New port: security/openvas9-scanner

The Open Vulnerability Assessment System (OpenVAS) is a framework of several services and tools offering a comprehensive and powerful vulnerability scanning and vulnerability management solution. This package contains the OpenVAS Scanner which executes Network Vulnerability Tests (NVTs) provided by the OpenVAS NVT Feed or a commercial feed service. WWW: http://www.openvas.org/
author: acm <acm@FreeBSD.org> 2017-08-04 06:41:13 +0800
committer: acm <acm@FreeBSD.org> 2017-08-04 06:41:13 +0800
commit: 27ab521ed45d14a3d76f28fe987d72a8c2f1dbad (patch)
tree: c42d44f3bece29b120d34dbe9f821516c591d7bd /security
parent: 46d3f52fcec55729117c53c5161a0865ba29960c (diff)
download: freebsd-ports-gnome-27ab521ed45d14a3d76f28fe987d72a8c2f1dbad.tar.gz
freebsd-ports-gnome-27ab521ed45d14a3d76f28fe987d72a8c2f1dbad.tar.zst
freebsd-ports-gnome-27ab521ed45d14a3d76f28fe987d72a8c2f1dbad.zip
9 files changed, 132 insertions, 0 deletions
diff --git a/security/Makefile b/security/Makefile
index a985f1437d7a..791d4c8415fe 100644
--- a/security/Makefile
+++ b/security/Makefile
@@ -440,6 +440,7 @@
     SUBDIR += openvas8-scanner
     SUBDIR += openvas9-cli
     SUBDIR += openvas9-libraries
+    SUBDIR += openvas9-scanner
     SUBDIR += openvpn
     SUBDIR += openvpn-admin
     SUBDIR += openvpn-auth-ldap
diff --git a/security/openvas9-scanner/Makefile b/security/openvas9-scanner/Makefile
new file mode 100644
index 000000000000..dadd5f0a060d
--- /dev/null
+++ b/security/openvas9-scanner/Makefile
@@ -0,0 +1,19 @@
+# $FreeBSD$
+
+PORTNAME=	openvas9-scanner
+PORTVERSION=	5.1.1
+MASTER_SITES=	http://wald.intevation.org/frs/download.php/2423/
+
+COMMENT=	OpenVAS 9 scanner
+
+CONFLICTS=	${PORTNAME:S/${OPENVAS_VER}/8/}-*
+
+MASTERDIR=	${.CURDIR}/../../security/openvas8-scanner
+
+DISTINFO_FILE=	${.CURDIR}/distinfo
+PATCHDIR=	${.CURDIR}/files
+PLIST=		${.CURDIR}/pkg-plist
+
+OPENVAS_VER=	9
+
+.include "${MASTERDIR}/Makefile"
diff --git a/security/openvas9-scanner/distinfo b/security/openvas9-scanner/distinfo
new file mode 100644
index 000000000000..d3cf8f08d8d5
--- /dev/null
+++ b/security/openvas9-scanner/distinfo
@@ -0,0 +1,3 @@
+TIMESTAMP = 1501781225
+SHA256 (openvas9/openvas-scanner-5.1.1.tar.gz) = 7a7e20e8e004fe73652e45cb87edf6a0f4ffb6fd2a4aaec2bd3a99f69bf325ab
+SIZE (openvas9/openvas-scanner-5.1.1.tar.gz) = 256812
diff --git a/security/openvas9-scanner/files/openvassd.in b/security/openvas9-scanner/files/openvassd.in
new file mode 100644
index 000000000000..12633ae4effe
--- /dev/null
+++ b/security/openvas9-scanner/files/openvassd.in
@@ -0,0 +1,25 @@
+#!/bin/sh
+#
+# $FreeBSD$
+#
+# PROVIDE: openvassd
+# REQUIRE: DAEMON
+# KEYWORD: shutdown
+#
+# Add the following to /etc/rc.conf[.local] to enable this service
+#
+# openvassd_enable="YES"
+#
+
+. /etc/rc.subr
+
+name=openvassd
+rcvar=openvassd_enable
+command="%%PREFIX%%/sbin/openvassd"
+pidfile=/var/run/openvassd.pid
+extra_commands="reload"
+
+: ${openvassd_enable=NO}
+
+load_rc_config $name
+run_rc_command "$1"
diff --git a/security/openvas9-scanner/files/patch-CMakeLists.txt b/security/openvas9-scanner/files/patch-CMakeLists.txt
new file mode 100644
index 000000000000..7271d49cebe9
--- /dev/null
+++ b/security/openvas9-scanner/files/patch-CMakeLists.txt
@@ -0,0 +1,33 @@
+--- CMakeLists.txt.orig	2016-11-21 02:03:53.000000000 -0500
++++ CMakeLists.txt	2017-07-28 23:21:24.804201000 -0500
+@@ -149,7 +149,7 @@
+ endif (NOT LIBDIR)
+ 
+ if (NOT LOCALSTATEDIR)
+-  set (LOCALSTATEDIR "${CMAKE_INSTALL_PREFIX}/var")
++  set (LOCALSTATEDIR "/var")
+ endif (NOT LOCALSTATEDIR)
+ 
+ if (NOT DATADIR)
+@@ -222,7 +222,7 @@
+ 
+ ## Program
+ 
+-set (HARDENING_FLAGS            "-Wformat -Wformat-security -O2 -D_FORTIFY_SOURCE=2 -fstack-protector")
++set (HARDENING_FLAGS            "-Wformat -Wformat-security -fstack-protector")
+ set (LINKER_HARDENING_FLAGS     "-Wl,-z,relro -Wl,-z,now")
+ set (GPGME_C_FLAGS              "-D_FILE_OFFSET_BITS=64 -DLARGEFILE_SOURCE=1")
+ 
+@@ -255,10 +255,10 @@
+                      GROUP_READ GROUP_EXECUTE WORLD_READ WORLD_EXECUTE)
+ 
+ install (FILES ${CMAKE_BINARY_DIR}/doc/openvassd.8
+-         DESTINATION ${DATADIR}/man/man8 )
++         DESTINATION man/man8 )
+ 
+ install (FILES ${CMAKE_SOURCE_DIR}/doc/greenbone-nvt-sync.8
+-         DESTINATION ${DATADIR}/man/man8 )
++         DESTINATION man/man8 )
+ 
+ install (FILES ${CMAKE_BINARY_DIR}/doc/example_redis_2_4.conf
+                ${CMAKE_BINARY_DIR}/doc/example_redis_2_6.conf
diff --git a/security/openvas9-scanner/files/patch-src_CMakeLists.txt b/security/openvas9-scanner/files/patch-src_CMakeLists.txt
new file mode 100644
index 000000000000..4ae695c0fd6e
--- /dev/null
+++ b/security/openvas9-scanner/files/patch-src_CMakeLists.txt
@@ -0,0 +1,11 @@
+--- src/CMakeLists.txt	2017-07-28 23:40:33.283258000 -0500
++++ src/CMakeLists.txt	2017-07-28 23:40:47.899791000 -0500
+@@ -118,7 +118,7 @@
+ 
+ target_link_libraries (openvassd ${LIBOPENVAS_NASL_LDFLAGS}
+                        ${LIBOPENVAS_BASE_LDFLAGS} ${LIBOPENVAS_MISC_LDFLAGS}
+-                       ${GLIB_LDFLAGS} ${GCRYPT_LDFLAGS}
++                       ${GLIB_LDFLAGS} ${GCRYPT_LDFLAGS} -lexecinfo
+                        ${LINKER_HARDENING_FLAGS})
+ 
+ ## Tests
diff --git a/security/openvas9-scanner/files/patch-tools_greenbone-nvt-sync.in b/security/openvas9-scanner/files/patch-tools_greenbone-nvt-sync.in
new file mode 100644
index 000000000000..eb500858e985
--- /dev/null
+++ b/security/openvas9-scanner/files/patch-tools_greenbone-nvt-sync.in
@@ -0,0 +1,20 @@
+--- tools/greenbone-nvt-sync.in	2016-11-10 04:57:55.000000000 -0500
++++ tools/greenbone-nvt-sync.in	2017-07-28 23:31:16.323079000 -0500
+@@ -577,7 +577,7 @@
+         log_err "rsync failed, aborting synchronization."
+         exit 1
+       fi
+-      eval "cd \"$NVT_DIR\" ; md5sum -c --status \"$NVT_DIR/md5sums\""
++      eval "cd \"$NVT_DIR\" ; xargs -n 2 md5 -c < \"$NVT_DIR/md5sums\" > /dev/null"
+       if [ $? -ne 0 ]  ; then
+         if [ -n "$retried" ]
+         then
+@@ -650,7 +650,7 @@
+ 
+ do_self_test ()
+ {
+-  MD5SUM_AVAIL=`command -v md5sum`
++  MD5SUM_AVAIL=`command -v md5`
+   if [ $? -ne 0 ] ; then
+     SELFTEST_FAIL=1
+     stderr_write "The md5sum binary could not be found."
diff --git a/security/openvas9-scanner/pkg-descr b/security/openvas9-scanner/pkg-descr
new file mode 100644
index 000000000000..921c6efa5049
--- /dev/null
+++ b/security/openvas9-scanner/pkg-descr
@@ -0,0 +1,8 @@
+The Open Vulnerability Assessment System (OpenVAS) is a framework of several
+services and tools offering a comprehensive and powerful vulnerability
+scanning and vulnerability management solution.
+
+This package contains the OpenVAS Scanner which executes Network Vulnerability
+Tests (NVTs) provided by the OpenVAS NVT Feed or a commercial feed service.
+
+WWW: http://www.openvas.org/
diff --git a/security/openvas9-scanner/pkg-plist b/security/openvas9-scanner/pkg-plist
new file mode 100644
index 000000000000..9e6ebb47f84b
--- /dev/null
+++ b/security/openvas9-scanner/pkg-plist
@@ -0,0 +1,12 @@
+etc/rc.d/openvassd
+man/man8/greenbone-nvt-sync.8.gz
+man/man8/openvassd.8.gz
+sbin/greenbone-nvt-sync
+sbin/openvassd
+%%PORTDOCS%%%%DOCSDIR%%/INSTALL
+%%PORTDOCS%%%%DOCSDIR%%/example_redis_2_4.conf
+%%PORTDOCS%%%%DOCSDIR%%/example_redis_2_6.conf
+@dir /var/cache/openvas
+@dir /var/lib/openvas/plugins
+@dir /var/lib/openvas
+@dir /var/lib
author	acm <acm@FreeBSD.org>	2017-08-04 06:41:13 +0800
committer	acm <acm@FreeBSD.org>	2017-08-04 06:41:13 +0800
commit	27ab521ed45d14a3d76f28fe987d72a8c2f1dbad (patch)
tree	c42d44f3bece29b120d34dbe9f821516c591d7bd /security
parent	46d3f52fcec55729117c53c5161a0865ba29960c (diff)
download	freebsd-ports-gnome-27ab521ed45d14a3d76f28fe987d72a8c2f1dbad.tar.gz freebsd-ports-gnome-27ab521ed45d14a3d76f28fe987d72a8c2f1dbad.tar.zst freebsd-ports-gnome-27ab521ed45d14a3d76f28fe987d72a8c2f1dbad.zip