Builds fine and the debug log says that the module is working. The port
requires libmodsecurity which I sent a few minutes ago.
OK?
Index: Makefile
===================================================================
--- Makefile (revision 130669)
+++ Makefile (working copy)
@@ -13,8 +13,10 @@
COMMENT-headers_more= nginx module for setting/adding/clearing headers
COMMENT-perl= nginx perl scripting module
COMMENT-passenger= nginx passenger (ruby/python/nodejs) integration module
+COMMENT-modsecurity= nginx modsecurity module
VERSION= 1.14.0
+REVISION= 0
DISTNAME= nginx-${VERSION}
CATEGORIES= www
@@ -29,6 +31,7 @@
PKGNAME-headers_more= nginx-headers-more-${VERSION}
PKGNAME-perl= nginx-perl-${VERSION}
PKGNAME-passenger= nginx-passenger-${VERSION}
+PKGNAME-modsecurity= nginx-modsecurity-${VERSION}
MASTER_SITES= https://nginx.org/download/
MASTER_SITES0= https://github.com/simpl/ngx_devel_kit/archive/
@@ -36,12 +39,14 @@
MASTER_SITES2= https://github.com/openresty/lua-nginx-module/archive/
MASTER_SITES3=
https://raw.githubusercontent.com/rnagy/nginx_chroot_patch/master/
MASTER_SITES4= https://github.com/openresty/headers-more-nginx-module/archive/
+MASTER_SITES5=
https://github.com/SpiderLabs/ModSecurity-nginx/releases/download/v1.0.0/
DISTFILES= ${DISTNAME}${EXTRACT_SUFX} \
ngx_devel_kit-v0.3.0.tar.gz{v0.3.0.tar.gz}:0 \
naxsi-0.55.3.tar.gz{0.55.3.tar.gz}:1 \
lua-nginx-module-v0.10.11.tar.gz{v0.10.11.tar.gz}:2 \
- headers-more-nginx-module-v0.33.tar.gz{v0.33.tar.gz}:4
+ headers-more-nginx-module-v0.33.tar.gz{v0.33.tar.gz}:4 \
+ modsecurity-nginx-v1.0.0.tar.gz:5
HOMEPAGE= http://nginx.org/
@@ -51,7 +56,7 @@
PERMIT_PACKAGE_CDROM= yes
MULTI_PACKAGES = -main -image_filter -geoip -xslt -mailproxy -stream \
- -naxsi -perl -passenger -headers_more -lua
+ -naxsi -perl -passenger -headers_more -lua -modsecurity
FLAVOR ?=
PSEUDO_FLAVORS = no_lua
@@ -69,6 +74,7 @@
WANTLIB-headers_more=
WANTLIB-perl= c m perl
WANTLIB-passenger= m pthread ${COMPILER_LIBCXX}
+WANTLIB-modsecurity= modsecurity
BUILD_DEPENDS+=
${MODRUBY_PKG_PREFIX}-passenger-*:www/ruby-passenger
@@ -78,6 +84,7 @@
LIB_DEPENDS-image_filter=graphics/gd
LIB_DEPENDS-geoip= net/GeoIP
LIB_DEPENDS-lua= ${MODLUA_LIB_DEPENDS}
+LIB_DEPENDS-modsecurity=security/libmodsecurity
RUN_DEPENDS-main= # blank (override addition from lua.port.mk)
RUN_DEPENDS-mailproxy= www/nginx,-main=${VERSION}
@@ -91,6 +98,7 @@
RUN_DEPENDS-perl= www/nginx,-main=${VERSION}
RUN_DEPENDS-passenger= www/nginx,-main=${VERSION} \
ruby*-passenger-*:www/ruby-passenger
+RUN_DEPENDS-modsecurity=www/nginx,-main=${VERSION}
NGINX_DIR= /var/www
SUBST_VARS= NGINX_DIR
@@ -104,6 +112,7 @@
PREFIX-lua= ${NGINX_MODULES_DIR}
PREFIX-headers_more= ${NGINX_MODULES_DIR}
PREFIX-passenger= ${NGINX_MODULES_DIR}
+PREFIX-modsecurity= ${NGINX_MODULES_DIR}
CFLAGS+= -Wall -Wpointer-arith \
-I "${LOCALBASE}/include/libxml2" \
@@ -122,7 +131,9 @@
.if ${BUILD_PACKAGES:M-lua}
MODULES+= lang/lua
CONFIGURE_ENV+= MODLUA_INCL_DIR=${MODLUA_INCL_DIR} \
- MODLUA_LIB=${MODLUA_LIB}
+ MODLUA_LIB=${MODLUA_LIB} \
+ MODSECURITY_INC="${LOCALBASE}/include/modsecurity" \
+ MODSECURITY_LIB="${LOCALBASE}/lib"
CONFIGURE_ARGS+= --add-dynamic-module=${WRKSRC}/lua-nginx-module
.endif
@@ -157,7 +168,8 @@
--add-dynamic-module=${WRKSRC}/naxsi/naxsi_src/ \
--add-dynamic-module=${WRKSRC}/ngx_devel_kit \
--add-dynamic-module=${WRKSRC}/headers-more-nginx-module \
-
--add-dynamic-module=${LOCALBASE}/lib/phusion-passenger${GEM_BIN_SUFFIX}/src/nginx_module
+
--add-dynamic-module=${LOCALBASE}/lib/phusion-passenger${GEM_BIN_SUFFIX}/src/nginx_module
\
+ --add-dynamic-module=${WRKSRC}/modsecurity-nginx
SUBSTFILES= conf/nginx.conf \
lua-nginx-module/config
@@ -171,7 +183,8 @@
cd ${WRKSRC} && \
mv ../ngx_devel_kit-* ngx_devel_kit && \
mv ../lua-nginx-module-* lua-nginx-module && \
- mv ../headers-more-nginx-module-* headers-more-nginx-module
+ mv ../headers-more-nginx-module-* headers-more-nginx-module && \
+ mv ../modsecurity-nginx-* modsecurity-nginx
pre-configure:
@cd ${WRKSRC} && ${SUBST_CMD} ${SUBSTFILES}
Index: distinfo
===================================================================
--- distinfo (revision 130669)
+++ distinfo (working copy)
@@ -1,5 +1,6 @@
SHA256 (headers-more-nginx-module-v0.33.tar.gz) =
o9y6sRepwQO8HqUgD8AKe30q+X/3/VJfFvisJjLjD78=
SHA256 (lua-nginx-module-v0.10.11.tar.gz) =
wPuR/P0cbn3sNMpkgm74H/66/e9hdNJURnY284BWZiY=
+SHA256 (modsecurity-nginx-v1.0.0.tar.gz) =
BveOttM4M8wkclfECVwO5SjoCmHx9S4dpf3KXkZJdaA=
SHA256 (naxsi-0.55.3.tar.gz) = CzyV0lB3Lcia2LSeR8HgJMWuLHbAz/pEXp/gXE3RNJU=
SHA256 (nginx-1.14.0-chroot.patch) =
6dERcspRpgEau5QbXHC+K0r5C9Ogy/df6j8BpYrStL0=
SHA256 (nginx-1.14.0.tar.gz) = XRW+y/aauh/jP41BbZft2V6okZ6prFGe/5uv67YCLLU=
@@ -6,6 +7,7 @@
SHA256 (ngx_devel_kit-v0.3.0.tar.gz) =
iOBamainQZBm9a51lm+x78QJutRSLRSYbaB0VUrmFhk=
SIZE (headers-more-nginx-module-v0.33.tar.gz) = 28130
SIZE (lua-nginx-module-v0.10.11.tar.gz) = 616653
+SIZE (modsecurity-nginx-v1.0.0.tar.gz) = 26483
SIZE (naxsi-0.55.3.tar.gz) = 187416
SIZE (nginx-1.14.0-chroot.patch) = 8220
SIZE (nginx-1.14.0.tar.gz) = 1016272
Index: pkg/DESCR-modsecurity
===================================================================
--- pkg/DESCR-modsecurity (nonexistent)
+++ pkg/DESCR-modsecurity (working copy)
@@ -0,0 +1,7 @@
+ModSecurity is an open source, cross platform web application firewall (WAF)
+engine for Apache and Nginx that is developed by Trustwave's SpiderLabs.
+It has a robust event-based programming language which provides protection from
+a range of attacks against web applications and allows for HTTP traffic
+monitoring, logging and real-time analysis.
+
+This package contains the ModSecurity module for the Nginx web server.
Index: pkg/PLIST-modsecurity
===================================================================
--- pkg/PLIST-modsecurity (nonexistent)
+++ pkg/PLIST-modsecurity (working copy)
@@ -0,0 +1,2 @@
+@comment $OpenBSD: PLIST-modsecurity,v$
+ngx_http_modsecurity_module.so
