security/crowdsec-firewall-bouncer: include configuration patch

The update to 0.0.28 from PR 274213 did not include a file that sets backend mode in new installations. If the backend is not set, the application does not start. This version includes the missing patch file, and also sets the $BACKEND environment variable as a fallback. The application will substitute it at runtime if required. PR: 274213, 274529 Fixes: 714e7fb
freebsd · Oct 19, 2023 · e7efe5b · e7efe5b
1 parent ecc6af1
commit e7efe5b
Show file tree

Hide file tree

Showing 3 changed files with 12 additions and 0 deletions.
diff --git a/security/crowdsec-firewall-bouncer/Makefile b/security/crowdsec-firewall-bouncer/Makefile
@@ -1,4 +1,5 @@
 PORTNAME=	crowdsec-firewall-bouncer
+PORTREVISION=	1
 DISTVERSIONPREFIX=	v
 DISTVERSION=	0.0.28
 CATEGORIES=	security

diff --git a/security/crowdsec-firewall-bouncer/files/crowdsec_firewall.in b/security/crowdsec-firewall-bouncer/files/crowdsec_firewall.in
@@ -83,6 +83,8 @@ crowdsec_firewall_stop()
 }
 
 crowdsec_firewall_start() {
+    # ensure we have a backend if the config file was not patched
+    export BACKEND=pf
     /usr/sbin/daemon -f -p "$pidfile" -t "$desc" -- \
         "$command" -c "$crowdsec_firewall_config" ${crowdsec_firewall_flags}
 }

diff --git a/security/crowdsec-firewall-bouncer/files/patch-config_crowdsec-firewall-bouncer.yaml b/security/crowdsec-firewall-bouncer/files/patch-config_crowdsec-firewall-bouncer.yaml
@@ -0,0 +1,9 @@
+--- config/crowdsec-firewall-bouncer.yaml.orig	2023-07-31 19:34:51 UTC
++++ config/crowdsec-firewall-bouncer.yaml
+@@ -1,4 +1,5 @@
+-mode: ${BACKEND}
++mode: pf
++retry_initial_connect: true
+ update_frequency: 10s
+ log_mode: file
+ log_dir: /var/log/