Ticket #47101: Portfile

# -*- coding: utf-8; mode: tcl; tab-width: 4; indent-tabs-mode: nil; c-basic-offset: 4 -*- vim:fenc=utf-8:ft=tcl:et:sw=4:ts=4:sts=4
# $Id$

PortSystem         1.0

PortGroup           github 1.0

PortGroup           python 1.0

github.setup        cuckoobox cuckoo 1.2
categories          security
maintainers         yahoo.fr:jul_bsd openmaintainer
description         automated dynamic malware analysis system
long_description    ${description}
license             GPL-3
platforms           darwin
homepage            http://www.cuckoosandbox.org/

checksums           rmd160  3f9445e4b9a17de04715965d6d0d1e67596f0976 \
                    sha256  c60820bf50deddbba1f3ac1b1397689240a526cf6d35013bd045e3f7a05d785a

## Note: requires ?
#python.versions     27
python.default_version     27

add_users cuckoo group=cuckoo home=${prefix}/var/cuckoo shell=/sbin/nologin realname=cuckoo\ user


depends_build        port:yara port:volatility port:libvirt-python

## FIXME! need to do options: pefile, maec python bindings; note py-bson is integrated in py-pymongo
if {${python.version} != ""} {
    depends_build-append port:py${python.version}-sqlalchemy \
                         port:py${python.version}-pymongo \
                         port:py${python.version}-dpkt port:py${python.version}-jinja2 \
                         \
                         port:py${python.version}-magic port:py${python.version}-bottle \
                         port:py${python.version}-chardet port:py${python.version}-deep \
                         port:py${python.version}-pefile port:py${python.version}-maec
}

use_configure      no
build {}

destroot {
    set rootdir ${prefix}/var/cuckoo
    
    xinstall -d -m 755 ${destroot}${rootdir}
    xinstall -m 755 ${worksrcpath}/cuckoo.py ${destroot}${rootdir}/
    foreach f { agent analyzer conf data docs lib modules tests utils web } {
        copy ${worksrcpath}/${f} ${destroot}${rootdir}/
    }

    ## No install setup, doing our own tree
    reinplace "s|/usr/bin/env python|${prefix}/bin/python2.7|g" ${destroot}${rootdir}/cuckoo.py
}

if {${subport} eq ${name}} {


    conflicts ${name}-devel
}

notes "

By default, Cuckoo will rely on Virtualbox as guest virtualization software.
You will have to install separately through macports or manually.

Cuckoo use tcpdump which needs root privilege.
(???) Only option on MacOS is to put tcpdump binary as setuid
    $ sudo chmod +s /usr/sbin/tcpdump


To finish configuration,
http://docs.cuckoosandbox.org/en/latest/

1) Setup Database: MongoDB (default) or Mysql
      $ sudo port load mongodb
2) Check configuration files
3) Create a guest VM: WinXPsp3 is recommended, but Win7 with UAC
disabled is supported too.
Follow documentation how to prepare guest. It shout at least
contains Python 2.7.
Network should be host-only with some proper forwarding and
filtering configuration.


http://advancedmalwareprotection.blogspot.ca/2012/03/installing-cuckoo-on-max-os-x-lion.html
http://blog.spiderlabs.com/2012/01/cuckoo-for-cuckoo-box.html
"

#subport ${name}-devel {
#    master_sites        https://github.com/cuckoobox/cuckoo/archive/
#    version             20150305
#    distname            d34f13b06cc8f362e0cb76edccf8dafd2033f8f9
#    checksums           rmd160  7bcc1267d1fb5fc11f679a282606bc088b438a05 \
#                        sha256  ca4f7bea748340fc9ab092575de6c340ed75b159a49088b2cdafd4e531e6f9e1
#
#    conflicts ${name}
#}

default_variants  +django
variant django description { use django + mongodb backend } {
    #depends_run-append   port:mongodb port:py${python.version}-pymongo port:py${python.version}-django
    depends_run-append   port:mongodb port:py${python.version}-django
}