# Contributor: Stuart Cardall <developer@it-offshore.co.uk>
# Maintainer: Stuart Cardall <developer@it-offshore.co.uk>
setvar pkgname = 'fwsnort'
setvar pkgver = '1.6.7'
setvar pkgrel = '0'
setvar pkgdesc = ""Application layer IDS/IPS by translating snort rules into iptables""
setvar url = ""http://www.cipherdyne.org/fwsnort/""
setvar arch = ""noarch""
setvar license = ""GPL""
setvar depends = ""perl perl-netaddr-ip perl-iptables-parse iptables ip6tables net-tools wget""
setvar install = ""$pkgname.post-install""
setvar source = ""http://www.cipherdyne.org/$pkgname/download/$pkgname-nodeps-$pkgver.tar.gz
	fwsnort.up
	fwsnort.update
	periodic.daily""
setvar builddir = ""$srcdir/$pkgname-nodeps-$pkgver""

proc build {
	cd $builddir

	# Disable Root requirement to build.
	local start=$(sed -n '/die "You need to be root (or equivalent UID 0"/=' ./install.pl)
	local end=$(expr $start + 1)
	# Busybox sed does not support +1d.
	sed "$start,${end}d" ./install.pl -i

	# Prevent chmod 0500 halting the build.
	sed "s|0500|0755|" ./install.pl -i

	# Change MAN path so package builds.
	sed "s|/usr/share/man/man8|$pkgdir&|" ./install.pl -i

	# --install-test-dir sets the INSTALL_ROOT to $src/../test/fwsnort-test
	# avoids installation attempted into /etc /usr /var
	# -S disables dependency installs (we also build with the nodep sources)
	./install.pl -S --install-test-dir
}

proc package {
	cd $builddir

	mkdir -p "$pkgdir"/etc "$pkgdir"/usr
	cp -rf test/fwsnort-install/* "$pkgdir"/
	cp -f fwsnort.conf "$pkgdir"/etc/fwsnort/fwsnort.conf

	# Fix permissions.
	chmod 0500 "$pkgdir"/etc/fwsnort "$pkgdir"/etc/fwsnort/snort_rules
	chmod 0500 "$pkgdir"/usr/sbin/fwsnort
	chmod 0600 "$pkgdir"/etc/fwsnort/fwsnort.conf

	# Install rule / signature update script.
	install -Dm755 "$srcdir"/fwsnort.update \
		"$pkgdir"/usr/bin/update-fwsnort

	# Install iptables rule splicing script.
	install -Dm755 "$srcdir"/fwsnort.up \
		"$pkgdir"/etc/network/if-pre-up.d/fwsnort

	# Install daily cron.
	install -Dm755 "$srcdir"/periodic.daily \
		"$pkgdir"/etc/periodic/daily/fwsnort
}

proc check {
	cd "$builddir/test"
	perl test-fwsnort.pl
}

setvar sha512sums = ""c2a4eae71c0c4e6ea0960d0bb5a43ad299624bbbdac21690b8e01eba83c979be260338fea940f5f294e6cd6eb1984576854c43d38c86c3a9548aeec60f9f2dae  fwsnort-nodeps-1.6.7.tar.gz
3c97b5f4bb922086acd62305baae4ba1d91e6e627d063f131f98e08da3f57b607b35558eae2cf292b3997d25f09147039f95123161f8f29c5b97b71c80811e9f  fwsnort.up
2a1e7ca6dc1c4a6e59907175c3483736f0efe1dcd8035dae2b903cd22fe953d29333939ad9e0a6f446480eda55370f4b11a77016932bef73e769b5e5401e92c0  fwsnort.update
763b459d43319e9b6678a5addd96b3542c629379f9f11095bc158b1ef08b039cd776ceedd6207953ab01000804d7580a3a8223b352b407d3cc6a05c27d96fcb0  periodic.daily""