Import snort-2.9.9.0 as wip/snort, in order to update net/snort.

To: pkgsrc-wip-changes%NetBSD.org@localhost
Subject: Import snort-2.9.9.0 as wip/snort, in order to update net/snort.
From: Nils Ratusznik <nils%NetBSD.org@localhost>
Date: Thu, 16 Mar 2017 16:04:27 +0000
Module Name:	pkgsrc-wip
Committed By:	Nils Ratusznik <nils%NetBSD.org@localhost>
Pushed By:	nils
Date:		Thu Mar 16 17:04:27 2017 +0100
Changeset:	413af657b80223724a75f34942e8e84aee3cab4c

Added Files:
	snort/DESCR
	snort/MESSAGE
	snort/Makefile
	snort/PLIST
	snort/distinfo
	snort/files/black_list.rules
	snort/files/snort.sh
	snort/files/white_list.rules
	snort/options.mk
	snort/patches/patch-src_target-based_sftarget__reader.c

Log Message:
Import snort-2.9.9.0 as wip/snort, in order to update net/snort.

  Snort is a libpcap-based packet sniffer/logger which can be used
as a lightweight network intrusion detection system.  It features
rules based logging and can perform protocol analysis, content
searching/matching and can be used to detect a variety of attacks
and probes, such as buffer overflows, stealth port scans, CGI
attacks, SMB probes, OS fingerprinting attempts, and much more.

To see a diff of this commit:
https://wip.pkgsrc.org/cgi-bin/gitweb.cgi?p=pkgsrc-wip.git;a=commitdiff;h=413af657b80223724a75f34942e8e84aee3cab4c

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.

diffstat:
 snort/DESCR                                        |  10 ++
 snort/MESSAGE                                      |  20 +++
 snort/Makefile                                     | 118 ++++++++++++++++
 snort/PLIST                                        | 156 +++++++++++++++++++++
 snort/distinfo                                     |   7 +
 snort/files/black_list.rules                       |   1 +
 snort/files/snort.sh                               |  19 +++
 snort/files/white_list.rules                       |   1 +
 snort/options.mk                                   | 138 ++++++++++++++++++
 .../patch-src_target-based_sftarget__reader.c      |  17 +++
 10 files changed, 487 insertions(+)

diffs:
diff --git a/snort/DESCR b/snort/DESCR
new file mode 100644
index 0000000000..53c49da167
--- /dev/null
+++ b/snort/DESCR
@@ -0,0 +1,10 @@
+  Snort is a libpcap-based packet sniffer/logger which can be used
+as a lightweight network intrusion detection system.  It features
+rules based logging and can perform protocol analysis, content
+searching/matching and can be used to detect a variety of attacks
+and probes, such as buffer overflows, stealth port scans, CGI
+attacks, SMB probes, OS fingerprinting attempts, and much more.
+
+  Snort has a real-time alerting capability, with alerts being sent
+to syslog or a separate "alert" file.   As of version 1.1 it can
+also send WinPopup messages via Samba.
diff --git a/snort/MESSAGE b/snort/MESSAGE
new file mode 100644
index 0000000000..d548cd80dd
--- /dev/null
+++ b/snort/MESSAGE
@@ -0,0 +1,20 @@
+===========================================================================
+$NetBSD: MESSAGE,v 1.5 2005/09/14 12:46:52 adrianp Exp $
+
+To use snort, you will need to perform the following steps:
+
+1. In case you don't have PKG_RCD_SCRIPTS set in your /etc/mk.conf, copy
+   ${PREFIX}/${RCD_SCRIPTS_EXAMPLEDIR}/snort to /etc/rc.d/snort and add
+
+	snort=YES
+
+2. Now start snort by issuing the command
+
+	/etc/rc.d/snort start
+
+As of snort v2.4.0 rules are no longer distributed with the main
+distribution.  You can either install the net/snort-rules package
+which contains the GPL "Community Rules" or download your appropriate
+rules from https://snort.org/downloads/#rule-downloads
+
+===========================================================================
diff --git a/snort/Makefile b/snort/Makefile
new file mode 100644
index 0000000000..3af7275606
--- /dev/null
+++ b/snort/Makefile
@@ -0,0 +1,118 @@
+# $NetBSD: Makefile,v 1.52 2015/08/23 14:30:40 wiz Exp $
+#
+
+DISTNAME=		snort-2.9.9.0
+CATEGORIES=		net security
+MASTER_SITES=		https://www.snort.org/downloads/archive/snort/
+
+MAINTAINER=		pkgsrc-users%NetBSD.org@localhost
+HOMEPAGE=		http://www.snort.org/
+COMMENT=		The Open Source Network Intrusion Detection System
+LICENSE=		gnu-gpl-v2
+
+DEPENDS+=		daq>=2.0.0:../../wip/daq
+
+CONFLICTS+=		snort-mysql-[0-9]*
+CONFLICTS+=		snort-pgsql-[0-9]*
+CONFLICTS+=		snort-prelude-[0-9]*
+
+.include "../../mk/bsd.prefs.mk"
+
+GNU_CONFIGURE=		YES
+USE_LIBTOOL=		YES
+PKG_SYSCONFSUBDIR=	snort
+RCD_SCRIPTS=		snort
+SNORT_USER?=		snort
+SNORT_GROUP?=		snort
+EGDIR=			${PREFIX}/share/examples/snort
+PKG_GROUPS=		${SNORT_GROUP}
+PKG_USERS=		${SNORT_USER}:${SNORT_GROUP}
+PKG_GROUPS_VARS+=	SNORT_GROUP
+PKG_USERS_VARS=		SNORT_USER
+FILES_SUBST+=		SNORT_USER=${SNORT_USER} SNORT_GROUP=${SNORT_GROUP}
+BUILD_DEFS+=		VARBASE
+MAKE_JOBS_SAFE=		NO
+OWN_DIRS_PERMS=		${VARBASE}/log/snort ${SNORT_USER} ${SNORT_GROUP} 700
+DOC_FILES=		BUGS INSTALL NEWS PROBLEMS README TODO USAGE WISHLIST
+OWN_DIRS=		${PKG_SYSCONFDIR} ${PKG_SYSCONFDIR}/rules
+INSTALLATION_DIRS+=	${EGDIR}/rules
+AUTO_MKDIRS=		yes
+
+CONF_FILES=		${EGDIR}/attribute_table.dtd \
+			${PKG_SYSCONFDIR}/attribute_table.dtd
+CONF_FILES+=		${EGDIR}/classification.config \
+			${PKG_SYSCONFDIR}/classification.config
+CONF_FILES+=		${EGDIR}/file_magic.conf \
+			${PKG_SYSCONFDIR}/file_magic.conf
+CONF_FILES+=		${EGDIR}/gen-msg.map \
+			${PKG_SYSCONFDIR}/gen-msg.map
+CONF_FILES+=		${EGDIR}/reference.config \
+			${PKG_SYSCONFDIR}/reference.config
+CONF_FILES=		${EGDIR}/snort.conf.default \
+			${PKG_SYSCONFDIR}/snort.conf
+CONF_FILES+=		${EGDIR}/threshold.conf \
+			${PKG_SYSCONFDIR}/threshold.conf
+CONF_FILES+=		${EGDIR}/generators \
+			${PKG_SYSCONFDIR}/generators
+CONF_FILES+=		${EGDIR}/unicode.map \
+			${PKG_SYSCONFDIR}/unicode.map
+CONF_FILES+=		${EGDIR}/rules/black_list.rules \
+			${PKG_SYSCONFDIR}/rules/black_list.rules
+CONF_FILES+=		${EGDIR}/rules/white_list.rules \
+			${PKG_SYSCONFDIR}/rules/white_list.rules
+
+SUBST_CLASSES+=		paths
+SUBST_STAGE.paths=	post-patch
+SUBST_FILES.paths=	etc/snort.conf src/snort.c
+SUBST_SED.paths=	-e "s|/usr/local|${PREFIX}|g"
+SUBST_SED.paths+=	-e "s|/etc|${PKG_SYSCONFDIR}|g"
+SUBST_SED.paths+=	-e "s|../rules|${PKG_SYSCONFDIR}/rules|g"
+SUBST_SED.paths+=	-e "s|../so_rules|${PKG_SYSCONFDIR}/so_rules|g"
+SUBST_SED.paths+=	-e "s|../preproc_rules|${PKG_SYSCONFDIR}/preproc_rules|g"
+SUBST_MESSAGE.paths=	Fixing paths.
+
+SUBST_CLASSES+=		installp
+SUBST_STAGE.installp=	post-extract
+SUBST_FILES.installp=	src/dynamic-preprocessors/Makefile.in
+SUBST_SED.installp=	-e "s|exec_prefix)|exec_prefix)/share/snort|g"
+SUBST_MESSAGE.installp=	Fixing preprocessors install path.
+
+.include "options.mk"
+
+CONFIGURE_ARGS+=	--sysconfdir=${PKG_SYSCONFDIR}
+CONFIGURE_ARGS+=	--disable-static-daq
+CONFIGURE_ARGS+=	--enable-sourcefire
+CONFIGURE_ARGS+=	--with-daq-includes=${BUILDLINK_PREFIX.daq}/include
+CONFIGURE_ARGS+=	--with-daq-libraries=${BUILDLINK_PREFIX.daq}/lib
+CONFIGURE_ARGS+=	--with-libpcap-includes=${BUILDLINK_PREFIX.libpcap}/include
+CONFIGURE_ARGS+=	--with-libpcap-libraries=${BUILDLINK_PREFIX.libpcap}/lib
+CONFIGURE_ARGS+=	--disable-so_with_static_lib
+
+pre-build:
+	${CP} ${WRKSRC}/etc/snort.conf ${WRKSRC}/etc/snort.conf.default
+
+INSTALLATION_DIRS+=	${EGDIR} share/doc/snort/schemas
+
+post-install:
+	${INSTALL_DATA} ${WRKSRC}/etc/*.config \
+			${WRKSRC}/etc/*.map \
+			${WRKSRC}/etc/threshold.conf \
+			${WRKSRC}/etc/snort.conf.default ${DESTDIR}${EGDIR}/
+	${INSTALL_DATA} ${WRKSRC}/doc/generators ${DESTDIR}${EGDIR}
+
+.for i in ${DOC_FILES}
+	${INSTALL_DATA}	${WRKSRC}/doc/${i} ${DESTDIR}${PREFIX}/share/doc/snort/
+.endfor
+
+	${INSTALL_DATA} ${WRKSRC}/doc/README.* ${DESTDIR}${PREFIX}/share/doc/snort/
+	${INSTALL_DATA} ${WRKSRC}/doc/*.tex ${DESTDIR}${PREFIX}/share/doc/snort/
+	${INSTALL_DATA} ${WRKSRC}/doc/*.pdf ${DESTDIR}${PREFIX}/share/doc/snort/
+	${INSTALL_DATA} ${FILESDIR}/black_list.rules ${DESTDIR}${EGDIR}/rules/
+	${INSTALL_DATA} ${FILESDIR}/white_list.rules ${DESTDIR}${EGDIR}/rules/
+	${INSTALL_MAN} ${WRKSRC}/snort.8 ${DESTDIR}${PREFIX}/${PKGMANDIR}/man8
+
+.include "../../wip/daq/buildlink3.mk"
+.include "../../net/libdnet/buildlink3.mk"
+.include "../../net/libpcap/buildlink3.mk"
+.include "../../devel/pcre/buildlink3.mk"
+.include "../../mk/bsd.pkg.mk"
diff --git a/snort/PLIST b/snort/PLIST
new file mode 100644
index 0000000000..c829c5cf2e
--- /dev/null
+++ b/snort/PLIST
@@ -0,0 +1,156 @@
+@comment $NetBSD$
+bin/snort
+bin/u2boat
+bin/u2spewfoo
+lib/pkgconfig/snort.pc
+lib/snort_dynamicengine/libsf_engine.la
+lib/snort_dynamicpreprocessor/libsf_dce2_preproc.la
+lib/snort_dynamicpreprocessor/libsf_dnp3_preproc.la
+lib/snort_dynamicpreprocessor/libsf_dns_preproc.la
+lib/snort_dynamicpreprocessor/libsf_ftptelnet_preproc.la
+lib/snort_dynamicpreprocessor/libsf_gtp_preproc.la
+lib/snort_dynamicpreprocessor/libsf_imap_preproc.la
+lib/snort_dynamicpreprocessor/libsf_modbus_preproc.la
+lib/snort_dynamicpreprocessor/libsf_pop_preproc.la
+lib/snort_dynamicpreprocessor/libsf_reputation_preproc.la
+lib/snort_dynamicpreprocessor/libsf_sdf_preproc.la
+lib/snort_dynamicpreprocessor/libsf_sip_preproc.la
+lib/snort_dynamicpreprocessor/libsf_smtp_preproc.la
+lib/snort_dynamicpreprocessor/libsf_ssh_preproc.la
+lib/snort_dynamicpreprocessor/libsf_ssl_preproc.la
+man/man8/snort.8
+share/doc/snort/AUTHORS
+share/doc/snort/BUGS
+share/doc/snort/CREDITS
+share/doc/snort/INSTALL
+share/doc/snort/NEWS
+share/doc/snort/OpenDetectorDeveloperGuide.pdf
+share/doc/snort/PROBLEMS
+share/doc/snort/README
+share/doc/snort/README.GTP
+share/doc/snort/README.PLUGINS
+share/doc/snort/README.PerfProfiling
+share/doc/snort/README.SMTP
+share/doc/snort/README.UNSOCK
+share/doc/snort/README.WIN32
+share/doc/snort/README.active
+share/doc/snort/README.alert_order
+share/doc/snort/README.appid
+share/doc/snort/README.asn1
+share/doc/snort/README.counts
+share/doc/snort/README.csv
+share/doc/snort/README.daq
+share/doc/snort/README.dcerpc2
+share/doc/snort/README.decode
+share/doc/snort/README.decoder_preproc_rules
+share/doc/snort/README.dnp3
+share/doc/snort/README.dns
+share/doc/snort/README.event_queue
+share/doc/snort/README.file
+share/doc/snort/README.file_ips
+share/doc/snort/README.filters
+share/doc/snort/README.flowbits
+share/doc/snort/README.frag3
+share/doc/snort/README.ftptelnet
+share/doc/snort/README.gre
+share/doc/snort/README.ha
+share/doc/snort/README.http_inspect
+share/doc/snort/README.imap
+share/doc/snort/README.ipip
+share/doc/snort/README.ipv6
+share/doc/snort/README.modbus
+share/doc/snort/README.multipleconfigs
+share/doc/snort/README.normalize
+share/doc/snort/README.pcap_readmode
+share/doc/snort/README.pop
+share/doc/snort/README.ppm
+share/doc/snort/README.reload
+share/doc/snort/README.reputation
+share/doc/snort/README.sensitive_data
+share/doc/snort/README.sfportscan
+share/doc/snort/README.sip
+share/doc/snort/README.ssh
+share/doc/snort/README.ssl
+share/doc/snort/README.stream5
+share/doc/snort/README.tag
+share/doc/snort/README.thresholding
+share/doc/snort/README.u2boat
+share/doc/snort/README.unified2
+share/doc/snort/README.variables
+share/doc/snort/TODO
+share/doc/snort/USAGE
+share/doc/snort/WISHLIST
+share/doc/snort/generators
+share/doc/snort/snort_manual.pdf
+share/doc/snort/snort_manual.tex
+share/examples/snort/classification.config
+share/examples/snort/gen-msg.map
+share/examples/snort/generators
+share/examples/snort/reference.config
+share/examples/snort/rules/black_list.rules
+share/examples/snort/rules/white_list.rules
+share/examples/snort/snort.conf.default
+share/examples/snort/threshold.conf
+share/examples/snort/unicode.map
+share/snort/src/snort_dynamicsrc/Unified2_common.h
+share/snort/src/snort_dynamicsrc/bitop.h
+share/snort/src/snort_dynamicsrc/event.h
+share/snort/src/snort_dynamicsrc/file_api.h
+share/snort/src/snort_dynamicsrc/file_mail_common.h
+share/snort/src/snort_dynamicsrc/idle_processing.h
+share/snort/src/snort_dynamicsrc/mpse_methods.h
+share/snort/src/snort_dynamicsrc/obfuscation.h
+share/snort/src/snort_dynamicsrc/pcap_pkthdr32.h
+share/snort/src/snort_dynamicsrc/perf_indicators.h
+share/snort/src/snort_dynamicsrc/plugin_enum.h
+share/snort/src/snort_dynamicsrc/preprocids.h
+share/snort/src/snort_dynamicsrc/profiler.h
+share/snort/src/snort_dynamicsrc/rule_option_types.h
+share/snort/src/snort_dynamicsrc/session_api.h
+share/snort/src/snort_dynamicsrc/sfPolicyUserData.c
+share/snort/src/snort_dynamicsrc/sfPolicyUserData.h
+share/snort/src/snort_dynamicsrc/sf_base64decode.c
+share/snort/src/snort_dynamicsrc/sf_base64decode.h
+share/snort/src/snort_dynamicsrc/sf_decompression.h
+share/snort/src/snort_dynamicsrc/sf_dynamic_common.h
+share/snort/src/snort_dynamicsrc/sf_dynamic_define.h
+share/snort/src/snort_dynamicsrc/sf_dynamic_engine.h
+share/snort/src/snort_dynamicsrc/sf_dynamic_meta.h
+share/snort/src/snort_dynamicsrc/sf_dynamic_preproc_lib.c
+share/snort/src/snort_dynamicsrc/sf_dynamic_preproc_lib.h
+share/snort/src/snort_dynamicsrc/sf_dynamic_preprocessor.h
+share/snort/src/snort_dynamicsrc/sf_email_attach_decode.c
+share/snort/src/snort_dynamicsrc/sf_email_attach_decode.h
+share/snort/src/snort_dynamicsrc/sf_ip.h
+share/snort/src/snort_dynamicsrc/sf_protocols.h
+share/snort/src/snort_dynamicsrc/sf_seqnums.h
+share/snort/src/snort_dynamicsrc/sf_snort_packet.h
+share/snort/src/snort_dynamicsrc/sf_snort_plugin_api.h
+share/snort/src/snort_dynamicsrc/sf_types.h
+share/snort/src/snort_dynamicsrc/sfcontrol.h
+share/snort/src/snort_dynamicsrc/sfdebug.h
+share/snort/src/snort_dynamicsrc/sfghash.h
+share/snort/src/snort_dynamicsrc/sfhashfcn.h
+share/snort/src/snort_dynamicsrc/sfparser.c
+share/snort/src/snort_dynamicsrc/sfsnort_dynamic_detection_lib.c
+share/snort/src/snort_dynamicsrc/sfsnort_dynamic_detection_lib.h
+share/snort/src/snort_dynamicsrc/sidechannel_define.h
+share/snort/src/snort_dynamicsrc/signature.h
+share/snort/src/snort_dynamicsrc/sip_common.h
+share/snort/src/snort_dynamicsrc/snort_debug.h
+share/snort/src/snort_dynamicsrc/ssl.c
+share/snort/src/snort_dynamicsrc/ssl.h
+share/snort/src/snort_dynamicsrc/ssl_config.c
+share/snort/src/snort_dynamicsrc/ssl_config.h
+share/snort/src/snort_dynamicsrc/ssl_ha.c
+share/snort/src/snort_dynamicsrc/ssl_ha.h
+share/snort/src/snort_dynamicsrc/ssl_include.h
+share/snort/src/snort_dynamicsrc/ssl_inspect.c
+share/snort/src/snort_dynamicsrc/ssl_inspect.h
+share/snort/src/snort_dynamicsrc/ssl_session.h
+share/snort/src/snort_dynamicsrc/str_search.h
+share/snort/src/snort_dynamicsrc/stream_api.h
+share/snort/src/snort_dynamicsrc/treenodes.h
+share/snort/src/snort_dynamicsrc/util_unfold.c
+share/snort/src/snort_dynamicsrc/util_unfold.h
+@pkgdir share/doc/snort/schemas
diff --git a/snort/distinfo b/snort/distinfo
new file mode 100644
index 0000000000..85b483918a
--- /dev/null
+++ b/snort/distinfo
@@ -0,0 +1,7 @@
+$NetBSD: distinfo,v 1.48 2013/02/22 12:05:34 jperkin Exp $
+
+SHA1 (snort-2.9.9.0.tar.gz) = c522b6130655e0d12299af6fd1a613b20259b4e3
+RMD160 (snort-2.9.9.0.tar.gz) = cfe3f7bb4203411e40376607c6bd1ee1fe7c4f84
+SHA512 (snort-2.9.9.0.tar.gz) = 2c17539c80484c90198a2e5d5efd1e70f26afb79ce7c28e745ded356b6f1a1f97763ff21fde986652af1768fa3bcdafbbcc3c82ee8ad6d2ef0471f360cfcab83
+Size (snort-2.9.9.0.tar.gz) = 6364482 bytes
+SHA1 (patch-src_target-based_sftarget__reader.c) = c0f4bde7a1a0fa00e4efecf26eb579cc2b1cb2ee
diff --git a/snort/files/black_list.rules b/snort/files/black_list.rules
new file mode 100644
index 0000000000..4d3212c796
--- /dev/null
+++ b/snort/files/black_list.rules
@@ -0,0 +1 @@
+# blacklist file. Empty for now.
diff --git a/snort/files/snort.sh b/snort/files/snort.sh
new file mode 100755
index 0000000000..01a5c36467
--- /dev/null
+++ b/snort/files/snort.sh
@@ -0,0 +1,19 @@
+#!@RCD_SCRIPTS_SHELL@
+#
+# $NetBSD: snort.sh,v 1.2 2011/10/07 22:37:04 shattered Exp $
+#
+
+# PROVIDE: snort
+# REQUIRE: DAEMON
+
+. /etc/rc.subr
+
+name="snort"
+rcvar=$name
+command="@PREFIX@/bin/${name}"
+confdir="@PKG_SYSCONFDIR@"
+required_files="$confdir/snort.conf $confdir/classification.config $confdir/reference.config"
+command_args="-u @SNORT_USER@ -g @SNORT_GROUP@ --daq-dir=@PREFIX@/lib/daq/ -d -D -l /var/log/snort -c $confdir/snort.conf"
+
+load_rc_config $name
+run_rc_command "$1"
diff --git a/snort/files/white_list.rules b/snort/files/white_list.rules
new file mode 100644
index 0000000000..fd46eaf580
--- /dev/null
+++ b/snort/files/white_list.rules
@@ -0,0 +1 @@
+# whitelist file. Empty for now.
diff --git a/snort/options.mk b/snort/options.mk
new file mode 100644
index 0000000000..b6fba09d44
--- /dev/null
+++ b/snort/options.mk
@@ -0,0 +1,138 @@
+# $NetBSD: options.mk,v 1.7 2012/09/12 13:16:38 obache Exp $
+
+PKG_OPTIONS_VAR=	PKG_OPTIONS.snort
+
+PKG_SUPPORTED_OPTIONS=	debug snort-prelude ssl snmp snort-gre
+PKG_SUPPORTED_OPTIONS+=	snort-dynamicplugin snort-timestats
+PKG_SUPPORTED_OPTIONS+=	snort-rulestate inet6
+# does not work on SunOS
+.if ${OPSYS} != "SunOS"
+PKG_SUGGESTED_OPTIONS=	inet6
+.endif
+
+
+PKG_OPTIONS_OPTIONAL_GROUPS=	flex
+PKG_OPTIONS_GROUP.flex=		snort-flexresp snort-flexresp2
+
+PKG_OPTIONS_OPTIONAL_GROUPS+=	database
+PKG_OPTIONS_GROUP.database=	mysql pgsql
+
+.include "../../mk/bsd.options.mk"
+
+###
+### Please note that a large number of these options remain un-tested
+### for this package.
+###
+
+###
+### Enable dynamically loadable preprocessors, detection engine
+### and rules libraries.
+###
+.if !empty(PKG_OPTIONS:Msnort-dynamicplugin)
+CONFIGURE_ARGS+=	--enable-dynamicplugin
+.endif
+
+###
+### Enable rule state configuration feature
+###
+.if !empty(PKG_OPTIONS:Msnort-rulestate)
+CONFIGURE_ARGS+=	--enable-rulestate
+.endif
+
+###
+### Enable ipv6 support
+###
+.if !empty(PKG_OPTIONS:Minet6)
+CONFIGURE_ARGS+=	--enable-ipv6
+.endif
+
+###
+### Enable real-time performance statistics
+###
+.if !empty(PKG_OPTIONS:Msnort-timestats)
+CONFIGURE_ARGS+=	--enable-timestats
+.endif
+
+###
+### Enable debug support
+###
+.if !empty(PKG_OPTIONS:Mdebug)
+CONFIGURE_ARGS+=	--enable-debug
+.endif
+
+###
+### Support for openssl (used by the XML output plugin)
+###
+.if !empty(PKG_OPTIONS:Mssl)
+CONFIGURE_ARGS+=	--with-openssl
+.endif
+
+###
+### Enable GRE decoder
+###
+.if !empty(PKG_OPTIONS:Msnort-gre)
+CONFIGURE_ARGS+=	--enable-gre
+.endif
+
+###
+### Enable SNMP alerting code
+###
+.if !empty(PKG_OPTIONS:Msnmp)
+CONFIGURE_ARGS+=	--with-snmp
+.endif
+
+###
+### Support MySQL for snort logging
+###
+.if !empty(PKG_OPTIONS:Mmysql)
+.include "../../mk/mysql.buildlink3.mk"
+CONFIGURE_ARGS+=	--with-mysql=${BUILDLINK_PREFIX.mysql-client}
+LDFLAGS+=		${BUILDLINK_LDFLAGS.mysql-client}
+.endif
+
+###
+### Support PostgreSQL for snort logging
+###
+.if !empty(PKG_OPTIONS:Mpgsql)
+.include "../../mk/pgsql.buildlink3.mk"
+CONFIGURE_ARGS+=	--with-postgresql=${PGSQL_PREFIX:Q}
+.endif
+
+###
+### Enable Prelude support (untested)
+###
+.if !empty(PKG_OPTIONS:Msnort-prelude)
+.include "../../security/libprelude/buildlink3.mk"
+CONFIGURE_ARGS+=	--enable-prelude
+.endif
+
+###
+### Flexible Responses on hostile connection attempts (untested)
+###
+.if !empty(PKG_OPTIONS:Msnort-flexresp)
+.include "../../devel/libnet10/buildlink3.mk"
+CONFIGURE_ARGS+=	--enable-flexresp
+CONFIGURE_ARGS+=	--with-libnet-includes=${BUILDLINK_PREFIX.libnet10}/include/libnet10
+CONFIGURE_ARGS+=	--with-libnet-libraries=${BUILDLINK_PREFIX.libnet10}/lib/libnet10
+SUBST_CLASSES+=		conf
+SUBST_STAGE.conf=	pre-configure
+SUBST_FILES.conf=	configure
+SUBST_SED.conf=		-e "s|libnet-config|libnet10-config|g"
+SUBST_MESSAGE.conf=	Fixing configuration script.
+.endif
+
+###
+### NEW Flexible Responses on hostile connection attempts (untested)
+###
+.if !empty(PKG_OPTIONS:Msnort-flexresp2)
+.include "../../devel/libnet11/buildlink3.mk"
+.include "../../net/libdnet/buildlink3.mk"
+CONFIGURE_ARGS+=	--with-libnet-includes=${BUILDLINK_PREFIX.libnet11}/include/libnet11
+CONFIGURE_ARGS+=	--with-libnet-libraries=${BUILDLINK_PREFIX.libnet11}/lib/libnet11
+CONFIGURE_ARGS+=	--enable-flexresp2
+SUBST_CLASSES+=		conf
+SUBST_STAGE.conf=	pre-configure
+SUBST_FILES.conf=	configure
+SUBST_SED.conf=		-e "s|libnet-config|libnet11-config|g"
+SUBST_MESSAGE.conf=	Fixing configuration script.
+.endif
diff --git a/snort/patches/patch-src_target-based_sftarget__reader.c b/snort/patches/patch-src_target-based_sftarget__reader.c
new file mode 100644
index 0000000000..55332fbddc
--- /dev/null
+++ b/snort/patches/patch-src_target-based_sftarget__reader.c
@@ -0,0 +1,17 @@
+$NetBSD: patch-src_target-based_sftarget__reader.c,v 1.1 2013/02/22 12:05:34 jperkin Exp $
+
+Sun ar needs at least one symbol in a library.
+
+--- src/target-based/sftarget_reader.c.orig	2009-10-02 20:30:03.000000000 +0000
++++ src/target-based/sftarget_reader.c
+@@ -26,6 +26,10 @@
+ #include "config.h"
+ #endif
+ 
++#ifdef __sun
++int sun_ar_needs_a_symbol = 0;
++#endif
++
+ #ifdef TARGET_BASED
+ 
+ #include <stdio.h>
Prev by Date: Do not mess with the VCC_CC var, fixes at least SunOS/x86_64.
Next by Date: Added snort
Previous by Thread: Do not mess with the VCC_CC var, fixes at least SunOS/x86_64.
Next by Thread: Added snort
Indexes:
Home | Main Index | Thread Index | Old Index