Import fwknop 2.6.9

fwknop stands for the "FireWall KNock OPerator", and implements an
authorization scheme called Single Packet Authorization (SPA). This method of
authorization is based around a default-drop packet filter and libpcap. SPA is
essentially next generation port knocking.

Lots of help and tweaks by jca@, ok jca@

security/fwknop/Makefile

@@ -0,0 +1,42 @@
+# $OpenBSD: Makefile,v 1.1.1.1 2017/09/11 15:50:33 feinerer Exp $
+
+COMMENT =	firewall knock operator
+
+DISTNAME =	fwknop-2.6.9
+
+SHARED_LIBS +=	fko	0.0 # 3.0
+
+CATEGORIES =	security
+
+HOMEPAGE =	https://www.cipherdyne.org/fwknop/
+
+MAINTAINER =		Ingo Feinerer <feinerer@logic.at>
+
+# GPLv2+
+PERMIT_PACKAGE_CDROM =	Yes
+
+WANTLIB += assuan c gpg-error gpgme iconv intl pcap
+
+MASTER_SITES =		https://www.cipherdyne.org/fwknop/download/
+
+BUILD_DEPENDS =		net/wget \
+			security/gnupg
+RUN_DEPENDS =		net/wget \
+			security/gnupg
+LIB_DEPENDS =		devel/gettext \
+			security/gpgme
+
+SEPARATE_BUILD =	Yes
+
+# undefined reference to `fko_new'
+USE_LIBTOOL =		gnu
+LIBTOOL_FLAGS =		--tag=disable-static
+
+CONFIGURE_STYLE =	gnu
+CONFIGURE_ARGS =	--disable-static
+
+post-install:
+	mv ${WRKINST}${SYSCONFDIR}/fwknop ${PREFIX}/share/examples/
+	rm ${PREFIX}/lib/libfko.la
+
+.include <bsd.port.mk>

security/fwknop/distinfo

@@ -0,0 +1,2 @@
+SHA256 (fwknop-2.6.9.tar.gz) = kCKg4bPuHcnNEyPvzA5fjyS8Uh4Z6Xee/Z0jo6o+VXc=
+SIZE (fwknop-2.6.9.tar.gz) = 1978327

security/fwknop/patches/patch-lib_fko_common_h

@@ -0,0 +1,25 @@
+$OpenBSD: patch-lib_fko_common_h,v 1.1.1.1 2017/09/11 15:50:33 feinerer Exp $
+
+https://github.com/mrash/fwknop/commit/10d31064c35fab1a80a92d9b19e86a60d948bf1a
+
+Index: lib/fko_common.h
+--- lib/fko_common.h.orig
++++ lib/fko_common.h
+@@ -91,9 +91,15 @@
+ 
+ /* Work out endianness
+ */
+-#if HAVE_ENDIAN_H       /* Should cover most Linux systems */
++#ifdef HAVE_ENDIAN_H /* POSIX proposal, should cover most modern systems */
+   #include <endian.h>
+-  #define BYTEORDER __BYTE_ORDER
++  #ifndef BYTE_ORDER
++    #ifdef _BYTE_ORDER
++      #define BYTE_ORDER _BYTE_ORDER
++    #elif defined(__BYTE_ORDER)
++      #define BYTE_ORDER __BYTE_ORDER
++    #endif
++  #endif
+ #elif HAVE_SYS_ENDIAN_H /* FreeBSD has a sys/endian.h */
+   #include <sys/endian.h>
+   #define BYTEORDER _BYTE_ORDER

security/fwknop/pkg/DESCR

@@ -0,0 +1,4 @@
+fwknop stands for the "FireWall KNock OPerator", and implements an
+authorization scheme called Single Packet Authorization (SPA). This method of
+authorization is based around a default-drop packet filter and libpcap. SPA is
+essentially next generation port knocking.

security/fwknop/pkg/PLIST

@@ -0,0 +1,21 @@
+@comment $OpenBSD: PLIST,v 1.1.1.1 2017/09/11 15:50:33 feinerer Exp $
+@bin bin/fwknop
+include/fko.h
+@info info/libfko.info
+@lib lib/libfko.so.${LIBfko_VERSION}
+@man man/man8/fwknop.8
+@man man/man8/fwknopd.8
+@bin sbin/fwknopd
+share/examples/fwknop/
+@mode 0700
+@sample ${SYSCONFDIR}/fwknop/
+@mode
+share/examples/fwknop/access.conf
+@mode 600
+@sample ${SYSCONFDIR}/fwknop/access.conf
+@mode
+share/examples/fwknop/fwknopd.conf
+@mode 600
+@sample ${SYSCONFDIR}/fwknop/fwknopd.conf
+@mode
+@rcscript ${RCDIR}/fwknopd

security/fwknop/pkg/fwknopd.rc

@@ -0,0 +1,9 @@
+#!/bin/sh
+#
+# $OpenBSD: fwknopd.rc,v 1.1.1.1 2017/09/11 15:50:33 feinerer Exp $
+
+daemon="${TRUEPREFIX}/sbin/fwknopd"
+
+. /etc/rc.d/rc.subr
+
+rc_cmd $1