kpriv/freebsd-ports
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
freebsd-ports/security/snort/Makefile
Ryan Steinmetz 3c8b1c8015 - Resolve IPV6 port logic issue when IPV6 support is disabled. 
Reported by:	Dean Freeman <wfreeman@sourcefire.com>
Feature safe:	yes
2012-03-30 15:26:53 +00:00

257 lines
7.7 KiB
Makefile
Raw Blame History

# New ports collection makefile for: snort
# Date created: Mon Aug 2 12:04:08 CEST 1999
# Whom: Dirk Froemberg <dirk@FreeBSD.org>
#
# $FreeBSD$
#
PORTNAME= snort
PORTVERSION= 2.9.2.2
CATEGORIES= security
MASTER_SITES= SF/snort/snort \
http://mirrors.rit.edu/zi/
PATCH_DIST_STRIP= -p1
MAINTAINER= zi@FreeBSD.org
COMMENT= Lightweight network intrusion detection system
LICENSE= GPLv2
LICENSE_FILE= ${WRKSRC}/LICENSE
LIB_DEPENDS= pcre.1:${PORTSDIR}/devel/pcre
BUILD_DEPENDS= daq>=0.6.2:${PORTSDIR}/net/daq \
${LOCALBASE}/lib/libnet11/libnet.a:${PORTSDIR}/net/libnet
RUN_DEPENDS= daq>=0.6.2:${PORTSDIR}/net/daq \
${LOCALBASE}/lib/libnet11/libnet.a:${PORTSDIR}/net/libnet
OPTIONS= IPV6 "Enable IPv6 support" on \
MPLS "Enable MPLS support" on \
GRE "Enable GRE support" on \
TARGETBASED "Enable Targetbased support" off \
DECODERPRE "Enable Decoded-Preprocessor-Rules" on \
ZLIB "Enable GZIP support" on \
NORMALIZER "Enable Normalizer" on \
REACT "Enable React" on \
PERFPROFILE "Enable Performance Profiling" on \
FLEXRESP3 "Flexible response to events (version 3)" on \
MYSQL "Enable MySQL support" off \
ODBC "Enable ODBC support" off \
POSTGRESQL "Enable PostgreSQL support" off \
PRELUDE "Enable Prelude NIDS integration" off \
LRGPCAP "Enable pcaps larger than 2GB" off \
SNORTSAM "Unofficial Snortsam Patch" off \
SOURCEFIRE "Enable Sourcefire specific build options" on \
DBGSNORT "Enable debugging symbols+core dumps" off
.include <bsd.port.options.mk>
USE_RC_SUBR= snort.sh
SUB_FILES= pkg-message
GNU_CONFIGURE= yes
MAKE_JOBS_UNSAFE= yes
CONFIG_DIR?= ${PREFIX}/etc/snort
CONFIG_FILES= classification.config gen-msg.map reference.config \
snort.conf threshold.conf unicode.map
RULES_DIR= ${PREFIX}/etc/snort/rules
LOGS_DIR= /var/log/snort
MAN8= snort.8
DOCS= RELEASE.NOTES doc/AUTHORS doc/BUGS doc/CREDITS \
doc/README* doc/USAGE doc/*.pdf
PREPROC_RULE_DIR= ${RULES_DIR}/../preproc_rules
PREPROC_RULES= decoder.rules preprocessor.rules sensitive-data.rules
USE_AUTOTOOLS= libtool
USE_LDCONFIG= yes
LIBNET_CONFIG?= ${LOCALBASE}/bin/libnet11-config
.if exists(${LIBNET_CONFIG})
LIBNET_CFLAGS!= ${LIBNET_CONFIG} --cflags
LIBNET_LIBS!= ${LIBNET_CONFIG} --libs
.else
LIBNET_CFLAGS= -I${LOCALBASE}/include/libnet11
LIBNET_LIBS= -L${LOCALBASE}/lib/libnet11 -lnet
.endif
LIBNET_INCDIR= ${LIBNET_CFLAGS:M-I*:S/-I//}
LIBNET_LIBDIR= ${LIBNET_LIBS:M-L*:S/-L//}
CFLAGS+= -fstack-protector
CONFIGURE_ARGS= --enable-dynamicplugin --enable-build-dynamic-examples \
--enable-reload --enable-reload-error-restart \
--with-dnet-includes=${LIBNET_INCDIR} \
--with-dnet-libraries=${LIBNET_LIBDIR}
PLIST_SUB+= DYNAMIC=""
.if defined(WITH_FLEXRESP3)
CONFIGURE_ARGS+= --enable-flexresp3 \
--enable-active-response
.endif
.if defined(WITH_MYSQL)
USE_MYSQL= yes
CONFIGURE_ARGS+= --with-mysql=${LOCALBASE}
.else
CONFIGURE_ARGS+= --with-mysql=no
.endif
.if defined(WITH_ODBC)
LIB_DEPENDS+= odbc.2:${PORTSDIR}/databases/unixODBC
CONFIGURE_ARGS+= --with-odbc=${LOCALBASE}
LDFLAGS+= ${PTHREAD_LIBS}
.else
CONFIGURE_ARGS+= --with-odbc=no
.endif
.if defined(WITH_POSTGRESQL)
USE_PGSQL= yes
CONFIGURE_ARGS+= --with-postgresql=${LOCALBASE}
.if exists(/usr/lib/libssl.a) && exists(/usr/lib/libcrypto.a)
LDFLAGS+= -lssl -lcrypto
.endif
.else
CONFIGURE_ARGS+= --with-postgresql=no
.endif
.if defined(WITH_PRELUDE)
LIB_DEPENDS+= prelude.20:${PORTSDIR}/security/libprelude
CONFIGURE_ARGS+= --enable-prelude
PLIST_SUB+= PRELUDE=""
.else
CONFIGURE_ARGS+= --disable-prelude
PLIST_SUB+= PRELUDE="@comment "
.endif
.if defined(WITH_LRGPCAP)
CONFIGURE_ARGS+= --enable-large-pcap
.endif
.if defined(WITH_DBGSNORT)
CONFIGURE_ARGS+= --enable-corefiles --enable-debug
MAKE_ENV+= DONTSTRIP="yes"
.else
CONFIGURE_ARGS+= --disable-corefiles
.endif
.if defined(WITH_SOURCEFIRE)
CONFIGURE_ARGS+= --enable-sourcefire
.endif
.if defined(WITH_PERFPROFILE)
CONFIGURE_ARGS+= --enable-perfprofiling --enable-ppm
.endif
.if defined(WITHOUT_IPV6)
CONFIGURE_ARGS+= --disable-ipv6
.endif
.if defined(WITH_GRE)
CONFIGURE_ARGS+= --enable-gre
.endif
.if defined(WITH_MPLS)
CONFIGURE_ARGS+= --enable-mpls
.endif
.if defined(WITH_TARGETBASED)
CONFIGURE_ARGS+= --enable-targetbased
.endif
.if defined(WITH_DECODERPRE)
CONFIGURE_ARGS+= --enable-decoder-preprocessor-rules
.endif
.if defined(WITH_ZLIB)
CONFIGURE_ARGS+= --enable-zlib
.endif
.if defined(WITH_NORMALIZER)
CONFIGURE_ARGS+= --enable-normalizer
.endif
.if defined(WITH_REACT)
CONFIGURE_ARGS+= --enable-react
.endif
.if defined(WITH_SNORTSAM)
BROKEN= current snortsam patch results in build failures
USE_AUTOTOOLS+= automake
USE_GNOME= pkgconfig
PATCH_SITES+= http://www.snortsam.net/files/snort-plugin/:snortsam
PATCHFILES+= snortsam-2.9.1.2.diff.gz:snortsam
.endif
post-patch:
@${FIND} ${WRKSRC} -name 'Makefile.in' | ${XARGS} ${REINPLACE_CMD} -e 's|lib/snort_|lib/snort/|g'
@${REINPLACE_CMD} "s,/etc/snort.conf,${CONFIG_DIR}/snort.conf," ${WRKSRC}/src/snort.c ${WRKSRC}/snort.8
@${REINPLACE_CMD} -e 's|lib/snort_|lib/snort/|g' ${WRKSRC}/etc/snort.conf
@${REINPLACE_CMD} -e 's|^dynamicdetection|#dynamicdetection|' ${WRKSRC}/etc/snort.conf
@${REINPLACE_CMD} -e '/var HOME_NET/s/any/[YOU_NEED_TO_SET_HOME_NET_IN_snort.conf]/' ${WRKSRC}/etc/snort.conf
@${REINPLACE_CMD} -e 's|libdir)/pkgconfig|prefix)/libdata/pkgconfig|' ${WRKSRC}/Makefile.in \
${WRKSRC}/src/dynamic-preprocessors/libs/Makefile.in
@${REINPLACE_CMD} -e 's|libnet-config|${LIBNET_CONFIG}|g' ${WRKSRC}/configure
.if defined(WITHOUT_IPV6)
@${REINPLACE_CMD} -e 's|^ipvar |var |' ${WRKSRC}/etc/snort.conf
@${REINPLACE_CMD} -e '/normalize_ip6/s/^preprocessor/#preprocessor/' ${WRKSRC}/etc/snort.conf
@${REINPLACE_CMD} -e '/normalize_icmp6/s/^preprocessor/#preprocessor/' ${WRKSRC}/etc/snort.conf
.endif
.if defined(WITH_DECODERPRE)
@${REINPLACE_CMD} -e '/^# include .PREPROC_RULE/s/# include/include/' ${WRKSRC}/etc/snort.conf
.endif
.if defined(NOPORTDOCS)
@${REINPLACE_CMD} '/SUBDIRS = /s/doc//' ${WRKSRC}/Makefile.in ${WRKSRC}/Makefile.am
@${REINPLACE_CMD} '/install-data-am: /s/install-dist_docDATA//' \
${WRKSRC}/tools/u2boat/Makefile.in
.endif
pre-configure:
.if defined(WITH_SNORTSAM)
@${FIND} ${WRKSRC} -name 'Makefile.am' | ${XARGS} ${REINPLACE_CMD} -e 's|lib/snort_|lib/snort/|g'
@${REINPLACE_CMD} -e 's|libdir)/pkgconfig|prefix)/libdata/pkgconfig|' ${WRKSRC}/Makefile.am \
${WRKSRC}/src/dynamic-preprocessors/libs/Makefile.am
@${REINPLACE_CMD} -e '/README.u2boat/d' ${WRKSRC}/tools/u2boat/Makefile.am
@${ECHO_MSG} "===> Rebuilding required files for snortsam patches..."
@cd ${WRKSRC} && ${SH} ${WRKSRC}/autojunk.sh
@${ECHO_MSG} "===> Done. Configuring..."
.endif
pre-install:
.if defined(WITH_POSTGRESQL)
@${REINPLACE_CMD} -e '/REQUIRE:/ s|$$| postgresql|' ${WRKDIR}/snort.sh
.endif
.if defined(WITH_MYSQL)
@${REINPLACE_CMD} -e '/REQUIRE:/ s|$$| mysql|' ${WRKDIR}/snort.sh
.endif
post-install:
@${LIBTOOL} --finish ${LOCALBASE}/lib/snort/dynamicpreprocessor
[ -d ${CONFIG_DIR} ] || ${MKDIR} ${CONFIG_DIR}
[ -d ${RULES_DIR} ] || ${MKDIR} ${RULES_DIR}
[ -d ${LOGS_DIR} ] || ${MKDIR} ${LOGS_DIR}
.if !defined(NOPORTEXAMPLES)
[ -d ${EXAMPLESDIR} ] || ${MKDIR} ${EXAMPLESDIR}
${INSTALL_DATA} ${WRKSRC}/schemas/create* ${EXAMPLESDIR}
.endif
.for f in ${CONFIG_FILES}
${INSTALL_DATA} ${WRKSRC}/etc/${f} ${CONFIG_DIR}/${f}-sample
@if [ ! -f ${CONFIG_DIR}/${f} ]; then \
${CP} -p ${CONFIG_DIR}/${f}-sample ${CONFIG_DIR}/${f} ; \
fi
.endfor
.if !defined(NOPORTDOCS)
@${MKDIR} ${DOCSDIR}
cd ${WRKSRC} && ${INSTALL_DATA} ${DOCS} ${DOCSDIR}
.endif
.if defined(WITH_DECODERPRE)
@${MKDIR} ${PREPROC_RULE_DIR}
.for f in ${PREPROC_RULES}
${INSTALL_DATA} ${WRKSRC}/preproc_rules/${f} ${PREPROC_RULE_DIR}/${f}-sample
@if [ ! -f ${PREPROC_RULE_DIR}/${f} ]; then \
${CP} -p ${PREPROC_RULE_DIR}/${f}-sample ${PREPROC_RULE_DIR}/${f} ; \
fi
.endfor
.endif
@${CAT} ${PKGMESSAGE}
.include <bsd.port.mk>
Reference in a new issue View git blame Copy permalink