Jason Ish
aa4946547b
github-ci: check formatting and clippy on example rust plugin
2 months ago
Philippe Antoine
5bbe99188b
ci: update rust version to 1.95
2 months ago
Philippe Antoine
891b17277e
ci: check dist rules
...
So that we catch if we add a typo like
app-layer-event:snmp.version_mismatchZZZ;
2 months ago
dependabot[bot]
98979dbfe9
github-actions: bump actions/github-script from 8.0.0 to 9.0.0
...
Bumps [actions/github-script](https://github.com/actions/github-script ) from 8.0.0 to 9.0.0.
- [Release notes](https://github.com/actions/github-script/releases )
- [Commits](ed597411d8...3a2844b7e9 )
---
updated-dependencies:
- dependency-name: actions/github-script
dependency-version: 9.0.0
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
2 months ago
dependabot[bot]
00b5c2f579
github-actions: bump actions/upload-artifact from 7.0.0 to 7.0.1
...
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact ) from 7.0.0 to 7.0.1.
- [Release notes](https://github.com/actions/upload-artifact/releases )
- [Commits](https://github.com/actions/upload-artifact/compare/v7...v7.0.1 )
---
updated-dependencies:
- dependency-name: actions/upload-artifact
dependency-version: 7.0.1
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2 months ago
dependabot[bot]
5dcdcf0de2
github-actions: bump github/codeql-action from 4.35.1 to 4.35.3
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 4.35.1 to 4.35.3.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Commits](https://github.com/github/codeql-action/compare/v4.35.1...v4.35.3 )
---
updated-dependencies:
- dependency-name: github/codeql-action
dependency-version: 4.35.3
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2 months ago
Jason Ish
cdb02a2779
rust/dns: rustfmt
2 months ago
Philippe Antoine
adc0f18463
doc/ci: check keyword links
...
Ticket: 8257
2 months ago
Jason Ish
f5bf76c0ee
examples/plugins/rust: add a rust example plugin
...
Only demonstrates EVE callbacks for now, but I plan to turn this into a
show case of a variety of callbacks a Rust plugin can do as we add Rust
bindings to the ffi crate.
3 months ago
Philippe Antoine
42a85c37f1
scripts: add script to check rules in doc
...
Ticket: 8372
and run it in github CI
3 months ago
Jason Ish
be36e67f52
rust: suppress cargo audit for RUSTSEC-2026-0097
...
Per https://rustsec.org/advisories/RUSTSEC-2026-0097 ,
this issue it not applicable unless the "log" and "thread_rng"
features of rand are enabled. "log" is not enabled in our
dependency chain.
Updating to the fixed version of rand requires an MSRV of 1.85.
Ticket: #8467
3 months ago
Jason Ish
a11aaadd86
plugins: add --plugin command line option to load plugins
...
Add --plugin <PATH> to load an additional plugin from the command
line. This is more convenient than "--set plugins.X" especially when
you may already have a plugins loaded and you want to load an
additional one.
Ticket: 8463
3 months ago
Jason Ish
ecffd6cd54
github-ci: deny warnings in clippy check
...
We currently have some clippy warnings in the ffi crate. They output to
to the terminal but clippy exits with a success code. Typically we want
to fix this, so deny warnings which will cause clippy to exit with an
error code, failing ci.
3 months ago
Jason Ish
70994426d3
github-ci: add --workspace to cargo clippy --fix
...
--fix doesn't appear to apply to all sub-crates unless --workspace is
provided.
3 months ago
dependabot[bot]
bf6824cb49
github-actions: bump codecov/codecov-action from 5.5.2 to 6.0.0
...
Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action ) from 5.5.2 to 6.0.0.
- [Release notes](https://github.com/codecov/codecov-action/releases )
- [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md )
- [Commits](671740ac38...57e3a136b7 )
---
updated-dependencies:
- dependency-name: codecov/codecov-action
dependency-version: 6.0.0
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
3 months ago
dependabot[bot]
b9fac32bbd
github-actions: bump github/codeql-action from 4.32.4 to 4.35.1
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 4.32.4 to 4.35.1.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Commits](https://github.com/github/codeql-action/compare/v4.32.4...v4.35.1 )
---
updated-dependencies:
- dependency-name: github/codeql-action
dependency-version: 4.35.1
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
3 months ago
dependabot[bot]
5ff0ed977c
github-actions: bump actions/download-artifact from 8.0.0 to 8.0.1
...
Bumps [actions/download-artifact](https://github.com/actions/download-artifact ) from 8.0.0 to 8.0.1.
- [Release notes](https://github.com/actions/download-artifact/releases )
- [Commits](70fc10c6e5...3e5f45b2cf )
---
updated-dependencies:
- dependency-name: actions/download-artifact
dependency-version: 8.0.1
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
3 months ago
Victor Julien
49b1382a8b
qa: add nfq based firewall test with live reload
3 months ago
Victor Julien
1c66eec656
qa: add script to test firewall bridge mode
3 months ago
Juliana Fajardini
6f0bb39aaa
workflows: add qa-simulation mode
...
As build flag to (some of the) checks that run suricata-verify:
- AlmaLinux 10 (schema, plugins)
- CentOS Stream 9
- Fedora 43 (Suricata Verify codecov)
- Fedora 43 (clang, debug, asan, wshadow, rust-strict, systemd)
- Fedora 43 (gcc, debug, flto, asan, wshadow, rust-strict)
- Fedora (non-root, debug, clang, asan, wshadow, rust-strict, no-ja)
- Ubuntu 22.04 (Debug Validation)
- Debian 12 (xdp)
- Debian 13 (xdp)
- Debian 12 MSRV
- PF_RING
Related to
Ticket #7885
4 months ago
Juliana Fajardini
17cd814911
workflows: fix minor typo
4 months ago
Victor Julien
bc4a055e73
github-ci: remove coveralls
...
Seems less reliable than codecov, so remove again.
4 months ago
Jason Ish
9cab99fbd3
rust: rust fmt derive crate
4 months ago
Jason Ish
468a13e052
log-cf-common: let mktime determine proper tz
...
In some timezones, LogCustomFormatTest01 was failing as we were
specifying the wrong setting for is_dst. Instead set it to -1 so mktime
can make the decision based on the environment. Appears to fix this test
for "Brazil/East" in the summer.
Add GitHub CI tests to test this specific test with a few different
timezones.
4 months ago
Jason Ish
551f6ded69
github-ci: update almalinux minimal build to use dist archive
...
Update the AlmaLinux recommended minimal build to use the pre built
distribution archive as this is the type of build the documentation is
targetting.
4 months ago
Jason Ish
87dba92bdd
github-ci: update debian/ubuntu minimal build to use dist
...
Update the Ubuntu/Debian minimal recommended build to use the
pre-built dist archive instead of building from git, as that is the
type of build this documentation targets.
Also use the ubuntu:22.04 container. The GitHub provided Ubuntu 22.04
VM appears to contain some new additions like a newer Rust that is not
found on a typical Ubuntu 22.04 installation.
4 months ago
Jason Ish
46d666cdde
github-ci: enable debug for ndpi, pfring and netmap builds
4 months ago
Victor Julien
2658a366ad
qa: move live tests into qa/live dir
...
They are not github specific.
4 months ago
Jason Ish
f711e57e8e
examples/lib/live: a lib example with live capture
...
Simple libpcap example for live capture. Allows listening on multiple
interfaces to show how multiple threads (workers) can be used.
Ticket: #8096
4 months ago
Jason Ish
02e4399059
github-ci: add debug validation to almalinux 10 build
...
After the distcheck, this build doesn't need unittests, so add
debug-validation, as this can trigger assertions in our lib examples
that are tested in this job
This triggers a debug-validation error in the custom library example.
Ticket: #8259
4 months ago
Victor Julien
3068089762
github-ci: disable libmagic on macos
...
5.47 is currently breaking CI, so disable during investigation.
Related to ticket #8342 .
4 months ago
Jason Ish
03f767a094
github-ci: re-enable rpm jobs
4 months ago
Victor Julien
33ddbc3244
github-ci: use --skip-branches in coverage consistently
...
Completes 02f6340972 .
4 months ago
dependabot[bot]
8df4e10018
github-actions: bump actions/download-artifact from 7.0.0 to 8.0.0
...
Bumps [actions/download-artifact](https://github.com/actions/download-artifact ) from 7.0.0 to 8.0.0.
- [Release notes](https://github.com/actions/download-artifact/releases )
- [Commits](37930b1c2a...70fc10c6e5 )
---
updated-dependencies:
- dependency-name: actions/download-artifact
dependency-version: 8.0.0
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
4 months ago
dependabot[bot]
202d1e26c3
github-actions: bump github/codeql-action from 4.32.3 to 4.32.4
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 4.32.3 to 4.32.4.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Commits](https://github.com/github/codeql-action/compare/v4.32.3...v4.32.4 )
---
updated-dependencies:
- dependency-name: github/codeql-action
dependency-version: 4.32.4
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
4 months ago
dependabot[bot]
cfde322f06
github-actions: bump actions/upload-artifact from 6.0.0 to 7.0.0
...
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact ) from 6.0.0 to 7.0.0.
- [Release notes](https://github.com/actions/upload-artifact/releases )
- [Commits](https://github.com/actions/upload-artifact/compare/v6...v7 )
---
updated-dependencies:
- dependency-name: actions/upload-artifact
dependency-version: 7.0.0
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
4 months ago
Lukas Sismis
d4434ef4e8
dpdk: add live run test suite
...
Add live tests to verify that mempool, mempool cache sizes, and
potentially other DPDK features are initialized correctly during the
startup.
Follows up on bugs found in mempool settings on real/bonded devices.
The tests are placed in the new folder qa/live/ after a comment
in https://github.com/OISF/suricata/pull/14896 which indicated other
live tests are going to be moved there as well.
Ticket: 8320
5 months ago
Victor Julien
02f6340972
github-ci: update cov builds
...
Use --skip-branches to avoid countless partial coverage in unittests.
Update from 22.04 to 24.04 and llvm 15 to 19 to support --skip-branches.
5 months ago
Jason Ish
ccd1df99fd
github-ci: add coveralls coverage uploads
5 months ago
Jason Ish
accaf68615
github-ci: fix cov-ut profile file collision
5 months ago
Jason Ish
65e87949c8
github-ci: ignore /github from coverage output
5 months ago
Jason Ish
8c99759dfe
github-ci: ignore /usr and /rustc in coverage
5 months ago
Jason Ish
d3b6bae140
github-ci: upload lcov coverage artifacts
5 months ago
Victor Julien
e991375b04
github-ci: for codecov netns check, account for cargo build dir
...
It's not in /root/ like with container based builds.
5 months ago
Jason Ish
e6513b5117
codecov: upload lcov reports to codecov
...
Seems to fix our issues with codecov.io.
5 months ago
dependabot[bot]
fe5c2250e1
github-actions: bump github/codeql-action from 4.32.0 to 4.32.3
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 4.32.0 to 4.32.3.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Commits](https://github.com/github/codeql-action/compare/v4.32.0...v4.32.3 )
---
updated-dependencies:
- dependency-name: github/codeql-action
dependency-version: 4.32.3
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
5 months ago
Jason Ish
eab5931074
github-ci: merge rust.yml into existing builds.yml build
...
The Rust build in rust.yml was just an AlmaLinux 9 build with some extra
checks. Instead, use an existing AlmaLinux 9 build in builds.yml, make
it use Rustup (there are other AlmaLinux 9 builds that use the RPM), and
add the checks.
Saves us one build in CI.
5 months ago
Jason Ish
2c51744ccc
rust/ffi: stub out a rust ffi crate
...
This crate is for Rust wrappers around the -sys crate which includes
only raw bindings. This is the place to add nice wrappers around those
bindings, however it should remain clear of dependencies on the main
Suricata core crates.
Ticket: #7666
5 months ago
Victor Julien
571681bc29
github-ci: add namespace bond tests with multiple nets
5 months ago
Victor Julien
a8cad83403
github-ci: add namespace af-packet bond test
5 months ago