From: Stefan Schantl <stefan.schantl@ipfire.org>
To: development@lists.ipfire.org
Cc: Stefan Schantl <stefan.schantl@ipfire.org>
Subject: [PATCH] fort-validator: New package
Date: Thu, 12 Jun 2025 18:27:01 +0200 [thread overview]
Message-ID: <20250612162701.3735-1-stefan.schantl@ipfire.org> (raw)
FORT Validator is an open source RPKI validator. It allows operators to validate BGP routing information
against the RPKI repository for use in router configuration and resolution.
This patch includes the LFS and rootfile to build the validator,
an initscript, required definitions for backup and an empty config file
for user customization.
Fixes #13845.
Signed-off-by: Stefan Schantl <stefan.schantl@ipfire.org>
---
config/backup/includes/fort-validator | 2 +
config/fort-validator/config.json | 2 +
config/rootfiles/packages/fort-validator | 8 ++
lfs/fort-validator | 112 +++++++++++++++++++++++
make.sh | 1 +
src/initscripts/packages/fort-validator | 55 +++++++++++
6 files changed, 180 insertions(+)
create mode 100644 config/backup/includes/fort-validator
create mode 100644 config/fort-validator/config.json
create mode 100644 config/rootfiles/packages/fort-validator
create mode 100644 lfs/fort-validator
create mode 100644 src/initscripts/packages/fort-validator
diff --git a/config/backup/includes/fort-validator b/config/backup/includes/fort-validator
new file mode 100644
index 000000000..92d1f6446
--- /dev/null
+++ b/config/backup/includes/fort-validator
@@ -0,0 +1,2 @@
+/etc/fort/config.json
+/var/lib/fort
diff --git a/config/fort-validator/config.json b/config/fort-validator/config.json
new file mode 100644
index 000000000..2c63c0851
--- /dev/null
+++ b/config/fort-validator/config.json
@@ -0,0 +1,2 @@
+{
+}
diff --git a/config/rootfiles/packages/fort-validator b/config/rootfiles/packages/fort-validator
new file mode 100644
index 000000000..629aab345
--- /dev/null
+++ b/config/rootfiles/packages/fort-validator
@@ -0,0 +1,8 @@
+etc/fort
+etc/fort/config.json
+etc/fort/config.json.example
+etc/rc.d/init.d/fort-validator
+usr/bin/fort
+#usr/share/man/man8/fort.8
+var/ipfire/backup/addons/includes/fort-validator
+var/lib/fort
diff --git a/lfs/fort-validator b/lfs/fort-validator
new file mode 100644
index 000000000..cb8ba8972
--- /dev/null
+++ b/lfs/fort-validator
@@ -0,0 +1,112 @@
+###############################################################################
+# #
+# IPFire.org - A linux based firewall #
+# Copyright (C) 2007-2024 IPFire Team <info@ipfire.org> #
+# #
+# This program is free software: you can redistribute it and/or modify #
+# it under the terms of the GNU General Public License as published by #
+# the Free Software Foundation, either version 3 of the License, or #
+# (at your option) any later version. #
+# #
+# This program is distributed in the hope that it will be useful, #
+# but WITHOUT ANY WARRANTY; without even the implied warranty of #
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the #
+# GNU General Public License for more details. #
+# #
+# You should have received a copy of the GNU General Public License #
+# along with this program. If not, see <http://www.gnu.org/licenses/>. #
+# #
+###############################################################################
+
+###############################################################################
+# Definitions
+###############################################################################
+
+include Config
+
+SUMMARY = Fort RPKI validator
+
+VER = 1.6.6
+
+THISAPP = FORT-validator-$(VER)
+DL_FILE = $(THISAPP).tar.gz
+DL_FROM = $(URL_IPFIRE)
+DIR_APP = $(DIR_SRC)/$(THISAPP)
+TARGET = $(DIR_INFO)/$(THISAPP)
+PROG = fort-validator
+PAK_VER = 1
+
+DEPS =
+
+SERVICES = fort-validator
+
+###############################################################################
+# Top-level Rules
+###############################################################################
+
+objects = $(DL_FILE)
+
+$(DL_FILE) = $(DL_FROM)/$(DL_FILE)
+
+$(DL_FILE)_BLAKE2 = c62a0e41e2a2fea60383ae87ff92d9cd68945c459b0ccaa4d0a3fc6d8c0796cb0dc0fde7305023e4ddcf476b4043ac73d8213638a8f319862a3c39e3381f43da
+
+install : $(TARGET)
+
+check : $(patsubst %,$(DIR_CHK)/%,$(objects))
+
+download :$(patsubst %,$(DIR_DL)/%,$(objects))
+
+b2 : $(subst %,%_BLAKE2,$(objects))
+
+dist:
+ @$(PAK)
+
+###############################################################################
+# Downloading, checking, b2sum
+###############################################################################
+
+$(patsubst %,$(DIR_CHK)/%,$(objects)) :
+ @$(CHECK)
+
+$(patsubst %,$(DIR_DL)/%,$(objects)) :
+ @$(LOAD)
+
+$(subst %,%_BLAKE2,$(objects)) :
+ @$(B2SUM)
+
+###############################################################################
+# Installation Details
+###############################################################################
+$(TARGET) : $(patsubst %,$(DIR_DL)/%,$(objects))
+ @$(PREBUILD)
+ @rm -rf $(DIR_APP) && cd $(DIR_SRC) && tar axf $(DIR_DL)/$(DL_FILE)
+
+ cd $(DIR_APP) && ./autogen.sh
+ cd $(DIR_APP) && ./configure \
+ --prefix=/usr \
+ --sysconfdir=/etc
+
+ cd $(DIR_APP) && make $(MAKETUNING)
+ cd $(DIR_APP) && make install
+
+ # Create directory layout
+ mkdir -pv /etc/fort
+ mkdir -pv /var/lib/fort
+
+ # Install plain config file.
+ cd $(DIR_APP) && install -m 0644 $(DIR_SRC)/config/fort-validator/config.json \
+ /etc/fort/config.json
+
+ # Install example config file.
+ cd $(DIR_APP) && install -m 0644 $(DIR_APP)/examples/config.json \
+ /etc/fort/config.json.example
+
+ # Install initscripts
+ $(call INSTALL_INITSCRIPTS,$(SERVICES))
+
+ # Install backup definitions
+ install -v -m 644 $(DIR_SRC)/config/backup/includes/fort-validator \
+ /var/ipfire/backup/addons/includes/fort-validator
+
+ @rm -rf $(DIR_APP)
+ @$(POSTBUILD)
diff --git a/make.sh b/make.sh
index 61921fee6..181692f70 100755
--- a/make.sh
+++ b/make.sh
@@ -2085,6 +2085,7 @@ build_system() {
lfsmake2 btrfs-progs
lfsmake2 inotify-tools
lfsmake2 grub-btrfs
+ lfsmake2 fort-validator
lfsmake2 linux
lfsmake2 rtl8812au
diff --git a/src/initscripts/packages/fort-validator b/src/initscripts/packages/fort-validator
new file mode 100644
index 000000000..e0c9ba29c
--- /dev/null
+++ b/src/initscripts/packages/fort-validator
@@ -0,0 +1,55 @@
+#!/bin/sh
+###############################################################################
+# #
+# IPFire.org - A linux based firewall #
+# Copyright (C) 2007-2025 IPFire Team <info@ipfire.org> #
+# #
+# This program is free software: you can redistribute it and/or modify #
+# it under the terms of the GNU General Public License as published by #
+# the Free Software Foundation, either version 3 of the License, or #
+# (at your option) any later version. #
+# #
+# This program is distributed in the hope that it will be useful, #
+# but WITHOUT ANY WARRANTY; without even the implied warranty of #
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the #
+# GNU General Public License for more details. #
+# #
+# You should have received a copy of the GNU General Public License #
+# along with this program. If not, see <http://www.gnu.org/licenses/>. #
+# #
+###############################################################################
+
+. /etc/sysconfig/rc
+. ${rc_functions}
+
+case "${1}" in
+ start)
+ boot_mesg "Starting fort RPKI validator..."
+ loadproc /usr/bin/fort --log.output=syslog --validation-log.output=syslog --configuration-file /etc/fort/config.json
+ ;;
+
+ stop)
+ boot_mesg "Stopping fort RPKI validator..."
+ killproc /usr/bin/fort
+ ;;
+
+ reload)
+ boot_mesg "Reloading fort RPKI validator..."
+ reloadproc /usr/bin/fort
+ ;;
+
+ restart)
+ ${0} stop
+ sleep 1
+ ${0} start
+ ;;
+
+ status)
+ statusproc /usr/bin/fort
+ ;;
+
+ *)
+ echo "Usage: ${0} {start|stop|reload|restart|status}"
+ exit 1
+ ;;
+esac
--
2.47.2
reply other threads:[~2025-06-12 16:38 UTC|newest]
Thread overview: [no followups] expand[flat|nested] mbox.gz Atom feed
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20250612162701.3735-1-stefan.schantl@ipfire.org \
--to=stefan.schantl@ipfire.org \
--cc=development@lists.ipfire.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox