net/snort3/Makefile

   1 #
   2 # This is free software, licensed under the GNU General Public License v2.
   3 # See /LICENSE for more information.
   4 #
   5
   6 include $(TOPDIR)/rules.mk
   7
   8 PKG_NAME:=snort3
   9 PKG_VERSION:=3.1.77.0
  10 PKG_RELEASE:=2
  11
  12 PKG_SOURCE:=$(PKG_VERSION).tar.gz
  13 PKG_SOURCE_URL:=https://github.com/snort3/snort3/archive/refs/tags/
  14 PKG_HASH:=cb98c0d15caa7c84da24995e8521f42f4e86a860b9748418154d8649b6a0db2d
  15
  16 PKG_MAINTAINER:=W. Michael Petullo <mike@flyn.org>, John Audia <therealgraysky@proton.me>
  17 PKG_LICENSE:=GPL-2.0-only
  18 PKG_LICENSE_FILES:=COPYING
  19 PKG_CPE_ID:=cpe:/a:snort:snort
  20
  21 include $(INCLUDE_DIR)/package.mk
  22 include $(INCLUDE_DIR)/cmake.mk
  23
  24 define Package/snort3
  25   SUBMENU:=Firewall
  26   SECTION:=net
  27   CATEGORY:=Network
  28   DEPENDS:=+libstdcpp +libdaq3 +libdnet +libopenssl +libpcap +libpcre +libpthread +libuuid +zlib +libhwloc +libtirpc @HAS_LUAJIT_ARCH +luajit +libatomic +kmod-nft-queue +liblzma
  29   TITLE:=Lightweight Network Intrusion Detection System
  30   URL:=http://www.snort.org/
  31   MENU:=1
  32 endef
  33
  34 define Package/snort3/description
  35   Snort is an open source network intrusion detection and prevention system.
  36   It is capable of performing real-time traffic analysis, alerting, blocking
  37   and packet logging on IP networks.  It utilizes a combination of protocol
  38   analysis and pattern matching in order to detect anomalies, misuse and
  39   attacks.
  40 endef
  41
  42 CMAKE_OPTIONS += \
  43         -DUSE_TIRPC:BOOL=YES \
  44         -DENABLE_STATIC_DAQ:BOOL=NO \
  45         -DDAQ_INCLUDE_DIR=$(STAGING_DIR)/usr/include/daq3 \
  46         -DDAQ_LIBRARIES_DIR_HINT:PATH=$(STAGING_DIR)/usr/lib/daq3 \
  47         -DFLEX_INCLUDES:PATH=$(STAGING_DIR_HOST)/include \
  48         -DENABLE_COREFILES:BOOL=NO \
  49         -DENABLE_GDB:BOOL=NO \
  50         -DMAKE_DOC:BOOL=NO \
  51         -DMAKE_HTML_DOC:BOOL=NO \
  52         -DMAKE_PDF_DOC:BOOL=NO \
  53         -DMAKE_TEXT_DOC:BOOL=NO \
  54         -DHAVE_LIBUNWIND=OFF \
  55         -DHAVE_LZMA=ON
  56
  57 TARGET_CFLAGS  += -I$(STAGING_DIR)/usr/include/daq3 -I$(STAGING_DIR)/usr/include/tirpc
  58 TARGET_LDFLAGS += -L$(STAGING_DIR)/usr/lib/daq3 -ltirpc
  59
  60 define Package/snort3/conffiles
  61 /etc/config/snort
  62 /etc/snort/
  63 endef
  64
  65 define Package/snort3/install
  66         $(INSTALL_DIR) $(1)/usr/bin
  67         $(INSTALL_BIN) \
  68                 $(PKG_INSTALL_DIR)/usr/bin/snort  \
  69                 $(1)/usr/bin/
  70
  71         $(INSTALL_BIN) \
  72                 $(PKG_INSTALL_DIR)/usr/bin/snort2lua  \
  73                 $(1)/usr/bin/
  74
  75         $(INSTALL_BIN) \
  76                 $(PKG_INSTALL_DIR)/usr/bin/u2{boat,spewfoo} \
  77                 $(1)/usr/bin/
  78
  79         $(INSTALL_BIN) \
  80                 ./files/snort-{mgr,rules} \
  81                 $(1)/usr/bin/
  82
  83         $(INSTALL_DIR) $(1)/usr/lib/snort
  84         $(CP) \
  85                 $(PKG_INSTALL_DIR)/usr/lib/snort/daq/daq_hext.so \
  86                 $(1)/usr/lib/snort/
  87
  88         $(CP) \
  89                 $(PKG_INSTALL_DIR)/usr/lib/snort/daq/daq_file.so \
  90                 $(1)/usr/lib/snort/
  91
  92         $(INSTALL_DIR) $(1)/usr/share/lua
  93         $(CP) \
  94                 $(PKG_INSTALL_DIR)/usr/include/snort/lua/snort_plugin.lua \
  95                 $(1)/usr/share/lua/
  96
  97         $(INSTALL_DIR) $(1)/usr/share/snort
  98         $(INSTALL_CONF) \
  99                 ./files/main.uc \
 100                 $(1)/usr/share/snort/
 101
 102         $(INSTALL_DIR) $(1)/usr/share/snort/templates
 103         $(INSTALL_CONF) \
 104                 ./files/nftables.uc \
 105                 $(1)/usr/share/snort/templates/
 106         $(INSTALL_CONF) \
 107                 ./files/snort.uc \
 108                 $(1)/usr/share/snort/templates/
 109
 110         $(INSTALL_DIR) $(1)/etc/snort/{rules,lists,builtin_rules,so_rules}
 111
 112         $(INSTALL_CONF) \
 113                 $(PKG_INSTALL_DIR)/usr/etc/snort/*.lua \
 114                 $(1)/etc/snort
 115         $(INSTALL_CONF) \
 116                 $(PKG_INSTALL_DIR)/usr/etc/snort/file_magic.rules \
 117                 $(1)/etc/snort
 118
 119         $(INSTALL_DIR) $(1)/etc/init.d
 120         $(INSTALL_BIN) \
 121                 ./files/snort.init \
 122                 $(1)/etc/init.d/snort
 123
 124         $(INSTALL_DIR) $(1)/etc/config
 125         $(INSTALL_CONF) \
 126                 ./files/snort.config \
 127                 $(1)/etc/config/snort
 128
 129         sed \
 130                 -i \
 131                 -e "/^-- HOME_NET and EXTERNAL_NET/ i -- The values for the two variables HOME_NET and EXTERNAL_NET have been" \
 132                 -e "/^-- HOME_NET and EXTERNAL_NET/ i -- moved to /etc/config/snort, so do not modify them here without good" \
 133                 -e "/^-- HOME_NET and EXTERNAL_NET/ i -- reason.\n" \
 134                 -e 's/^\(HOME_NET\s\+=\)/--\1/g' \
 135                 -e 's/^\(EXTERNAL_NET\s\+=\)/--\1/g' \
 136                 $(1)/etc/snort/snort.lua
 137         sed \
 138                 -i -e "s/^\\(RULE_PATH\\s\\+=\\).*/\\1 'rules'/g" \
 139                 -e "s/^\\(BUILTIN_RULE_PATH\\s\\+=\\).*/\\1 'builtin_rules'/g" \
 140                 -e "s/^\\(PLUGIN_RULE_PATH\\s\\+=\\).*/\\1 'so_rules'/g" \
 141                 -e "s/^\\(WHITE_LIST_PATH\\s\\+=\\).*/\\1 'lists'/g" \
 142                 -e "s/^\\(BLACK_LIST_PATH\\s\\+=\\).*/\\1 'lists'/g" \
 143                 $(1)/etc/snort/snort_defaults.lua
 144 endef
 145
 146 $(eval $(call BuildPackage,snort3))