Grommish/gist:991cda34e5bc1cc23d63ddc4855a6372 Secret

## gistfile1.txt
include $(TOPDIR)/rules.mk

PKG_NAME:=suricata
PKG_VERSION:=6.0.2
PKG_RELEASE:=1

PKG_SOURCE_PROTO:=git
PKG_SOURCE_DATE:=2021-03-02
PKG_SOURCE_VERSION:=7a626fffd23460829722ffd1758287fe16b06fb3
PKG_SOURCE_URL:=https://github.com/OISF/suricata.git
PKG_MIRROR_HASH:=00492fc9da518b8d5ad329ad70e2607b1d58157be09f2124b039f2365fe8db05

PKG_FIXUP:=autoreconf
PKG_FIXUP:=patch-libtool

PKG_INSTALL:=1
PKG_BUILD_DEPENDS:=rust/host python3/host libhtp yaml

PKG_NEEDS_ATOMICS:=$(or $(and $(filter $(ARCH),mipsel arm),true),false)

ifeq ($(PKG_NEEDS_ATOMICS),true)
TARGET_CFLAGS += -D_GNU_SOURCE
TARGET_CXXFLAGS += -latomic
TARGET_LDFLAGS += -latomic
endif

include $(INCLUDE_DIR)/package.mk
include $(INCLUDE_DIR)/nls.mk

CONFIG_HOST_SUFFIX:=$(shell cut -d"-" -f4 <<<"$(GNU_HOST_NAME)")
RUSTC_HOST_ARCH:=$(HOST_ARCH)-unknown-linux-$(CONFIG_HOST_SUFFIX)
RUSTC_TARGET_ARCH:=$(REAL_GNU_TARGET_NAME)
CARGO_HOME:=$(STAGING_DIR_HOSTPKG)

define Package/suricata6/config
    source "$(SOURCE)/Config.in"
endef

CONFIGURE_VARS += \
        CARGO_HOME=$(CARGO_HOME) \
        ac_cv_path_CARGO="$(CARGO_HOME)/bin/cargo" \
        ac_cv_path_RUSTC="$(CARGO_HOME)/bin/rustc"
#       RUSTFLAGS="-C linker=$(TARGET_CC_NOCACHE) -C ar=$(TARGET_AR)"

CONFIGURE_ARGS += \
        --host=$(RUSTC_TARGET_ARCH) \
        --build=$(RUSTC_HOST_ARCH) \
        --with-gnu-ld \
        --enable-non-bundled-htp

ifeq ($(CONFIG_SURICATA_ENABLE_PYTHON),y)
CONFIGURE_ARGS += --enable-python
SURICATA_EXTRA_ENABLE := +python3 +python3-yaml
endif
ifeq ($(CONFIG_SURICATA_ENABLE_LUAJIT),y)
CONFIGURE_ARGS += --enable-luajit
SURICATA_EXTRA_ENABLE += +luajit
endif
ifeq ($(CONFIG_SURICATA_ENABLE_GCCPROTECT),y)
CONFIGURE_ARGS += --enable-gccprotect
endif
ifeq ($(CONFIG_SURICATA_ENABLE_GCCPROFILE),y)
CONFIGURE_ARGS += --enable-gccprofile
endif
ifeq ($(CONFIG_SURICATA_ENABLE_PIE),y)
CONFIGURE_ARGS += --enable-pie
endif
ifeq ($(CONFIG_SURICATA_ENABLE_NFQUEUE),y)
CONFIGURE_ARGS += --enable-nfqueue
endif
ifeq ($(CONFIG_SURICATA_ENABLE_GEOIP),y)
CONFIGURE_ARGS += --enable-geoip
SURICATA_EXTRA_ENABLE += +libmaxminddb
endif
ifeq ($(CONFIG_SURICATA_ENABLE_LIBMAGIC),y)
CONFIGURE_ARGS += --enable-libmagic
SURICATA_EXTRA_ENABLE += +libmagic +file
endif
ifeq ($(CONFIG_SURICATA_ENABLE_DEBUG),y)
CONFIGURE_ARGS += --enable-debug
endif
ifeq ($(CONFIG_SURICATA_ENABLE_HIREDIS),y)
CONFIGURE_ARGS += --enable-hiredis
SURICATA_EXTRA_ENABLE += +libhiredis +libevent2
endif
ifeq ($(CONFIG_SURICATA_ENABLE_EBPF),y)
CONFIGURE_ARGS += --enable-ebpf-build
endif
ifeq ($(CONFIG_SURICATA_ENABLE_NFLOG),y)
CONFIGURE_ARGS += --enable-nflog
SURICATA_EXTRA_ENABLE += +libnet-1.2.x +libnetfilter-log +libnetfilter-queue +libnfnetlink
endif

define Build/Prepare
        $(call Build/Prepare/Default)
        $(CONFIGURE_VARS) cargo install cbindgen
        cd $(PKG_BUILD_DIR) && $(CONFIGURE_VARS) ./autogen.sh
        echo $(SURICATA_EXTRA_ENABLE)
endef

define Package/suricata6
    SUBMENU:=Firewall
    SECTION:=net
    CATEGORY:=Network
    DEPENDS:=+jansson +libhtp +libpcre +libyaml +libpcap +libcap-ng \
        +nspr +libnss +liblz4 $(SURICATA_EXTRA_ENABLE) \
        $(if $(PKG_NEEDS_ATOMICS) = true, +libatomic,)
    TITLE:=OISF Suricata IDS
    URL:=https://www.openinfosecfoundation.org/
    MENU:=1
endef

define Package/suricata6/install
        $(INSTALL_DIR) $(1)/usr/bin
        $(INSTALL_BIN) $(PKG_INSTALL_DIR)/usr/bin/suricata $(1)/usr/bin/suricata
        $(INSTALL_BIN) $(PKG_INSTALL_DIR)/usr/bin/suricatactl $(1)/usr/bin/suricatactl
        $(INSTALL_BIN) $(PKG_INSTALL_DIR)/usr/bin/suricatasc $(1)/usr/bin/suricatasc

        $(INSTALL_DIR) $(1)/usr/lib
        $(CP) -r $(PKG_INSTALL_DIR)/usr/lib/* $(1)/usr/lib/

        $(INSTALL_DIR) $(1)/usr/include
        $(CP) -r $(PKG_INSTALL_DIR)/usr/include/* $(1)/usr/include/

        $(INSTALL_DIR) $(1)/usr/share
        $(CP) -r $(PKG_INSTALL_DIR)/usr/share/* $(1)/usr/share/

        $(INSTALL_DIR) $(1)/etc/suricata
        $(CP) $(PKG_BUILD_DIR)/suricata.yaml \
        $(PKG_BUILD_DIR)/etc/classification.config \
        $(PKG_BUILD_DIR)/threshold.config \
        $(PKG_BUILD_DIR)/etc/reference.config \
        $(1)/etc/suricata/

#       $(INSTALL_DIR) $(1)/etc/suricata/rules
#       $(CP) $(PKG_BUILD_DIR)/usr/share/suricata/rules/*.rules $(1)/usr/share/suricata/rules/
        $(INSTALL_DIR) $(1)/etc/init.d
        $(INSTALL_BIN) ./files/etc/init.d/suricata $(1)/etc/init.d/suricata
endef

$(eval $(call BuildPackage,suricata6))
	include $(TOPDIR)/rules.mk

	PKG_NAME:=suricata
	PKG_VERSION:=6.0.2
	PKG_RELEASE:=1

	PKG_SOURCE_PROTO:=git
	PKG_SOURCE_DATE:=2021-03-02
	PKG_SOURCE_VERSION:=7a626fffd23460829722ffd1758287fe16b06fb3
	PKG_SOURCE_URL:=https://github.com/OISF/suricata.git
	PKG_MIRROR_HASH:=00492fc9da518b8d5ad329ad70e2607b1d58157be09f2124b039f2365fe8db05

	PKG_FIXUP:=autoreconf
	PKG_FIXUP:=patch-libtool

	PKG_INSTALL:=1
	PKG_BUILD_DEPENDS:=rust/host python3/host libhtp yaml

	PKG_NEEDS_ATOMICS:=$(or $(and $(filter $(ARCH),mipsel arm),true),false)

	ifeq ($(PKG_NEEDS_ATOMICS),true)
	TARGET_CFLAGS += -D_GNU_SOURCE
	TARGET_CXXFLAGS += -latomic
	TARGET_LDFLAGS += -latomic
	endif

	include $(INCLUDE_DIR)/package.mk
	include $(INCLUDE_DIR)/nls.mk

	CONFIG_HOST_SUFFIX:=$(shell cut -d"-" -f4 <<<"$(GNU_HOST_NAME)")
	RUSTC_HOST_ARCH:=$(HOST_ARCH)-unknown-linux-$(CONFIG_HOST_SUFFIX)
	RUSTC_TARGET_ARCH:=$(REAL_GNU_TARGET_NAME)
	CARGO_HOME:=$(STAGING_DIR_HOSTPKG)

	define Package/suricata6/config
	source "$(SOURCE)/Config.in"
	endef

	CONFIGURE_VARS += \
	CARGO_HOME=$(CARGO_HOME) \
	ac_cv_path_CARGO="$(CARGO_HOME)/bin/cargo" \
	ac_cv_path_RUSTC="$(CARGO_HOME)/bin/rustc"
	# RUSTFLAGS="-C linker=$(TARGET_CC_NOCACHE) -C ar=$(TARGET_AR)"

	CONFIGURE_ARGS += \
	--host=$(RUSTC_TARGET_ARCH) \
	--build=$(RUSTC_HOST_ARCH) \
	--with-gnu-ld \
	--enable-non-bundled-htp

	ifeq ($(CONFIG_SURICATA_ENABLE_PYTHON),y)
	CONFIGURE_ARGS += --enable-python
	SURICATA_EXTRA_ENABLE := +python3 +python3-yaml
	endif
	ifeq ($(CONFIG_SURICATA_ENABLE_LUAJIT),y)
	CONFIGURE_ARGS += --enable-luajit
	SURICATA_EXTRA_ENABLE += +luajit
	endif
	ifeq ($(CONFIG_SURICATA_ENABLE_GCCPROTECT),y)
	CONFIGURE_ARGS += --enable-gccprotect
	endif
	ifeq ($(CONFIG_SURICATA_ENABLE_GCCPROFILE),y)
	CONFIGURE_ARGS += --enable-gccprofile
	endif
	ifeq ($(CONFIG_SURICATA_ENABLE_PIE),y)
	CONFIGURE_ARGS += --enable-pie
	endif
	ifeq ($(CONFIG_SURICATA_ENABLE_NFQUEUE),y)
	CONFIGURE_ARGS += --enable-nfqueue
	endif
	ifeq ($(CONFIG_SURICATA_ENABLE_GEOIP),y)
	CONFIGURE_ARGS += --enable-geoip
	SURICATA_EXTRA_ENABLE += +libmaxminddb
	endif
	ifeq ($(CONFIG_SURICATA_ENABLE_LIBMAGIC),y)
	CONFIGURE_ARGS += --enable-libmagic
	SURICATA_EXTRA_ENABLE += +libmagic +file
	endif
	ifeq ($(CONFIG_SURICATA_ENABLE_DEBUG),y)
	CONFIGURE_ARGS += --enable-debug
	endif
	ifeq ($(CONFIG_SURICATA_ENABLE_HIREDIS),y)
	CONFIGURE_ARGS += --enable-hiredis
	SURICATA_EXTRA_ENABLE += +libhiredis +libevent2
	endif
	ifeq ($(CONFIG_SURICATA_ENABLE_EBPF),y)
	CONFIGURE_ARGS += --enable-ebpf-build
	endif
	ifeq ($(CONFIG_SURICATA_ENABLE_NFLOG),y)
	CONFIGURE_ARGS += --enable-nflog
	SURICATA_EXTRA_ENABLE += +libnet-1.2.x +libnetfilter-log +libnetfilter-queue +libnfnetlink
	endif

	define Build/Prepare
	$(call Build/Prepare/Default)
	$(CONFIGURE_VARS) cargo install cbindgen
	cd $(PKG_BUILD_DIR) && $(CONFIGURE_VARS) ./autogen.sh
	echo $(SURICATA_EXTRA_ENABLE)
	endef

	define Package/suricata6
	SUBMENU:=Firewall
	SECTION:=net
	CATEGORY:=Network
	DEPENDS:=+jansson +libhtp +libpcre +libyaml +libpcap +libcap-ng \
	+nspr +libnss +liblz4 $(SURICATA_EXTRA_ENABLE) \
	$(if $(PKG_NEEDS_ATOMICS) = true, +libatomic,)
	TITLE:=OISF Suricata IDS
	URL:=https://www.openinfosecfoundation.org/
	MENU:=1
	endef

	define Package/suricata6/install
	$(INSTALL_DIR) $(1)/usr/bin
	$(INSTALL_BIN) $(PKG_INSTALL_DIR)/usr/bin/suricata $(1)/usr/bin/suricata
	$(INSTALL_BIN) $(PKG_INSTALL_DIR)/usr/bin/suricatactl $(1)/usr/bin/suricatactl
	$(INSTALL_BIN) $(PKG_INSTALL_DIR)/usr/bin/suricatasc $(1)/usr/bin/suricatasc

	$(INSTALL_DIR) $(1)/usr/lib
	$(CP) -r $(PKG_INSTALL_DIR)/usr/lib/* $(1)/usr/lib/

	$(INSTALL_DIR) $(1)/usr/include
	$(CP) -r $(PKG_INSTALL_DIR)/usr/include/* $(1)/usr/include/

	$(INSTALL_DIR) $(1)/usr/share
	$(CP) -r $(PKG_INSTALL_DIR)/usr/share/* $(1)/usr/share/

	$(INSTALL_DIR) $(1)/etc/suricata
	$(CP) $(PKG_BUILD_DIR)/suricata.yaml \
	$(PKG_BUILD_DIR)/etc/classification.config \
	$(PKG_BUILD_DIR)/threshold.config \
	$(PKG_BUILD_DIR)/etc/reference.config \
	$(1)/etc/suricata/

	# $(INSTALL_DIR) $(1)/etc/suricata/rules
	# $(CP) $(PKG_BUILD_DIR)/usr/share/suricata/rules/*.rules $(1)/usr/share/suricata/rules/
	$(INSTALL_DIR) $(1)/etc/init.d
	$(INSTALL_BIN) ./files/etc/init.d/suricata $(1)/etc/init.d/suricata
	endef

	$(eval $(call BuildPackage,suricata6))