

tweaks... Signed-off-by: Alex A. Naanou <alex.nanou@gmail.com> 2024-01-09 15:16:25 +03:00			`%.client: $(CLIENT_TPL) $(SERVER_CLIENT_TPL) \`
added wireguard (untested)... Signed-off-by: Alex A. Naanou <alex.nanou@gmail.com> 2024-01-09 03:21:36 +03:00			`$(CLIENT_DIR)/%_id $(CLIENT_DIR)/%_id.pub \`
			`$(SERVER_CONF) $(SERVER_PUBLIC_KEY)`
tweaks... Signed-off-by: Alex A. Naanou <alex.nanou@gmail.com> 2024-01-09 15:16:25 +03:00			`@ mkdir -p $(CLIENT_DIR)`
added wireguard (untested)... Signed-off-by: Alex A. Naanou <alex.nanou@gmail.com> 2024-01-09 03:21:36 +03:00			`cat "$<" \`
			`\| sed \`
moved Makefile to templates... Signed-off-by: Alex A. Naanou <alex.nanou@gmail.com> 2024-01-10 01:22:06 +03:00			`-e 's/\$${\DNS}/$(DNS)/g' \`
			`-e 's/\$${\ENDPOINT}/$(ENDPOINT)/g' \`
			`-e 's/\$${\ENDPOINT_PORT}/$(ENDPOINT_PORT)/g' \`
			`-e 's/\$${\ALLOWED_IPS}/$(subst /,\/,$(ALLOWED_IPS))/g' \`
			`-e 's/\$${\CLIENT_IP}/$(subst /,\/,$(CLIENT_IP))/g' \`
			`-e 's/\$${\CLIENT_PRIVATE_KEY}/'$$(sed -e 's/\//\\\//g' "$(CLIENT_DIR)/$*_id")'/g' \`
			`-e 's/\$${\SERVER_PUBLIC_KEY}/'$$(sed -e 's/\//\\\//g' "$(SERVER_PUBLIC_KEY)")'/g' \`
tweaks... Signed-off-by: Alex A. Naanou <alex.nanou@gmail.com> 2024-01-09 15:16:25 +03:00			`> "$(CLIENT_DIR)/$*.conf"`
added wireguard (untested)... Signed-off-by: Alex A. Naanou <alex.nanou@gmail.com> 2024-01-09 03:21:36 +03:00			`cat "$(SERVER_CLIENT_TPL)" \`
			`\| sed \`
moved Makefile to templates... Signed-off-by: Alex A. Naanou <alex.nanou@gmail.com> 2024-01-10 01:22:06 +03:00			`-e 's/\$${\CLIENT_IP}/$(subst /,\/,$(CLIENT_IP))/g' \`
			`-e 's/\$${\ENDPOINT}/$(ENDPOINT)/g' \`
			`-e 's/\$${\ENDPOINT_PORT}/$(ENDPOINT_PORT)/g' \`
			`-e 's/\$${\CLIENT_PUBLIC_KEY}/'$$(sed -e 's/\//\\\//g' "$(CLIENT_DIR)/$*_id.pub")'/g' \`
			`-e 's/\$${\SERVER_PUBLIC_KEY}/'$$(sed -e 's/\//\\\//g' "$(SERVER_PUBLIC_KEY)")'/g' \`
added wireguard (untested)... Signed-off-by: Alex A. Naanou <alex.nanou@gmail.com> 2024-01-09 03:21:36 +03:00			`>> "$(SERVER_CONF)"`



			`server: $(SERVER_CONF)`