Jason Ish
cbc296f313
github-ci: update rpm builder to fedora 41
1 year ago
Jason Ish
65b863b087
github-ci: update Fedora non-root build to Fedora 41
1 year ago
Jason Ish
70d5bae160
github-ci: remove fedora 40 builds where 41 exists
...
Remove Fedora 40 builds where there is a Fedora 41 equivalent.
1 year ago
dependabot[bot]
93bd1935bb
github-actions: bump actions/upload-artifact from 4.6.0 to 4.6.1
...
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact ) from 4.6.0 to 4.6.1.
- [Release notes](https://github.com/actions/upload-artifact/releases )
- [Commits](65c4c4a1dd...4cec3d8aa0 )
---
updated-dependencies:
- dependency-name: actions/upload-artifact
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
dependabot[bot]
2d7937b3ce
github-actions: bump codecov/codecov-action from 5.3.1 to 5.4.0
...
Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action ) from 5.3.1 to 5.4.0.
- [Release notes](https://github.com/codecov/codecov-action/releases )
- [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md )
- [Commits](13ce06bfc6...0565863a31 )
---
updated-dependencies:
- dependency-name: codecov/codecov-action
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
dependabot[bot]
5d38c4de19
github-actions: bump github/codeql-action from 3.28.8 to 3.28.10
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.28.8 to 3.28.10.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Commits](https://github.com/github/codeql-action/compare/v3.28.8...v3.28.10 )
---
updated-dependencies:
- dependency-name: github/codeql-action
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
dependabot[bot]
47e08ee48e
github-actions: bump actions/download-artifact from 4.1.8 to 4.1.9
...
Bumps [actions/download-artifact](https://github.com/actions/download-artifact ) from 4.1.8 to 4.1.9.
- [Release notes](https://github.com/actions/download-artifact/releases )
- [Commits](fa0a91b85d...cc20338598 )
---
updated-dependencies:
- dependency-name: actions/download-artifact
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
dependabot[bot]
03b113f7e3
github-actions: bump ossf/scorecard-action from 2.4.0 to 2.4.1
...
Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action ) from 2.4.0 to 2.4.1.
- [Release notes](https://github.com/ossf/scorecard-action/releases )
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md )
- [Commits](62b2cac7ed...f49aabe0b5 )
---
updated-dependencies:
- dependency-name: ossf/scorecard-action
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
Jason Ish
1b27febdd8
github-ci: re-enable RPM builds
...
The RPM has been updated to handle the conversion of suricatasc and
suricatactl to Rust.
Also fixes the "if" expression to prevent one job running both upload
sections.
1 year ago
Jason Ish
0dc5b72c89
github-ci: skip rpm builds for now
...
RPMs will need to be fixed after merge.
1 year ago
Jason Ish
1dcb1e3f29
github-ci: add var to disable rpm builds
...
There will be changes in our development branch that the RPMs need to
adapt to, but that can't be done until the changes have been merged to
master, then the RPM can catchup.
This gives us a single variable to turn off RPM building.
1 year ago
Jason Ish
357822c68c
github-ci: add check for update to date Cargo.lock.in
...
After a build, check if Cargo.lock.in and Cargo.lock differ, if so,
Cargo.lock.in needs an update as part of a depedency update.
1 year ago
Jason Ish
fc2824a9f7
qa: fix suricatasc path
1 year ago
Jason Ish
7e4de3d1b9
github-ci: do one Windows build from dist archive
...
As we have 2 Windows builds, do one using the release-style
distribution file.
1 year ago
Jason Ish
45641eab1e
github-ci: test that bindgen bindings are up to date
...
Regenerates the `sys.rs` and looks for any difference. Check will fail
if there is a difference.
Ticket: #7341
1 year ago
Jason Ish
0165830c70
github-ci: update actions/cache
...
The version we have been using will be deprecated soon.
https://github.blog/changelog/2024-12-05-notice-of-upcoming-releases-and-breaking-changes-for-github-actions/#actions-cache-v1-v2-and-actions-toolkit-cache-package-closing-down
1 year ago
dependabot[bot]
d4330ef149
github-actions: bump actions/upload-artifact from 4.5.0 to 4.6.0
...
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact ) from 4.5.0 to 4.6.0.
- [Release notes](https://github.com/actions/upload-artifact/releases )
- [Commits](6f51ac03b9...65c4c4a1dd )
---
updated-dependencies:
- dependency-name: actions/upload-artifact
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
dependabot[bot]
7692926036
github-actions: bump github/codeql-action from 3.28.0 to 3.28.8
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.28.0 to 3.28.8.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Commits](https://github.com/github/codeql-action/compare/v3.28.0...v3.28.8 )
---
updated-dependencies:
- dependency-name: github/codeql-action
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
dependabot[bot]
b6e59258be
github-actions: bump codecov/codecov-action from 5.1.2 to 5.3.1
...
Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action ) from 5.1.2 to 5.3.1.
- [Release notes](https://github.com/codecov/codecov-action/releases )
- [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md )
- [Commits](1e68e06f1d...13ce06bfc6 )
---
updated-dependencies:
- dependency-name: codecov/codecov-action
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
Victor Julien
c56b741088
github-ci: update Fedora 39 jobs to 41
2 years ago
dependabot[bot]
def22fab6c
github-actions: bump actions/upload-artifact from 4.4.3 to 4.5.0
...
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact ) from 4.4.3 to 4.5.0.
- [Release notes](https://github.com/actions/upload-artifact/releases )
- [Commits](b4b15b8c7c...6f51ac03b9 )
---
updated-dependencies:
- dependency-name: actions/upload-artifact
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2 years ago
dependabot[bot]
e16f29e459
github-actions: bump github/codeql-action from 3.27.5 to 3.28.0
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.27.5 to 3.28.0.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Commits](https://github.com/github/codeql-action/compare/v3.27.5...v3.28.0 )
---
updated-dependencies:
- dependency-name: github/codeql-action
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2 years ago
dependabot[bot]
8e4b18f4e4
github-actions: bump codecov/codecov-action from 5.0.7 to 5.1.2
...
Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action ) from 5.0.7 to 5.1.2.
- [Release notes](https://github.com/codecov/codecov-action/releases )
- [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md )
- [Commits](015f24e681...1e68e06f1d )
---
updated-dependencies:
- dependency-name: codecov/codecov-action
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2 years ago
Philippe Antoine
146314b0c5
ci: run CodeQL only on python changes
...
Ticket: 7358
2 years ago
dependabot[bot]
e9173f3b06
github-actions: bump github/codeql-action from 3.27.0 to 3.27.5
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.27.0 to 3.27.5.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Commits](https://github.com/github/codeql-action/compare/v3.27.0...v3.27.5 )
---
updated-dependencies:
- dependency-name: github/codeql-action
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2 years ago
dependabot[bot]
c73e90e305
github-actions: bump codecov/codecov-action from 4.6.0 to 5.0.7
...
Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action ) from 4.6.0 to 5.0.7.
- [Release notes](https://github.com/codecov/codecov-action/releases )
- [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md )
- [Commits](b9fd7d16f6...015f24e681 )
---
updated-dependencies:
- dependency-name: codecov/codecov-action
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
2 years ago
Victor Julien
ae10fc3de4
codecov: expect 5 flags to be submitted
...
Flags are:
- unittests
- suricata-verify
- pcap
- livemode
- fuzzcorpus
This should make sure codecov only adds its report after receiving
the results for each of the flags.
2 years ago
Victor Julien
663fa0c518
github-actions: add basic commandline tests
...
Run various commandlines, checking that they don't error/crash.
Also counts towards coverage.
2 years ago
Victor Julien
d7e1a8f7da
github-actions: fix codecov for unittests
...
Don't overwrite ut coverage with later tests.
2 years ago
Eric Leblond
138898f5c2
github-actions: add list keywords and app layers
...
Add the 2 command line options to coverage build.
2 years ago
dependabot[bot]
11d9fef1fb
github-actions: bump github/codeql-action from 3.26.13 to 3.27.0
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.26.13 to 3.27.0.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Commits](https://github.com/github/codeql-action/compare/v3.26.13...v3.27.0 )
---
updated-dependencies:
- dependency-name: github/codeql-action
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2 years ago
dependabot[bot]
1c9ca6cf19
github-actions: bump actions/checkout from 4.2.1 to 4.2.2
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 4.2.1 to 4.2.2.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](eef61447b9...11bd71901b )
---
updated-dependencies:
- dependency-name: actions/checkout
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2 years ago
dependabot[bot]
7ae522f16a
github-actions: bump github/codeql-action from 3.26.12 to 3.26.13
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.26.12 to 3.26.13.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Commits](https://github.com/github/codeql-action/compare/v3.26.12...v3.26.13 )
---
updated-dependencies:
- dependency-name: github/codeql-action
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2 years ago
dependabot[bot]
285113a1e5
github-actions: bump actions/checkout from 4.2.0 to 4.2.1
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 4.2.0 to 4.2.1.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](d632683dd7...eef61447b9 )
---
updated-dependencies:
- dependency-name: actions/checkout
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2 years ago
dependabot[bot]
9e0151cce5
github-actions: bump github/codeql-action from 3.26.10 to 3.26.12
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.26.10 to 3.26.12.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Commits](https://github.com/github/codeql-action/compare/v3.26.10...v3.26.12 )
---
updated-dependencies:
- dependency-name: github/codeql-action
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2 years ago
dependabot[bot]
4ad45fc8d0
github-actions: bump actions/upload-artifact from 4.4.0 to 4.4.3
...
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact ) from 4.4.0 to 4.4.3.
- [Release notes](https://github.com/actions/upload-artifact/releases )
- [Commits](50769540e7...b4b15b8c7c )
---
updated-dependencies:
- dependency-name: actions/upload-artifact
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2 years ago
Victor Julien
97d525d18d
github-action: share cargo registry cache
2 years ago
Victor Julien
d574d88bca
github-action: share cargo cache for windows jobs
2 years ago
Victor Julien
9b6a1355ac
github-actions: cache netmap checkout
...
To avoid build failures due to rate limiting, cache the netmap checkout.
Explicitly restore and save to avoid the checkout action cleaning the
checkout up before it can be stored in the cache.
2 years ago
Jason Ish
09d604f7c3
github-ci: install prepared cbindgen on rpm distros
...
Currently cbindgen from system packages is broken, for now use the
cbindgen artifact we build.
2 years ago
Jason Ish
a5e13d0dee
github-ci: break out cbindgen installation to action
2 years ago
Jason Ish
2b16369071
github-ci: run macos python jobs in virtualenv
...
With the latest brew changes, a virtualenv is required to install
pyyaml.
2 years ago
Jason Ish
75b760b450
github-ci: add rpm build job
...
Build RPMs for Fedora 40 and EPEL 9 (using AlmaLinux).
2 years ago
Jason Ish
9816a795dd
github-ci: cache deb packages on Ubuntu dist builder
...
Should speed up setup a little.
2 years ago
dependabot[bot]
06dd6bacb0
github-actions: bump actions/checkout from 4.1.7 to 4.2.0
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 4.1.7 to 4.2.0.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](692973e3d9...d632683dd7 )
---
updated-dependencies:
- dependency-name: actions/checkout
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2 years ago
dependabot[bot]
0ffd33ab92
github-actions: bump codecov/codecov-action from 4.5.0 to 4.6.0
...
Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action ) from 4.5.0 to 4.6.0.
- [Release notes](https://github.com/codecov/codecov-action/releases )
- [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md )
- [Commits](e28ff129e5...b9fd7d16f6 )
---
updated-dependencies:
- dependency-name: codecov/codecov-action
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2 years ago
dependabot[bot]
908ff2faa3
github-actions: bump github/codeql-action from 3.26.6 to 3.26.10
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.26.6 to 3.26.10.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Commits](https://github.com/github/codeql-action/compare/v3.26.6...v3.26.10 )
---
updated-dependencies:
- dependency-name: github/codeql-action
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2 years ago
Philippe Antoine
b3bd57246f
ci: mov from cifuzz to clusterfuzzlite
...
To better support main7 CI fuzzing
Ticket: 7253
2 years ago
dependabot[bot]
0037f1e0f4
github-actions: bump github/codeql-action from 3.25.15 to 3.26.6
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.25.15 to 3.26.6.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Commits](https://github.com/github/codeql-action/compare/v3.25.15...v3.26.6 )
---
updated-dependencies:
- dependency-name: github/codeql-action
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2 years ago
dependabot[bot]
aef10c735c
github-actions: bump actions/upload-artifact from 4.3.4 to 4.4.0
...
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact ) from 4.3.4 to 4.4.0.
- [Release notes](https://github.com/actions/upload-artifact/releases )
- [Commits](0b2256b8c0...50769540e7 )
---
updated-dependencies:
- dependency-name: actions/upload-artifact
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2 years ago
Jason Ish
cdcb395142
examples: add custom logging plugin
...
Add an example custom logger that hooks into the low level packet and
flow logging callbacks.
Ticket: #7227
2 years ago
Juliana Fajardini
d4e4ab5736
github/pr-template: update contribution checks
...
We have different types of checks, all in a single list.
Adding a title of sorts to each group in the hopes of highlighting
their purposes.
When we add new items to the json schema, many times we don't add their
descriptions, while this would be the perfect time to also do that.
2 years ago
Philippe Antoine
629873c2bc
datasets: test unix socket ipv6 operations
...
Ticket: 6969
2 years ago
dependabot[bot]
6d8fbf364a
github-actions: bump ossf/scorecard-action from 2.3.3 to 2.4.0
...
Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action ) from 2.3.3 to 2.4.0.
- [Release notes](https://github.com/ossf/scorecard-action/releases )
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md )
- [Commits](dc50aa9510...62b2cac7ed )
---
updated-dependencies:
- dependency-name: ossf/scorecard-action
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2 years ago
dependabot[bot]
9436631f33
github-actions: bump github/codeql-action from 3.25.11 to 3.25.15
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.25.11 to 3.25.15.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Commits](https://github.com/github/codeql-action/compare/v3.25.11...v3.25.15 )
---
updated-dependencies:
- dependency-name: github/codeql-action
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2 years ago
Victor Julien
e480938724
github-actions: switch dist builders to ubuntu 22.04
...
Part of bumping MSRV.
22.04 is the first Ubuntu release to ship a new enough Sphinx.
2 years ago
Victor Julien
f94988d050
github-actions: update for MSRV 1.67.1
2 years ago
Jason Ish
6d5022cd1e
github-ci: pf-ring build
2 years ago
dependabot[bot]
a28666db4e
github-actions: bump actions/download-artifact from 4.1.4 to 4.1.8
...
Bumps [actions/download-artifact](https://github.com/actions/download-artifact ) from 4.1.4 to 4.1.8.
- [Release notes](https://github.com/actions/download-artifact/releases )
- [Commits](https://github.com/actions/download-artifact/compare/v4.1.4...fa0a91b85d4f404e444e00e005971372dc801d16 )
---
updated-dependencies:
- dependency-name: actions/download-artifact
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2 years ago
dependabot[bot]
e83a1cf34c
github-actions: bump actions/upload-artifact from 4.3.3 to 4.3.4
...
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact ) from 4.3.3 to 4.3.4.
- [Release notes](https://github.com/actions/upload-artifact/releases )
- [Commits](65462800fd...0b2256b8c0 )
---
updated-dependencies:
- dependency-name: actions/upload-artifact
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2 years ago
dependabot[bot]
efbf627dbd
github-actions: bump actions/checkout from 3.6.0 to 4.1.7
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 3.6.0 to 4.1.7.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](https://github.com/actions/checkout/compare/v3.6.0...692973e3d937129bcbf40652eb9f2f61becf3332 )
---
updated-dependencies:
- dependency-name: actions/checkout
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
2 years ago
Jason Ish
5530fd34b8
github-ci: add non-bundled libhtp build
2 years ago
Jason Ish
a0cb7b21f4
github-ci/builds: don't run if only doc changes
...
A new workflow, "docs" has been created for only doc changes.
Factor out prepare-deps into a reusable action.
2 years ago
dependabot[bot]
653e702aa7
github-actions: bump github/codeql-action from 3.25.7 to 3.25.11
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.25.7 to 3.25.11.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Commits](https://github.com/github/codeql-action/compare/v3.25.7...v3.25.11 )
---
updated-dependencies:
- dependency-name: github/codeql-action
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2 years ago
dependabot[bot]
54b63f896d
github-actions: bump codecov/codecov-action from 4.4.1 to 4.5.0
...
Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action ) from 4.4.1 to 4.5.0.
- [Release notes](https://github.com/codecov/codecov-action/releases )
- [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md )
- [Commits](125fc84a9a...e28ff129e5 )
---
updated-dependencies:
- dependency-name: codecov/codecov-action
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2 years ago
Victor Julien
6767694b39
github-actions: remove centos:7 build due to EOL
2 years ago
Jason Ish
6256391408
github-ci: run cargo update test on pull requests
...
Previously it was run once a week, hiding some issues until
Monday's. Instead run on pull requests, but still not every push.
2 years ago
Lukas Sismis
cd7c35eb5a
github-ci: add minimal build for Ubuntu and AlmaLinux
2 years ago
Lukas Sismis
6d663ec885
github-ci: remove gosu from installed packages
2 years ago
Victor Julien
130d75f025
github-action: remove end of life CentOS 8 stream
2 years ago
dependabot[bot]
4040ae10d1
github-actions: bump codecov/codecov-action from 4.1.1 to 4.4.1
...
Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action ) from 4.1.1 to 4.4.1.
- [Release notes](https://github.com/codecov/codecov-action/releases )
- [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md )
- [Commits](https://github.com/codecov/codecov-action/compare/v4.1.1...125fc84a9a348dbcf27191600683ec096ec9021c )
---
updated-dependencies:
- dependency-name: codecov/codecov-action
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2 years ago
dependabot[bot]
1c5661673f
github-actions: bump ossf/scorecard-action from 2.3.1 to 2.3.3
...
Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action ) from 2.3.1 to 2.3.3.
- [Release notes](https://github.com/ossf/scorecard-action/releases )
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md )
- [Commits](0864cf1902...dc50aa9510 )
---
updated-dependencies:
- dependency-name: ossf/scorecard-action
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2 years ago
dependabot[bot]
0b4652f4cc
github-actions: bump github/codeql-action from 3.25.3 to 3.25.7
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.25.3 to 3.25.7.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Commits](https://github.com/github/codeql-action/compare/v3.25.3...v3.25.7 )
---
updated-dependencies:
- dependency-name: github/codeql-action
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2 years ago
Jason Ish
daa6f6f7f3
github-ci: re-add --disable-lua to commit check
...
This is required for some older versions in the pull request to build
as the commits change some compile time options with respect to Lua.
2 years ago
Jason Ish
7897043144
github-ci/scan-build: exclude rust (lua)
...
The vendored Lua code triggers some scan-build failures, so exclude
the rust/ directory for now. Might want to look at these separately
though.
2 years ago
Jason Ish
4788d684da
github-ci: test make after clean without cbindgen
...
Modify the CentOS 9 Stream build to not have cbdingen available, as
its already building from the dist. But add a "make clean" followed
by a "make" to test that it still builds after a clean.
2 years ago
Jason Ish
2e440169d6
lua: remove lua as a compile time feature
...
Its always built-in. However, can be disabled at runtime.
2 years ago
Jason Ish
bc011f2205
lua: use rust crate to vendor (bundle) lua
...
Remove lua-dev(el) from all CI tests.
2 years ago
Jo Johnson
d5c6c3a21c
lua: build lua by default
...
Ticket: #4776
[Edits by Jason Ish]
- Add Lua in CI where needed
- Disable Lua for builds that don't have Lua 5.4
2 years ago
Jo Johnson
586c92d9d5
lua: require lua 5.4
...
github-ci: Disable lua on debian 10 as it doesn't have Lua 5.4.
Ticket: #4776
2 years ago
Victor Julien
e0411878fc
github-actions: bump scan-build to Ubuntu 24.04 / clang 18
2 years ago
Philippe Antoine
ce9bfba76a
ci: fix and test with Wunused-macros
...
Ticket: 6937
2 years ago
Victor Julien
d401082bba
github-actions: set bpf to icmp for af-packet
2 years ago
Victor Julien
1240bdd914
github-actions: add pcap live test script and jobs
...
Asan and coverage jobs.
2 years ago
Victor Julien
27b6a31a0c
github-actions: unix pcap coverage run
...
To increase code coverage.
2 years ago
Victor Julien
ea95aac022
github-actions: add unix socket runmode script and job
...
Runs with ASAN.
2 years ago
Victor Julien
40b87bfd04
github-actions: add ASAN enabled Ubuntu 24.04 build of live tests
2 years ago
Victor Julien
4c33e64d56
github-actions: make sure unix socket is created in dpdk tests
2 years ago
Victor Julien
8e320449f6
github-actions: expand af-packet live test with more unix commands
2 years ago
Jason Ish
f7eb94a6c0
github: update pull request template
...
Update the pull request template to suggest providing a link to the
SV/LIBHTP pull request as this aides in cross linking.
Also change the way to provide the link to the Redmine ticket, as it
often results in linking to our Redmine, and add a checkbox for the
creation of a ticket.
2 years ago
dependabot[bot]
1297d96592
github-actions: bump actions/upload-artifact from 4.3.1 to 4.3.3
...
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact ) from 4.3.1 to 4.3.3.
- [Release notes](https://github.com/actions/upload-artifact/releases )
- [Commits](5d5d22a312...65462800fd )
---
updated-dependencies:
- dependency-name: actions/upload-artifact
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2 years ago
dependabot[bot]
f14a4a1bf8
github-actions: bump github/codeql-action from 3.24.9 to 3.25.3
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.24.9 to 3.25.3.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Commits](https://github.com/github/codeql-action/compare/v3.24.9...v3.25.3 )
---
updated-dependencies:
- dependency-name: github/codeql-action
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2 years ago
dependabot[bot]
b9fbc5749d
github-actions: bump actions/download-artifact from 4.1.4 to 4.1.7
...
Bumps [actions/download-artifact](https://github.com/actions/download-artifact ) from 4.1.4 to 4.1.7.
- [Release notes](https://github.com/actions/download-artifact/releases )
- [Commits](c850b930e6...65a9edc588 )
---
updated-dependencies:
- dependency-name: actions/download-artifact
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2 years ago
dependabot[bot]
76314cc00e
github-actions: bump codecov/codecov-action from 4.1.1 to 4.3.1
...
Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action ) from 4.1.1 to 4.3.1.
- [Release notes](https://github.com/codecov/codecov-action/releases )
- [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md )
- [Commits](c16abc29c9...5ecb98a3c6 )
---
updated-dependencies:
- dependency-name: codecov/codecov-action
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2 years ago
Victor Julien
2b80689ee4
github-actions: convert dpdk tests to use script
2 years ago
Victor Julien
6edf05cdaa
github-actions: add dpdk ids live test script
2 years ago
Victor Julien
ed9ad0048d
github-ci: add af-packet and dpdk codecov builds
...
Adds live tests for DPDK and AF_PACKET, with support for code coverage.
2 years ago
Jason Ish
4fedba1140
github-ci: remove cocci from fedora 39 build
...
Cocci on Fedora 39+ gets stuck for some reason. Cocci has been moved
to a new Ubuntu 24.04 build.
2 years ago
Jason Ish
1c2402f5e7
github-ci: add ubuntu 24.04 build with cocci
...
Rather basic 24.04 build for now, but use Cocci as Cocci is working
properly here, but not working in the latest Fedora releases.
2 years ago
Philippe Antoine
47a1502dbb
ci: fix macos build
...
use brew instead of pip
limit the number of jobs for make
set a prefix where we can install
use brew flags for library finding
2 years ago
Jason Ish
480955b1f8
github-ci: update fedora builds
...
f39 -> f40
f38 -> f39
2 years ago
Lukas Sismis
3a27cfd7be
dpdk: increase timeout for DPDK test runs
2 years ago
Philippe Antoine
365a66ac1c
ci: clean some disk space to run CIFuzz again
2 years ago
Lukas Sismis
e54084fa87
dpdk: implement DPDK SW tests
...
Implement Github CI tests to run DPDK Suri with the minimal
configuration to verify that Suricata can start in both IDS
and IPS configuration.
2 years ago
Lukas Sismis
78313100a4
ci: bump up the DPDK versions
2 years ago
Victor Julien
34f53f85bc
systemd: reimplement sd_notify logic using UNIX socket
...
One of the lessons of the XZ backdoor story was that just linking to
libsystemd to call sd_notify is discouraged by the systemd project:
Lennart Poettering:
"PSA: In context of the xzpocalypse we now added an example reimplementation
of sd_notify() to our man page:
https://www.freedesktop.org/software/systemd/man/devel/sd_notify.html#Notes
It's pretty comprehensive (i.e. uses it for reload notification too), but
still relatively short.
In the past, I have been telling anyone who wanted to listen that if all you
want is sd_notify() then don't bother linking to libsystemd, since the
protocol is stable and should be considered the API, not our C wrapper
around it. After all, the protocol is so trivial"
From: https://mastodon.social/@pid_eins/112202687764571433
This commit takes the example code and uses it to reimplement the notify
logic.
The code is enabled if Linux is detected in configure. Since the code
won't do anything if the NOTIFY_SOCKET env var isn't set, this should
also work fine on systems w/o systemd.
Ticket: #6913 .
2 years ago
dependabot[bot]
d310d00eb0
github-actions: bump github/codeql-action from 3.24.6 to 3.24.9
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.24.6 to 3.24.9.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Commits](https://github.com/github/codeql-action/compare/v3.24.6...v3.24.9 )
---
updated-dependencies:
- dependency-name: github/codeql-action
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2 years ago
Jason Ish
6035a8a2b6
github-ci: set checkout directory as safe before running git commands
...
While the checkout job appears to do this, it is done with a different
version of git which seems to be the cause for it not having an effect
when doing manual git operations from within a job.
Also removes duplicate checkout statements in Windows builds.
2 years ago
dependabot[bot]
23463b9814
github-actions: bump codecov/codecov-action from 4.1.0 to 4.1.1
...
Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action ) from 4.1.0 to 4.1.1.
- [Release notes](https://github.com/codecov/codecov-action/releases )
- [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md )
- [Commits](54bcd8715e...c16abc29c9 )
---
updated-dependencies:
- dependency-name: codecov/codecov-action
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2 years ago
Victor Julien
a2c817243f
rust: add MSRV as rust-version
...
Update github-actions to use it for the MSRV check.
2 years ago
Philippe Antoine
632e52ca2b
ci: update ubuntu22.04 builds with clang14+asan
...
using a workround about ASLR
2 years ago
dependabot[bot]
c6c1eac301
github-actions: bump actions/download-artifact from 4.1.3 to 4.1.4
...
Bumps [actions/download-artifact](https://github.com/actions/download-artifact ) from 4.1.3 to 4.1.4.
- [Release notes](https://github.com/actions/download-artifact/releases )
- [Commits](87c55149d9...c850b930e6 )
---
updated-dependencies:
- dependency-name: actions/download-artifact
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2 years ago
dependabot[bot]
f1b0f7c46b
github-actions: bump github/codeql-action from 3.24.5 to 3.24.6
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.24.5 to 3.24.6.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Commits](https://github.com/github/codeql-action/compare/v3.24.5...v3.24.6 )
---
updated-dependencies:
- dependency-name: github/codeql-action
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2 years ago
Jason Ish
0dc3de332a
examples: minimal example capture plugin for ci
...
Create a mininal capture plugin that injects one packet. While it can
also be a template, we should be able to run this in CI to test the
loading and registration of the capture plugin mechanisms.
2 years ago
Victor Julien
6d0e11e76c
dependabot: reduce to monthly update
2 years ago
dependabot[bot]
c283e8565a
github-actions: bump codecov/codecov-action from 4.0.1 to 4.1.0
...
Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action ) from 4.0.1 to 4.1.0.
- [Release notes](https://github.com/codecov/codecov-action/releases )
- [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md )
- [Commits](e0b68c6749...54bcd8715e )
---
updated-dependencies:
- dependency-name: codecov/codecov-action
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2 years ago
dependabot[bot]
13da6498b5
github-actions: bump actions/download-artifact from 4.1.2 to 4.1.3
...
Bumps [actions/download-artifact](https://github.com/actions/download-artifact ) from 4.1.2 to 4.1.3.
- [Release notes](https://github.com/actions/download-artifact/releases )
- [Commits](eaceaf801f...87c55149d9 )
---
updated-dependencies:
- dependency-name: actions/download-artifact
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2 years ago
dependabot[bot]
07ec8b202e
github-actions: bump github/codeql-action from 3.24.3 to 3.24.5
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.24.3 to 3.24.5.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Commits](https://github.com/github/codeql-action/compare/v3.24.3...v3.24.5 )
---
updated-dependencies:
- dependency-name: github/codeql-action
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2 years ago
dependabot[bot]
92980a11a3
github-actions: bump github/codeql-action from 3.24.1 to 3.24.3
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.24.1 to 3.24.3.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Commits](https://github.com/github/codeql-action/compare/v3.24.1...v3.24.3 )
---
updated-dependencies:
- dependency-name: github/codeql-action
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2 years ago
Jason Ish
2421b024f2
examples: program linking against library
...
Provide an example of an extremely simple application that links
against Suricata. This provides a Makefile integrated with the
Suricata build system for in-tree building, as well as an example
Makefile for building out of tree.
Currently this application just wraps SuricataMain and does nothing
else.
2 years ago
Jason Ish
6d792f017b
examples/plugin: simplify Makefile
...
Simplify the Makefile by avoiding automake and providing our own
Makefile.in that is suitable for in-tree builds of the plugin and can
also serve as an example for standalone plugins.
But the bigger benefit of this is to allow building the example plugin
even with --disable-shared provided to configure, as this is just a
phony limitation imposed by automake/libtool.
2 years ago
Jason Ish
6198ea5a91
github-ci: use all cpus for coccinelle checks
...
Also put "cocci" in the job name and install parallel so the script can
actually run with concurrency.
2 years ago
Philippe Antoine
41a621178f
ci: right sha for authors check
2 years ago
dependabot[bot]
fa98c48e65
github-actions: bump github/codeql-action from 2.24.0 to 3.24.1
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.24.0 to 3.24.1.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Commits](https://github.com/github/codeql-action/compare/v2.24.0...v3.24.1 )
---
updated-dependencies:
- dependency-name: github/codeql-action
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
2 years ago
Jason Ish
2242d10fa0
github-ci: fix authors check with special characters
...
Dependabot is always getting flagged as a new author even tho it uses
a consistent author of:
dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
But this doesn't work with plain grep. Fix by telling grep to treat
the value as a fixed string instead of a regular expression.
2 years ago
Jason Ish
5c686af149
dependabot: disable rust checks
...
As we don't have a Cargo.toml and a Cargo.lock, dependabot for Rust
hasn't been working correctly. Disable, as we now have our own cargo
audit and update workflows.
2 years ago
Jason Ish
c7cb3e92a6
dependabot: ignore actions/{cache,checkout} v3
...
The CentOS 7 build requires older GitHub actions, try to make
dependabot ignore these older versions.
2 years ago
Jason Ish
a87943d9bf
github-ci: apply read-only permissions to more workflows
...
- authors.yml
- codeql.yml
- scan-build.yml
2 years ago
Daniel Olatunji
f9a4e9c588
codeql: add security-extended query suite
...
Add the CodeQL security-extended suite to
the CodeQL workflow configuration.
2 years ago
dependabot[bot]
7881e85088
github-actions: bump github/codeql-action from 2 to 3
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2 to 3.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Commits](https://github.com/github/codeql-action/compare/v2...v3 )
---
updated-dependencies:
- dependency-name: github/codeql-action
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
2 years ago
dependabot[bot]
be07d96c3d
github-actions: bump codecov/codecov-action from 3.1.1 to 4.0.1
...
Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action ) from 3.1.1 to 4.0.1.
- [Release notes](https://github.com/codecov/codecov-action/releases )
- [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md )
- [Commits](d9f34f8cd5...e0b68c6749 )
---
updated-dependencies:
- dependency-name: codecov/codecov-action
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
2 years ago
Jason Ish
7c98134624
github-ci: cancel previous job for all workflows
...
Previously only enabled in build.yml, apply cancen-in-progress to all
workflow files.
2 years ago
Jason Ish
d5a3bfcab6
github-ci: don't depend on cbindgen when installed from package
2 years ago
Jason Ish
49834eabf1
github-ci: update actions/github-script
2 years ago
Jason Ish
e786297497
github-ci: update actions/checkout
2 years ago
Jason Ish
32d55febed
github-ci: update actions/cache
2 years ago
Jason Ish
5bfaeb3bf5
github-ci: update {download,upload} artifact actions
...
Multiple uploads can no longer use the same name, so give the cbindgen
artifact its own name of "cbindgen". Requires an additional download
for each build depending on this cbindgen artifact.
2 years ago
Jason Ish
8522256aaa
github-ci: use all cores available
...
GitHub action Linux runners now have 4 cores, instead of hardcoding
the number, use nproc to determine how many cores are available and
use them.
2 years ago
Jason Ish
6922fef4ab
github-ci: move centos-7 build to its own workflow
...
CentOS 7 requires older actions due to newer GitHub actions depending
on a newer glibc. So move to its own workflow file so the main builds
can move forward to newer versions of actions.
2 years ago
Jason Ish
edfda9f69f
rust: weekly cargo audit and update
...
Add GitHub actions to perform:
- cargo audit: catch new warnings in dependendent packages
- cargo update: catch updated dependencies that depend on a new MSRV
than we use
2 years ago
Jeff Lucovsky
9fe00ff710
config/jansson: Remove excess libjansson mentions
...
Issue: 6712
Remove multiple occurrences of libjansson installation packages.
2 years ago
Jeff Lucovsky
ee6208be9d
config/nss: Remove libnspr/libnss traces
...
Issue: 6712
2 years ago
Philippe Antoine
7f5e98e6df
ci: authors check using OISF repo
...
As flagged critical by codescan
2 years ago
Philippe Antoine
6de885c603
ci: update scorecard analysis workflow
2 years ago
Philippe Antoine
d73ccd0f52
ci: run clippy without all features
2 years ago
Philippe Antoine
bedd48596f
ci: run clippy on test code as well
3 years ago
Juliana Fajardini
08eb67f74c
devguide: make 'contributing' a chapter
...
This could be justified from a semantic point of view, and also can help
in bringing more attention to where this information is, as it is less
hidden, now.
Also add Dev Guide as one of our resources in our Readme.
3 years ago
Jason Ish
93071501b5
github-ci/formatting: update to Ubuntu 22.04
...
Update the formatting CI job to Ubuntu 22.04 to get a newer version of
clang-format, in this case clang-format-14.
3 years ago
Victor Julien
c82d93490c
github/action: fix Debian 12 intermittent failures
...
Parallel builds caused issues during `cargo vendor`. So do just a single
thread build.
make[4]: Entering directory '/__w/suricata/suricata/rust'
cbindgen --config /__w/suricata/suricata/rust/cbindgen.toml \
--quiet --output /__w/suricata/suricata/rust/dist/rust-bindings.h
CARGO_HOME="/github/home/.cargo" /usr/bin/cargo vendor
Blocking waiting for file lock on package cache
Blocking waiting for file lock on package cache
ERROR: Couldn't execute `cargo metadata` with manifest "/__w/suricata/suricata/rust/Cargo.toml": Metadata(Output { status: ExitStatus(unix_wait_status(25856)), stdout: "", stderr: " Blocking waiting for file lock on package cache\n Blocking waiting for file lock on package cache\nerror: failed to download `adler v1.0.2`\n\nCaused by:\n unable to get packages from source\n\nCaused by:\n failed to parse manifest at `/github/home/.cargo/registry/src/github.com-1ecc6299db9ec823/adler-1.0.2/Cargo.toml`\n\nCaused by:\n no targets specified in the manifest\n either src/lib.rs, src/main.rs, a [lib] section, or [[bin]] section must be present\n" })
ERROR: Couldn't generate bindings for /__w/suricata/suricata/rust.
make[4]: *** [Makefile:597: dist/rust-bindings.h] Error 1
make[4]: *** Waiting for unfinished jobs....
3 years ago
Vincent Li
64d12aacc8
ebpf: Update eBPF map to BTF defined map
...
legacy map definition is removed from libbpf1.0+.
update the legacy map definition to BTF defined map.
Distros with < libbpf1.0 (0.5, 0.6, 0.7, 0.8) bpf_helpers.h
support BTF map definition, this change does not break
old libbpf and support new libpbf1.0+.
Bug: #6250
Signed-off-by: Vincent Li <vincent.mc.li@gmail.com>
Co-authored-by: Victor Julien <vjulien@oisf.net>
3 years ago
Jason Ish
d2b25af3f4
examples: add an example plugin of an eve filetype
...
This is an example of what adding plugin examples to the Suricata repo
could look like.
This plugin is an example plugin for an EVE filetype. It could be
extended to support outputs like Redis, syslog, etc.
There is one issue with adding plugins like this to an autotools
project, the project can't be built with --disable-shared, which is
more of an autotools limitation, and not really a Suricata issue.
Suricata built with --disable-shared will load plugins just fine.
Note that the examples directory was added as DIST_SUBDIRS as we don't
want normal builds to recurse into it and attempt to build the plugin,
its just an example, but we still need to keep distcheck happy.
3 years ago
Jason Ish
bec1d8ca9f
github-ci: don't add author names/emails to new author comment
...
The new author details will still be available in the artifact, we're
just not calling them out in a nighly visible pull request comment.
3 years ago
Jason Ish
2b9603d94d
github-ci: cancel previous builds workflow for branch
...
On a push of the same branch, cancel the previous running builds.yml
workflow.
3 years ago
Victor Julien
741ba51c1e
github-ci: Fedora 37 to 39; use packaged cbindgen
3 years ago
Juliana Fajardini
a9851430e2
github: improve template CLA request info
...
Indicate that the CLA only has to be signed once, as we have had
contributors think that was required for each new PR.
3 years ago
Lukas Sismis
c53086575a
dpdk: update DPDK builder versions
3 years ago
Jeff Lucovsky
e65c052414
build/nss: Remove libnss from CI
3 years ago
Shivani Bhardwaj
a4f670622e
workflows: use s-v --debug-failed
3 years ago
Jason Ish
ae5c65fb49
github-ci: disable some workflows on doc only changes
...
Don't run the following GitHub workflows on documentation only
changes:
- cifuzz
- codeql
- formatting
- rust
- scan-build
3 years ago
Juliana Fajardini
049aed529f
meta-docs: update links
...
Readme and PR template was still pointing to the redmine wiki and
readthedocs, replace with docs.suricata links.
3 years ago
Jason Ish
f511b176bf
github-ci: don't build docs in almalinux:8, centos:8
...
Our docs require a newer version of Sphinx.
3 years ago
Victor Julien
7f822ba053
github-ci: run cocci in fedora 38
3 years ago
Jason Ish
4ccc9aed01
github-ci: remove fedora 36 builds
...
Fedora 36 is now EOL.
3 years ago
Jason Ish
84674f4205
github-ci: update rust versions
...
New minimum Rust version: 1.63.0.
Current latest known good version: 1.70.0.
Add test specifically for MSRV as we didn't have one.
Ticket: #4163
3 years ago
Jason Ish
ebdf482580
github-ci: add CentOS Stream builders
...
Builders for CentOS Stream 8 and 9.
3 years ago
Jason Ish
ca68b6b994
github-ci: replace dist builder with Debian 12
...
Add new dist builder job based on Debian 12. Debian 12 gives us news
Sphinx that AlmaLinux 8, plus avoids any potential disruption in the
RHEL rebuild ecosystem.
Also make dist building its own job so it finishes quicker, allowing
other jobs to proceed. The new non-dist building Debian 12 job will
still do a complete distcheck, as do other jobs.
3 years ago
Jason Ish
96dd6a7ca0
github-ci: add Debian 12 builder
3 years ago
Jason Ish
f870dcd4cc
github-ci: allow pull request URL in SV_BRANCH
...
Allow the SV_BRANCH variable to contain the full link to an
OISF/suricata-verify pull request. This will cause GitHub to create a
cross-link for us.
3 years ago
Jason Ish
83afccd932
github-ci: update action: setup-msys2
...
Use @v2, hopefully the dependency bot will keep it up to date now.
3 years ago
Jason Ish
37d68230f8
github-ci: use latest version of actions/upload-artifact
3 years ago
Jason Ish
d576be2452
github-ci: update actions/cache to v3.3.1
3 years ago
Jason Ish
3dfd5ddaed
github-ci: use same version (3.0.2) for actions/download-artifact
3 years ago
Jason Ish
04ba1a7ef6
github-ci: update actions/checkout to v3.5.3
3 years ago
Jason Ish
6d7923c80b
github-ci: check for suricata-update example configuration files
...
Check that the Suricata-Update example configuration files are
installed.
3 years ago
Jason Ish
f8c54bc7a4
github-ci: add workflow_dispatch
...
A workflow dispatch allows us to manually a trigger a workflow with
arguments. This dispatch allows us to use the "gh" cli command to
trigger a workflow run with our libhtp/su/sv branch and repo variables
set. For example:
gh run builds.yml -f SV_REPO=jasonish/suricata-verify -f SV_BRANCH=pr/10
3 years ago
Philippe Antoine
bc3311329c
github: change codeowners back to team
...
as in master-6.0.x
3 years ago
Jason Ish
af5a0e11e8
github-ci: check for new authors in pull-request
...
On pull request, get a list of commit authors for the pull request and
compare to the list of authors in git master. If any differ, save to
new-authors.txt and upload this as an artifact.
As a workflow-run, download this artifact and if non-empty, add a
comment to the pull-request that new authors may be part of the pull
request.
This 2 step approach is because GitHub actions running in pull-request
context are not allowed to comment on the pull request, instead a
post-workflow workflow has been added that runs in the context of the
repo which can then comment on the pull request.
3 years ago
Jason Ish
cc3f3a0a72
github-ci: fix rust check by fixing git directory permissions
...
Due to the update to AlmaLinux 9.2, a new version of git with stricter
permissions was introduced. Mark the directory as safe as we have
done in other builds with newer versions of it.
3 years ago
Alex
60902236e4
build: harden rust.yml permissions
...
Signed-off-by: Alex <aleksandrosansan@gmail.com>
3 years ago
Victor Julien
74326a43e7
github-ci: add windivert build
3 years ago
Victor Julien
fb7ff5b61c
github-ci: spelling
3 years ago
Victor Julien
cb66a1e636
github-ci: add padding check to scan-build
3 years ago
Victor Julien
d0d6ca4c6e
github-ci: add more scan-build checks
...
Explicitly disable:
security.insecureAPI.DeprecatedOrUnsafeBufferHandling
optin.performance.Padding
3 years ago
Victor Julien
fb237e8de3
github-ci: add dpdk, nfqueue, nflog to scan-build
3 years ago
Victor Julien
e717c2e0ec
github-ci: remove debian 9 as it is EOL
3 years ago
Jason Ish
915f487a1c
github-ci: update Fedora 36 cov build to Fedora 38
...
As Fedora 36 will be EOL in a month.
3 years ago
Jason Ish
bcbceb13f8
github-ci: update non-root build to Fedora 37
...
As Fedora 36 will be EOL in a month.
3 years ago
Jason Ish
b0bc95d7c1
github-ci: add Fedora 38 builds
3 years ago
Jason Ish
3974142b41
github-ci: use cbindgen from packages on almalinux:9
...
AlmaLinux 9 has cbindgen available from the package repositories.
3 years ago
Jason Ish
fa651606a0
github-ci: add Fedora 37 builders
3 years ago
Jason Ish
4105ac436e
github-ci: add Fedora 36 gcc builder
...
The existing Fedora 36 builder used clang. Add a gcc builder as it can
show different errors.
3 years ago
Jason Ish
04fb0189a7
github-ci: replace Fedora no-jansson build with AlmaLinux
...
Use AlmaLinux 9 for the no-jansson test instead of Fedora as it will
need to be updated much less.
3 years ago
Jason Ish
dd72a64c53
github-ci: remove Fedora 35 build: EOL
3 years ago
Jason Ish
e32d01d01b
github-ci: enable asan for Ubuntu debug-validation test
3 years ago
Jason Ish
497a6e7ab7
github-ci: fedora non-root: remove external script usage
...
In the end, its not needed and makes it easier to copy and paste to a
new test.
3 years ago
Jason Ish
ec253e54cc
github-ci: use bundle.sh script for libhtp, suricata-update
...
Update the GitHub CI workflow to use the bundle.sh script to pull in
Suricata-Update and libhtp. This means one less place where defaults
are hardcoded and can get out of sync.
This also simplifies the variable names that can be embedded in a pull
request message to use the same variable names that bundle.sh
expects. Of note, this removes the _PR variant, instead a branch name
of "pr/N" can be used to specify a PR.
3 years ago
Victor Julien
efeaa6e2c7
github: add scan-build workflow
...
Add scan-build workflow that fails on any warning.
Exclude libhtp as there is still one open issue there.
3 years ago
Lukas Sismis
4f3e1279f5
github-ci: Add Netmap build to GH actions
...
Issue: #5803
3 years ago
Jason Ish
b734676617
github-ci: add Debian 11 builder with XDP
3 years ago
Philippe Antoine
96b48d7104
github: avoid bash escaping
...
so as to allow ' in github discussion and get CI green
3 years ago
Jason Ish
2dc157ed9e
github-ci: dump github context and pr body
...
For debugging the parsing of suricata-verify-pr.
4 years ago
Jason Ish
102a022898
github-ci: annotate job with s-v info
4 years ago
Jason Ish
3d8130614e
github-ci/rust: display clippy diff
4 years ago
Jason Ish
49e9f51a03
github-ci: fedora non-root: suricata-verify -q
...
Run Suricata-Verify in quiet mode for the non-root build to more
easily find the error when fails.
4 years ago
Lukas Sismis
1c8205e6b1
dpdk: add Github action to build Suricata with all available (LTS) DPDK versions
4 years ago
dependabot[bot]
8bebc2390d
github-actions: bump ossf/scorecard-action from 2.1.1 to 2.1.2
...
Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action ) from 2.1.1 to 2.1.2.
- [Release notes](https://github.com/ossf/scorecard-action/releases )
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md )
- [Commits](15c10fcf1c...e38b1902ae )
---
updated-dependencies:
- dependency-name: ossf/scorecard-action
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
4 years ago
dependabot[bot]
ad7baad4a0
github-actions: bump actions/download-artifact from 3.0.1 to 3.0.2
...
Bumps [actions/download-artifact](https://github.com/actions/download-artifact ) from 3.0.1 to 3.0.2.
- [Release notes](https://github.com/actions/download-artifact/releases )
- [Commits](9782bd6a98...9bc31d5ccc )
---
updated-dependencies:
- dependency-name: actions/download-artifact
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
4 years ago
dependabot[bot]
87420c8083
github-actions: bump actions/upload-artifact from 3.1.1 to 3.1.2
...
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact ) from 3.1.1 to 3.1.2.
- [Release notes](https://github.com/actions/upload-artifact/releases )
- [Commits](83fd05a356...0b7f8abb15 )
---
updated-dependencies:
- dependency-name: actions/upload-artifact
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
4 years ago
dependabot[bot]
c091e65662
github-actions: bump actions/checkout from 3.2.0 to 3.3.0
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 3.2.0 to 3.3.0.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](https://github.com/actions/checkout/compare/v3.2.0...v3.3.0 )
---
updated-dependencies:
- dependency-name: actions/checkout
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
4 years ago
dependabot[bot]
fc177754d1
github-actions: bump ossf/scorecard-action from 2.0.6 to 2.1.1
...
Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action ) from 2.0.6 to 2.1.1.
- [Release notes](https://github.com/ossf/scorecard-action/releases )
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md )
- [Commits](99c53751e0...15c10fcf1c )
---
updated-dependencies:
- dependency-name: ossf/scorecard-action
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
4 years ago
dependabot[bot]
b4538134fa
github-actions: bump actions/checkout from 3.1.0 to 3.2.0
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 3.1.0 to 3.2.0.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](https://github.com/actions/checkout/compare/v3.1.0...v3.2.0 )
---
updated-dependencies:
- dependency-name: actions/checkout
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
4 years ago
Juliana Fajardini
8b56f688a1
github: update contrib guide link in PR template
...
Even though we have moved the contribution process guide to our read the
docs, the template was still pointing to our redmine link.
4 years ago
Jason Ish
a2a920afb0
github-ci: verify generated rust code is rustfmt and clippy clean
4 years ago
Jason Ish
712d80107f
setup-app-layer: remove generator for C parsers
...
Ticket: 4939
4 years ago
Jason Ish
986212c19d
github-ci: add app-layer-template builder
...
Creates a protocol parser and logger and builds.
4 years ago
Jason Ish
23424821be
github-ci: rename alma to almalinux; 8.4 to 8
4 years ago
Jason Ish
aa36e9e37f
github-ci: enable lua on Fedora 36 build
...
Not many of the jobs that run S-V enable Lua, enable Lua for Fedora 36
which also runs S-V.
4 years ago
Jason Ish
01badea65c
github-ci: fail if cargo clippy --fix creates a changes
...
Previously this was doing fixups and only warning, not erroring. Which
could made the following clippy command pass.
4 years ago
Richard McConnell
9b43481680
af-xdp: Configure build with AF_XDP support
4 years ago
Jason Ish
64fab3be04
github-ci: non-root builder
...
All the GitHub CI jobs run as root inside a container. This means the
testing is done in a different environment than a developer typically
uses, running as a user.
Add a job that does the build as a non-root user.
4 years ago
Jason Ish
bf1c185c03
github-ci/centos:7: cache yum RPMs
4 years ago
Jason Ish
1c13efb8d4
github-ci/windows: cache cargo artifacts
4 years ago
Jason Ish
6da066cc53
github-ci/macos: don't force cbindgen
...
We want to use binary from the cache if available.
4 years ago
Jason Ish
0dddfbc8e6
github-ci: cache RPMs on dnf distros
4 years ago
Jason Ish
814a76a217
github-ci: better .cargo caching
4 years ago
Philippe Antoine
222f2ac1c5
ci: remove unnecessary write permission to github workflow
4 years ago
Philippe Antoine
7fd3aaa81c
ci: build with -Werror for -Wimplicit-int-conversion
...
So that CI gets red
4 years ago
Philippe Antoine
7cfc45a6f8
ci: adds one build with hyperscan
4 years ago
Philippe Antoine
fbccd74f89
ci: adds build with luajit
4 years ago
Philippe Antoine
ce66c26afc
ci: cargo clippy run option
...
As clippy does not recognize git which is above
4 years ago
dependabot[bot]
6a9b7cf977
github-actions: bump actions/cache from 3.0.10 to 3.0.11
...
Bumps [actions/cache](https://github.com/actions/cache ) from 3.0.10 to 3.0.11.
- [Release notes](https://github.com/actions/cache/releases )
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md )
- [Commits](https://github.com/actions/cache/compare/v3.0.10...9b0c1fce7a93df8e3bb8926b0d6e9d89e92f20a7 )
---
updated-dependencies:
- dependency-name: actions/cache
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
4 years ago
Richard McConnell
9c2939fb33
workflow: add systemd integration and check
...
Intergration of systemd is a feature that enables notification of
a running service to the service manager. The workflow now ensures
compilation with systemd and checks the binary has been built against
libsystemd.
4 years ago
dependabot[bot]
c3c8472d09
github-actions: bump actions/upload-artifact from 3.1.0 to 3.1.1
...
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact ) from 3.1.0 to 3.1.1.
- [Release notes](https://github.com/actions/upload-artifact/releases )
- [Commits](3cea537223...83fd05a356 )
---
updated-dependencies:
- dependency-name: actions/upload-artifact
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
4 years ago
dependabot[bot]
0b0616528f
github-actions: bump actions/download-artifact from 3.0.0 to 3.0.1
...
Bumps [actions/download-artifact](https://github.com/actions/download-artifact ) from 3.0.0 to 3.0.1.
- [Release notes](https://github.com/actions/download-artifact/releases )
- [Commits](fb598a63ae...9782bd6a98 )
---
updated-dependencies:
- dependency-name: actions/download-artifact
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
4 years ago
Jason Ish
a11f51f4d3
github-ci: running clippy with all features
...
Without it, it own't see the usage of variables in SCDebugLog macros,
etc.
4 years ago
dependabot[bot]
cb8c9d9617
github-actions: bump ossf/scorecard-action from 2.0.4 to 2.0.6
...
Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action ) from 2.0.4 to 2.0.6.
- [Release notes](https://github.com/ossf/scorecard-action/releases )
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md )
- [Commits](e363bfca00...99c53751e0 )
---
updated-dependencies:
- dependency-name: ossf/scorecard-action
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
4 years ago
dependabot[bot]
2158dbf3ba
github-actions: bump actions/checkout from 2 to 3.1.0
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 2 to 3.1.0.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](https://github.com/actions/checkout/compare/v2...v3.1.0 )
---
updated-dependencies:
- dependency-name: actions/checkout
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
4 years ago
dependabot[bot]
2681d21c11
github-actions: bump actions/cache from 3.0.8 to 3.0.10
...
Bumps [actions/cache](https://github.com/actions/cache ) from 3.0.8 to 3.0.10.
- [Release notes](https://github.com/actions/cache/releases )
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md )
- [Commits](fd5de65bc8...56461b9eb0 )
---
updated-dependencies:
- dependency-name: actions/cache
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
4 years ago
Jason Ish
05900b99cd
github-ci: add workflow for rust clippy
4 years ago
dependabot[bot]
7771402a3a
github-actions: bump codecov/codecov-action from 3.1.0 to 3.1.1
...
Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action ) from 3.1.0 to 3.1.1.
- [Release notes](https://github.com/codecov/codecov-action/releases )
- [Changelog](https://github.com/codecov/codecov-action/blob/master/CHANGELOG.md )
- [Commits](81cd2dc814...d9f34f8cd5 )
---
updated-dependencies:
- dependency-name: codecov/codecov-action
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
4 years ago
dependabot[bot]
5490fe00ab
github-actions: bump ossf/scorecard-action from 2.0.3 to 2.0.4
...
Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action ) from 2.0.3 to 2.0.4.
- [Release notes](https://github.com/ossf/scorecard-action/releases )
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md )
- [Commits](865b409285...e363bfca00 )
---
updated-dependencies:
- dependency-name: ossf/scorecard-action
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
4 years ago
Philippe Antoine
eb155639c6
ci: build with -Wimplicit-int-conversion
...
Seems to have got lost on the way in CFLAGS
4 years ago
Victor Julien
ad6bea5108
github-ci/codecov: add rust coverage support
...
Based on Rust 1.63 and LLVM 14. Update the jobs to meet those requirements.
Includes the bundled libhtp coverage now, including libhtp tests.
Ticket: #4278 .
4 years ago
Victor Julien
2d308c000d
github-ci: disable cppclean as it is too noisy
...
We can reenable it after the larger cleanup efforts are complete.
4 years ago
dependabot[bot]
30ce63c50f
github-actions: bump ossf/scorecard-action from 1.1.2 to 2.0.3
...
Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action ) from 1.1.2 to 2.0.3.
- [Release notes](https://github.com/ossf/scorecard-action/releases )
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md )
- [Commits](ce330fde6b...865b409285 )
---
updated-dependencies:
- dependency-name: ossf/scorecard-action
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
4 years ago
Victor Julien
6e1220700d
github-ci: bump cbindgen to 0.24.3
...
This addresses issues around the AppLayerTxData type.
4 years ago
dependabot[bot]
7be28aebc6
github-actions: bump actions/cache from 3.0.7 to 3.0.8
...
Bumps [actions/cache](https://github.com/actions/cache ) from 3.0.7 to 3.0.8.
- [Release notes](https://github.com/actions/cache/releases )
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md )
- [Commits](a7c34adf76...fd5de65bc8 )
---
updated-dependencies:
- dependency-name: actions/cache
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
4 years ago
Victor Julien
9353b07292
github: update Rust versions
4 years ago
Victor Julien
3dea69ec83
github: bump ubuntu-18.04 runners to 22.04
4 years ago
dependabot[bot]
c8cf25a21a
github-actions: bump actions/cache from 3.0.6 to 3.0.7
...
Bumps [actions/cache](https://github.com/actions/cache ) from 3.0.6 to 3.0.7.
- [Release notes](https://github.com/actions/cache/releases )
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md )
- [Commits](https://github.com/actions/cache/compare/v3.0.6...a7c34adf76222e77931dedbf4a45b2e4648ced19 )
---
updated-dependencies:
- dependency-name: actions/cache
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
4 years ago