04ba1a7ef6
github-ci: update actions/checkout to v3.5.3
2 years ago
6d7923c80b
github-ci: check for suricata-update example configuration files
...
Check that the Suricata-Update example configuration files are
installed.
2 years ago
f8c54bc7a4
github-ci: add workflow_dispatch
...
A workflow dispatch allows us to manually a trigger a workflow with
arguments. This dispatch allows us to use the "gh" cli command to
trigger a workflow run with our libhtp/su/sv branch and repo variables
set. For example:
gh run builds.yml -f SV_REPO=jasonish/suricata-verify -f SV_BRANCH=pr/10
2 years ago
af5a0e11e8
github-ci: check for new authors in pull-request
...
On pull request, get a list of commit authors for the pull request and
compare to the list of authors in git master. If any differ, save to
new-authors.txt and upload this as an artifact.
As a workflow-run, download this artifact and if non-empty, add a
comment to the pull-request that new authors may be part of the pull
request.
This 2 step approach is because GitHub actions running in pull-request
context are not allowed to comment on the pull request, instead a
post-workflow workflow has been added that runs in the context of the
repo which can then comment on the pull request.
2 years ago
cc3f3a0a72
github-ci: fix rust check by fixing git directory permissions
...
Due to the update to AlmaLinux 9.2, a new version of git with stricter
permissions was introduced. Mark the directory as safe as we have
done in other builds with newer versions of it.
2 years ago
60902236e4
build: harden rust.yml permissions
...
Signed-off-by: Alex <aleksandrosansan@gmail.com>
2 years ago
74326a43e7
github-ci: add windivert build
2 years ago
fb7ff5b61c
github-ci: spelling
2 years ago
cb66a1e636
github-ci: add padding check to scan-build
2 years ago
d0d6ca4c6e
github-ci: add more scan-build checks
...
Explicitly disable:
security.insecureAPI.DeprecatedOrUnsafeBufferHandling
optin.performance.Padding
2 years ago
fb237e8de3
github-ci: add dpdk, nfqueue, nflog to scan-build
2 years ago
e717c2e0ec
github-ci: remove debian 9 as it is EOL
2 years ago
915f487a1c
github-ci: update Fedora 36 cov build to Fedora 38
...
As Fedora 36 will be EOL in a month.
2 years ago
bcbceb13f8
github-ci: update non-root build to Fedora 37
...
As Fedora 36 will be EOL in a month.
2 years ago
b0bc95d7c1
github-ci: add Fedora 38 builds
2 years ago
3974142b41
github-ci: use cbindgen from packages on almalinux:9
...
AlmaLinux 9 has cbindgen available from the package repositories.
2 years ago
fa651606a0
github-ci: add Fedora 37 builders
2 years ago
4105ac436e
github-ci: add Fedora 36 gcc builder
...
The existing Fedora 36 builder used clang. Add a gcc builder as it can
show different errors.
2 years ago
04fb0189a7
github-ci: replace Fedora no-jansson build with AlmaLinux
...
Use AlmaLinux 9 for the no-jansson test instead of Fedora as it will
need to be updated much less.
2 years ago
dd72a64c53
github-ci: remove Fedora 35 build: EOL
2 years ago
e32d01d01b
github-ci: enable asan for Ubuntu debug-validation test
2 years ago
497a6e7ab7
github-ci: fedora non-root: remove external script usage
...
In the end, its not needed and makes it easier to copy and paste to a
new test.
2 years ago
ec253e54cc
github-ci: use bundle.sh script for libhtp, suricata-update
...
Update the GitHub CI workflow to use the bundle.sh script to pull in
Suricata-Update and libhtp. This means one less place where defaults
are hardcoded and can get out of sync.
This also simplifies the variable names that can be embedded in a pull
request message to use the same variable names that bundle.sh
expects. Of note, this removes the _PR variant, instead a branch name
of "pr/N" can be used to specify a PR.
2 years ago
efeaa6e2c7
github: add scan-build workflow
...
Add scan-build workflow that fails on any warning.
Exclude libhtp as there is still one open issue there.
2 years ago
4f3e1279f5
github-ci: Add Netmap build to GH actions
...
Issue: #5803
2 years ago
b734676617
github-ci: add Debian 11 builder with XDP
2 years ago
96b48d7104
github: avoid bash escaping
...
so as to allow ' in github discussion and get CI green
2 years ago
2dc157ed9e
github-ci: dump github context and pr body
...
For debugging the parsing of suricata-verify-pr.
2 years ago
102a022898
github-ci: annotate job with s-v info
2 years ago
3d8130614e
github-ci/rust: display clippy diff
2 years ago
49e9f51a03
github-ci: fedora non-root: suricata-verify -q
...
Run Suricata-Verify in quiet mode for the non-root build to more
easily find the error when fails.
2 years ago
1c8205e6b1
dpdk: add Github action to build Suricata with all available (LTS) DPDK versions
2 years ago
8bebc2390d
github-actions: bump ossf/scorecard-action from 2.1.1 to 2.1.2
...
Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action ) from 2.1.1 to 2.1.2.
- [Release notes](https://github.com/ossf/scorecard-action/releases )
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md )
- [Commits](15c10fcf1c...e38b1902ae
2 years ago
ad7baad4a0
github-actions: bump actions/download-artifact from 3.0.1 to 3.0.2
...
Bumps [actions/download-artifact](https://github.com/actions/download-artifact ) from 3.0.1 to 3.0.2.
- [Release notes](https://github.com/actions/download-artifact/releases )
- [Commits](9782bd6a98...9bc31d5ccc
2 years ago
87420c8083
github-actions: bump actions/upload-artifact from 3.1.1 to 3.1.2
...
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact ) from 3.1.1 to 3.1.2.
- [Release notes](https://github.com/actions/upload-artifact/releases )
- [Commits](83fd05a356...0b7f8abb15
2 years ago
c091e65662
github-actions: bump actions/checkout from 3.2.0 to 3.3.0
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 3.2.0 to 3.3.0.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](https://github.com/actions/checkout/compare/v3.2.0...v3.3.0 )
---
updated-dependencies:
- dependency-name: actions/checkout
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2 years ago
fc177754d1
github-actions: bump ossf/scorecard-action from 2.0.6 to 2.1.1
...
Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action ) from 2.0.6 to 2.1.1.
- [Release notes](https://github.com/ossf/scorecard-action/releases )
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md )
- [Commits](99c53751e0...15c10fcf1c
2 years ago
b4538134fa
github-actions: bump actions/checkout from 3.1.0 to 3.2.0
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 3.1.0 to 3.2.0.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](https://github.com/actions/checkout/compare/v3.1.0...v3.2.0 )
---
updated-dependencies:
- dependency-name: actions/checkout
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2 years ago
a2a920afb0
github-ci: verify generated rust code is rustfmt and clippy clean
2 years ago
712d80107f
setup-app-layer: remove generator for C parsers
...
Ticket: 4939
2 years ago
986212c19d
github-ci: add app-layer-template builder
...
Creates a protocol parser and logger and builds.
2 years ago
23424821be
github-ci: rename alma to almalinux; 8.4 to 8
2 years ago
aa36e9e37f
github-ci: enable lua on Fedora 36 build
...
Not many of the jobs that run S-V enable Lua, enable Lua for Fedora 36
which also runs S-V.
2 years ago
01badea65c
github-ci: fail if cargo clippy --fix creates a changes
...
Previously this was doing fixups and only warning, not erroring. Which
could made the following clippy command pass.
2 years ago
9b43481680
af-xdp: Configure build with AF_XDP support
2 years ago
64fab3be04
github-ci: non-root builder
...
All the GitHub CI jobs run as root inside a container. This means the
testing is done in a different environment than a developer typically
uses, running as a user.
Add a job that does the build as a non-root user.
2 years ago
bf1c185c03
github-ci/centos:7: cache yum RPMs
2 years ago
1c13efb8d4
github-ci/windows: cache cargo artifacts
2 years ago
6da066cc53
github-ci/macos: don't force cbindgen
...
We want to use binary from the cache if available.
2 years ago
0dddfbc8e6
github-ci: cache RPMs on dnf distros
2 years ago
814a76a217
github-ci: better .cargo caching
2 years ago
222f2ac1c5
ci: remove unnecessary write permission to github workflow
2 years ago
7fd3aaa81c
ci: build with -Werror for -Wimplicit-int-conversion
...
So that CI gets red
2 years ago
7cfc45a6f8
ci: adds one build with hyperscan
2 years ago
fbccd74f89
ci: adds build with luajit
2 years ago
ce66c26afc
ci: cargo clippy run option
...
As clippy does not recognize git which is above
2 years ago
6a9b7cf977
github-actions: bump actions/cache from 3.0.10 to 3.0.11
...
Bumps [actions/cache](https://github.com/actions/cache ) from 3.0.10 to 3.0.11.
- [Release notes](https://github.com/actions/cache/releases )
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md )
- [Commits](https://github.com/actions/cache/compare/v3.0.10...9b0c1fce7a93df8e3bb8926b0d6e9d89e92f20a7 )
---
updated-dependencies:
- dependency-name: actions/cache
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2 years ago
9c2939fb33
workflow: add systemd integration and check
...
Intergration of systemd is a feature that enables notification of
a running service to the service manager. The workflow now ensures
compilation with systemd and checks the binary has been built against
libsystemd.
2 years ago
c3c8472d09
github-actions: bump actions/upload-artifact from 3.1.0 to 3.1.1
...
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact ) from 3.1.0 to 3.1.1.
- [Release notes](https://github.com/actions/upload-artifact/releases )
- [Commits](3cea537223...83fd05a356
2 years ago
0b0616528f
github-actions: bump actions/download-artifact from 3.0.0 to 3.0.1
...
Bumps [actions/download-artifact](https://github.com/actions/download-artifact ) from 3.0.0 to 3.0.1.
- [Release notes](https://github.com/actions/download-artifact/releases )
- [Commits](fb598a63ae...9782bd6a98
2 years ago
a11f51f4d3
github-ci: running clippy with all features
...
Without it, it own't see the usage of variables in SCDebugLog macros,
etc.
2 years ago
cb8c9d9617
github-actions: bump ossf/scorecard-action from 2.0.4 to 2.0.6
...
Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action ) from 2.0.4 to 2.0.6.
- [Release notes](https://github.com/ossf/scorecard-action/releases )
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md )
- [Commits](e363bfca00...99c53751e0
2 years ago
2158dbf3ba
github-actions: bump actions/checkout from 2 to 3.1.0
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 2 to 3.1.0.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](https://github.com/actions/checkout/compare/v2...v3.1.0 )
---
updated-dependencies:
- dependency-name: actions/checkout
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
2 years ago
2681d21c11
github-actions: bump actions/cache from 3.0.8 to 3.0.10
...
Bumps [actions/cache](https://github.com/actions/cache ) from 3.0.8 to 3.0.10.
- [Release notes](https://github.com/actions/cache/releases )
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md )
- [Commits](fd5de65bc8...56461b9eb0
2 years ago
05900b99cd
github-ci: add workflow for rust clippy
2 years ago
7771402a3a
github-actions: bump codecov/codecov-action from 3.1.0 to 3.1.1
...
Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action ) from 3.1.0 to 3.1.1.
- [Release notes](https://github.com/codecov/codecov-action/releases )
- [Changelog](https://github.com/codecov/codecov-action/blob/master/CHANGELOG.md )
- [Commits](81cd2dc814...d9f34f8cd5
2 years ago
5490fe00ab
github-actions: bump ossf/scorecard-action from 2.0.3 to 2.0.4
...
Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action ) from 2.0.3 to 2.0.4.
- [Release notes](https://github.com/ossf/scorecard-action/releases )
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md )
- [Commits](865b409285...e363bfca00
2 years ago
eb155639c6
ci: build with -Wimplicit-int-conversion
...
Seems to have got lost on the way in CFLAGS
2 years ago
ad6bea5108
github-ci/codecov: add rust coverage support
...
Based on Rust 1.63 and LLVM 14. Update the jobs to meet those requirements.
Includes the bundled libhtp coverage now, including libhtp tests.
Ticket: #4278 .
2 years ago
2d308c000d
github-ci: disable cppclean as it is too noisy
...
We can reenable it after the larger cleanup efforts are complete.
2 years ago
30ce63c50f
github-actions: bump ossf/scorecard-action from 1.1.2 to 2.0.3
...
Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action ) from 1.1.2 to 2.0.3.
- [Release notes](https://github.com/ossf/scorecard-action/releases )
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md )
- [Commits](ce330fde6b...865b409285
2 years ago
6e1220700d
github-ci: bump cbindgen to 0.24.3
...
This addresses issues around the AppLayerTxData type.
2 years ago
7be28aebc6
github-actions: bump actions/cache from 3.0.7 to 3.0.8
...
Bumps [actions/cache](https://github.com/actions/cache ) from 3.0.7 to 3.0.8.
- [Release notes](https://github.com/actions/cache/releases )
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md )
- [Commits](a7c34adf76...fd5de65bc8
3 years ago
9353b07292
github: update Rust versions
3 years ago
3dea69ec83
github: bump ubuntu-18.04 runners to 22.04
3 years ago
c8cf25a21a
github-actions: bump actions/cache from 3.0.6 to 3.0.7
...
Bumps [actions/cache](https://github.com/actions/cache ) from 3.0.6 to 3.0.7.
- [Release notes](https://github.com/actions/cache/releases )
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md )
- [Commits](https://github.com/actions/cache/compare/v3.0.6...a7c34adf76222e77931dedbf4a45b2e4648ced19 )
---
updated-dependencies:
- dependency-name: actions/cache
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
3 years ago
2b83cc799d
github-ci: add AlmaLinux 9 build
3 years ago
d9b6e1d967
github-ci: test execution of suricatasc and suricata-update
3 years ago
8bf45c5f74
github-actions: bump actions/cache from 3.0.5 to 3.0.6
...
Bumps [actions/cache](https://github.com/actions/cache ) from 3.0.5 to 3.0.6.
- [Release notes](https://github.com/actions/cache/releases )
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md )
- [Commits](0865c47f36...f4278025ab
3 years ago
e1e03c25c9
ci: update to macos latest
3 years ago
f3d3274e92
github-ci: enable nfqueue on fedora 36 build
3 years ago
301ab96a71
ci: have one github workflow with MSRV
3 years ago
8090cba7c4
github-actions: bump actions/cache from 3.0.4 to 3.0.5
...
Bumps [actions/cache](https://github.com/actions/cache ) from 3.0.4 to 3.0.5.
- [Release notes](https://github.com/actions/cache/releases )
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md )
- [Commits](c3f1317a9e...0865c47f36
3 years ago
e69e99f820
ci: checks include are necessary in github
3 years ago
dc6fff2cca
github-actions: bump ossf/scorecard-action from 1.1.1 to 1.1.2
...
Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action ) from 1.1.1 to 1.1.2.
- [Release notes](https://github.com/ossf/scorecard-action/releases )
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md )
- [Commits](3e15ea8318...ce330fde6b
3 years ago
7ced8de6c4
github/workflows: add cargo for all Ubuntu jobs
3 years ago
130dffed8c
github-actions: bump actions/cache from 3.0.3 to 3.0.4
...
Bumps [actions/cache](https://github.com/actions/cache ) from 3.0.3 to 3.0.4.
- [Release notes](https://github.com/actions/cache/releases )
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md )
- [Commits](30f413bfed...c3f1317a9e
3 years ago
49f92d0b94
ci: adds warning flag about integer conversions
3 years ago
8377b9dc7c
github-actions: bump github/codeql-action from 1 to 2
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 1 to 2.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](https://github.com/github/codeql-action/compare/v1...v2 )
---
updated-dependencies:
- dependency-name: github/codeql-action
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
3 years ago
42a661f028
ci: adds CodeQL workflow and LGTM support
...
Ticket: #5307
3 years ago
51c78680d2
github-actions: bump ossf/scorecard-action from 1.1.0 to 1.1.1
...
Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action ) from 1.1.0 to 1.1.1.
- [Release notes](https://github.com/ossf/scorecard-action/releases )
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md )
- [Commits](5c8bc69dc8...3e15ea8318
3 years ago
41314e0830
github-actions: bump github/codeql-action from 2.1.11 to 2.1.12
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.1.11 to 2.1.12.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](a3a6c128d7...27ea8f8fe5
3 years ago
0dd7c23fa0
github-actions: bump actions/cache from 3.0.2 to 3.0.3
...
Bumps [actions/cache](https://github.com/actions/cache ) from 3.0.2 to 3.0.3.
- [Release notes](https://github.com/actions/cache/releases )
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md )
- [Commits](48af2dc4a9...30f413bfed
3 years ago
fbbf23b930
github-actions: bump ossf/scorecard-action from 1.0.4 to 1.1.0
...
Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action ) from 1.0.4 to 1.1.0.
- [Release notes](https://github.com/ossf/scorecard-action/releases )
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md )
- [Commits](c1aec4ac82...5c8bc69dc8
3 years ago
0b51022337
github-ci: remove fedora 34 build
...
Fedora 34 goes EOL in early June. The checks in this build are already
covered by the 35 and 36 builds.
3 years ago
49647ad120
github-ci: bump fedora versions
...
35 -> 36
34 -> 35
33 -> 34
3 years ago
477a6f3dd2
github-actions: bump github/codeql-action from 2.1.9 to 2.1.11
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.1.9 to 2.1.11.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](7502d6e991...a3a6c128d7
3 years ago
90573dc9d4
github-actions: bump actions/upload-artifact from 3.0.0 to 3.1.0
...
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact ) from 3.0.0 to 3.1.0.
- [Release notes](https://github.com/actions/upload-artifact/releases )
- [Commits](6673cd052c...3cea537223
3 years ago
83ca75fc3a
github-actions: bump github/codeql-action from 2.1.8 to 2.1.9
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.1.8 to 2.1.9.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](1ed1437484...7502d6e991
3 years ago
ddf9c9dcad
github-actions: bump actions/checkout from 3.0.1 to 3.0.2
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 3.0.1 to 3.0.2.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](dcd71f6466...2541b1294d
3 years ago
e65b096bf0
github-actions: bump codecov/codecov-action from 3.0.0 to 3.1.0
...
Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action ) from 3.0.0 to 3.1.0.
- [Release notes](https://github.com/codecov/codecov-action/releases )
- [Changelog](https://github.com/codecov/codecov-action/blob/master/CHANGELOG.md )
- [Commits](e3c560433a...81cd2dc814
3 years ago
2a89185f04
github-actions: bump actions/upload-artifact from 1 to 3
...
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact ) from 1 to 3.
- [Release notes](https://github.com/actions/upload-artifact/releases )
- [Commits](https://github.com/actions/upload-artifact/compare/v1...6673cd052c4cd6fcf4b4e6e60ea986c889389535 )
---
updated-dependencies:
- dependency-name: actions/upload-artifact
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
3 years ago
276cae5d73
github-actions: bump codecov/codecov-action from 2.1.0 to 3
...
Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action ) from 2.1.0 to 3.
- [Release notes](https://github.com/codecov/codecov-action/releases )
- [Changelog](https://github.com/codecov/codecov-action/blob/master/CHANGELOG.md )
- [Commits](f32b3a3741...e3c560433a
3 years ago
725e1b6e4c
github-actions: bump github/codeql-action from 1.0.26 to 2.1.8
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 1.0.26 to 2.1.8.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](5f53256358...1ed1437484
3 years ago
fe444011bc
github-actions: bump actions/cache from 2.1.7 to 3.0.2
...
Bumps [actions/cache](https://github.com/actions/cache ) from 2.1.7 to 3.0.2.
- [Release notes](https://github.com/actions/cache/releases )
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md )
- [Commits](937d244753...48af2dc4a9
3 years ago
14125d7361
github-actions: bump actions/download-artifact from 2 to 3
...
Bumps [actions/download-artifact](https://github.com/actions/download-artifact ) from 2 to 3.
- [Release notes](https://github.com/actions/download-artifact/releases )
- [Commits](https://github.com/actions/download-artifact/compare/v2...fb598a63ae348fa914e94cd0ff38f362e927b741 )
---
updated-dependencies:
- dependency-name: actions/download-artifact
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
3 years ago
ebcf6b6acf
github-actions: bump ossf/scorecard-action from 1.0.1 to 1.0.4
...
Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action ) from 1.0.1 to 1.0.4.
- [Release notes](https://github.com/ossf/scorecard-action/releases )
- [Commits](e3e75cf2ff...c1aec4ac82
3 years ago
ad9c8fab25
github-ci: set safe directory before reset
...
While the latest checkout action does set the "safe.directory"
parameter, it doesn't appear to stick for the following "git fetch", so
call this command again.
3 years ago
57a6f30431
github-ci: pin checkout action to latest release
3 years ago
67af1504b3
devguide: drop use of mscgen script in builds/make
...
Currently, it seems easier to upload the diagram images to git than to
try to make the image generation script work with out of the tree builds
and other corner cases.
This means, however, that one must activelly remember to update msc
diagram files, run the script and re-add new png files, if those ever
need to be updated. To raise awareness to that, a watermark was added
to the diagram images.
Also removed configuration steps that added mscgen as dependency
(locally and for workflow builds and readthedocs).
3 years ago
6f77c722a2
devguide: move into userguide as last chapter
...
Moved devguide dir into userguide dir.
Since the devguide is now incorporated as the last chapter of the
userguide, removed build and configuration files from the devguide
dir, as these are no longer needed.
Task #4909
3 years ago
251b52ab07
github: bump MSRV and minimum known version
3 years ago
c1be27cb45
github: remove xenial build
3 years ago
d1071c151c
ci: formatting errors are now fatal
3 years ago
6c240938b5
github-ci: replace failing CentOS 8 by AlmaLinux 8.4
3 years ago
f8e143030c
github-ci: update commit and formatting containers
...
Update the Ubuntu containers for the commit and formatting checks to
Ubuntu 20.04.
The latest version of the checkout action requires git v2.18 in order to
checkout the code as a git repo, which is required for these workflows.
With older versions of git the action will download the code as a
tarball and lack the .git directory.
3 years ago
234a44bf85
github-ci: pin actions to specific versions
...
Resolve the GitHub scanning pinned-dependencies for most of our GitHub
actions. The oss-fuzz actions have not been updated.
3 years ago
7b152d0021
github-ci: update codecov
...
Update to v2 API.
Pin the version as suggested by Scorecard.
No longer fail on error. This was not found to be very actionable.
3 years ago
ee933794aa
github-ci: set workflow permissions to read-all
3 years ago
5037c86b49
github-ci: add windows build for libpcap
3 years ago
7b44485b3b
github-ci: use curl -L for npcap: follow redirects
3 years ago
cc746b4594
ci: adds scorecard analysis GitHub workflow
3 years ago
a6cb539054
ci: do not use ppa for cocci
...
As this version segfaults
3 years ago
4972021cd4
dpdk: add DPDK test support in Github CI
...
Add DPDK dependency to the build process in distributions with
a native support of DPDK in their default package managers.
3 years ago
743fb12aa8
ci: adds default warning flag about float conversions
3 years ago
7be793f7b4
ci: add fedora 35 to builds
3 years ago
8b9721b265
github-ci: pin macos build to 10.15
...
There is currently a build failure with macos-latest (recently updated)
to 11 in the libhtp test suite code. Not sure if there are other
build issues in libhtp or Suricata at this time.
3 years ago
d18fc4f3f0
github-ci: use sccache for gcc in commits workflow
...
Previously was only used for Rust.
3 years ago
6c7f06b001
workflows: add mscgen to Ubuntu 18.04 Cocci builds
3 years ago
1dc98cad27
pcre2: remove PCRE1 from CI
3 years ago
acb1ab08a2
pcre2: introduce as a new depdendency
3 years ago
a480ec2ba1
github-ci: remove fedora 32 builds (eol)
...
Promote Fedora versions used in builds to 33 or 34.
3 years ago
bfac4ff4d2
ci: use quiet option w suricata-verify
4 years ago
7fa3e8df61
ci: dummy git configuration for rebase
4 years ago
3e81d20a71
ci: rebase specified s-v pr
...
So that CI does not fail, if suricata PR got upgraded in a new
version, but S-V PR did not get upgraded, and S-V changed
in master
4 years ago
7ca4b13568
qa: use time on fuzz targets being run on corpus
4 years ago
533c6ff274
github: work around rustc mingw issue
...
https://github.com/msys2/MINGW-packages/issues/8732#issuecomment-845079799
4 years ago
def636383e
github-ci: enable hiredis on fedora 33 build
4 years ago
f629321de0
ci: update known rust version
...
Update RUST_VERSION_KNOWN to the latest stable known to succeed. Also
updates the documentation to avoid confusion around the use of this
variable.
4 years ago
23b1607d69
github-ci: add ebpf build
...
Use Debian 10 to build eBPF.
4 years ago
ae29804a28
github-ci: add libnet to ubuntu-20-04-cov-sv builder
4 years ago
93ce39d450
github-ci: test install of library
...
Add library install test to Fedora 33 build. In this case the
shared library is disable so the test makes sure it is not
installed.
Also make sure the library and headers are not installed until
explicitly installed.
Add similar to test to an Ubuntu 24.04 build without disable-shared
and check that the shared library is installed.
4 years ago
325096a07f
github-ci: add -fsanitize=address to LDFLAGS for asan builds
...
With fPIC, -fsanitize-address also needs to be added to LDFLAGS
to build with ASAN support.
Also fix what looks to be a copy and paste typo.
4 years ago
82ecf64fe6
github-ci: run suricata-verify on centos-7 build
4 years ago
3ce05a3583
fuzz: run OSS-Fuzz corpus and track coverage
4 years ago
f2e9517434
github: run codecov verify test w/o optimizations
4 years ago
711cfe5657
github: codecov fix path handling
4 years ago
f0f578444e
ci: initial codecov integration
4 years ago
4e57b5e665
github-ci: don't install libnss/libnspr packages
4 years ago
18a1fd22c2
github-ci: use python3 in debian builds
4 years ago
7904ef82d0
github-ci/macos: use brew to install Python 3
...
The default Python on MacOS is Python 2. Suricata-Verify now
depends on Python 3, so install it with Brew.
4 years ago
37eff69a37
github-ci: update min Rust version from 1.34.2 to 1.41.1
4 years ago
49ca070446
github-ci: use a unique id for the commit check cargo cache
...
All builds have been using the same cache id for ~/.cargo which
could lead us to conflict situations which is what I think we are
seeing with the commit-check job.
4 years ago
f09536a936
github-ci: fix centos 8 build
...
The "PowerTools" repo that we need to enable has been renamed
to "powertools".
4 years ago
858ab07775
github-ci: add sccache to per-commit check
...
Also use the pre-build cbindgen binary.
Hopefully speeds up the build process.
4 years ago
1f1a765132
github-ci: build cbindgen during prep
...
Instead of building cbindgen in every build, build it once
during prep as a static musl binary to avoid library issues.
4 years ago
f945acf733
github-ci: remove prep directories before upload
...
Removing the libhtp, suricata-update and suricata-verify directories
before uploading the artifact reduces the upload time from minutes
to seconds.
4 years ago
42196e932e
github-ci: fedora 33 test build (based on fedora 32)
4 years ago
ea36c01a8f
github-ci: remove fedora 31 (eol)
4 years ago
3ea33f5e47
github-ci: CentOS 6 is EOL
4 years ago
bb7f80ef6c
github-ci: check for duplicate SIDs in rules/
4 years ago
75c0f9bd0a
github-ci: windows in builds
4 years ago
dfadd03b6f
ci: updates github ci add-path mechanism
4 years ago
a9249cb2f6
github-ci: fix debian 10 test using rustup
4 years ago
f29982c03c
ci: adds cifuzz workflow
4 years ago
d2c8c9f58e
github-ci: Improve body parsing
...
This commit improves handling of the PR body parsing to eliminate
unneeded characters.
4 years ago
2ede736116
github-ci: remove deprecated set-env and add-path
...
Use the new methods for setting an environment variable and
updating the PATH.
4 years ago
606750f2a0
github-ci: add windows build with suricata-verify
...
Initial attempt with a few hacks:
- npcap dlls are extracted from the installer and placed in cwd
- cbindgen is installed system wide desipte a preinstalled copy
This does not yet hook into the "prep" build from build.yaml or
support using custom support PRs/branches (SV, SU).
4 years ago
8b38db4a50
github-ci: apply default CFLAGS to all builds
5 years ago
280ab65705
github-ci: add test build without jansson
...
This is to cover a test from Travis CI where we make sure
that ./configure fails if libjansson is not available.
5 years ago
cb963f8682
github-ci: update debian 9 test to use known Rust version
...
Choose Rust 1.39.0 as a known version of Rust that we build against
to see in CI if we build with this version, but fail with latest.
This is to cover a similar test from Travis CI.
5 years ago
b698f66c27
github-ci: enable debug on Fedora 32 build
5 years ago
146a1ee1d7
github-ci: check that configure fails if rust to old
...
Migration of similar test from Travis-CI.
Redmine issue:
https://redmine.openinfosecfoundation.org/issues/3869
5 years ago
975b58c050
github-ci: Ubuntu 20.4 build with -NDEBUG
...
To cover Travis-CI test that builds with -NDEBUG.
Redmine issue:
https://redmine.openinfosecfoundation.org/issues/3869
5 years ago
dfbd38e809
github-ci: ubuntu 20.04 build without nss/nspr
...
Adds a test that builds and tests Suricata without nss/nspr
to replace the similar test on Travis-CI.
Redmine issue:
https://redmine.openinfosecfoundation.org/issues/3869
5 years ago
1ec6307d9d
github-ci: Fedora 32 builder with asan enabled
...
Also enables -Wshadow and rust-strict to cover those cases
from Travis.
Redmine issue:
https://redmine.openinfosecfoundation.org/issues/3868
5 years ago
3a3a9e135a
github-ci: fix building against request libhtp/sv PR
...
The variable name was wrong, causing the libhtp-pr and sv-pr
parameters in the commit message to not be applied.
5 years ago
9f1e49e863
ci: Run formatting check on pull request
5 years ago
0de0c60c88
github-ci: add autoreconf to centos-7 build
...
The prepared distribution packages are failing autoreconf
due to a missing acsite.m4. Add autoreconf to the centos-7
build which uses the prepared package to test for this
issue.
5 years ago
0ae63e85ed
gh-checks: Add enable-debug-validation to test
5 years ago
5d0d630237
github-ci: build rust doc on stable and 1.34.2
...
Nothing is done with the rustdoc, its just build to make
sure it builds with our supported versions of Rust
5 years ago
7d22993a8f
github-ci: allow pull-request to be referenced in pr body
...
For example, to use suricata-verify pr #239 :
suricata-verify-pr: 239
Also update the pull request template to contain the available
parameters that can be set.
5 years ago
ced6656317
github actions: extract repo/branch names from PR message
...
Create a "prep" build that parses libhtp, suricata-update and
suricata-verify repo and branch information from the pull
request message and turn these into artifacts that are
used by the builders
Examples:
libhtp-repo: https://github.com/OISF/libhtp
libhtp-branch: 0.5.x
suricata-verify-repo: http://github.com/OISF/suricata-verify
suricata-verify-branch: master
suricata-update-repo: http://github.com/OISF/suricata-update
suricata-update-branch: master
Other changes:
- checkout@v2 (faster)
- working directory cleanup
5 years ago
4318c1de45
github ci: pin cbindgen to 0.14.1
...
0.14.2 breaks builds with Rust 1.34.0, which we still support.
Also build cbdingen in debug mode. It builds much faster
with minimal runtime performance.
5 years ago
d955acc01c
github-ci: check all commits on pr
...
On a pull request, attempt to compile all commits from
the base branch to the head of the PR branch.
The job is in a separate workflow file to limit it to
pull-requests only, as the base branch is not available
on push (something to look into).
5 years ago
211b193e08
github-ci: on centos-8 build, use distcheck
...
And verify that man page is built.
5 years ago
bcbd8c2ac0
github-ci: build documentation on Ubuntu 18.04
5 years ago
7c0c2e76ee
github-ci: build documentation on Fedora-31 build
...
Install sphinx and latex tools to test the building
of documentation on the Fedora 31 build, including
the PDF.
5 years ago
9b5ccbe4d7
ci: adds a build with make tags
5 years ago
19fe8d9894
ci: add fuzztargets and afl build test
5 years ago
66181ed2e4
ci: enables fuzz targets in one build
...
github workflow wih debian
5 years ago
95e7246b75
rust: bump minimum supported version to 1.34.2
5 years ago
0a1d2fcec3
github-ci: test make after make clean
...
On the CentOS 7 build, test a make after a make clean. Should
catch the case where bundled generated headers files get deleted
when cbindgen is not available to rebuild them.
5 years ago
56528a38dd
github-ci: add .cargo/bin to path on cbindgen install
...
And remove cbindgen from builds that use the distribution
archive.
5 years ago
b573c16dd5
build: cbindgen
...
Rust headers are now generated using cbindgen. If cbindgen is present, they can
be generated during dist, otherwise they will be available for builds.
5 years ago
57b683233d
rust: Don't use --frozen during build.
...
If sources are vendored, we get the same effect of using frozen
with a lock file, and the Cargo.lock is generated based
on the vendored sources.
This also removes the need to ship a Cargo.lock.
Fixed out of source builds with vendored sources.
5 years ago
2ff963db16
github-ci: do distcheck on fedora 31 build
...
There were no distchecks being done on builds from git.
5 years ago
83630015b9
github-ci: make distcheck on centos 7 build
...
Tests distcheck on a build from a distribution archive.
5 years ago
b9515671be
github-ci: use container for 18.04 build
...
As the action runs natively on 18.04 we were not explicitly
setting a container, but this means we're using what GitHub
provides us as a default state which might be broken. Instead
use the standard Ubuntu 18.04 container.
5 years ago
69c00a77b5
github-ci: in a dist build, check that --frozen is being used
...
Verify that ./configure is picking up the vendored Rust sources
when building from a dist archive.
5 years ago
Jason Ish
Alex
Victor Julien
Lukas Sismis
Philippe Antoine
Lukas Sismis
dependabot[bot]
Richard McConnell
Philippe Antoine
BACK Yonah
Juliana Fajardini
Catena cyber
Corey Thomas
Shivani Bhardwaj
Victor Julien
Simon Dugas
Eric Leblond
Jeff Lucovsky
Roland Fischer
Danny Browning