net/snort3/Makefile

   1 #
   2 # This is free software, licensed under the GNU General Public License v2.
   3 # See /LICENSE for more information.
   4 #
   5
   6 include $(TOPDIR)/rules.mk
   7
   8 PKG_NAME:=snort3
   9 PKG_VERSION:=3.1.78.0
  10 PKG_RELEASE:=4
  11
  12 PKG_SOURCE:=$(PKG_VERSION).tar.gz
  13 PKG_SOURCE_URL:=https://github.com/snort3/snort3/archive/refs/tags/
  14 PKG_HASH:=08a51223c22aa3196e6dc959d3b52df03da9a458877ff7e77fa9c4ee8eb8947c
  15
  16 PKG_MAINTAINER:=W. Michael Petullo <mike@flyn.org>, John Audia <therealgraysky@proton.me>
  17 PKG_LICENSE:=GPL-2.0-only
  18 PKG_LICENSE_FILES:=COPYING
  19 PKG_CPE_ID:=cpe:/a:snort:snort
  20
  21 include $(INCLUDE_DIR)/package.mk
  22 include $(INCLUDE_DIR)/cmake.mk
  23
  24 define Package/snort3
  25   SUBMENU:=Firewall
  26   SECTION:=net
  27   CATEGORY:=Network
  28   DEPENDS:=+libstdcpp +libdaq3 +libdnet +libopenssl +libpcap +libpcre +libpthread +libuuid +zlib +libhwloc +libtirpc @HAS_LUAJIT_ARCH +luajit +libatomic +kmod-nft-queue +liblzma \
  29         +ucode +ucode-mod-fs +ucode-mod-uci
  30   TITLE:=Lightweight Network Intrusion Detection System
  31   URL:=http://www.snort.org/
  32   MENU:=1
  33 endef
  34
  35 define Package/snort3/description
  36   Snort is an open source network intrusion detection and prevention system.
  37   It is capable of performing real-time traffic analysis, alerting, blocking
  38   and packet logging on IP networks.  It utilizes a combination of protocol
  39   analysis and pattern matching in order to detect anomalies, misuse and
  40   attacks.
  41 endef
  42
  43 CMAKE_OPTIONS += \
  44         -DUSE_TIRPC:BOOL=YES \
  45         -DENABLE_STATIC_DAQ:BOOL=NO \
  46         -DDAQ_INCLUDE_DIR=$(STAGING_DIR)/usr/include/daq3 \
  47         -DDAQ_LIBRARIES_DIR_HINT:PATH=$(STAGING_DIR)/usr/lib/daq3 \
  48         -DFLEX_INCLUDES:PATH=$(STAGING_DIR_HOST)/include \
  49         -DENABLE_COREFILES:BOOL=NO \
  50         -DENABLE_GDB:BOOL=NO \
  51         -DMAKE_DOC:BOOL=NO \
  52         -DMAKE_HTML_DOC:BOOL=NO \
  53         -DMAKE_PDF_DOC:BOOL=NO \
  54         -DMAKE_TEXT_DOC:BOOL=NO \
  55         -DHAVE_LIBUNWIND=OFF \
  56         -DHAVE_LZMA=ON
  57
  58 TARGET_CFLAGS  += -I$(STAGING_DIR)/usr/include/daq3 -I$(STAGING_DIR)/usr/include/tirpc
  59 TARGET_LDFLAGS += -L$(STAGING_DIR)/usr/lib/daq3 -ltirpc
  60
  61 define Package/snort3/conffiles
  62 /etc/config/snort
  63 /etc/snort/
  64 endef
  65
  66 define Package/snort3/install
  67         $(INSTALL_DIR) $(1)/usr/bin
  68         $(INSTALL_BIN) \
  69                 $(PKG_INSTALL_DIR)/usr/bin/snort  \
  70                 $(1)/usr/bin/
  71
  72         $(INSTALL_BIN) \
  73                 $(PKG_INSTALL_DIR)/usr/bin/snort2lua  \
  74                 $(1)/usr/bin/
  75
  76         $(INSTALL_BIN) \
  77                 $(PKG_INSTALL_DIR)/usr/bin/u2{boat,spewfoo} \
  78                 $(1)/usr/bin/
  79
  80         $(INSTALL_BIN) \
  81                 ./files/snort-{mgr,rules} \
  82                 $(1)/usr/bin/
  83
  84         $(INSTALL_DIR) $(1)/usr/lib/snort
  85         $(CP) \
  86                 $(PKG_INSTALL_DIR)/usr/lib/snort/daq/daq_hext.so \
  87                 $(1)/usr/lib/snort/
  88
  89         $(CP) \
  90                 $(PKG_INSTALL_DIR)/usr/lib/snort/daq/daq_file.so \
  91                 $(1)/usr/lib/snort/
  92
  93         $(INSTALL_DIR) $(1)/usr/share/lua
  94         $(CP) \
  95                 $(PKG_INSTALL_DIR)/usr/include/snort/lua/snort_plugin.lua \
  96                 $(1)/usr/share/lua/
  97
  98         $(INSTALL_DIR) $(1)/usr/share/snort
  99         $(INSTALL_CONF) \
 100                 ./files/main.uc \
 101                 $(1)/usr/share/snort/
 102
 103         $(INSTALL_DIR) $(1)/usr/share/snort/templates
 104         $(INSTALL_CONF) \
 105                 ./files/nftables.uc \
 106                 $(1)/usr/share/snort/templates/
 107         $(INSTALL_CONF) \
 108                 ./files/snort.uc \
 109                 $(1)/usr/share/snort/templates/
 110
 111         $(INSTALL_DIR) $(1)/etc/snort/{rules,lists,builtin_rules,so_rules}
 112
 113         $(INSTALL_CONF) \
 114                 $(PKG_INSTALL_DIR)/usr/etc/snort/*.lua \
 115                 $(1)/etc/snort
 116         $(INSTALL_CONF) \
 117                 $(PKG_INSTALL_DIR)/usr/etc/snort/file_magic.rules \
 118                 $(1)/etc/snort
 119
 120         $(INSTALL_DIR) $(1)/etc/init.d
 121         $(INSTALL_BIN) \
 122                 ./files/snort.init \
 123                 $(1)/etc/init.d/snort
 124
 125         $(INSTALL_DIR) $(1)/etc/config
 126         $(INSTALL_CONF) \
 127                 ./files/snort.config \
 128                 $(1)/etc/config/snort
 129
 130         sed \
 131                 -i \
 132                 -e "/^-- HOME_NET and EXTERNAL_NET/ i -- The values for the two variables HOME_NET and EXTERNAL_NET have been" \
 133                 -e "/^-- HOME_NET and EXTERNAL_NET/ i -- moved to /etc/config/snort, so do not modify them here without good" \
 134                 -e "/^-- HOME_NET and EXTERNAL_NET/ i -- reason.\n" \
 135                 -e 's/^\(HOME_NET\s\+=\)/--\1/g' \
 136                 -e 's/^\(EXTERNAL_NET\s\+=\)/--\1/g' \
 137                 $(1)/etc/snort/snort.lua
 138         sed \
 139                 -i -e "s/^\\(RULE_PATH\\s\\+=\\).*/\\1 'rules'/g" \
 140                 -e "s/^\\(BUILTIN_RULE_PATH\\s\\+=\\).*/\\1 'builtin_rules'/g" \
 141                 -e "s/^\\(PLUGIN_RULE_PATH\\s\\+=\\).*/\\1 'so_rules'/g" \
 142                 -e "s/^\\(WHITE_LIST_PATH\\s\\+=\\).*/\\1 'lists'/g" \
 143                 -e "s/^\\(BLACK_LIST_PATH\\s\\+=\\).*/\\1 'lists'/g" \
 144                 $(1)/etc/snort/snort_defaults.lua
 145 endef
 146
 147 $(eval $(call BuildPackage,snort3))