Tue Feb 18 23:00:26 2020 UTC ()
Update to Snort 2.9.15.1

2019-12-15 - Snort 2.9.15.1
New Additions

    Added support for glibc version 2.30.

Improvements/Fix

    Fixed Snort core seen during SSL re-configuration.
    Fixed file access issues on files from SMB share.

Snort 2.9.15.0
New Additions

    Added new debugs to print detection, file_processing and Preproc time
consumption info and verdict.
    Added support to detect new Korean file formats .egg and .alg in the file
preprocessor.
    Added support to detect new RAR file-type in the file preprocessor.

Improvements / Fix

    Fix to generate ALERT if TEID value is zero in GTP v1 and v2 packets.
    Fix to whitelist FTP data sessions when no file policy exists.
    Fix RTF file magic to a more generic value to prevent evasions.
    Added debug logs during HTTP reload.
    Added rule SID check during validation.
    Fix an issue where HTTP was processing non-HTTP traffic on port 443.
    Added new debugs to print detection, file processing, and Prepro time
consumption info and verdicts.

Snort 2.9.14.1
[*] New Additions

 * Added support for wild card port numbers in host cache and overwriting port
service AppId.

 * Added support for new STLS client patterns to help better detect POP3S over
SSL.

 * Added support for detecting Mac based SMTP Microsoft Outlook client
application.

 * Added a new preprocessor alert 120:27 to alert if there is no proper end of
header.

[*] Improvements / Fix

 * Improved appId detection for proxied traffic.

 * Fix for enabling flow profiling mode without restarting snort detection
engine.

 * Fixed packet drop scenario.

Snort 2.9.13.0
New Additions

    Snort now supports reload on snort rules update.
    Addition of a scenario to add a packet to blacklist verdict to ensure the
new session will be allowed.
    Handled a new pre-processor alert in case of the improper end of t HTTP
header.

Improvements

    Modified the calculation of file hash for FTP/HTTP with offset values.
    Fixed portal authentication connection stuck in half closed state.
    Updated UDP global timeout for a non-standard port.

This release also patched the following two vulnerabilities:
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190501-frpwr-smb-snort

Snort 2.9.12.0
New Additions

    Parsing HTTP CONNECT to extract the tunnel IP and port information.
    Alerting and dechunking for chunked encoding in HTTP1.0 request and
response.

Improvements

    Fixed an issue where, if we have a junk line before HTTP response header,
the header was wrongly parsed.
    Fixed GZIP evasions where an HTTP response with content-encoding:gzip
contains a body that has a GZIP-related anomaly.
    Fixed an issue in certain scenarios where a BitTorrent pattern is seen
only on the third packet of the session, causing us to miss our client
detection.
    SMB improvements for file detection and processing.

2017-12-06 - Snort 2.9.11.1
New Additions

    Added support to block portscan. In addition to tracking the scanning
packets, action(drop/sdrop/reject) will be taken for all the packets, which
means Snort will block the packet and generate logs.
    Added support to re-evaluate reputation after reputation update for all
flows except those that have already been blacklisted.

Improvements

    Fixed issue to detect RTP up to two SSRC switches in each traffic
direction.
    Fixed issues related to HTTP POST header flushing, calling file processing
directly if it is not a multipart header and changes to avoid expensive copy
of segment data by not splitting them when flushing headers.
    Fixed issue of triggering protocol sweep alert when there are multiple
destinations from single source ip protocol scan.
    Added changes to fix IP portscan for protocol other than ICMP and fixed
issue of bad fragment size event not being generated for oversized packets.
    Added changes to use raw data in case of PDF and SWF files during file
processing for SHA calculation and Malware Cloud Lookup.
    Fixed issue of correct session matching for TCP SYN packets without window
scale option so that FTP data channels match the same rule as FTP control
channels.
    Fixed issue of applying new configuration in file inspection after Snort
reload.

Snort 2.9.11
[*] New additions

    Changes to eliminate Snort restart when there are changes to the memory
allocated for preprocessors, by releasing unused or least recently used memory
when needed.
    Added support for storing filenames in Unicode for SMB protocol.
    Added implementation of hostPortCache versioning for unknown flows in
AppID to detect and block BitTorrent.

[*] Improvements

    Enhanced RTSP metadata parsing to match the user-agent field to detect
RTSP traffic over Windows Media.
    Performance improvement when SYN rate limit has reached and drop is
configured as next action
    Control-socket and side-channel support for FreeBSD platform.
    Fixed issue in file signature lookup for retransmitted FTP packet.
    Enhanced the processing of SIP/RTP future flows without ignoring them.
    Changes made in PDF/SWF decompression by adding boundary to the size of
the decompressed data.
    Added a null check to prevent copy unless debugHostIp is configured in
AppId.
    Fixed issue where FTP file type block doesn't work for retried download.
    Resolved issue where Snort is inappropriately handling traffic for which
AppId was creating future flow.
    Performance improvements for SIP/RTP audio and video data flow in AppId.
    Performance and stability improvements in FTP preprocessor like incorrect
referencing of ftp_data_session after its pruned.
    Stability improvement by resolving valgrind reported issues in AppId.
    Improved flushing mechanism for HTTP POST header.
    Added changes to display AppId for IPv6 unified events.
    Fixed issues with printing of messages for out-of-order packets.
    Fixed issue in increment of detection filter counter when rule is used in
multiple configurations.
    Fixed dynamic preprocessor compilation failure in OpenBSD platform.
    Added changes to improve performance of ipvar list comparison.
    Enhanced SMTP client detection by allowing line folding and all
authentication methods.


(sevan)
diff -r1.60 -r1.61 pkgsrc/net/snort/Makefile
diff -r1.33 -r1.34 pkgsrc/net/snort/PLIST
diff -r1.50 -r1.51 pkgsrc/net/snort/distinfo
diff -r1.8 -r1.9 pkgsrc/net/snort/options.mk
diff -r1.1 -r1.2 pkgsrc/net/snort/patches/patch-src_target-based_sftarget__reader.c
cvs diff -r1.60 -r1.61 pkgsrc/net/snort/Makefile (expand / switch to unified diff)

--- pkgsrc/net/snort/Makefile 2019/07/20 22:46:41 1.60
+++ pkgsrc/net/snort/Makefile 2020/02/18 23:00:26 1.61
@@ -1,36 +1,36 @@ @@ -1,36 +1,36 @@
1# $NetBSD: Makefile,v 1.60 2019/07/20 22:46:41 wiz Exp $ 1# $NetBSD: Makefile,v 1.61 2020/02/18 23:00:26 sevan Exp $
2# 2#
3 3
4DISTNAME= snort-2.9.9.0 4DISTNAME= snort-2.9.15.1
5PKGREVISION= 2 
6CATEGORIES= net security 5CATEGORIES= net security
7MASTER_SITES= https://www.snort.org/downloads/archive/snort/ 6MASTER_SITES= https://www.snort.org/downloads/archive/snort/
8 7
9MAINTAINER= pkgsrc-users@NetBSD.org 8MAINTAINER= pkgsrc-users@NetBSD.org
10HOMEPAGE= https://www.snort.org/ 9HOMEPAGE= https://www.snort.org/
11COMMENT= The Open Source Network Intrusion Detection System 10COMMENT= The Open Source Network Intrusion Detection System
12LICENSE= gnu-gpl-v2 11LICENSE= gnu-gpl-v2
13 12
14DEPENDS+= daq>=2.0.0:../../net/daq 13DEPENDS+= daq>=2.0.0:../../net/daq
15 14
16CONFLICTS+= snort-mysql-[0-9]* 15CONFLICTS+= snort-mysql-[0-9]*
17CONFLICTS+= snort-pgsql-[0-9]* 16CONFLICTS+= snort-pgsql-[0-9]*
18CONFLICTS+= snort-prelude-[0-9]* 17CONFLICTS+= snort-prelude-[0-9]*
19 18
20.include "../../mk/bsd.prefs.mk" 19.include "../../mk/bsd.prefs.mk"
21 20
22GNU_CONFIGURE= YES 21GNU_CONFIGURE= YES
23USE_LIBTOOL= YES 22USE_LIBTOOL= YES
 23USE_TOOLS+= pkg-config
24PKG_SYSCONFSUBDIR= snort 24PKG_SYSCONFSUBDIR= snort
25RCD_SCRIPTS= snort 25RCD_SCRIPTS= snort
26SNORT_USER?= snort 26SNORT_USER?= snort
27SNORT_GROUP?= snort 27SNORT_GROUP?= snort
28EGDIR= ${PREFIX}/share/examples/snort 28EGDIR= ${PREFIX}/share/examples/snort
29PKG_GROUPS= ${SNORT_GROUP} 29PKG_GROUPS= ${SNORT_GROUP}
30PKG_USERS= ${SNORT_USER}:${SNORT_GROUP} 30PKG_USERS= ${SNORT_USER}:${SNORT_GROUP}
31PKG_GROUPS_VARS+= SNORT_GROUP 31PKG_GROUPS_VARS+= SNORT_GROUP
32PKG_USERS_VARS= SNORT_USER 32PKG_USERS_VARS= SNORT_USER
33FILES_SUBST+= SNORT_USER=${SNORT_USER} SNORT_GROUP=${SNORT_GROUP} 33FILES_SUBST+= SNORT_USER=${SNORT_USER} SNORT_GROUP=${SNORT_GROUP}
34BUILD_DEFS+= VARBASE 34BUILD_DEFS+= VARBASE
35MAKE_JOBS_SAFE= NO 35MAKE_JOBS_SAFE= NO
36OWN_DIRS_PERMS= ${VARBASE}/log/snort ${SNORT_USER} ${SNORT_GROUP} 700 36OWN_DIRS_PERMS= ${VARBASE}/log/snort ${SNORT_USER} ${SNORT_GROUP} 700
@@ -80,43 +80,50 @@ SUBST_SED.installp= -e "s|exec_prefix)|e @@ -80,43 +80,50 @@ SUBST_SED.installp= -e "s|exec_prefix)|e
80SUBST_MESSAGE.installp= Fixing preprocessors install path. 80SUBST_MESSAGE.installp= Fixing preprocessors install path.
81 81
82.include "options.mk" 82.include "options.mk"
83 83
84CONFIGURE_ARGS+= --sysconfdir=${PKG_SYSCONFDIR} 84CONFIGURE_ARGS+= --sysconfdir=${PKG_SYSCONFDIR}
85CONFIGURE_ARGS+= --disable-static-daq 85CONFIGURE_ARGS+= --disable-static-daq
86CONFIGURE_ARGS+= --enable-sourcefire 86CONFIGURE_ARGS+= --enable-sourcefire
87CONFIGURE_ARGS+= --with-daq-includes=${BUILDLINK_PREFIX.daq}/include 87CONFIGURE_ARGS+= --with-daq-includes=${BUILDLINK_PREFIX.daq}/include
88CONFIGURE_ARGS+= --with-daq-libraries=${BUILDLINK_PREFIX.daq}/lib 88CONFIGURE_ARGS+= --with-daq-libraries=${BUILDLINK_PREFIX.daq}/lib
89CONFIGURE_ARGS+= --with-libpcap-includes=${BUILDLINK_PREFIX.libpcap}/include 89CONFIGURE_ARGS+= --with-libpcap-includes=${BUILDLINK_PREFIX.libpcap}/include
90CONFIGURE_ARGS+= --with-libpcap-libraries=${BUILDLINK_PREFIX.libpcap}/lib 90CONFIGURE_ARGS+= --with-libpcap-libraries=${BUILDLINK_PREFIX.libpcap}/lib
91CONFIGURE_ARGS+= --disable-so_with_static_lib 91CONFIGURE_ARGS+= --disable-so_with_static_lib
92 92
 93BUILD_DEPENDS+= bison-[0-9]*:../../devel/bison
 94
93pre-build: 95pre-build:
94 ${CP} ${WRKSRC}/etc/snort.conf ${WRKSRC}/etc/snort.conf.default 96 ${CP} ${WRKSRC}/etc/snort.conf ${WRKSRC}/etc/snort.conf.default
95 97
96INSTALLATION_DIRS+= ${EGDIR} share/doc/snort/schemas 98INSTALLATION_DIRS+= ${EGDIR} share/doc/snort/schemas
97 99
98post-install: 100post-install:
99 ${INSTALL_DATA} ${WRKSRC}/etc/*.config \ 101 ${INSTALL_DATA} ${WRKSRC}/etc/*.config \
100 ${WRKSRC}/etc/*.map \ 102 ${WRKSRC}/etc/*.map \
101 ${WRKSRC}/etc/threshold.conf \ 103 ${WRKSRC}/etc/threshold.conf \
102 ${WRKSRC}/etc/attribute_table.dtd \ 104 ${WRKSRC}/etc/attribute_table.dtd \
103 ${WRKSRC}/etc/file_magic.conf \ 105 ${WRKSRC}/etc/file_magic.conf \
104 ${WRKSRC}/etc/snort.conf.default ${DESTDIR}${EGDIR}/ 106 ${WRKSRC}/etc/snort.conf.default ${DESTDIR}${EGDIR}/
105 ${INSTALL_DATA} ${WRKSRC}/doc/generators ${DESTDIR}${EGDIR} 107 ${INSTALL_DATA} ${WRKSRC}/doc/generators ${DESTDIR}${EGDIR}
106 108
107.for i in ${DOC_FILES} 109.for i in ${DOC_FILES}
108 ${INSTALL_DATA} ${WRKSRC}/doc/${i} ${DESTDIR}${PREFIX}/share/doc/snort/ 110 ${INSTALL_DATA} ${WRKSRC}/doc/${i} ${DESTDIR}${PREFIX}/share/doc/snort/
109.endfor 111.endfor
110 112
111 ${INSTALL_DATA} ${WRKSRC}/doc/README.* \ 113 ${INSTALL_DATA} ${WRKSRC}/doc/README.* \
112 ${WRKSRC}/doc/*.tex \ 114 ${WRKSRC}/doc/*.tex \
113 ${WRKSRC}/doc/*.pdf ${DESTDIR}${PREFIX}/share/doc/snort/ 115 ${WRKSRC}/doc/*.pdf ${DESTDIR}${PREFIX}/share/doc/snort/
114 ${INSTALL_DATA} ${FILESDIR}/black_list.rules \ 116 ${INSTALL_DATA} ${FILESDIR}/black_list.rules \
115 ${FILESDIR}/white_list.rules ${DESTDIR}${EGDIR}/rules/ 117 ${FILESDIR}/white_list.rules ${DESTDIR}${EGDIR}/rules/
116 ${INSTALL_MAN} ${WRKSRC}/snort.8 ${DESTDIR}${PREFIX}/${PKGMANDIR}/man8 118 ${INSTALL_MAN} ${WRKSRC}/snort.8 ${DESTDIR}${PREFIX}/${PKGMANDIR}/man8
117 119
 120.include "../../www/nghttp2/buildlink3.mk"
 121.include "../../security/openssl/buildlink3.mk"
 122.include "../../lang/LuaJIT2/buildlink3.mk"
 123.include "../../devel/flex/buildlink3.mk"
 124.include "../../devel/zlib/buildlink3.mk"
118.include "../../net/daq/buildlink3.mk" 125.include "../../net/daq/buildlink3.mk"
119.include "../../net/libdnet/buildlink3.mk" 126.include "../../net/libdnet/buildlink3.mk"
120.include "../../net/libpcap/buildlink3.mk" 127.include "../../net/libpcap/buildlink3.mk"
121.include "../../devel/pcre/buildlink3.mk" 128.include "../../devel/pcre/buildlink3.mk"
122.include "../../mk/bsd.pkg.mk" 129.include "../../mk/bsd.pkg.mk"
cvs diff -r1.33 -r1.34 pkgsrc/net/snort/PLIST (expand / switch to unified diff)

--- pkgsrc/net/snort/PLIST 2017/06/15 18:27:50 1.33
+++ pkgsrc/net/snort/PLIST 2020/02/18 23:00:26 1.34
@@ -1,19 +1,24 @@ @@ -1,19 +1,24 @@
1@comment $NetBSD: PLIST,v 1.33 2017/06/15 18:27:50 nils Exp $ 1@comment $NetBSD: PLIST,v 1.34 2020/02/18 23:00:26 sevan Exp $
 2bin/appid_detector_builder.sh
2bin/snort 3bin/snort
3bin/u2boat 4bin/u2boat
 5bin/u2openappid
4bin/u2spewfoo 6bin/u2spewfoo
 7bin/u2streamer
 8lib/libsf_sorules.la
5lib/pkgconfig/snort.pc 9lib/pkgconfig/snort.pc
6lib/snort_dynamicengine/libsf_engine.la 10lib/snort_dynamicengine/libsf_engine.la
 11lib/snort_dynamicpreprocessor/libsf_appid_preproc.la
7lib/snort_dynamicpreprocessor/libsf_dce2_preproc.la 12lib/snort_dynamicpreprocessor/libsf_dce2_preproc.la
8lib/snort_dynamicpreprocessor/libsf_dnp3_preproc.la 13lib/snort_dynamicpreprocessor/libsf_dnp3_preproc.la
9lib/snort_dynamicpreprocessor/libsf_dns_preproc.la 14lib/snort_dynamicpreprocessor/libsf_dns_preproc.la
10lib/snort_dynamicpreprocessor/libsf_ftptelnet_preproc.la 15lib/snort_dynamicpreprocessor/libsf_ftptelnet_preproc.la
11lib/snort_dynamicpreprocessor/libsf_gtp_preproc.la 16lib/snort_dynamicpreprocessor/libsf_gtp_preproc.la
12lib/snort_dynamicpreprocessor/libsf_imap_preproc.la 17lib/snort_dynamicpreprocessor/libsf_imap_preproc.la
13lib/snort_dynamicpreprocessor/libsf_modbus_preproc.la 18lib/snort_dynamicpreprocessor/libsf_modbus_preproc.la
14lib/snort_dynamicpreprocessor/libsf_pop_preproc.la 19lib/snort_dynamicpreprocessor/libsf_pop_preproc.la
15lib/snort_dynamicpreprocessor/libsf_reputation_preproc.la 20lib/snort_dynamicpreprocessor/libsf_reputation_preproc.la
16lib/snort_dynamicpreprocessor/libsf_sdf_preproc.la 21lib/snort_dynamicpreprocessor/libsf_sdf_preproc.la
17lib/snort_dynamicpreprocessor/libsf_sip_preproc.la 22lib/snort_dynamicpreprocessor/libsf_sip_preproc.la
18lib/snort_dynamicpreprocessor/libsf_smtp_preproc.la 23lib/snort_dynamicpreprocessor/libsf_smtp_preproc.la
19lib/snort_dynamicpreprocessor/libsf_ssh_preproc.la 24lib/snort_dynamicpreprocessor/libsf_ssh_preproc.la
@@ -85,74 +90,94 @@ share/doc/snort/snort_manual.pdf @@ -85,74 +90,94 @@ share/doc/snort/snort_manual.pdf
85share/doc/snort/snort_manual.tex 90share/doc/snort/snort_manual.tex
86share/examples/snort/attribute_table.dtd 91share/examples/snort/attribute_table.dtd
87share/examples/snort/classification.config 92share/examples/snort/classification.config
88share/examples/snort/file_magic.conf 93share/examples/snort/file_magic.conf
89share/examples/snort/gen-msg.map 94share/examples/snort/gen-msg.map
90share/examples/snort/generators 95share/examples/snort/generators
91share/examples/snort/reference.config 96share/examples/snort/reference.config
92share/examples/snort/rules/black_list.rules 97share/examples/snort/rules/black_list.rules
93share/examples/snort/rules/white_list.rules 98share/examples/snort/rules/white_list.rules
94share/examples/snort/snort.conf.default 99share/examples/snort/snort.conf.default
95share/examples/snort/threshold.conf 100share/examples/snort/threshold.conf
96share/examples/snort/unicode.map 101share/examples/snort/unicode.map
97share/snort/src/snort_dynamicsrc/Unified2_common.h 102share/snort/src/snort_dynamicsrc/Unified2_common.h
 103share/snort/src/snort_dynamicsrc/appId.h
 104share/snort/src/snort_dynamicsrc/appIdApi.h
 105share/snort/src/snort_dynamicsrc/appdata_adjuster.c
 106share/snort/src/snort_dynamicsrc/appdata_adjuster.h
98share/snort/src/snort_dynamicsrc/bitop.h 107share/snort/src/snort_dynamicsrc/bitop.h
 108share/snort/src/snort_dynamicsrc/cip_common.h
 109share/snort/src/snort_dynamicsrc/dns_defs.h
99share/snort/src/snort_dynamicsrc/event.h 110share/snort/src/snort_dynamicsrc/event.h
100share/snort/src/snort_dynamicsrc/file_api.h 111share/snort/src/snort_dynamicsrc/file_api.h
101share/snort/src/snort_dynamicsrc/file_mail_common.h 112share/snort/src/snort_dynamicsrc/file_mail_common.h
102share/snort/src/snort_dynamicsrc/idle_processing.h 113share/snort/src/snort_dynamicsrc/idle_processing.h
 114share/snort/src/snort_dynamicsrc/md5.h
103share/snort/src/snort_dynamicsrc/mpse_methods.h 115share/snort/src/snort_dynamicsrc/mpse_methods.h
104share/snort/src/snort_dynamicsrc/obfuscation.h 116share/snort/src/snort_dynamicsrc/obfuscation.h
105share/snort/src/snort_dynamicsrc/pcap_pkthdr32.h 117share/snort/src/snort_dynamicsrc/pcap_pkthdr32.h
106share/snort/src/snort_dynamicsrc/perf_indicators.h 118share/snort/src/snort_dynamicsrc/perf_indicators.h
107share/snort/src/snort_dynamicsrc/plugin_enum.h 119share/snort/src/snort_dynamicsrc/plugin_enum.h
108share/snort/src/snort_dynamicsrc/preprocids.h 120share/snort/src/snort_dynamicsrc/preprocids.h
109share/snort/src/snort_dynamicsrc/profiler.h 121share/snort/src/snort_dynamicsrc/profiler.h
 122share/snort/src/snort_dynamicsrc/reg_test.c
 123share/snort/src/snort_dynamicsrc/reg_test.h
 124share/snort/src/snort_dynamicsrc/reload_api.h
110share/snort/src/snort_dynamicsrc/rule_option_types.h 125share/snort/src/snort_dynamicsrc/rule_option_types.h
111share/snort/src/snort_dynamicsrc/session_api.h 126share/snort/src/snort_dynamicsrc/session_api.h
112share/snort/src/snort_dynamicsrc/sfPolicyUserData.c 127share/snort/src/snort_dynamicsrc/sfPolicyUserData.c
113share/snort/src/snort_dynamicsrc/sfPolicyUserData.h 128share/snort/src/snort_dynamicsrc/sfPolicyUserData.h
114share/snort/src/snort_dynamicsrc/sf_base64decode.c 129share/snort/src/snort_dynamicsrc/sf_base64decode.c
115share/snort/src/snort_dynamicsrc/sf_base64decode.h 130share/snort/src/snort_dynamicsrc/sf_base64decode.h
116share/snort/src/snort_dynamicsrc/sf_decompression.h 131share/snort/src/snort_dynamicsrc/sf_decompression.h
 132share/snort/src/snort_dynamicsrc/sf_decompression_define.h
117share/snort/src/snort_dynamicsrc/sf_dynamic_common.h 133share/snort/src/snort_dynamicsrc/sf_dynamic_common.h
118share/snort/src/snort_dynamicsrc/sf_dynamic_define.h 134share/snort/src/snort_dynamicsrc/sf_dynamic_define.h
119share/snort/src/snort_dynamicsrc/sf_dynamic_engine.h 135share/snort/src/snort_dynamicsrc/sf_dynamic_engine.h
120share/snort/src/snort_dynamicsrc/sf_dynamic_meta.h 136share/snort/src/snort_dynamicsrc/sf_dynamic_meta.h
121share/snort/src/snort_dynamicsrc/sf_dynamic_preproc_lib.c 137share/snort/src/snort_dynamicsrc/sf_dynamic_preproc_lib.c
122share/snort/src/snort_dynamicsrc/sf_dynamic_preproc_lib.h 138share/snort/src/snort_dynamicsrc/sf_dynamic_preproc_lib.h
123share/snort/src/snort_dynamicsrc/sf_dynamic_preprocessor.h 139share/snort/src/snort_dynamicsrc/sf_dynamic_preprocessor.h
124share/snort/src/snort_dynamicsrc/sf_email_attach_decode.c 140share/snort/src/snort_dynamicsrc/sf_email_attach_decode.c
125share/snort/src/snort_dynamicsrc/sf_email_attach_decode.h 141share/snort/src/snort_dynamicsrc/sf_email_attach_decode.h
126share/snort/src/snort_dynamicsrc/sf_ip.h 142share/snort/src/snort_dynamicsrc/sf_ip.h
127share/snort/src/snort_dynamicsrc/sf_protocols.h 143share/snort/src/snort_dynamicsrc/sf_protocols.h
128share/snort/src/snort_dynamicsrc/sf_seqnums.h 144share/snort/src/snort_dynamicsrc/sf_seqnums.h
129share/snort/src/snort_dynamicsrc/sf_snort_packet.h 145share/snort/src/snort_dynamicsrc/sf_snort_packet.h
130share/snort/src/snort_dynamicsrc/sf_snort_plugin_api.h 146share/snort/src/snort_dynamicsrc/sf_snort_plugin_api.h
131share/snort/src/snort_dynamicsrc/sf_types.h 147share/snort/src/snort_dynamicsrc/sf_types.h
132share/snort/src/snort_dynamicsrc/sfcontrol.h 148share/snort/src/snort_dynamicsrc/sfcontrol.h
133share/snort/src/snort_dynamicsrc/sfdebug.h 149share/snort/src/snort_dynamicsrc/sfdebug.h
134share/snort/src/snort_dynamicsrc/sfghash.h 150share/snort/src/snort_dynamicsrc/sfghash.h
 151share/snort/src/snort_dynamicsrc/sfhashfcn.c
135share/snort/src/snort_dynamicsrc/sfhashfcn.h 152share/snort/src/snort_dynamicsrc/sfhashfcn.h
 153share/snort/src/snort_dynamicsrc/sfmemcap.c
 154share/snort/src/snort_dynamicsrc/sfmemcap.h
136share/snort/src/snort_dynamicsrc/sfparser.c 155share/snort/src/snort_dynamicsrc/sfparser.c
 156share/snort/src/snort_dynamicsrc/sfprimetable.c
 157share/snort/src/snort_dynamicsrc/sfprimetable.h
137share/snort/src/snort_dynamicsrc/sfsnort_dynamic_detection_lib.c 158share/snort/src/snort_dynamicsrc/sfsnort_dynamic_detection_lib.c
138share/snort/src/snort_dynamicsrc/sfsnort_dynamic_detection_lib.h 159share/snort/src/snort_dynamicsrc/sfsnort_dynamic_detection_lib.h
 160share/snort/src/snort_dynamicsrc/sfxhash.c
 161share/snort/src/snort_dynamicsrc/sfxhash.h
139share/snort/src/snort_dynamicsrc/sidechannel_define.h 162share/snort/src/snort_dynamicsrc/sidechannel_define.h
140share/snort/src/snort_dynamicsrc/signature.h 163share/snort/src/snort_dynamicsrc/signature.h
141share/snort/src/snort_dynamicsrc/sip_common.h 164share/snort/src/snort_dynamicsrc/sip_common.h
142share/snort/src/snort_dynamicsrc/snort_debug.h 165share/snort/src/snort_dynamicsrc/snort_debug.h
143share/snort/src/snort_dynamicsrc/ssl.c 166share/snort/src/snort_dynamicsrc/ssl.c
144share/snort/src/snort_dynamicsrc/ssl.h 167share/snort/src/snort_dynamicsrc/ssl.h
145share/snort/src/snort_dynamicsrc/ssl_config.c 168share/snort/src/snort_dynamicsrc/ssl_config.c
146share/snort/src/snort_dynamicsrc/ssl_config.h 169share/snort/src/snort_dynamicsrc/ssl_config.h
147share/snort/src/snort_dynamicsrc/ssl_ha.c 170share/snort/src/snort_dynamicsrc/ssl_ha.c
148share/snort/src/snort_dynamicsrc/ssl_ha.h 171share/snort/src/snort_dynamicsrc/ssl_ha.h
149share/snort/src/snort_dynamicsrc/ssl_include.h 172share/snort/src/snort_dynamicsrc/ssl_include.h
150share/snort/src/snort_dynamicsrc/ssl_inspect.c 173share/snort/src/snort_dynamicsrc/ssl_inspect.c
151share/snort/src/snort_dynamicsrc/ssl_inspect.h 174share/snort/src/snort_dynamicsrc/ssl_inspect.h
152share/snort/src/snort_dynamicsrc/ssl_session.h 175share/snort/src/snort_dynamicsrc/ssl_session.h
153share/snort/src/snort_dynamicsrc/str_search.h 176share/snort/src/snort_dynamicsrc/str_search.h
154share/snort/src/snort_dynamicsrc/stream_api.h 177share/snort/src/snort_dynamicsrc/stream_api.h
 178share/snort/src/snort_dynamicsrc/thirdparty_appid_api.h
 179share/snort/src/snort_dynamicsrc/thirdparty_appid_types.h
155share/snort/src/snort_dynamicsrc/treenodes.h 180share/snort/src/snort_dynamicsrc/treenodes.h
156share/snort/src/snort_dynamicsrc/util_unfold.c 181share/snort/src/snort_dynamicsrc/util_unfold.c
157share/snort/src/snort_dynamicsrc/util_unfold.h 182share/snort/src/snort_dynamicsrc/util_unfold.h
158@pkgdir share/doc/snort/schemas 183@pkgdir share/doc/snort/schemas
cvs diff -r1.50 -r1.51 pkgsrc/net/snort/distinfo (expand / switch to unified diff)

--- pkgsrc/net/snort/distinfo 2017/06/15 18:27:50 1.50
+++ pkgsrc/net/snort/distinfo 2020/02/18 23:00:26 1.51
@@ -1,7 +1,7 @@ @@ -1,7 +1,7 @@
1$NetBSD: distinfo,v 1.50 2017/06/15 18:27:50 nils Exp $ 1$NetBSD: distinfo,v 1.51 2020/02/18 23:00:26 sevan Exp $
2 2
3SHA1 (snort-2.9.9.0.tar.gz) = c522b6130655e0d12299af6fd1a613b20259b4e3 3SHA1 (snort-2.9.15.1.tar.gz) = dc8c89125c27153ffd69f27fbd60b95b9d1cbfe0
4RMD160 (snort-2.9.9.0.tar.gz) = cfe3f7bb4203411e40376607c6bd1ee1fe7c4f84 4RMD160 (snort-2.9.15.1.tar.gz) = 10ed066819c6021367245f59598509aeaeaef197
5SHA512 (snort-2.9.9.0.tar.gz) = 2c17539c80484c90198a2e5d5efd1e70f26afb79ce7c28e745ded356b6f1a1f97763ff21fde986652af1768fa3bcdafbbcc3c82ee8ad6d2ef0471f360cfcab83 5SHA512 (snort-2.9.15.1.tar.gz) = 9940f5bcdcf04823f9cb5c3f8efda72f98f6a47bce9f40399dec9ec41d23a386c7f7e44861d82368de31546123b920f9fc617197bbf9c5e750724bf8b9e19590
6Size (snort-2.9.9.0.tar.gz) = 6364482 bytes 6Size (snort-2.9.15.1.tar.gz) = 6618999 bytes
7SHA1 (patch-src_target-based_sftarget__reader.c) = c0f4bde7a1a0fa00e4efecf26eb579cc2b1cb2ee 7SHA1 (patch-src_target-based_sftarget__reader.c) = 60f053d990af6329e48a1a26c89d9c4a59a0ffce
cvs diff -r1.8 -r1.9 pkgsrc/net/snort/options.mk (expand / switch to unified diff)

--- pkgsrc/net/snort/options.mk 2017/06/15 18:27:50 1.8
+++ pkgsrc/net/snort/options.mk 2020/02/18 23:00:26 1.9
@@ -1,24 +1,20 @@ @@ -1,24 +1,20 @@
1# $NetBSD: options.mk,v 1.8 2017/06/15 18:27:50 nils Exp $ 1# $NetBSD: options.mk,v 1.9 2020/02/18 23:00:26 sevan Exp $
2 2
3PKG_OPTIONS_VAR= PKG_OPTIONS.snort 3PKG_OPTIONS_VAR= PKG_OPTIONS.snort
4 4
5PKG_SUPPORTED_OPTIONS= debug snort-prelude ssl snmp snort-gre 5PKG_SUPPORTED_OPTIONS= debug snort-prelude ssl snmp snort-gre
6PKG_SUPPORTED_OPTIONS+= snort-dynamicplugin snort-timestats 6PKG_SUPPORTED_OPTIONS+= snort-dynamicplugin snort-timestats
7PKG_SUPPORTED_OPTIONS+= snort-rulestate inet6 7PKG_SUPPORTED_OPTIONS+= snort-rulestate
8# does not work on SunOS 
9.if ${OPSYS} != "SunOS" 
10PKG_SUGGESTED_OPTIONS= inet6 
11.endif 
12 8
13 9
14PKG_OPTIONS_OPTIONAL_GROUPS= flex 10PKG_OPTIONS_OPTIONAL_GROUPS= flex
15PKG_OPTIONS_GROUP.flex= snort-flexresp snort-flexresp2 11PKG_OPTIONS_GROUP.flex= snort-flexresp snort-flexresp2
16 12
17.include "../../mk/bsd.options.mk" 13.include "../../mk/bsd.options.mk"
18 14
19### 15###
20### Please note that a large number of these options remain un-tested 16### Please note that a large number of these options remain un-tested
21### for this package. 17### for this package.
22### 18###
23 19
24### 20###
@@ -27,33 +23,26 @@ PKG_OPTIONS_GROUP.flex= snort-flexresp  @@ -27,33 +23,26 @@ PKG_OPTIONS_GROUP.flex= snort-flexresp
27### 23###
28.if !empty(PKG_OPTIONS:Msnort-dynamicplugin) 24.if !empty(PKG_OPTIONS:Msnort-dynamicplugin)
29CONFIGURE_ARGS+= --enable-dynamicplugin 25CONFIGURE_ARGS+= --enable-dynamicplugin
30.endif 26.endif
31 27
32### 28###
33### Enable rule state configuration feature 29### Enable rule state configuration feature
34### 30###
35.if !empty(PKG_OPTIONS:Msnort-rulestate) 31.if !empty(PKG_OPTIONS:Msnort-rulestate)
36CONFIGURE_ARGS+= --enable-rulestate 32CONFIGURE_ARGS+= --enable-rulestate
37.endif 33.endif
38 34
39### 35###
40### Enable ipv6 support 
41### 
42.if !empty(PKG_OPTIONS:Minet6) 
43CONFIGURE_ARGS+= --enable-ipv6 
44.endif 
45 
46### 
47### Enable real-time performance statistics 36### Enable real-time performance statistics
48### 37###
49.if !empty(PKG_OPTIONS:Msnort-timestats) 38.if !empty(PKG_OPTIONS:Msnort-timestats)
50CONFIGURE_ARGS+= --enable-timestats 39CONFIGURE_ARGS+= --enable-timestats
51.endif 40.endif
52 41
53### 42###
54### Enable debug support 43### Enable debug support
55### 44###
56.if !empty(PKG_OPTIONS:Mdebug) 45.if !empty(PKG_OPTIONS:Mdebug)
57CONFIGURE_ARGS+= --enable-debug 46CONFIGURE_ARGS+= --enable-debug
58.endif 47.endif
59 48
cvs diff -r1.1 -r1.2 pkgsrc/net/snort/patches/patch-src_target-based_sftarget__reader.c (expand / switch to unified diff)

--- pkgsrc/net/snort/patches/patch-src_target-based_sftarget__reader.c 2013/02/22 12:05:34 1.1
+++ pkgsrc/net/snort/patches/patch-src_target-based_sftarget__reader.c 2020/02/18 23:00:26 1.2
@@ -1,17 +1,17 @@ @@ -1,17 +1,17 @@
1$NetBSD: patch-src_target-based_sftarget__reader.c,v 1.1 2013/02/22 12:05:34 jperkin Exp $ 1$NetBSD: patch-src_target-based_sftarget__reader.c,v 1.2 2020/02/18 23:00:26 sevan Exp $
2 2
3Sun ar needs at least one symbol in a library. 3Sun ar needs at least one symbol in a library.
4 4
5--- src/target-based/sftarget_reader.c.orig 2009-10-02 20:30:03.000000000 +0000 5--- src/target-based/sftarget_reader.c.orig 2020-02-18 13:13:04.326915274 +0000
6+++ src/target-based/sftarget_reader.c 6+++ src/target-based/sftarget_reader.c
7@@ -26,6 +26,10 @@ 7@@ -31,6 +31,10 @@
8 #include "config.h" 8 #define _GNU_SOURCE
9 #endif 9 #endif
10  10
11+#ifdef __sun 11+#ifdef __sun
12+int sun_ar_needs_a_symbol = 0; 12+int sun_ar_needs_a_symbol = 0;
13+#endif 13+#endif
14+ 14+
15 #ifdef TARGET_BASED 15 #ifdef TARGET_BASED
16  16
17 #include <stdio.h> 17 #include <stdio.h>