Makefile

.PHONY: fleet

STAGE_DIR = stage
BASE_IMAGE_TAG = latest
BUILD_IMAGE_TAG = latest

copy_ctrl:
	mkdir -p ${STAGE_DIR}/usr/local/bin/
	mkdir -p ${STAGE_DIR}/etc/
	mkdir -p ${STAGE_DIR}/etc/neuvector/templates
	#
	cp neuvector/monitor/monitor ${STAGE_DIR}/usr/local/bin/
	cp neuvector/controller/controller ${STAGE_DIR}/usr/local/bin/
	cp neuvector/tools/nstools/nstools ${STAGE_DIR}/usr/local/bin/
	#
	cp neuvector/scripts/sysctl.conf ${STAGE_DIR}/etc/
	cp neuvector/scripts/teardown.sh ${STAGE_DIR}/usr/local/bin/
	cp neuvector/scripts/runtime-gdb.py ${STAGE_DIR}/usr/local/bin/
	#
	cp neuvector/templates/podTemplate.json ${STAGE_DIR}/etc/neuvector/templates/podTemplate.json

copy_enf:
	mkdir -p ${STAGE_DIR}/usr/local/bin/
	mkdir -p ${STAGE_DIR}/etc/
	#
	cp neuvector/monitor/monitor ${STAGE_DIR}/usr/local/bin/
	cp neuvector/agent/agent ${STAGE_DIR}/usr/local/bin/
	cp neuvector/agent/workerlet/pathWalker/pathWalker ${STAGE_DIR}/usr/local/bin/
	cp neuvector/dp/dp ${STAGE_DIR}/usr/local/bin/
	cp neuvector/agent/nvbench/host.tmpl ${STAGE_DIR}/usr/local/bin/
	cp neuvector/agent/nvbench/container.tmpl ${STAGE_DIR}/usr/local/bin/
	cp neuvector/agent/nvbench/check_kube_version.sh ${STAGE_DIR}/usr/local/bin/
	cp neuvector/agent/nvbench/kube_master_1_0_0.tmpl ${STAGE_DIR}/usr/local/bin/
	cp neuvector/agent/nvbench/kube_worker_1_0_0.tmpl ${STAGE_DIR}/usr/local/bin/
	cp neuvector/agent/nvbench/kube_master_1_2_0.tmpl ${STAGE_DIR}/usr/local/bin/
	cp neuvector/agent/nvbench/kube_worker_1_2_0.tmpl ${STAGE_DIR}/usr/local/bin/
	cp neuvector/agent/nvbench/kube_master_1_4_1.tmpl ${STAGE_DIR}/usr/local/bin/
	cp neuvector/agent/nvbench/kube_worker_1_4_1.tmpl ${STAGE_DIR}/usr/local/bin/
	cp neuvector/agent/nvbench/kube_master_1_5_1.tmpl ${STAGE_DIR}/usr/local/bin/
	cp neuvector/agent/nvbench/kube_worker_1_5_1.tmpl ${STAGE_DIR}/usr/local/bin/
	cp neuvector/agent/nvbench/kube_master_1_6_0.tmpl ${STAGE_DIR}/usr/local/bin/
	cp neuvector/agent/nvbench/kube_worker_1_6_0.tmpl ${STAGE_DIR}/usr/local/bin/
	cp neuvector/agent/nvbench/kube_master_gke_1_0_0.tmpl ${STAGE_DIR}/usr/local/bin/
	cp neuvector/agent/nvbench/kube_worker_gke_1_0_0.tmpl ${STAGE_DIR}/usr/local/bin/
	cp neuvector/agent/nvbench/kube_master_ocp_4_3.tmpl ${STAGE_DIR}/usr/local/bin/
	cp neuvector/agent/nvbench/kube_worker_ocp_4_3.tmpl ${STAGE_DIR}/usr/local/bin/
	cp neuvector/agent/nvbench/kube_master_ocp_4_5.tmpl ${STAGE_DIR}/usr/local/bin/
	cp neuvector/agent/nvbench/kube_worker_ocp_4_5.tmpl ${STAGE_DIR}/usr/local/bin/
	cp neuvector/agent/nvbench/kubecis_1_0_0.rem ${STAGE_DIR}/usr/local/bin/
	cp neuvector/agent/nvbench/kubecis_1_2_0.rem ${STAGE_DIR}/usr/local/bin/
	cp neuvector/agent/nvbench/kubecis_1_4_1.rem ${STAGE_DIR}/usr/local/bin/
	cp neuvector/agent/nvbench/kubecis_1_5_1.rem ${STAGE_DIR}/usr/local/bin/
	cp neuvector/agent/nvbench/kubecis_1_6_0.rem ${STAGE_DIR}/usr/local/bin/
	cp neuvector/agent/nvbench/kubecis_gke_1_0_0.rem ${STAGE_DIR}/usr/local/bin/
	cp neuvector/agent/nvbench/kubecis_ocp_4_5.rem ${STAGE_DIR}/usr/local/bin/
	cp neuvector/agent/nvbench/kubecis_ocp_4_3.rem ${STAGE_DIR}/usr/local/bin/
	cp neuvector/agent/tools/host_package.sh ${STAGE_DIR}/usr/local/bin/
	cp neuvector/agent/tools/container_package.sh ${STAGE_DIR}/usr/local/bin/
	cp neuvector/tools/nstools/nstools ${STAGE_DIR}/usr/local/bin/
	#
	cp neuvector/scripts/sysctl.conf ${STAGE_DIR}/etc/
	cp neuvector/scripts/configure.sh ${STAGE_DIR}/usr/local/bin/
	cp neuvector/scripts/teardown.sh ${STAGE_DIR}/usr/local/bin/
	cp neuvector/scripts/runtime-gdb.py ${STAGE_DIR}/usr/local/bin/

copy_dp:
	mkdir -p ${STAGE_DIR}/usr/local/bin/
	mkdir -p ${STAGE_DIR}/etc/
	#
	cp neuvector/dp/dp ${STAGE_DIR}/usr/local/bin/

copy_mgr:
	mkdir -p ${STAGE_DIR}/usr/local/bin/
	mkdir -p ${STAGE_DIR}/licenses/
	mkdir -p ${STAGE_DIR}/usr/lib/jvm/java-11-openjdk/lib/security/
	#
	cp manager/licenses/* ${STAGE_DIR}/licenses/
	#
	cp manager/cli/cli ${STAGE_DIR}/usr/local/bin/
	cp -r manager/cli/prog ${STAGE_DIR}/usr/local/bin/
	cp manager/scripts/* ${STAGE_DIR}/usr/local/bin/
	cp manager/java.security ${STAGE_DIR}/usr/lib/jvm/java-11-openjdk/lib/security/java.security
	cp manager/admin/target/scala-2.11/admin-assembly-1.0.jar ${STAGE_DIR}/usr/local/bin/

stage_init:
	rm -rf ${STAGE_DIR}; mkdir -p ${STAGE_DIR}
	#
	mkdir -p ${STAGE_DIR}/licenses/
	cd neuvector/vendor && ../genlic.sh > ../../${STAGE_DIR}/licenses/neuvector-license.txt
	cd ../..
	cd neuvector/dp && ../genlic.sh >> ../../${STAGE_DIR}/licenses/neuvector-license.txt
	cd ../..

stage_scan: stage_init copy_scan

stage_ctrl: stage_init copy_ctrl

stage_enf: stage_init copy_enf

stage_all: stage_init copy_ctrl copy_enf copy_mgr
	mkdir -p ${STAGE_DIR}/etc/supervisor/conf.d
	cp neuvector/build/supervisord.all.conf ${STAGE_DIR}/etc/supervisor/conf.d/supervisord.conf

pull_fleet_base:
	docker pull neuvector/controller_base:${BASE_IMAGE_TAG}
	docker pull neuvector/enforcer_base:${BASE_IMAGE_TAG}

pull_all_base:
	docker pull neuvector/all_base:${BASE_IMAGE_TAG}


api_image:
	docker build -t neuvector/api -f neuvector/build/Dockerfile.api .

ctrl_image: pull_fleet_base stage_ctrl
	docker build --build-arg NV_TAG=$(NV_TAG) --build-arg BASE_IMAGE_TAG=${BASE_IMAGE_TAG} -t neuvector/controller -f neuvector/build/Dockerfile.controller .

enf_image: pull_fleet_base stage_enf
	docker build --build-arg NV_TAG=$(NV_TAG) --build-arg BASE_IMAGE_TAG=${BASE_IMAGE_TAG} -t neuvector/enforcer -f neuvector/build/Dockerfile.enforcer .

all_image: pull_all_base stage_all
	docker build --build-arg NV_TAG=$(NV_TAG) --build-arg BASE_IMAGE_TAG=${BASE_IMAGE_TAG} -t neuvector/allinone -f neuvector/build/Dockerfile.all .

fleet:
	# This is running in neuvector/
	@echo "Making $@ ..."
	@docker pull neuvector/build_fleet:${BUILD_IMAGE_TAG}
	@docker run --rm -ia STDOUT --name build -e NV_BUILD_TARGET=$(NV_BUILD_TARGET) --net=none -v $(CURDIR):/go/src/github.com/neuvector/neuvector -w /go/src/github.com/neuvector/neuvector --entrypoint ./make_fleet.sh neuvector/build_fleet:${BUILD_IMAGE_TAG}