a14b2c0196
- Update nlohmann-json bundle to 3.12.0. It fixes issues when llvm >= 18 is used. [2] - Add a missing dependency of numpy whl installed from wazuh-cache [1] - Other minor changes - Bump PORTREVISION PR: 287003 Reported by: girgen [1] Reported by: Trond Endrestøl [2]
166 lines
9.1 KiB
Plaintext
166 lines
9.1 KiB
Plaintext
--- src/Makefile 2025-04-30 02:30:26.000000000 -0700
|
|
+++ src/Makefile 2025-05-23 14:25:52.122383000 -0700
|
|
@@ -49,9 +49,11 @@
|
|
|
|
HAS_CHECKMODULE = $(shell command -v checkmodule > /dev/null && echo YES)
|
|
HAS_SEMODULE_PACKAGE = $(shell command -v semodule_package > /dev/null && echo YES)
|
|
+ifeq (${uname_S},Linux)
|
|
CHECK_ARCHLINUX := $(shell sh -c 'grep "Arch Linux" /etc/os-release > /dev/null && echo YES || echo not')
|
|
CHECK_CENTOS5 := $(shell sh -c 'grep "CentOS release 5." /etc/redhat-release 2>&1 > /dev/null && echo YES || echo not')
|
|
CHECK_ALPINE := $(shell sh -c 'grep "Alpine Linux" /etc/os-release 2>&1 > /dev/null && echo YES || echo not')
|
|
+endif
|
|
|
|
ARCH_FLAGS =
|
|
|
|
@@ -110,7 +112,7 @@
|
|
USE_PRELUDE?=no
|
|
USE_ZEROMQ?=no
|
|
USE_GEOIP?=no
|
|
-USE_INOTIFY=no
|
|
+USE_INOTIFY?=no
|
|
USE_BIG_ENDIAN=no
|
|
USE_AUDIT=no
|
|
MINGW_HOST=unknown
|
|
@@ -175,6 +177,8 @@
|
|
DEFINES+=-DUSER=\"${WAZUH_USER}\"
|
|
DEFINES+=-DGROUPGLOBAL=\"${WAZUH_GROUP}\"
|
|
|
|
+OSSEC_CFLAGS+=-I./ -I./headers/ -I${EXTERNAL_OPENSSL}include -I$(EXTERNAL_JSON) -I${EXTERNAL_LIBYAML}include -I${EXTERNAL_CURL}include -I${EXTERNAL_MSGPACK}include -I${EXTERNAL_BZIP2} -I${SHARED_MODULES}common -I${DBSYNC}include -I${RSYNC}include -I${SYSCOLLECTOR}include -I${SYSINFO}include -I${EXTERNAL_LIBPCRE2}include -I${EXTERNAL_RPM}/builddir/output/include -I${SYSCHECK}include -I${ROUTER}include -I${CONTENT_MANAGER}include -I${VULNERABILITY_SCANNER}include -I./shared_modules/
|
|
+
|
|
ifneq (${TARGET},winagent)
|
|
DEFINES+=-D${uname_S}
|
|
ifeq (${uname_S},Linux)
|
|
@@ -269,13 +273,14 @@
|
|
ifeq (${uname_S},FreeBSD)
|
|
DEFINES+=-DFreeBSD
|
|
OSSEC_CFLAGS+=-pthread -I/usr/local/include
|
|
- OSSEC_LDFLAGS+=-pthread
|
|
+ OSSEC_LDFLAGS+=-pthread -lnghttp2
|
|
OSSEC_LDFLAGS+=-L/usr/local/lib
|
|
OSSEC_LDFLAGS+='-Wl,-rpath,$$ORIGIN/../lib'
|
|
- AR_LDFLAGS+=-pthread
|
|
+ AR_LDFLAGS+=-pthread -lnghttp2
|
|
AR_LDFLAGS+=-L/usr/local/lib
|
|
AR_LDFLAGS+='-Wl,-rpath,$$ORIGIN/../../lib'
|
|
PRECOMPILED_OS:=freebsd
|
|
+ CC?=cc
|
|
else
|
|
ifeq (${uname_S},NetBSD)
|
|
DEFINES+=-DNetBSD
|
|
@@ -434,7 +439,6 @@
|
|
|
|
OSSEC_CFLAGS+=${DEFINES}
|
|
OSSEC_CFLAGS+=-pipe -Wall -Wextra -std=gnu99
|
|
-OSSEC_CFLAGS+=-I./ -I./headers/ -I${EXTERNAL_OPENSSL}include -I$(EXTERNAL_JSON) -I${EXTERNAL_LIBYAML}include -I${EXTERNAL_CURL}include -I${EXTERNAL_MSGPACK}include -I${EXTERNAL_BZIP2} -I${SHARED_MODULES}common -I${DBSYNC}include -I${RSYNC}include -I${SYSCOLLECTOR}include -I${SYSINFO}include -I${EXTERNAL_LIBPCRE2}include -I${EXTERNAL_RPM}/builddir/output/include -I${SYSCHECK}include -I${ROUTER}include -I${CONTENT_MANAGER}include -I${VULNERABILITY_SCANNER}include -I./shared_modules/
|
|
|
|
OSSEC_CFLAGS += ${CFLAGS}
|
|
OSSEC_LDFLAGS += ${LDFLAGS}
|
|
@@ -531,8 +535,8 @@
|
|
ifneq (,$(filter ${USE_INOTIFY},YES auto yes y Y 1))
|
|
DEFINES+=-DINOTIFY_ENABLED
|
|
ifeq (${uname_S},FreeBSD)
|
|
- OSSEC_LDFLAGS+=-L/usr/local/lib -I/usr/local/include
|
|
- OSSEC_LIBS+=-linotify
|
|
+ OSSEC_LDFLAGS+=-I/usr/local/include -L/usr/local/lib
|
|
+ OSSEC_LIBS+=-L/usr/local/lib -linotify
|
|
OSSEC_CFLAGS+=-I/usr/local/include
|
|
endif
|
|
endif
|
|
@@ -957,6 +961,8 @@
|
|
EXTERNAL_LIBS += $(LIBCURL_LIB)
|
|
else ifeq (${uname_S},Linux)
|
|
EXTERNAL_LIBS += $(LIBCURL_LIB)
|
|
+else ifeq (${uname_S},FreeBSD)
|
|
+ EXTERNAL_LIBS += $(LIBCURL_LIB)
|
|
else ifeq (${uname_S},Darwin)
|
|
EXTERNAL_LIBS += $(LIBCURL_LIB)
|
|
endif
|
|
@@ -1186,9 +1192,13 @@
|
|
cd $(EXTERNAL_CURL) && CPPFLAGS="-fPIC -I${ROUTE_PATH}/${EXTERNAL_OPENSSL}include" LDFLAGS="-L${ROUTE_PATH}/${EXTERNAL_OPENSSL}" LIBS="-ldl -lpthread" ./configure --with-openssl="${ROUTE_PATH}/${EXTERNAL_OPENSSL}" --disable-ldap --without-libidn2 --without-libpsl --without-brotli --without-nghttp2 --without-zstd
|
|
endif
|
|
else
|
|
+ifeq (${uname_S},FreeBSD)
|
|
+ cd $(EXTERNAL_CURL) && CPPFLAGS="-fPIC -I${ROUTE_PATH}/${EXTERNAL_OPENSSL}include" LDFLAGS="-L${ROUTE_PATH}/${EXTERNAL_OPENSSL}" LIBS="-pthread" ./configure --with-ssl="${ROUTE_PATH}/${EXTERNAL_OPENSSL}" --disable-ldap --without-libidn2 --without-brotli --without-nghttp2 --without-librtmp --without-zstd --without-libpsl
|
|
+else
|
|
cd $(EXTERNAL_CURL) && CPPFLAGS="-fPIC -I${ROUTE_PATH}/${EXTERNAL_OPENSSL}include" LDFLAGS="-L${ROUTE_PATH}/${EXTERNAL_OPENSSL}" LIBS="-lpthread" ./configure --with-openssl="${ROUTE_PATH}/${EXTERNAL_OPENSSL}" --disable-ldap --without-libidn2 --without-brotli --without-nghttp2 --without-librtmp --without-zstd --without-libpsl
|
|
endif
|
|
endif
|
|
+endif
|
|
|
|
|
|
#### procps #########
|
|
@@ -2295,7 +2305,7 @@
|
|
#### FIM ######
|
|
|
|
wazuh-syscheckd: librootcheck.a libwazuh.a ${WAZUHEXT_LIB} build_shared_modules
|
|
- cd syscheckd && mkdir -p build && cd build && cmake ${SYSCHECK_OS} ${CMAKE_OPTS} -DCMAKE_C_FLAGS="${DEFINES} -pipe -Wall -Wextra -std=gnu99" ${SYSCHECK_TEST} ${SYSCHECK_RELEASE_TYPE} .. && ${MAKE}
|
|
+ cd syscheckd && mkdir -p build && cd build && cmake ${CMAKE_OPTS} -DCMAKE_C_FLAGS="${DEFINES} ${OSSEC_CFLAGS} -pipe -Wall -Wextra -std=gnu99" -DCMAKE_EXE_LINKER_FLAGS="${OSSEC_LDFLAGS} ${OSSEC_LIBS}" ${SYSCHECK_TEST} ${SYSCHECK_RELEASE_TYPE} .. && ${MAKE}
|
|
|
|
#### Monitor #######
|
|
|
|
@@ -2473,7 +2483,7 @@
|
|
WPYTHON_DIR := ${INSTALLDIR}/framework/python
|
|
OPTIMIZE_CPYTHON?=no
|
|
WPYTHON_TAR=cpython.tar.gz
|
|
-WLIBPYTHON=libpython3.10.so.1.0
|
|
+WLIBPYTHON=libpython3.11.so.1.0
|
|
|
|
ifneq (,$(filter ${OPTIMIZE_CPYTHON},YES yes y Y 1))
|
|
CPYTHON_FLAGS=--enable-optimizations
|
|
@@ -2487,22 +2497,45 @@
|
|
endif
|
|
|
|
ifeq (,$(wildcard ${EXTERNAL_CPYTHON}/python))
|
|
- export WPATH_LIB="'\$$\$$ORIGIN/../../../lib'" && export SOURCE_PATH=${ROUTE_PATH} && export WAZUH_FFI_PATH=${EXTERNAL_LIBFFI} && export LD_LIBRARY_PATH=${ROUTE_PATH} && cd ${EXTERNAL_CPYTHON} && ./configure --prefix="${WPYTHON_DIR}" --libdir="${WPYTHON_DIR}/lib" --enable-shared --with-openssl="${ROUTE_PATH}/${EXTERNAL_OPENSSL}" LDFLAGS="${ARCH_FLAGS} -L${ROUTE_PATH} -lwazuhext -Wl,-rpath,'\$$\$$ORIGIN/../../../lib',--disable-new-dtags" CPPFLAGS="-I${ROUTE_PATH}/${EXTERNAL_OPENSSL}" $(CPYTHON_FLAGS) && ${MAKE}
|
|
+ export WPATH_LIB="'\$$\$$ORIGIN/../../../lib'" && export SOURCE_PATH=${ROUTE_PATH} && export WAZUH_FFI_PATH=${EXTERNAL_LIBFFI} && export LD_LIBRARY_PATH=${ROUTE_PATH} && cd ${EXTERNAL_CPYTHON} && ./configure --prefix="${WPYTHON_DIR}" --libdir="${WPYTHON_DIR}/lib" --enable-shared --with-openssl="${ROUTE_PATH}/${EXTERNAL_OPENSSL}" LIBSQLITE3_CFLAGS="-I${LOCALBASE}/include" LIBSQLITE3_LIBS="-L${LOCALBASE}/lib -lsqlite3" LDFLAGS="${ARCH_FLAGS} -L${ROUTE_PATH} -lwazuhext -Wl,-rpath,'\$$\$$ORIGIN/../../../lib',--disable-new-dtags" CPPFLAGS="-I${ROUTE_PATH}/${EXTERNAL_OPENSSL}" $(CPYTHON_FLAGS) && ${MAKE}
|
|
endif
|
|
|
|
build_python: $(WAZUHEXT_LIB)
|
|
|
|
install_python:
|
|
ifneq (,$(wildcard ${EXTERNAL_CPYTHON}))
|
|
- cd ${EXTERNAL_CPYTHON} && export WPATH_LIB=${INSTALLDIR}/lib && export SOURCE_PATH=${ROUTE_PATH} && export WAZUH_FFI_PATH=${EXTERNAL_LIBFFI} && ${MAKE} install
|
|
+ cd ${EXTERNAL_CPYTHON} && export WPATH_LIB=${INSTALLDIR}/lib && export SOURCE_PATH=${ROUTE_PATH} && export WAZUH_FFI_PATH=${EXTERNAL_LIBFFI} && export LD_LIBRARY_PATH=${ROUTE_PATH} && ${MAKE} install
|
|
else
|
|
mkdir -p ${WPYTHON_DIR}
|
|
cp external/${WPYTHON_TAR} ${WPYTHON_DIR}/${WPYTHON_TAR} && ${TAR} ${WPYTHON_DIR}/${WPYTHON_TAR} -C ${WPYTHON_DIR} && rm -rf ${WPYTHON_DIR}/${WPYTHON_TAR}
|
|
endif
|
|
+ifeq (${uname_S},FreeBSD)
|
|
+ mkdir -p $(STAGEDIR)${INSTALLDIR}/lib
|
|
+ find $(STAGEDIR)${WPYTHON_DIR} -name "*${WLIBPYTHON}" -exec ln -f {} $(STAGEDIR)${INSTALLDIR}/lib/${WLIBPYTHON} \;
|
|
+else
|
|
find ${WPYTHON_DIR} -name "*${WLIBPYTHON}" -exec ln -f {} ${INSTALLDIR}/lib/${WLIBPYTHON} \;
|
|
+endif
|
|
|
|
python_dependencies := requirements.txt
|
|
+
|
|
+ifeq (${uname_S},FreeBSD)
|
|
+install_dependencies:
|
|
+ifneq (,$(wildcard ${EXTERNAL_CPYTHON}))
|
|
+ $(STAGEDIR)${WPYTHON_DIR}/bin/python3 -B -m pip install --upgrade pip --prefix=${WPYTHON_DIR} --root=$(STAGEDIR) --no-index --find-links=wazuh-cache/ --cache-dir=wazuh-cache/ --no-compile
|
|
+ LD_LIBRARY_PATH="$(STAGEDIR)${INSTALLDIR}/lib" LDFLAGS="-L$(STAGEDIR)${INSTALLDIR}/lib" $(STAGEDIR)${WPYTHON_DIR}/bin/python3 -m pip install wazuh-cache-any/*.whl --root=$(STAGEDIR) --prefix=${WPYTHON_DIR} --no-deps --no-compile
|
|
+ LD_LIBRARY_PATH="$(STAGEDIR)${INSTALLDIR}/lib" LDFLAGS="-L$(STAGEDIR)${INSTALLDIR}/lib" $(STAGEDIR)${WPYTHON_DIR}/bin/python3 -m pip install wazuh-cache/*.whl --root=$(STAGEDIR) --prefix=${WPYTHON_DIR} --no-deps --no-compile
|
|
+endif
|
|
+
|
|
+install_framework:
|
|
+ LD_LIBRARY_PATH="$(STAGEDIR)${INSTALLDIR}/lib" LDFLAGS="-L$(STAGEDIR)${INSTALLDIR}/lib" $(STAGEDIR)${WPYTHON_DIR}/bin/python3 -m pip install wazuh-python/wazuh*.whl --root=$(STAGEDIR) --prefix=${WPYTHON_DIR} --no-deps --no-compile
|
|
+ chmod -R o=- $(STAGEDIR)${WPYTHON_DIR}
|
|
+
|
|
+install_api:
|
|
+ LD_LIBRARY_PATH="$(STAGEDIR)${INSTALLDIR}/lib" LDFLAGS="-L$(STAGEDIR)${INSTALLDIR}/lib" $(STAGEDIR)${WPYTHON_DIR}/bin/python3 -m pip install wazuh-python/api*.whl --root=$(STAGEDIR) --prefix=${WPYTHON_DIR} --no-deps --no-compile
|
|
|
|
+install_mitre:
|
|
+ export CRYPTOGRAPHY_OPENSSL_NO_LEGACY=1 && cd ../tools/mitre && $(STAGEDIR)${WPYTHON_DIR}/bin/python3 mitredb.py -d $(STAGEDIR)${INSTALLDIR}/var/db/mitre.db
|
|
+else
|
|
install_dependencies: install_python
|
|
ifneq (,$(wildcard ${EXTERNAL_CPYTHON}))
|
|
${WPYTHON_DIR}/bin/python3 -m pip install --upgrade pip --index-url=file://${ROUTE_PATH}/${EXTERNAL_CPYTHON}/Dependencies/simple
|
|
@@ -2519,6 +2552,7 @@
|
|
|
|
install_mitre: install_python
|
|
cd ../tools/mitre && ${WPYTHON_DIR}/bin/python3 mitredb.py -d ${INSTALLDIR}/var/db/mitre.db
|
|
+endif
|
|
|
|
####################
|
|
#### test ##########
|