aiden
/
suricata
mirror of https://github.com/OISF/suricata
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
You cannot select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
master
main-7.0.x
master-6.0.x
master-5.0.x
master-4.1.x
master-4.0.x
master-3.2.x
suricata-7.0.8
suricata-7.0.7
suricata-7.0.6
suricata-6.0.20
suricata-7.0.5
suricata-6.0.19
suricata-6.0.18
suricata-7.0.4
suricata-6.0.17
suricata-7.0.3
suricata-6.0.16
suricata-7.0.2
suricata-6.0.15
suricata-7.0.1
suricata-6.0.14
suricata-7.0.0
suricata-7.0.0-rc2
suricata-6.0.13
suricata-6.0.12
suricata-6.0.11
suricata-7.0.0-rc1
suricata-6.0.10
suricata-6.0.9
suricata-7.0.0-beta1
suricata-6.0.8
suricata-6.0.7
suricata-6.0.6
suricata-5.0.10
suricata-6.0.5
suricata-5.0.9
suricata-6.0.4
suricata-5.0.8
suricata-6.0.3
suricata-5.0.7
suricata-6.0.2
suricata-5.0.6
suricata-6.0.1
suricata-5.0.5
suricata-4.1.10
suricata-4.1.9
suricata-5.0.4
suricata-6.0.0
suricata-6.0.0-rc1
suricata-6.0.0-beta1
suricata-5.0.3
suricata-4.1.8
suricata-4.1.7
suricata-5.0.2
suricata-4.1.6
suricata-5.0.1
suricata-5.0.0
suricata-5.0.0-rc1
suricata-4.1.5
suricata-5.0.0-beta1
suricata-4.1.4
suricata-4.1.3
suricata-4.0.7
suricata-4.1.2
suricata-4.1.1
suricata-4.1.0
suricata-4.0.6
suricata-4.1.0-rc2
suricata-4.1.0-rc1
suricata-4.0.5
suricata-4.1.0-beta1
suricata-4.0.4
suricata-4.0.3
suricata-4.0.2
suricata-3.2.5
suricata-4.0.1
suricata-3.2.4
suricata-4.0.0
suricata-4.0.0-rc2
suricata-3.2.3
suricata-4.0.0-rc1
suricata-4.0.0-beta1
suricata-3.2.2
suricata-3.1.4
suricata-3.2.1
suricata-3.2
suricata-3.2RC1
suricata-3.1.3
suricata-3.2beta1
suricata-3.1.2
suricata-3.1.1
suricata-3.1
suricata-3.0.2
suricata-3.1RC1
suricata-3.0.1
suricata-3.0.1RC1
suricata-3.0
suricata-2.0.11
suricata-3.0RC3
suricata-3.0RC2
suricata-3.0RC1
suricata-2.0.10
suricata-2.0.9
suricata-2.1beta4
suricata-2.0.8
suricata-2.0.7
suricata-2.1beta3
suricata-2.0.6
suricata-2.0.5
suricata-2.1beta2
suricata-2.0.4
suricata-2.1beta1
suricata-2.0.3
suricata-2.0.2
suricata-2.0.1
suricata-2.0.1rc1
suricata-2.0
suricata-2.0rc3
suricata-2.0rc2
suricata-2.0rc1
suricata-2.0beta2
suricata-1.4.7
suricata-1.4.6
suricata-1.4.5
suricata-2.0beta1
suricata-1.4.4
suricata-1.4.3
suricata-1.4.2
suricata-1.4.1
suricata-1.3.6
suricata-1.4
suricata-1.3.5
suricata-1.4rc1
suricata-1.3.4
suricata-1.4beta3
suricata-1.3.3
suricata-1.4beta2
suricata-1.3.2
suricata-1.4beta1
suricata-1.3.1
suricata-1.3
suricata-1.3rc1
suricata-1.3beta2
suricata-1.3beta1
suricata-1.2.1
suricata-1.2
suricata-1.2rc1
suricata-1.2beta1
suricata-1.1.1
suricata-0.8.2
suricata-1.0.0
suricata-1.0.1
suricata-1.0.2
suricata-1.0.3
suricata-1.0.4
suricata-1.0.5
suricata-1.1
suricata-1.1beta1
suricata-1.1beta2
suricata-1.1beta3
suricata-1.1rc1
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'master'
${ noResults }
suricata/doc/userguide/support-status.rst

314 lines
13 KiB
ReStructuredText
Raw Permalink Normal View History Unescape Escape

doc/support-status: add support status page Convert the wiki page, https://redmine.openinfosecfoundation.org/projects/suricata/wiki/Support_Status into a page that is versioned along with the user guide. Includes many updates to reflect our current support status.
2 years ago
==============
Support Status
==============
Levels of Support
=================
The support tiers detailed below do not represent a binding
commitment. Instead, they serve as a framework that the OISF employs
to prioritize features and functionality.
Tier 1
------
Tier 1 supported items are developed and supported by the Suricata
team. These items receive full CI (continuous integration)
coverage, and functional failures block git merges and releases. Tier
1 features are enabled by default on platforms that support the
feature.
Tier 2
------
Tier 2 supported items are developed and supported by the Suricata
team, sometimes with help from community members. Major functional
failures block git merges and releases, however less major issues
may be documented as "known issues" and may go into a release. Tier 2
features and functionality may be disabled by default.
Community
---------
When a feature of Suricata is community supported, it means the
OISF/Suricata development team wont directly support it. This is to
avoid overloading the team.
When accepting a feature into the code base anyway, it will come with
a number of limits and conditions:
* submitter must commit to maintaining it:
- make sure code compiles and correctly functions after Suricata
and/or external (e.g. library) changes.
- support users when they encounter problems on forum and
redmine tickets.
* the code will be disabled by default and will not become part of the
QA setup. This means it will be enabled only by an ``--enable``
configure flag.
* the code may not have CI coverage by the OISF infrastructure.
If the feature gets lots of traction, and/or if the team just
considers it very useful, it may get promoted to being officially
supported.
On the other hand, the feature will be removed if the submitter stops
maintaining it and no-one steps up to take over.
Vendor
------
Vendor supported features are features specific to a certain vendor
and usually require software and/or hardware from that vendor. While
these features may exist in the main Suricata code, they rely on
support from the vendor to keep the feature in a functional state.
Vendor supported functionality will generally not have CI or QA
coverage by the OISF.
Unmaintained
------------
When a feature is unmaintained it is very likely broken and may be
(partially) removed during cleanups and code refactoring. No end-user
support is done by the core team. If someone wants to help maintain
and support such a feature, we recommend talking to the core team
before spending a lot of time on it.
devguide: make 'contributing' a chapter This could be justified from a semantic point of view, and also can help in bringing more attention to where this information is, as it is less hidden, now. Also add Dev Guide as one of our resources in our Readme.
1 year ago
Please see :doc:`devguide/contributing/contribution-process`
doc/support-status: add support status page Convert the wiki page, https://redmine.openinfosecfoundation.org/projects/suricata/wiki/Support_Status into a page that is versioned along with the user guide. Includes many updates to reflect our current support status.
2 years ago
for more information if you wish to contribute.
Distributions
=============
Tier 1
------
These tier 1 supported Linux distributions and operating systems
receive full CI and QA, as well as documentation.
.. table::
:widths: 20 15 15 10 40
:width: 100%
+------------------+-------------+----------+-------+--------------------------------+
|Distribution |Version |Support |QA |Notes |
+==================+=============+==========+=======+================================+
|RHEL/CentOS |7 |OISF | | |
+------------------+-------------+----------+-------+--------------------------------+
|RHEL/Alma/Rocky |8 |OISF | | |
+------------------+-------------+----------+-------+--------------------------------+
|RHEL/Alma/Rocky |9 |OISF | | |
+------------------+-------------+----------+-------+--------------------------------+
|Ubuntu |20.04 |OISF | | |
+------------------+-------------+----------+-------+--------------------------------+
|Ubuntu |22.04 |OISF | | |
+------------------+-------------+----------+-------+--------------------------------+
|Debian |10 (Buster) |OISF | | |
+------------------+-------------+----------+-------+--------------------------------+
|Debian |11 (Bullseye)|OISF | |Foundation of SELKS |
+------------------+-------------+----------+-------+--------------------------------+
|Debian |12 (Bookworm)|OISF | | |
+------------------+-------------+----------+-------+--------------------------------+
|FreeBSD |12 |OISF | |Foundation of OPNsense, pfSense |
+------------------+-------------+----------+-------+--------------------------------+
|FreeBSD |13 |OISF | |Foundation of OPNSense |
+------------------+-------------+----------+-------+--------------------------------+
Tier 2
------
These tier 2 supported Linux distributions and operating systems
receive CI but not full QA (functional testing).
.. table::
:widths: 20 15 15 10 40
:width: 100%
+------------------+----------+----------+-------+--------------------------------+
|Distribution |Version |Support |QA |Notes |
+==================+==========+==========+=======+================================+
|CentOS |Stream |OISF | | |
+------------------+----------+----------+-------+--------------------------------+
|Fedora |Active |OISF | | |
+------------------+----------+----------+-------+--------------------------------+
|OpenBSD |7.2 |OISF | | |
+------------------+----------+----------+-------+--------------------------------+
|OpenBSD |7.1 |OISF | | |
+------------------+----------+----------+-------+--------------------------------+
|OSX/macOS |?? |OISF | | |
+------------------+----------+----------+-------+--------------------------------+
|Windows/MinGW64 | |OISF | | |
+------------------+----------+----------+-------+--------------------------------+
Architecture Support
====================
Tier 1
------
.. table::
:widths: 15 15 30 40
:width: 100%
+-------------+-------------+-------------+-------------+
|Architecture |Support |QA |Notes |
+=============+=============+=============+=============+
|x86_64 |OISF | | |
+-------------+-------------+-------------+-------------+
|ARM8-64bit |OISF | | |
+-------------+-------------+-------------+-------------+
Tier 2
------
.. table::
:widths: 15 15 30 40
:width: 100%
+-------------+-------------+-------------+-------------+
|Architecture |Support |QA |Notes |
+=============+=============+=============+=============+
|ARM7-32bit |OISF | | |
+-------------+-------------+-------------+-------------+
|i386 |OISF | | |
+-------------+-------------+-------------+-------------+
Community
---------
.. table::
:widths: 15 15 30 40
:width: 100%
+-------------+-------------+---------------------------+---------------------------------------------+
|Architecture |Support |QA |Notes |
+=============+=============+===========================+=============================================+
|PPC64el | |Part of Fedora automated QA|Access can be arranged through IBM dev cloud |
+-------------+-------------+---------------------------+---------------------------------------------+
|PPC64 | | |No access to working hardware |
+-------------+-------------+---------------------------+---------------------------------------------+
|PPC32 | | |No access to working hardware |
+-------------+-------------+---------------------------+---------------------------------------------+
|RISC-V | | | |
+-------------+-------------+---------------------------+---------------------------------------------+
High Level Features
-------------------
Capture support
~~~~~~~~~~~~~~~
Tier 1
^^^^^^
.. table::
:width: 100%
+----------------+-------------------------+----+-----------------------------+
| Capture Type | Maintainer | QA | Notes |
+================+=========================+====+=============================+
|AF_PACKET |OISF | |Used by Security Onion, SELKS|
+----------------+-------------------------+----+-----------------------------+
|NETMAP (FreeBSD)|OISF | |Used by OPNsense, PFsense |
+----------------+-------------------------+----+-----------------------------+
|NFQUEUE |OISF | | |
+----------------+-------------------------+----+-----------------------------+
|libpcap |OISF | | |
+----------------+-------------------------+----+-----------------------------+
Tier 2
^^^^^^
.. table::
:width: 100%
+--------------------+-------------------------+----+---------------+
|Capture Type |Maintainer |QA |Notes |
+====================+=========================+====+===============+
|PF_RING |OISF | | |
+--------------------+-------------------------+----+---------------+
|NETMAP (Linux) |OISF | | |
+--------------------+-------------------------+----+---------------+
|DPDK |OISF | | |
+--------------------+-------------------------+----+---------------+
|AF_PACKET (eBPF/XDP)|OISF | | |
+--------------------+-------------------------+----+---------------+
Community
^^^^^^^^^
.. table::
:width: 100%
+--------------------+--------------------------+----+---------------+
|Capture Type |Maintainer |QA |Notes |
+====================+==========================+====+===============+
|NFLOG |Community | | |
+--------------------+--------------------------+----+---------------+
|AF_XDP |Community | | |
+--------------------+--------------------------+----+---------------+
Vendor
^^^^^^
.. table::
:width: 100%
+--------------------+--------------------------+----+---------------+
|Capture Type |Maintainer |QA |Notes |
+====================+==========================+====+===============+
|Napatech |Napatech / Community | | |
+--------------------+--------------------------+----+---------------+
Unmaintained
^^^^^^^^^^^^
.. table::
:width: 100%
+---------------+-------------------------+----+---------------+
|Capture Type |Maintainer |QA |Notes |
+===============+=========================+====+===============+
|IPFW | | | |
+---------------+-------------------------+----+---------------+
|Endace/DAG | | | |
+---------------+-------------------------+----+---------------+
Operation modes
~~~~~~~~~~~~~~~
Tier 1
^^^^^^
.. table::
:width: 100%
:widths: 25 25 10 40
+-----------------+------------------------+------+--------------------------------+
|Mode |Maintainer |QA |Notes |
+=================+========================+======+================================+
|IDS (passive) |OISF | | |
+-----------------+------------------------+------+--------------------------------+
|IPS (active) |OISF | | |
+-----------------+------------------------+------+--------------------------------+
|Offline pcap file|OISF | | |
+-----------------+------------------------+------+--------------------------------+
Tier 2
^^^^^^
.. table::
:width: 100%
:widths: 25 25 10 40
+-----------------+------------------------+------+--------------------------------+
|Mode |Maintainer |QA |Notes |
+=================+========================+======+================================+
|Unix socket mode |OISF | | |
+-----------------+------------------------+------+--------------------------------+
|IDS (active) |OISF | |Active responses, reject keyword|
+-----------------+------------------------+------+--------------------------------+