|
@ -0,0 +1,202 @@ |
|
|
|
|
|
#
|
|
|
|
|
|
# Copyright (C) 2006-2015 OpenWrt.org
|
|
|
|
|
|
#
|
|
|
|
|
|
# This is free software, licensed under the GNU General Public License v2.
|
|
|
|
|
|
# See /LICENSE for more information.
|
|
|
|
|
|
#
|
|
|
|
|
|
|
|
|
|
|
|
include $(TOPDIR)/rules.mk |
|
|
|
|
|
|
|
|
|
|
|
PKG_NAME:=snort |
|
|
|
|
|
PKG_VERSION:=2.9.7.0 |
|
|
|
|
|
PKG_RELEASE:=1 |
|
|
|
|
|
|
|
|
|
|
|
PKG_SOURCE:=$(PKG_NAME)-$(PKG_VERSION).tar.gz |
|
|
|
|
|
PKG_SOURCE_URL:=https://www.snort.org/downloads/snort/ |
|
|
|
|
|
PKG_MD5SUM:=c2a45bc56441ee9456478f219dd8d1e2 |
|
|
|
|
|
|
|
|
|
|
|
PKG_BUILD_DEPENDS:=librpc |
|
|
|
|
|
PKG_BUILD_DIR:=$(BUILD_DIR)/$(PKG_NAME)-$(BUILD_VARIANT)/$(PKG_NAME)-$(PKG_VERSION) |
|
|
|
|
|
PKG_FIXUP:=autoreconf |
|
|
|
|
|
PKG_INSTALL:=1 |
|
|
|
|
|
|
|
|
|
|
|
include $(INCLUDE_DIR)/package.mk |
|
|
|
|
|
|
|
|
|
|
|
define Package/snort/Default |
|
|
|
|
|
SUBMENU:=Firewall |
|
|
|
|
|
SECTION:=net |
|
|
|
|
|
CATEGORY:=Network |
|
|
|
|
|
DEPENDS:=+libdaq +libdnet +libopenssl +libpcap +libpcre +libpthread +libuuid +zlib |
|
|
|
|
|
TITLE:=Lightweight Network Intrusion Detection System |
|
|
|
|
|
URL:=http://www.snort.org/ |
|
|
|
|
|
endef |
|
|
|
|
|
|
|
|
|
|
|
define Package/snort/Default/description |
|
|
|
|
|
Snort is an open source network intrusion detection and prevention system. |
|
|
|
|
|
It is capable of performing real-time traffic analysis, alerting, blocking |
|
|
|
|
|
and packet logging on IP networks. It utilizes a combination of protocol |
|
|
|
|
|
analysis and pattern matching in order to detect anomalies, misuse and |
|
|
|
|
|
attacks. |
|
|
|
|
|
endef |
|
|
|
|
|
|
|
|
|
|
|
define Package/snort |
|
|
|
|
|
$(call Package/snort/Default) |
|
|
|
|
|
VARIANT:=basic |
|
|
|
|
|
endef |
|
|
|
|
|
|
|
|
|
|
|
define Package/snort/description |
|
|
|
|
|
$(call Package/snort/Default/description) |
|
|
|
|
|
endef |
|
|
|
|
|
|
|
|
|
|
|
define Package/snort-mysql |
|
|
|
|
|
$(call Package/snort/Default) |
|
|
|
|
|
DEPENDS+= +libmysqlclient |
|
|
|
|
|
TITLE+= (MySQL) |
|
|
|
|
|
VARIANT:=mysql |
|
|
|
|
|
endef |
|
|
|
|
|
|
|
|
|
|
|
define Package/snort-mysql/description |
|
|
|
|
|
$(call Package/snort/Default/description) |
|
|
|
|
|
This package contains snort with support for logging to a MySQL database. |
|
|
|
|
|
endef |
|
|
|
|
|
|
|
|
|
|
|
define Package/snort-pgsql |
|
|
|
|
|
$(call Package/snort/Default) |
|
|
|
|
|
DEPENDS+= +libpq +libuuid |
|
|
|
|
|
TITLE+= (PostgreSQL) |
|
|
|
|
|
VARIANT:=pgsql |
|
|
|
|
|
endef |
|
|
|
|
|
|
|
|
|
|
|
define Package/snort-pgsql/description |
|
|
|
|
|
$(call Package/snort/Default/description) |
|
|
|
|
|
This package contains snort with support for logging to a PostgreSQL database. |
|
|
|
|
|
endef |
|
|
|
|
|
|
|
|
|
|
|
CONFIGURE_ARGS += \
|
|
|
|
|
|
--prefix="/usr" \
|
|
|
|
|
|
--enable-flexresp \
|
|
|
|
|
|
--with-dnet-includes="$(STAGING_DIR)/usr/include" \
|
|
|
|
|
|
--with-dnet-libraries="$(STAGING_DIR)/usr/lib" \
|
|
|
|
|
|
--with-libpcap-includes="$(STAGING_DIR)/usr/include" \
|
|
|
|
|
|
--with-libpcap-libraries="$(STAGING_DIR)/usr/lib" \
|
|
|
|
|
|
--with-libpcre-includes="$(STAGING_DIR)/usr/include" \
|
|
|
|
|
|
--with-libpcre-libraries="$(STAGING_DIR)/usr/lib" \
|
|
|
|
|
|
--with-daq-includes="$(STAGING_DIR)/usr/include" \
|
|
|
|
|
|
--with-daq-libraries="$(STAGING_DIR)/usr/lib" \
|
|
|
|
|
|
--disable-static-daq |
|
|
|
|
|
|
|
|
|
|
|
CONFIGURE_VARS += \
|
|
|
|
|
|
CPPFLAGS="$$$$CPPFLAGS -I$(STAGING_DIR)/usr/include/mysql" \
|
|
|
|
|
|
LDFLAGS="$$$$LDFLAGS -L$(STAGING_DIR)/usr/lib/mysql" \
|
|
|
|
|
|
PATH="$(STAGING_DIR)/usr/lib/libnet-1.0.x/bin:$$$$PATH" |
|
|
|
|
|
|
|
|
|
|
|
MAKE_FLAGS += \
|
|
|
|
|
|
extra_incl="" |
|
|
|
|
|
|
|
|
|
|
|
ifeq ($(BUILD_VARIANT),basic) |
|
|
|
|
|
CONFIGURE_ARGS += \
|
|
|
|
|
|
--without-mysql \
|
|
|
|
|
|
--without-postgresql |
|
|
|
|
|
endif |
|
|
|
|
|
ifeq ($(BUILD_VARIANT),mysql) |
|
|
|
|
|
CONFIGURE_VARS += \
|
|
|
|
|
|
mysql_has_reconnect=yes |
|
|
|
|
|
CONFIGURE_ARGS += \
|
|
|
|
|
|
--with-mysql="$(STAGING_DIR)/usr" \
|
|
|
|
|
|
--without-postgresql |
|
|
|
|
|
endif |
|
|
|
|
|
ifeq ($(BUILD_VARIANT),pgsql) |
|
|
|
|
|
CONFIGURE_ARGS += \
|
|
|
|
|
|
--without-mysql \
|
|
|
|
|
|
--with-postgresql="$(STAGING_DIR)/usr" |
|
|
|
|
|
endif |
|
|
|
|
|
|
|
|
|
|
|
define Build/InstallDev |
|
|
|
|
|
$(INSTALL_DIR) $(STAGING_DIR)/usr/include/snort/dynamic_preproc |
|
|
|
|
|
$(CP) \
|
|
|
|
|
|
$(PKG_INSTALL_DIR)/usr/include/snort/dynamic_preproc/* \
|
|
|
|
|
|
$(STAGING_DIR)/usr/include/snort/dynamic_preproc/ |
|
|
|
|
|
$(INSTALL_DIR) $(STAGING_DIR)/usr/lib/snort/dynamic_preproc |
|
|
|
|
|
$(CP) \
|
|
|
|
|
|
$(PKG_INSTALL_DIR)/usr/lib/snort/dynamic_preproc/* \
|
|
|
|
|
|
$(STAGING_DIR)/usr/lib/snort/dynamic_preproc/ |
|
|
|
|
|
$(INSTALL_DIR) $(STAGING_DIR)/usr/lib/snort_dynamicengine |
|
|
|
|
|
$(CP) \
|
|
|
|
|
|
$(PKG_INSTALL_DIR)/usr/lib/snort_dynamicengine/* \
|
|
|
|
|
|
$(STAGING_DIR)/usr/lib/snort_dynamicengine/ |
|
|
|
|
|
$(INSTALL_DIR) $(STAGING_DIR)/usr/lib/snort_dynamicpreprocessor |
|
|
|
|
|
$(CP) \
|
|
|
|
|
|
$(PKG_INSTALL_DIR)/usr/lib/snort_dynamicpreprocessor/* \
|
|
|
|
|
|
$(STAGING_DIR)/usr/lib/snort_dynamicpreprocessor/ |
|
|
|
|
|
endef |
|
|
|
|
|
|
|
|
|
|
|
define Package/snort/conffiles |
|
|
|
|
|
/etc/config/snort |
|
|
|
|
|
/etc/snort/snort.conf |
|
|
|
|
|
endef |
|
|
|
|
|
|
|
|
|
|
|
Package/snort-mysql/conffiles = $(Package/snort/conffiles) |
|
|
|
|
|
Package/snort-mysql/install = $(Package/snort/install) |
|
|
|
|
|
|
|
|
|
|
|
Package/snort-pgsql/conffiles = $(Package/snort/conffiles) |
|
|
|
|
|
Package/snort-pgsql/install = $(Package/snort/install) |
|
|
|
|
|
|
|
|
|
|
|
define Package/snort/install |
|
|
|
|
|
$(INSTALL_DIR) $(1)/usr/bin |
|
|
|
|
|
$(INSTALL_BIN) \
|
|
|
|
|
|
$(PKG_INSTALL_DIR)/usr/bin/snort \
|
|
|
|
|
|
$(1)/usr/bin/snort |
|
|
|
|
|
|
|
|
|
|
|
$(INSTALL_BIN) \
|
|
|
|
|
|
$(PKG_INSTALL_DIR)/usr/bin/u2{boat,spewfoo} \
|
|
|
|
|
|
$(1)/usr/bin |
|
|
|
|
|
|
|
|
|
|
|
$(INSTALL_DIR) $(1)/usr/lib/snort_dynamicengine |
|
|
|
|
|
$(CP) \
|
|
|
|
|
|
$(PKG_INSTALL_DIR)/usr/lib/snort_dynamicengine/libsf_engine.so* \
|
|
|
|
|
|
$(1)/usr/lib/snort_dynamicengine/ |
|
|
|
|
|
|
|
|
|
|
|
$(INSTALL_DIR) $(1)/usr/lib/snort_dynamicpreprocessor |
|
|
|
|
|
$(CP) \
|
|
|
|
|
|
$(PKG_INSTALL_DIR)/usr/lib/snort_dynamicpreprocessor/libsf*.so* \
|
|
|
|
|
|
$(1)/usr/lib/snort_dynamicpreprocessor/ |
|
|
|
|
|
|
|
|
|
|
|
$(INSTALL_DIR) $(1)/etc/snort |
|
|
|
|
|
$(INSTALL_CONF) \
|
|
|
|
|
|
$(PKG_BUILD_DIR)/etc/snort.conf \
|
|
|
|
|
|
$(1)/etc/snort/ |
|
|
|
|
|
$(INSTALL_CONF) \
|
|
|
|
|
|
$(PKG_BUILD_DIR)/etc/attribute_table.dtd \
|
|
|
|
|
|
$(1)/etc/snort/ |
|
|
|
|
|
$(INSTALL_CONF) \
|
|
|
|
|
|
$(PKG_BUILD_DIR)/etc/classification.config \
|
|
|
|
|
|
$(1)/etc/snort/ |
|
|
|
|
|
$(INSTALL_CONF) \
|
|
|
|
|
|
$(PKG_BUILD_DIR)/etc/gen-msg.map \
|
|
|
|
|
|
$(1)/etc/snort/ |
|
|
|
|
|
$(INSTALL_CONF) \
|
|
|
|
|
|
$(PKG_BUILD_DIR)/etc/reference.config \
|
|
|
|
|
|
$(1)/etc/snort/ |
|
|
|
|
|
$(INSTALL_CONF) \
|
|
|
|
|
|
$(PKG_BUILD_DIR)/etc/unicode.map \
|
|
|
|
|
|
$(1)/etc/snort/ |
|
|
|
|
|
|
|
|
|
|
|
$(INSTALL_DIR) $(1)/etc/snort/preproc_rules |
|
|
|
|
|
$(INSTALL_CONF) \
|
|
|
|
|
|
$(PKG_BUILD_DIR)/preproc_rules/*.rules \
|
|
|
|
|
|
$(1)/etc/snort/preproc_rules/ |
|
|
|
|
|
|
|
|
|
|
|
$(INSTALL_DIR) $(1)/etc/init.d |
|
|
|
|
|
$(INSTALL_BIN) \
|
|
|
|
|
|
./files/snort.init \
|
|
|
|
|
|
$(1)/etc/init.d/snort |
|
|
|
|
|
|
|
|
|
|
|
$(INSTALL_DIR) $(1)/etc/config |
|
|
|
|
|
$(INSTALL_CONF) \
|
|
|
|
|
|
./files/snort.config \
|
|
|
|
|
|
$(1)/etc/config/snort |
|
|
|
|
|
endef |
|
|
|
|
|
|
|
|
|
|
|
$(eval $(call BuildPackage,snort)) |
|
|
|
|
|
$(eval $(call BuildPackage,snort-mysql)) |
|
|
|
|
|
$(eval $(call BuildPackage,snort-pgsql)) |