[Buildroot] [PATCH v4,2/2] package/snort3: new package

Fabrice Fontaine fontaine.fabrice at gmail.com
Mon Jun 14 20:49:00 UTC 2021 

Le lun. 14 juin 2021 à 22:39, Arnout Vandecappelle <arnout at mind.be> a écrit :
>
>
>
> On 25/04/2021 19:22, Fabrice Fontaine wrote:
> > Snort 3 is the next generation Snort IPS (Intrusion
> > Prevention System).
> >
> >  - Support multiple packet processing threads
> >  - Shared configuration and attribute table
> >  - Use a simple, scriptable configuration
> >  - Make key components pluggable
> >  - Autodetect services for portless configuration
> >  - Support sticky buffers in rules
> >  - Autogenerate reference documentation
> >  - Provide better cross platform support
> >
> > https://www.snort.org/snort3
> >
> > Signed-off-by: Fabrice Fontaine <fontaine.fabrice at gmail.com>
>
>  Applied both to master, thanks.
>
>  Was there a reason you didn't carry Heiko's Reviewed-by? I don't think you
> changed that much, did you?
Indeed, I should have carried it.
>
>  Regards,
>  Arnout
>
> > ---
> > Changes v3 -> v4:
> >  - Bump to latest upstream version
> >  - Add new flex dependency
> >
> > Changes v2 -> v3 (after review of Heiko Thiery):
> >  - Bump to latest upstream version (and so drop patches)
> >  - Update indentation of hash file to two spaces)
> >
> > Changes v1 -> v2:
> >  - Fix duplicate "depends on" error in Config.in
> >
> >  DEVELOPERS                 |  1 +
> >  package/Config.in          |  1 +
> >  package/snort3/Config.in   | 42 ++++++++++++++++++++++++++++
> >  package/snort3/snort3.hash |  6 ++++
> >  package/snort3/snort3.mk   | 57 ++++++++++++++++++++++++++++++++++++++
> >  5 files changed, 107 insertions(+)
> >  create mode 100644 package/snort3/Config.in
> >  create mode 100644 package/snort3/snort3.hash
> >  create mode 100644 package/snort3/snort3.mk
> >
> > diff --git a/DEVELOPERS b/DEVELOPERS
> > index 664337561f..a72ddc9740 100644
> > --- a/DEVELOPERS
> > +++ b/DEVELOPERS
> > @@ -905,6 +905,7 @@ F:        package/python-yatl/
> >  F:   package/rocksdb/
> >  F:   package/rygel/
> >  F:   package/safeclib/
> > +F:   package/snort3/
> >  F:   package/suricata/
> >  F:   package/tinycbor/
> >  F:   package/tinydtls/
> > diff --git a/package/Config.in b/package/Config.in
> > index c30a1603e3..c3379b2376 100644
> > --- a/package/Config.in
> > +++ b/package/Config.in
> > @@ -2279,6 +2279,7 @@ endif
> >       source "package/sngrep/Config.in"
> >       source "package/snmpclitools/Config.in"
> >       source "package/snort/Config.in"
> > +     source "package/snort3/Config.in"
> >       source "package/socat/Config.in"
> >       source "package/socketcand/Config.in"
> >       source "package/softether/Config.in"
> > diff --git a/package/snort3/Config.in b/package/snort3/Config.in
> > new file mode 100644
> > index 0000000000..75923c3c20
> > --- /dev/null
> > +++ b/package/snort3/Config.in
> > @@ -0,0 +1,42 @@
> > +config BR2_PACKAGE_SNORT3
> > +     bool "snort3"
> > +     depends on BR2_PACKAGE_LUAJIT_ARCH_SUPPORTS # luajit
> > +     depends on !(BR2_PACKAGE_DAQ || BR2_PACKAGE_SNORT)
> > +     depends on BR2_USE_MMU # fork()
> > +     depends on BR2_INSTALL_LIBSTDCPP
> > +     depends on !BR2_STATIC_LIBS # daq3
> > +     depends on BR2_TOOLCHAIN_GCC_AT_LEAST_4_9 # C++11
> > +     depends on BR2_TOOLCHAIN_HAS_THREADS # hwloc
> > +     depends on BR2_USE_WCHAR
> > +     select BR2_PACKAGE_DAQ3
> > +     select BR2_PACKAGE_FLEX
> > +     select BR2_PACKAGE_HWLOC
> > +     select BR2_PACKAGE_LIBDNET
> > +     select BR2_PACKAGE_LIBPCAP
> > +     select BR2_PACKAGE_LUAJIT
> > +     select BR2_PACKAGE_PCRE
> > +     select BR2_PACKAGE_LIBTIRPC if !BR2_TOOLCHAIN_HAS_NATIVE_RPC
> > +     select BR2_PACKAGE_OPENSSL
> > +     select BR2_PACKAGE_ZLIB
> > +     help
> > +       Snort 3 is the next generation Snort IPS (Intrusion
> > +       Prevention System).
> > +
> > +       - Support multiple packet processing threads
> > +       - Shared configuration and attribute table
> > +       - Use a simple, scriptable configuration
> > +       - Make key components pluggable
> > +       - Autodetect services for portless configuration
> > +       - Support sticky buffers in rules
> > +       - Autogenerate reference documentation
> > +       - Provide better cross platform support
> > +
> > +       https://www.snort.org/snort3
> > +
> > +comment "snort3 needs a toolchain w/ C++, wchar, threads, dynamic library, gcc >= 4.9"
> > +     depends on BR2_PACKAGE_LUAJIT_ARCH_SUPPORTS
> > +     depends on !(BR2_PACKAGE_DAQ || BR2_PACKAGE_SNORT)
> > +     depends on BR2_USE_MMU
> > +     depends on !BR2_INSTALL_LIBSTDCPP || !BR2_USE_WCHAR || \
> > +             BR2_STATIC_LIBS || !BR2_TOOLCHAIN_HAS_THREADS || \
> > +             !BR2_TOOLCHAIN_GCC_AT_LEAST_4_9
> > diff --git a/package/snort3/snort3.hash b/package/snort3/snort3.hash
> > new file mode 100644
> > index 0000000000..48eddd74c9
> > --- /dev/null
> > +++ b/package/snort3/snort3.hash
> > @@ -0,0 +1,6 @@
> > +# Locally computed:
> > +sha256  a68af8ea46a038dfb0ad489e8d11dee62a3e63cb4a639f6bb4fac4ded955fe11  snort3-3.1.4.0.tar.gz
> > +
> > +# Hash for license files:
> > +sha256  3f1cbfb20bb2c608e1a474421880d08b8cba6abb00ab7736d22c481d71656a6d  COPYING
> > +sha256  f98260a6d3e5ef4ede8a2a6b698e5ac91d64c09243f7171e1c5b17b920a835c7  LICENSE
> > diff --git a/package/snort3/snort3.mk b/package/snort3/snort3.mk
> > new file mode 100644
> > index 0000000000..1c49da8ec0
> > --- /dev/null
> > +++ b/package/snort3/snort3.mk
> > @@ -0,0 +1,57 @@
> > +################################################################################
> > +#
> > +# snort3
> > +#
> > +################################################################################
> > +
> > +SNORT3_VERSION = 3.1.4.0
> > +SNORT3_SITE = $(call github,snort3,snort3,$(SNORT3_VERSION))
> > +SNORT3_LICENSE = GPL-2.0
> > +SNORT3_LICENSE_FILES = COPYING LICENSE
> > +
> > +SNORT3_DEPENDENCIES = \
> > +     host-pkgconf daq3 flex hwloc libdnet libpcap luajit openssl pcre zlib
> > +
> > +SNORT3_CONF_OPTS = \
> > +     -DENABLE_GDB=OFF \
> > +     -DENABLE_STATIC_DAQ=OFF \
> > +     -DMAKE_DOC=OFF
> > +
> > +ifeq ($(BR2_PACKAGE_FLATBUFFERS),y)
> > +SNORT3_DEPENDENCIES += flatbuffers
> > +SNORT3_CONF_OPTS += -DHAVE_FLATBUFFERS=ON
> > +else
> > +SNORT3_CONF_OPTS += -DHAVE_FLATBUFFERS=OFF
> > +endif
> > +
> > +ifeq ($(BR2_PACKAGE_LIBICONV),y)
> > +SNORT3_DEPENDENCIES += libiconv
> > +SNORT3_CONF_OPTS += -DHAVE_ICONV=ON
> > +endif
> > +
> > +ifeq ($(BR2_PACKAGE_LIBTIRPC),y)
> > +SNORT3_DEPENDENCIES += libtirpc
> > +endif
> > +
> > +ifeq ($(BR2_PACKAGE_SAFECLIB),y)
> > +SNORT3_DEPENDENCIES += safeclib
> > +SNORT3_CONF_OPTS += -DENABLE_SAFEC=ON
> > +else
> > +SNORT3_CONF_OPTS += -DENABLE_SAFEC=OFF
> > +endif
> > +
> > +ifeq ($(BR2_PACKAGE_UTIL_LINUX_LIBUUID),y)
> > +SNORT3_DEPENDENCIES += util-linux
> > +SNORT3_CONF_OPTS += -DHAVE_UUID=ON
> > +else
> > +SNORT3_CONF_OPTS += -DHAVE_UUID=OFF
> > +endif
> > +
> > +ifeq ($(BR2_PACKAGE_XZ),y)
> > +SNORT3_DEPENDENCIES += xz
> > +SNORT3_CONF_OPTS += -DHAVE_LZMA=ON
> > +else
> > +SNORT3_CONF_OPTS += -DHAVE_LZMA=OFF
> > +endif
> > +
> > +$(eval $(cmake-package))
> >
Best Regards,

Fabrice

More information about the buildroot mailing list