suricata: add new ids and pds engine for meta-security

Signed-off-by: Armin Kuster <akuster808@gmail.com>
2026-04-20 11:29:37 +00:00 · 2015-01-01 09:37:56 -08:00
parent 2647b09a87
commit 9503b72f57
4 changed files with 1426 additions and 0 deletions
--- a/recipes-security/suricata/suricata-2.0.5/no_libhtp_build.patch
+++ b/recipes-security/suricata/suricata-2.0.5/no_libhtp_build.patch
@@ -0,0 +1,38 @@
+Upstream-Status: Inappropriate [configuration]
+
+Signed-of_by: Armin Kuster <akuster808@gmail.com>
+
+Index: suricata-2.0.5/Makefile.am
+===================================================================
+--- suricata-2.0.5.orig/Makefile.am
+++ suricata-2.0.5/Makefile.am
+@@ -5,7 +5,7 @@ ACLOCAL_AMFLAGS = -I m4
+ EXTRA_DIST = ChangeLog COPYING LICENSE suricata.yaml.in \
+              classification.config threshold.config \
+              reference.config
+-SUBDIRS = $(HTP_DIR) src qa rules doc contrib scripts
+SUBDIRS = src qa rules doc contrib scripts
+ 
+ CLEANFILES = stamp-h[0-9]*
+ 
+Index: suricata-2.0.5/Makefile.in
+===================================================================
+--- suricata-2.0.5.orig/Makefile.in
+++ suricata-2.0.5/Makefile.in
+@@ -229,7 +229,6 @@ HAVE_PCAP_CONFIG = @HAVE_PCAP_CONFIG@
+ HAVE_PKG_CONFIG = @HAVE_PKG_CONFIG@
+ HAVE_PYTHON_CONFIG = @HAVE_PYTHON_CONFIG@
+ HAVE_WGET = @HAVE_WGET@
+-HTP_DIR = @HTP_DIR@
+ HTP_LDADD = @HTP_LDADD@
+ INSTALL = @INSTALL@
+ INSTALL_DATA = @INSTALL_DATA@
+@@ -369,7 +368,7 @@ EXTRA_DIST = ChangeLog COPYING LICENSE s
+              classification.config threshold.config \
+              reference.config
+ 
+-SUBDIRS = $(HTP_DIR) src qa rules doc contrib scripts
+SUBDIRS = src qa rules doc contrib scripts
+ CLEANFILES = stamp-h[0-9]*
+ all: config.h
+ 	$(MAKE) $(AM_MAKEFLAGS) all-recursive
--- a/recipes-security/suricata/suricata-2.0.5/suricata.yaml
+++ b/recipes-security/suricata/suricata-2.0.5/suricata.yaml
--- a/recipes-security/suricata/suricata-2.0.5/volatiles.03_suricata
+++ b/recipes-security/suricata/suricata-2.0.5/volatiles.03_suricata
@@ -0,0 +1,2 @@
+# <type> <owner> <group> <mode> <path> <linksource>
+d root root 0755 /var/log/suricata none
--- a/recipes-security/suricata/suricata_2.0.5.bb
+++ b/recipes-security/suricata/suricata_2.0.5.bb
@@ -0,0 +1,60 @@
+SUMMARY = "The Suricata Engine is an Open Source Next Generation Intrusion Detection and Prevention Engine"
+
+require suricata.inc
+
+LIC_FILES_CHKSUM = "file://LICENSE;beginline=1;endline=2;md5=1fbd81241fe252ec0f5658a521ab7dd8"
+
+SRC_URI += "file://no_libhtp_build.patch \
+            file://volatiles.03_suricata \
+            file://suricata.yaml \
+        "
+
+DEPENDS = "libhtp file libpcre libyaml libpcap libcap-ng libnet libnfnetlink"
+
+inherit autotools-brokensep pkgconfig
+
+CFLAGS += "-D_DEFAULT_SOURCE"
+
+EXTRA_OECONF += " --disable-debug \
+    --enable-non-bundled-htp \
+    --disable-gccmarch-native \
+    --with-libpcre-includes=${STAGING_INCDIR} \
+    --with-libpcre-libraries=${STAGING_LIBDIR} \
+    --with-libyaml-includes=${STAGING_INCDIR} \
+    --with-libyaml-libraries=${STAGING_LIBDIR} \
+    --with-libpcap-includes=${STAGING_INCDIR} \
+    --with-libpcap-libraries=${STAGING_LIBDIR} \
+    --with-libcap_ng-includes=${STAGING_INCDIR} \
+    --with-libcap_ng-libraries=${STAGING_LIBDIR} \
+    --with-libnfnetlink-includes=${STAGING_INCDIR} \
+    --with-libnfnetlink-libraries=${STAGING_LIBDIR} \
+    --with-libnet-includes=${STAGING_INCDIR} \
+    --with-libnet-libraries=${STAGING_LIBDIR} \
+    --with-libhtp-includes=${STAGING_INCDIR} \
+    --with-libhtp-libraries=${STAGING_LIBDIR} \
+    --with-libjansson-includes=${STAGING_INCDIR} \
+    --with-libjansson-libraries=${STAGING_LIBDIR} \
+    "
+
+export logdir = "${localstatedir}/log"
+
+do_install_append () {
+    install -d ${D}${sysconfdir}/suricata
+    install -d ${D}${sysconfdir}/suricata ${D}${sysconfdir}/default/volatiles
+    install -m 644 classification.config ${D}${sysconfdir}/suricata
+    install -m 644 reference.config ${D}${sysconfdir}/suricata
+    install -m 644 ${WORKDIR}/suricata.yaml ${D}${sysconfdir}/suricata
+    install -m 0644 ${WORKDIR}/volatiles.03_suricata  ${D}${sysconfdir}/default/volatiles/volatiles.03_suricata
+}
+
+pkg_postinst_${PN} () {
+if [ -z "$D" ] && [ -e /etc/init.d/populate-volatile.sh ] ; then
+    ${sysconfdir}/init.d/populate-volatile.sh update
+fi
+    ${bindir}/suricata -c ${sysconfdir}/suricata.yaml -i eth0 
+}
+
+FILES_${PN} += "${sysconfdir}/suricata ${logdir}/suricata"
+FILES_${PN}-dev += "/usr/lib/python2.7/site-packages"
+
+RDEPENDS_${PN} += " file jansson"