Commit Graph

380 Commits (5e2a33d08069cea8b4c2c7c2ff55973c0a258907)

Author SHA1 Message Date
dependabot[bot] efbf627dbd
github-actions: bump actions/checkout from 3.6.0 to 4.1.7
Bumps [actions/checkout](https://github.com/actions/checkout) from 3.6.0 to 4.1.7.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/v3.6.0...692973e3d937129bcbf40652eb9f2f61becf3332)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
2 years ago
Jason Ish 5530fd34b8 github-ci: add non-bundled libhtp build 2 years ago
Jason Ish a0cb7b21f4 github-ci/builds: don't run if only doc changes
A new workflow, "docs" has been created for only doc changes.

Factor out prepare-deps into a reusable action.
2 years ago
dependabot[bot] 54b63f896d github-actions: bump codecov/codecov-action from 4.4.1 to 4.5.0
Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action) from 4.4.1 to 4.5.0.
- [Release notes](https://github.com/codecov/codecov-action/releases)
- [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md)
- [Commits](125fc84a9a...e28ff129e5)

---
updated-dependencies:
- dependency-name: codecov/codecov-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
2 years ago
Lukas Sismis cd7c35eb5a github-ci: add minimal build for Ubuntu and AlmaLinux 2 years ago
Lukas Sismis 6d663ec885 github-ci: remove gosu from installed packages 2 years ago
Victor Julien 130d75f025 github-action: remove end of life CentOS 8 stream 2 years ago
dependabot[bot] 4040ae10d1 github-actions: bump codecov/codecov-action from 4.1.1 to 4.4.1
Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action) from 4.1.1 to 4.4.1.
- [Release notes](https://github.com/codecov/codecov-action/releases)
- [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/codecov/codecov-action/compare/v4.1.1...125fc84a9a348dbcf27191600683ec096ec9021c)

---
updated-dependencies:
- dependency-name: codecov/codecov-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
2 years ago
Jason Ish 4788d684da github-ci: test make after clean without cbindgen
Modify the CentOS 9 Stream build to not have cbdingen available, as
its already building from the dist.  But add a "make clean" followed
by a "make" to test that it still builds after a clean.
2 years ago
Jason Ish bc011f2205 lua: use rust crate to vendor (bundle) lua
Remove lua-dev(el) from all CI tests.
2 years ago
Jo Johnson d5c6c3a21c lua: build lua by default
Ticket: #4776

[Edits by Jason Ish]
- Add Lua in CI where needed
- Disable Lua for builds that don't have Lua 5.4
2 years ago
Jo Johnson 586c92d9d5 lua: require lua 5.4
github-ci: Disable lua on debian 10 as it doesn't have Lua 5.4.

Ticket: #4776
2 years ago
Philippe Antoine ce9bfba76a ci: fix and test with Wunused-macros
Ticket: 6937
2 years ago
Victor Julien 1240bdd914 github-actions: add pcap live test script and jobs
Asan and coverage jobs.
2 years ago
Victor Julien 27b6a31a0c github-actions: unix pcap coverage run
To increase code coverage.
2 years ago
Victor Julien ea95aac022 github-actions: add unix socket runmode script and job
Runs with ASAN.
2 years ago
Victor Julien 40b87bfd04 github-actions: add ASAN enabled Ubuntu 24.04 build of live tests 2 years ago
dependabot[bot] 1297d96592 github-actions: bump actions/upload-artifact from 4.3.1 to 4.3.3
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 4.3.1 to 4.3.3.
- [Release notes](https://github.com/actions/upload-artifact/releases)
- [Commits](5d5d22a312...65462800fd)

---
updated-dependencies:
- dependency-name: actions/upload-artifact
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2 years ago
dependabot[bot] b9fbc5749d github-actions: bump actions/download-artifact from 4.1.4 to 4.1.7
Bumps [actions/download-artifact](https://github.com/actions/download-artifact) from 4.1.4 to 4.1.7.
- [Release notes](https://github.com/actions/download-artifact/releases)
- [Commits](c850b930e6...65a9edc588)

---
updated-dependencies:
- dependency-name: actions/download-artifact
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2 years ago
dependabot[bot] 76314cc00e github-actions: bump codecov/codecov-action from 4.1.1 to 4.3.1
Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action) from 4.1.1 to 4.3.1.
- [Release notes](https://github.com/codecov/codecov-action/releases)
- [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md)
- [Commits](c16abc29c9...5ecb98a3c6)

---
updated-dependencies:
- dependency-name: codecov/codecov-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
2 years ago
Victor Julien 2b80689ee4 github-actions: convert dpdk tests to use script 2 years ago
Victor Julien 6edf05cdaa github-actions: add dpdk ids live test script 2 years ago
Victor Julien ed9ad0048d github-ci: add af-packet and dpdk codecov builds
Adds live tests for DPDK and AF_PACKET, with support for code coverage.
2 years ago
Jason Ish 4fedba1140 github-ci: remove cocci from fedora 39 build
Cocci on Fedora 39+ gets stuck for some reason. Cocci has been moved
to a new Ubuntu 24.04 build.
2 years ago
Jason Ish 1c2402f5e7 github-ci: add ubuntu 24.04 build with cocci
Rather basic 24.04 build for now, but use Cocci as Cocci is working
properly here, but not working in the latest Fedora releases.
2 years ago
Philippe Antoine 47a1502dbb ci: fix macos build
use brew instead of pip
limit the number of jobs for make
set a prefix where we can install
use brew flags for library finding
2 years ago
Jason Ish 480955b1f8 github-ci: update fedora builds
f39 -> f40
f38 -> f39
2 years ago
Lukas Sismis 3a27cfd7be dpdk: increase timeout for DPDK test runs 2 years ago
Lukas Sismis e54084fa87 dpdk: implement DPDK SW tests
Implement Github CI tests to run DPDK Suri with the minimal
configuration to verify that Suricata can start in both IDS
and IPS configuration.
2 years ago
Lukas Sismis 78313100a4 ci: bump up the DPDK versions 2 years ago
Victor Julien 34f53f85bc systemd: reimplement sd_notify logic using UNIX socket
One of the lessons of the XZ backdoor story was that just linking to
libsystemd to call sd_notify is discouraged by the systemd project:

Lennart Poettering:
"PSA: In context of the xzpocalypse we now added an example reimplementation
of sd_notify() to our man page:

https://www.freedesktop.org/software/systemd/man/devel/sd_notify.html#Notes

It's pretty comprehensive (i.e. uses it for reload notification too), but
still relatively short.

In the past, I have been telling anyone who wanted to listen that if all you
want is sd_notify() then don't bother linking to libsystemd, since the
protocol is stable and should be considered the API, not our C wrapper
around it. After all, the protocol is so trivial"

From: https://mastodon.social/@pid_eins/112202687764571433

This commit takes the example code and uses it to reimplement the notify
logic.

The code is enabled if Linux is detected in configure. Since the code
won't do anything if the NOTIFY_SOCKET env var isn't set, this should
also work fine on systems w/o systemd.

Ticket: #6913.
2 years ago
Jason Ish 6035a8a2b6 github-ci: set checkout directory as safe before running git commands
While the checkout job appears to do this, it is done with a different
version of git which seems to be the cause for it not having an effect
when doing manual git operations from within a job.

Also removes duplicate checkout statements in Windows builds.
2 years ago
dependabot[bot] 23463b9814
github-actions: bump codecov/codecov-action from 4.1.0 to 4.1.1
Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action) from 4.1.0 to 4.1.1.
- [Release notes](https://github.com/codecov/codecov-action/releases)
- [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md)
- [Commits](54bcd8715e...c16abc29c9)

---
updated-dependencies:
- dependency-name: codecov/codecov-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2 years ago
Victor Julien a2c817243f rust: add MSRV as rust-version
Update github-actions to use it for the MSRV check.
2 years ago
Philippe Antoine 632e52ca2b ci: update ubuntu22.04 builds with clang14+asan
using a workround about ASLR
2 years ago
dependabot[bot] c6c1eac301 github-actions: bump actions/download-artifact from 4.1.3 to 4.1.4
Bumps [actions/download-artifact](https://github.com/actions/download-artifact) from 4.1.3 to 4.1.4.
- [Release notes](https://github.com/actions/download-artifact/releases)
- [Commits](87c55149d9...c850b930e6)

---
updated-dependencies:
- dependency-name: actions/download-artifact
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2 years ago
Jason Ish 0dc3de332a examples: minimal example capture plugin for ci
Create a mininal capture plugin that injects one packet. While it can
also be a template, we should be able to run this in CI to test the
loading and registration of the capture plugin mechanisms.
2 years ago
dependabot[bot] c283e8565a github-actions: bump codecov/codecov-action from 4.0.1 to 4.1.0
Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action) from 4.0.1 to 4.1.0.
- [Release notes](https://github.com/codecov/codecov-action/releases)
- [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md)
- [Commits](e0b68c6749...54bcd8715e)

---
updated-dependencies:
- dependency-name: codecov/codecov-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
2 years ago
dependabot[bot] 13da6498b5 github-actions: bump actions/download-artifact from 4.1.2 to 4.1.3
Bumps [actions/download-artifact](https://github.com/actions/download-artifact) from 4.1.2 to 4.1.3.
- [Release notes](https://github.com/actions/download-artifact/releases)
- [Commits](eaceaf801f...87c55149d9)

---
updated-dependencies:
- dependency-name: actions/download-artifact
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2 years ago
Jason Ish 2421b024f2 examples: program linking against library
Provide an example of an extremely simple application that links
against Suricata. This provides a Makefile integrated with the
Suricata build system for in-tree building, as well as an example
Makefile for building out of tree.

Currently this application just wraps SuricataMain and does nothing
else.
2 years ago
Jason Ish 6d792f017b examples/plugin: simplify Makefile
Simplify the Makefile by avoiding automake and providing our own
Makefile.in that is suitable for in-tree builds of the plugin and can
also serve as an example for standalone plugins.

But the bigger benefit of this is to allow building the example plugin
even with --disable-shared provided to configure, as this is just a
phony limitation imposed by automake/libtool.
2 years ago
Jason Ish 6198ea5a91 github-ci: use all cpus for coccinelle checks
Also put "cocci" in the job name and install parallel so the script can
actually run with concurrency.
2 years ago
dependabot[bot] be07d96c3d github-actions: bump codecov/codecov-action from 3.1.1 to 4.0.1
Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action) from 3.1.1 to 4.0.1.
- [Release notes](https://github.com/codecov/codecov-action/releases)
- [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md)
- [Commits](d9f34f8cd5...e0b68c6749)

---
updated-dependencies:
- dependency-name: codecov/codecov-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
2 years ago
Jason Ish d5a3bfcab6 github-ci: don't depend on cbindgen when installed from package 2 years ago
Jason Ish e786297497 github-ci: update actions/checkout 2 years ago
Jason Ish 32d55febed github-ci: update actions/cache 2 years ago
Jason Ish 5bfaeb3bf5 github-ci: update {download,upload} artifact actions
Multiple uploads can no longer use the same name, so give the cbindgen
artifact its own name of "cbindgen". Requires an additional download
for each build depending on this cbindgen artifact.
2 years ago
Jason Ish 8522256aaa github-ci: use all cores available
GitHub action Linux runners now have 4 cores, instead of hardcoding
the number, use nproc to determine how many cores are available and
use them.
2 years ago
Jason Ish 6922fef4ab github-ci: move centos-7 build to its own workflow
CentOS 7 requires older actions due to newer GitHub actions depending
on a newer glibc. So move to its own workflow file so the main builds
can move forward to newer versions of actions.
2 years ago
Jeff Lucovsky 9fe00ff710 config/jansson: Remove excess libjansson mentions
Issue: 6712

Remove multiple occurrences of libjansson installation packages.
2 years ago
Jeff Lucovsky ee6208be9d config/nss: Remove libnspr/libnss traces
Issue: 6712
2 years ago
Victor Julien c82d93490c github/action: fix Debian 12 intermittent failures
Parallel builds caused issues during `cargo vendor`. So do just a single
thread build.

 make[4]: Entering directory '/__w/suricata/suricata/rust'
cbindgen --config /__w/suricata/suricata/rust/cbindgen.toml \
	--quiet --output /__w/suricata/suricata/rust/dist/rust-bindings.h
CARGO_HOME="/github/home/.cargo"  /usr/bin/cargo vendor
    Blocking waiting for file lock on package cache
    Blocking waiting for file lock on package cache
ERROR: Couldn't execute `cargo metadata` with manifest "/__w/suricata/suricata/rust/Cargo.toml": Metadata(Output { status: ExitStatus(unix_wait_status(25856)), stdout: "", stderr: "    Blocking waiting for file lock on package cache\n    Blocking waiting for file lock on package cache\nerror: failed to download `adler v1.0.2`\n\nCaused by:\n  unable to get packages from source\n\nCaused by:\n  failed to parse manifest at `/github/home/.cargo/registry/src/github.com-1ecc6299db9ec823/adler-1.0.2/Cargo.toml`\n\nCaused by:\n  no targets specified in the manifest\n  either src/lib.rs, src/main.rs, a [lib] section, or [[bin]] section must be present\n" })
ERROR: Couldn't generate bindings for /__w/suricata/suricata/rust.
make[4]: *** [Makefile:597: dist/rust-bindings.h] Error 1
make[4]: *** Waiting for unfinished jobs....
3 years ago
Vincent Li 64d12aacc8 ebpf: Update eBPF map to BTF defined map
legacy map definition is removed from libbpf1.0+.
update the legacy map definition to BTF defined map.

Distros with < libbpf1.0 (0.5, 0.6, 0.7, 0.8) bpf_helpers.h
support BTF map definition, this change does not break
old libbpf and support new libpbf1.0+.

Bug: #6250

Signed-off-by: Vincent Li <vincent.mc.li@gmail.com>
Co-authored-by: Victor Julien <vjulien@oisf.net>
3 years ago
Jason Ish d2b25af3f4 examples: add an example plugin of an eve filetype
This is an example of what adding plugin examples to the Suricata repo
could look like.

This plugin is an example plugin for an EVE filetype. It could be
extended to support outputs like Redis, syslog, etc.

There is one issue with adding plugins like this to an autotools
project, the project can't be built with --disable-shared, which is
more of an autotools limitation, and not really a Suricata issue.
Suricata built with --disable-shared will load plugins just fine.

Note that the examples directory was added as DIST_SUBDIRS as we don't
want normal builds to recurse into it and attempt to build the plugin,
its just an example, but we still need to keep distcheck happy.
3 years ago
Jason Ish 2b9603d94d github-ci: cancel previous builds workflow for branch
On a push of the same branch, cancel the previous running builds.yml
workflow.
3 years ago
Victor Julien 741ba51c1e github-ci: Fedora 37 to 39; use packaged cbindgen 3 years ago
Lukas Sismis c53086575a dpdk: update DPDK builder versions 3 years ago
Jeff Lucovsky e65c052414 build/nss: Remove libnss from CI 3 years ago
Shivani Bhardwaj a4f670622e workflows: use s-v --debug-failed 3 years ago
Jason Ish f511b176bf github-ci: don't build docs in almalinux:8, centos:8
Our docs require a newer version of Sphinx.
3 years ago
Victor Julien 7f822ba053 github-ci: run cocci in fedora 38 3 years ago
Jason Ish 4ccc9aed01 github-ci: remove fedora 36 builds
Fedora 36 is now EOL.
3 years ago
Jason Ish 84674f4205 github-ci: update rust versions
New minimum Rust version: 1.63.0.
Current latest known good version: 1.70.0.

Add test specifically for MSRV as we didn't have one.

Ticket: #4163
3 years ago
Jason Ish ebdf482580 github-ci: add CentOS Stream builders
Builders for CentOS Stream 8 and 9.
3 years ago
Jason Ish ca68b6b994 github-ci: replace dist builder with Debian 12
Add new dist builder job based on Debian 12. Debian 12 gives us news
Sphinx that AlmaLinux 8, plus avoids any potential disruption in the
RHEL rebuild ecosystem.

Also make dist building its own job so it finishes quicker, allowing
other jobs to proceed.  The new non-dist building Debian 12 job will
still do a complete distcheck, as do other jobs.
3 years ago
Jason Ish 96dd6a7ca0 github-ci: add Debian 12 builder 3 years ago
Jason Ish f870dcd4cc github-ci: allow pull request URL in SV_BRANCH
Allow the SV_BRANCH variable to contain the full link to an
OISF/suricata-verify pull request. This will cause GitHub to create a
cross-link for us.
3 years ago
Jason Ish 83afccd932 github-ci: update action: setup-msys2
Use @v2, hopefully the dependency bot will keep it up to date now.
3 years ago
Jason Ish d576be2452 github-ci: update actions/cache to v3.3.1 3 years ago
Jason Ish 3dfd5ddaed github-ci: use same version (3.0.2) for actions/download-artifact 3 years ago
Jason Ish 04ba1a7ef6 github-ci: update actions/checkout to v3.5.3 3 years ago
Jason Ish 6d7923c80b github-ci: check for suricata-update example configuration files
Check that the Suricata-Update example configuration files are
installed.
3 years ago
Jason Ish f8c54bc7a4 github-ci: add workflow_dispatch
A workflow dispatch allows us to manually a trigger a workflow with
arguments. This dispatch allows us to use the "gh" cli command to
trigger a workflow run with our libhtp/su/sv branch and repo variables
set. For example:

  gh run builds.yml -f SV_REPO=jasonish/suricata-verify -f SV_BRANCH=pr/10
3 years ago
Victor Julien 74326a43e7 github-ci: add windivert build 3 years ago
Victor Julien fb7ff5b61c github-ci: spelling 3 years ago
Victor Julien e717c2e0ec github-ci: remove debian 9 as it is EOL 3 years ago
Jason Ish 915f487a1c github-ci: update Fedora 36 cov build to Fedora 38
As Fedora 36 will be EOL in a month.
3 years ago
Jason Ish bcbceb13f8 github-ci: update non-root build to Fedora 37
As Fedora 36 will be EOL in a month.
3 years ago
Jason Ish b0bc95d7c1 github-ci: add Fedora 38 builds 3 years ago
Jason Ish 3974142b41 github-ci: use cbindgen from packages on almalinux:9
AlmaLinux 9 has cbindgen available from the package repositories.
3 years ago
Jason Ish fa651606a0 github-ci: add Fedora 37 builders 3 years ago
Jason Ish 4105ac436e github-ci: add Fedora 36 gcc builder
The existing Fedora 36 builder used clang. Add a gcc builder as it can
show different errors.
3 years ago
Jason Ish 04fb0189a7 github-ci: replace Fedora no-jansson build with AlmaLinux
Use AlmaLinux 9 for the no-jansson test instead of Fedora as it will
need to be updated much less.
3 years ago
Jason Ish dd72a64c53 github-ci: remove Fedora 35 build: EOL 3 years ago
Jason Ish e32d01d01b github-ci: enable asan for Ubuntu debug-validation test 3 years ago
Jason Ish 497a6e7ab7 github-ci: fedora non-root: remove external script usage
In the end, its not needed and makes it easier to copy and paste to a
new test.
3 years ago
Jason Ish ec253e54cc github-ci: use bundle.sh script for libhtp, suricata-update
Update the GitHub CI workflow to use the bundle.sh script to pull in
Suricata-Update and libhtp. This means one less place where defaults
are hardcoded and can get out of sync.

This also simplifies the variable names that can be embedded in a pull
request message to use the same variable names that bundle.sh
expects. Of note, this removes the _PR variant, instead a branch name
of "pr/N" can be used to specify a PR.
3 years ago
Lukas Sismis 4f3e1279f5 github-ci: Add Netmap build to GH actions
Issue: #5803
3 years ago
Jason Ish b734676617 github-ci: add Debian 11 builder with XDP 3 years ago
Philippe Antoine 96b48d7104 github: avoid bash escaping
so as to allow ' in github discussion and get CI green
3 years ago
Jason Ish 2dc157ed9e github-ci: dump github context and pr body
For debugging the parsing of suricata-verify-pr.
3 years ago
Jason Ish 102a022898 github-ci: annotate job with s-v info 3 years ago
Lukas Sismis 1c8205e6b1 dpdk: add Github action to build Suricata with all available (LTS) DPDK versions 4 years ago
dependabot[bot] ad7baad4a0 github-actions: bump actions/download-artifact from 3.0.1 to 3.0.2
Bumps [actions/download-artifact](https://github.com/actions/download-artifact) from 3.0.1 to 3.0.2.
- [Release notes](https://github.com/actions/download-artifact/releases)
- [Commits](9782bd6a98...9bc31d5ccc)

---
updated-dependencies:
- dependency-name: actions/download-artifact
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
4 years ago
dependabot[bot] 87420c8083 github-actions: bump actions/upload-artifact from 3.1.1 to 3.1.2
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 3.1.1 to 3.1.2.
- [Release notes](https://github.com/actions/upload-artifact/releases)
- [Commits](83fd05a356...0b7f8abb15)

---
updated-dependencies:
- dependency-name: actions/upload-artifact
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
4 years ago
dependabot[bot] c091e65662 github-actions: bump actions/checkout from 3.2.0 to 3.3.0
Bumps [actions/checkout](https://github.com/actions/checkout) from 3.2.0 to 3.3.0.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/v3.2.0...v3.3.0)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
4 years ago
dependabot[bot] b4538134fa github-actions: bump actions/checkout from 3.1.0 to 3.2.0
Bumps [actions/checkout](https://github.com/actions/checkout) from 3.1.0 to 3.2.0.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/v3.1.0...v3.2.0)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
4 years ago
Jason Ish a2a920afb0 github-ci: verify generated rust code is rustfmt and clippy clean 4 years ago
Jason Ish 712d80107f setup-app-layer: remove generator for C parsers
Ticket: 4939
4 years ago
Jason Ish 986212c19d github-ci: add app-layer-template builder
Creates a protocol parser and logger and builds.
4 years ago
Jason Ish 23424821be github-ci: rename alma to almalinux; 8.4 to 8 4 years ago
Jason Ish aa36e9e37f github-ci: enable lua on Fedora 36 build
Not many of the jobs that run S-V enable Lua, enable Lua for Fedora 36
which also runs S-V.
4 years ago
Richard McConnell 9b43481680 af-xdp: Configure build with AF_XDP support 4 years ago
Jason Ish 64fab3be04 github-ci: non-root builder
All the GitHub CI jobs run as root inside a container. This means the
testing is done in a different environment than a developer typically
uses, running as a user.

Add a job that does the build as a non-root user.
4 years ago
Jason Ish bf1c185c03 github-ci/centos:7: cache yum RPMs 4 years ago
Jason Ish 1c13efb8d4 github-ci/windows: cache cargo artifacts 4 years ago
Jason Ish 6da066cc53 github-ci/macos: don't force cbindgen
We want to use binary from the cache if available.
4 years ago
Jason Ish 0dddfbc8e6 github-ci: cache RPMs on dnf distros 4 years ago
Jason Ish 814a76a217 github-ci: better .cargo caching 4 years ago
Philippe Antoine 7fd3aaa81c ci: build with -Werror for -Wimplicit-int-conversion
So that CI gets red
4 years ago
Philippe Antoine 7cfc45a6f8 ci: adds one build with hyperscan 4 years ago
Philippe Antoine fbccd74f89 ci: adds build with luajit 4 years ago
dependabot[bot] 6a9b7cf977 github-actions: bump actions/cache from 3.0.10 to 3.0.11
Bumps [actions/cache](https://github.com/actions/cache) from 3.0.10 to 3.0.11.
- [Release notes](https://github.com/actions/cache/releases)
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md)
- [Commits](https://github.com/actions/cache/compare/v3.0.10...9b0c1fce7a93df8e3bb8926b0d6e9d89e92f20a7)

---
updated-dependencies:
- dependency-name: actions/cache
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
4 years ago
Richard McConnell 9c2939fb33 workflow: add systemd integration and check
Intergration of systemd is a feature that enables notification of
a running service to the service manager. The workflow now ensures
compilation with systemd and checks the binary has been built against
libsystemd.
4 years ago
dependabot[bot] c3c8472d09 github-actions: bump actions/upload-artifact from 3.1.0 to 3.1.1
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 3.1.0 to 3.1.1.
- [Release notes](https://github.com/actions/upload-artifact/releases)
- [Commits](3cea537223...83fd05a356)

---
updated-dependencies:
- dependency-name: actions/upload-artifact
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
4 years ago
dependabot[bot] 0b0616528f github-actions: bump actions/download-artifact from 3.0.0 to 3.0.1
Bumps [actions/download-artifact](https://github.com/actions/download-artifact) from 3.0.0 to 3.0.1.
- [Release notes](https://github.com/actions/download-artifact/releases)
- [Commits](fb598a63ae...9782bd6a98)

---
updated-dependencies:
- dependency-name: actions/download-artifact
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
4 years ago
dependabot[bot] 2158dbf3ba github-actions: bump actions/checkout from 2 to 3.1.0
Bumps [actions/checkout](https://github.com/actions/checkout) from 2 to 3.1.0.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/v2...v3.1.0)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
4 years ago
dependabot[bot] 2681d21c11 github-actions: bump actions/cache from 3.0.8 to 3.0.10
Bumps [actions/cache](https://github.com/actions/cache) from 3.0.8 to 3.0.10.
- [Release notes](https://github.com/actions/cache/releases)
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md)
- [Commits](fd5de65bc8...56461b9eb0)

---
updated-dependencies:
- dependency-name: actions/cache
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
4 years ago
dependabot[bot] 7771402a3a github-actions: bump codecov/codecov-action from 3.1.0 to 3.1.1
Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action) from 3.1.0 to 3.1.1.
- [Release notes](https://github.com/codecov/codecov-action/releases)
- [Changelog](https://github.com/codecov/codecov-action/blob/master/CHANGELOG.md)
- [Commits](81cd2dc814...d9f34f8cd5)

---
updated-dependencies:
- dependency-name: codecov/codecov-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
4 years ago
Philippe Antoine eb155639c6 ci: build with -Wimplicit-int-conversion
Seems to have got lost on the way in CFLAGS
4 years ago
Victor Julien ad6bea5108 github-ci/codecov: add rust coverage support
Based on Rust 1.63 and LLVM 14. Update the jobs to meet those requirements.

Includes the bundled libhtp coverage now, including libhtp tests.

Ticket: #4278.
4 years ago
Victor Julien 2d308c000d github-ci: disable cppclean as it is too noisy
We can reenable it after the larger cleanup efforts are complete.
4 years ago
Victor Julien 6e1220700d github-ci: bump cbindgen to 0.24.3
This addresses issues around the AppLayerTxData type.
4 years ago
dependabot[bot] 7be28aebc6 github-actions: bump actions/cache from 3.0.7 to 3.0.8
Bumps [actions/cache](https://github.com/actions/cache) from 3.0.7 to 3.0.8.
- [Release notes](https://github.com/actions/cache/releases)
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md)
- [Commits](a7c34adf76...fd5de65bc8)

---
updated-dependencies:
- dependency-name: actions/cache
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
4 years ago
Victor Julien 9353b07292 github: update Rust versions 4 years ago
Victor Julien 3dea69ec83 github: bump ubuntu-18.04 runners to 22.04 4 years ago
dependabot[bot] c8cf25a21a github-actions: bump actions/cache from 3.0.6 to 3.0.7
Bumps [actions/cache](https://github.com/actions/cache) from 3.0.6 to 3.0.7.
- [Release notes](https://github.com/actions/cache/releases)
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md)
- [Commits](https://github.com/actions/cache/compare/v3.0.6...a7c34adf76222e77931dedbf4a45b2e4648ced19)

---
updated-dependencies:
- dependency-name: actions/cache
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
4 years ago
Jason Ish 2b83cc799d github-ci: add AlmaLinux 9 build 4 years ago
Jason Ish d9b6e1d967 github-ci: test execution of suricatasc and suricata-update 4 years ago
dependabot[bot] 8bf45c5f74 github-actions: bump actions/cache from 3.0.5 to 3.0.6
Bumps [actions/cache](https://github.com/actions/cache) from 3.0.5 to 3.0.6.
- [Release notes](https://github.com/actions/cache/releases)
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md)
- [Commits](0865c47f36...f4278025ab)

---
updated-dependencies:
- dependency-name: actions/cache
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
4 years ago
Philippe Antoine e1e03c25c9 ci: update to macos latest 4 years ago
Jason Ish f3d3274e92 github-ci: enable nfqueue on fedora 36 build 4 years ago
Philippe Antoine 301ab96a71 ci: have one github workflow with MSRV 4 years ago
dependabot[bot] 8090cba7c4 github-actions: bump actions/cache from 3.0.4 to 3.0.5
Bumps [actions/cache](https://github.com/actions/cache) from 3.0.4 to 3.0.5.
- [Release notes](https://github.com/actions/cache/releases)
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md)
- [Commits](c3f1317a9e...0865c47f36)

---
updated-dependencies:
- dependency-name: actions/cache
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
4 years ago
Philippe Antoine e69e99f820 ci: checks include are necessary in github 4 years ago
Victor Julien 7ced8de6c4 github/workflows: add cargo for all Ubuntu jobs 4 years ago
dependabot[bot] 130dffed8c github-actions: bump actions/cache from 3.0.3 to 3.0.4
Bumps [actions/cache](https://github.com/actions/cache) from 3.0.3 to 3.0.4.
- [Release notes](https://github.com/actions/cache/releases)
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md)
- [Commits](30f413bfed...c3f1317a9e)

---
updated-dependencies:
- dependency-name: actions/cache
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
4 years ago
Philippe Antoine 49f92d0b94 ci: adds warning flag about integer conversions 4 years ago
dependabot[bot] 0dd7c23fa0 github-actions: bump actions/cache from 3.0.2 to 3.0.3
Bumps [actions/cache](https://github.com/actions/cache) from 3.0.2 to 3.0.3.
- [Release notes](https://github.com/actions/cache/releases)
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md)
- [Commits](48af2dc4a9...30f413bfed)

---
updated-dependencies:
- dependency-name: actions/cache
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
4 years ago
Jason Ish 0b51022337 github-ci: remove fedora 34 build
Fedora 34 goes EOL in early June. The checks in this build are already
covered by the 35 and 36 builds.
4 years ago
Jason Ish 49647ad120 github-ci: bump fedora versions
35 -> 36
34 -> 35
33 -> 34
4 years ago
dependabot[bot] 90573dc9d4 github-actions: bump actions/upload-artifact from 3.0.0 to 3.1.0
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 3.0.0 to 3.1.0.
- [Release notes](https://github.com/actions/upload-artifact/releases)
- [Commits](6673cd052c...3cea537223)

---
updated-dependencies:
- dependency-name: actions/upload-artifact
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
4 years ago
dependabot[bot] ddf9c9dcad github-actions: bump actions/checkout from 3.0.1 to 3.0.2
Bumps [actions/checkout](https://github.com/actions/checkout) from 3.0.1 to 3.0.2.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](dcd71f6466...2541b1294d)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
4 years ago
dependabot[bot] e65b096bf0 github-actions: bump codecov/codecov-action from 3.0.0 to 3.1.0
Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action) from 3.0.0 to 3.1.0.
- [Release notes](https://github.com/codecov/codecov-action/releases)
- [Changelog](https://github.com/codecov/codecov-action/blob/master/CHANGELOG.md)
- [Commits](e3c560433a...81cd2dc814)

---
updated-dependencies:
- dependency-name: codecov/codecov-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
4 years ago
dependabot[bot] 2a89185f04 github-actions: bump actions/upload-artifact from 1 to 3
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 1 to 3.
- [Release notes](https://github.com/actions/upload-artifact/releases)
- [Commits](https://github.com/actions/upload-artifact/compare/v1...6673cd052c4cd6fcf4b4e6e60ea986c889389535)

---
updated-dependencies:
- dependency-name: actions/upload-artifact
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
4 years ago
dependabot[bot] 276cae5d73 github-actions: bump codecov/codecov-action from 2.1.0 to 3
Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action) from 2.1.0 to 3.
- [Release notes](https://github.com/codecov/codecov-action/releases)
- [Changelog](https://github.com/codecov/codecov-action/blob/master/CHANGELOG.md)
- [Commits](f32b3a3741...e3c560433a)

---
updated-dependencies:
- dependency-name: codecov/codecov-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
4 years ago
dependabot[bot] fe444011bc github-actions: bump actions/cache from 2.1.7 to 3.0.2
Bumps [actions/cache](https://github.com/actions/cache) from 2.1.7 to 3.0.2.
- [Release notes](https://github.com/actions/cache/releases)
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md)
- [Commits](937d244753...48af2dc4a9)

---
updated-dependencies:
- dependency-name: actions/cache
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
4 years ago
dependabot[bot] 14125d7361 github-actions: bump actions/download-artifact from 2 to 3
Bumps [actions/download-artifact](https://github.com/actions/download-artifact) from 2 to 3.
- [Release notes](https://github.com/actions/download-artifact/releases)
- [Commits](https://github.com/actions/download-artifact/compare/v2...fb598a63ae348fa914e94cd0ff38f362e927b741)

---
updated-dependencies:
- dependency-name: actions/download-artifact
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
4 years ago
Jason Ish 57a6f30431 github-ci: pin checkout action to latest release 4 years ago
Juliana Fajardini 67af1504b3 devguide: drop use of mscgen script in builds/make
Currently, it seems easier to upload the diagram images to git than to
try to make the image generation script work with out of the tree builds
and other corner cases.

This means, however, that one must activelly remember to update msc
diagram files, run the script and re-add new png files, if those ever
need to be updated. To raise awareness to that, a watermark was added
to the diagram images.

Also removed configuration steps that added mscgen as dependency
(locally and for workflow builds and readthedocs).
4 years ago
Juliana Fajardini 6f77c722a2 devguide: move into userguide as last chapter
Moved devguide dir into userguide dir.
Since the devguide is now incorporated as the last chapter of the
userguide, removed build and configuration files from the devguide
dir, as these are no longer needed.

Task #4909
4 years ago
Victor Julien 251b52ab07 github: bump MSRV and minimum known version 4 years ago
Victor Julien c1be27cb45 github: remove xenial build 4 years ago
Victor Julien 6c240938b5 github-ci: replace failing CentOS 8 by AlmaLinux 8.4 5 years ago
Jason Ish 234a44bf85 github-ci: pin actions to specific versions
Resolve the GitHub scanning pinned-dependencies for most of our GitHub
actions.  The oss-fuzz actions have not been updated.
5 years ago
Victor Julien 7b152d0021 github-ci: update codecov
Update to v2 API.
Pin the version as suggested by Scorecard.
No longer fail on error. This was not found to be very actionable.
5 years ago
Jason Ish ee933794aa github-ci: set workflow permissions to read-all 5 years ago
Jason Ish 5037c86b49 github-ci: add windows build for libpcap 5 years ago
Jason Ish 7b44485b3b github-ci: use curl -L for npcap: follow redirects 5 years ago
Philippe Antoine a6cb539054 ci: do not use ppa for cocci
As this version segfaults
5 years ago
Lukas Sismis 4972021cd4 dpdk: add DPDK test support in Github CI
Add DPDK dependency to the build process in distributions with
a native support of DPDK in their default package managers.
5 years ago
Philippe Antoine 743fb12aa8 ci: adds default warning flag about float conversions 5 years ago
Corey Thomas 7be793f7b4 ci: add fedora 35 to builds 5 years ago
Jason Ish 8b9721b265 github-ci: pin macos build to 10.15
There is currently a build failure with macos-latest (recently updated)
to 11 in the libhtp test suite code. Not sure if there are other
build issues in libhtp or Suricata at this time.
5 years ago
Juliana Fajardini 6c7f06b001 workflows: add mscgen to Ubuntu 18.04 Cocci builds 5 years ago
Philippe Antoine 1dc98cad27 pcre2: remove PCRE1 from CI 5 years ago
Philippe Antoine acb1ab08a2 pcre2: introduce as a new depdendency 5 years ago
Jason Ish a480ec2ba1 github-ci: remove fedora 32 builds (eol)
Promote Fedora versions used in builds to 33 or 34.
5 years ago
Shivani Bhardwaj bfac4ff4d2 ci: use quiet option w suricata-verify 5 years ago
Philippe Antoine 7fa3e8df61 ci: dummy git configuration for rebase 5 years ago
Philippe Antoine 3e81d20a71 ci: rebase specified s-v pr
So that CI does not fail, if suricata PR got upgraded in a new
version, but S-V PR did not get upgraded, and S-V changed
in master
5 years ago
Philippe Antoine 7ca4b13568 qa: use time on fuzz targets being run on corpus 5 years ago
Victor Julien 533c6ff274 github: work around rustc mingw issue
https://github.com/msys2/MINGW-packages/issues/8732#issuecomment-845079799
5 years ago
Jason Ish def636383e github-ci: enable hiredis on fedora 33 build 5 years ago
Simon Dugas f629321de0 ci: update known rust version
Update RUST_VERSION_KNOWN to the latest stable known to succeed. Also
updates the documentation to avoid confusion around the use of this
variable.
5 years ago
Eric Leblond 23b1607d69 github-ci: add ebpf build
Use Debian 10 to build eBPF.
5 years ago
Victor Julien ae29804a28 github-ci: add libnet to ubuntu-20-04-cov-sv builder 5 years ago
Jason Ish 93ce39d450 github-ci: test install of library
Add library install test to Fedora 33 build. In this case the
shared library is disable so the test makes sure it is not
installed.

Also make sure the library and headers are not installed until
explicitly installed.

Add similar to test to an Ubuntu 24.04 build without disable-shared
and check that the shared library is installed.
5 years ago
Jason Ish 325096a07f github-ci: add -fsanitize=address to LDFLAGS for asan builds
With fPIC, -fsanitize-address also needs to be added to LDFLAGS
to build with ASAN support.

Also fix what looks to be a copy and paste typo.
5 years ago
Jason Ish 82ecf64fe6 github-ci: run suricata-verify on centos-7 build 5 years ago
Victor Julien 3ce05a3583 fuzz: run OSS-Fuzz corpus and track coverage 5 years ago
Victor Julien f2e9517434 github: run codecov verify test w/o optimizations 6 years ago
Victor Julien 711cfe5657 github: codecov fix path handling 6 years ago
Victor Julien f0f578444e ci: initial codecov integration 6 years ago
Jason Ish 4e57b5e665 github-ci: don't install libnss/libnspr packages 6 years ago
Jason Ish 18a1fd22c2 github-ci: use python3 in debian builds 6 years ago
Jason Ish 7904ef82d0 github-ci/macos: use brew to install Python 3
The default Python on MacOS is Python 2. Suricata-Verify now
depends on Python 3, so install it with Brew.
6 years ago
Jason Ish 37eff69a37 github-ci: update min Rust version from 1.34.2 to 1.41.1 6 years ago
Jason Ish f09536a936 github-ci: fix centos 8 build
The "PowerTools" repo that we need to enable has been renamed
to "powertools".
6 years ago
Jason Ish 1f1a765132 github-ci: build cbindgen during prep
Instead of building cbindgen in every build, build it once
during prep as a static musl binary to avoid library issues.
6 years ago
Jason Ish f945acf733 github-ci: remove prep directories before upload
Removing the libhtp, suricata-update and suricata-verify directories
before uploading the artifact reduces the upload time from minutes
to seconds.
6 years ago
Jason Ish 42196e932e github-ci: fedora 33 test build (based on fedora 32) 6 years ago
Jason Ish ea36c01a8f github-ci: remove fedora 31 (eol) 6 years ago
Victor Julien 3ea33f5e47 github-ci: CentOS 6 is EOL 6 years ago
Jason Ish bb7f80ef6c github-ci: check for duplicate SIDs in rules/ 6 years ago
Victor Julien 75c0f9bd0a github-ci: windows in builds 6 years ago
Victor Julien a9249cb2f6 github-ci: fix debian 10 test using rustup 6 years ago
Jeff Lucovsky d2c8c9f58e github-ci: Improve body parsing
This commit improves handling of the PR body parsing to eliminate
unneeded characters.
6 years ago
Jason Ish 2ede736116 github-ci: remove deprecated set-env and add-path
Use the new methods for setting an environment variable and
updating the PATH.
6 years ago
Jason Ish 8b38db4a50 github-ci: apply default CFLAGS to all builds 6 years ago