upstream/suricata
1
0
Fork 0
mirror of https://github.com/OISF/suricata.git synced 2026-06-10 09:21:54 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions 8
19112 commits 10 branches 171 tags 204 MiB
Commit graph

554 commits

Author SHA1 Message Date
dependabot[bot]
af0feee379
github-actions: bump github/codeql-action from 4.36.1 to 4.36.2 
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 4.36.1 to 4.36.2.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Commits](https://github.com/github/codeql-action/compare/v4.36.1...v4.36.2)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-version: 4.36.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2026-06-09 07:38:25 +00:00
dependabot[bot]
0eda09f302 github-actions: bump codecov/codecov-action from 6.0.0 to 6.0.1
Some checks failed
builds / AlmaLinux 9 (Minimal/Recommended Build) (push) Has been cancelled
Details
builds / Ubuntu 24.04 (cocci) (push) Has been cancelled
Details
builds / Ubuntu 24.04 (RUSTC+CARGO vars) (push) Has been cancelled
Details
builds / Ubuntu 24.04 (unittests coverage) (push) Has been cancelled
Details
builds / Ubuntu 24.04 (unix socket mode coverage) (push) Has been cancelled
Details
builds / Ubuntu 24.04 (afpacket and dpdk coverage) (push) Has been cancelled
Details
builds / Ubuntu 24.04 (pcap unix socket ASAN) (push) Has been cancelled
Details
builds / Ubuntu 24.04 (afpacket IPS tests in namespaces) (push) Has been cancelled
Details
builds / Ubuntu 24.04 (afpacket and dpdk live tests with ASAN) (push) Has been cancelled
Details
builds / Ubuntu 24.04 (fuzz corpus coverage) (push) Has been cancelled
Details
builds / Ubuntu 20.04 (-DNDEBUG) (push) Has been cancelled
Details
builds / Ubuntu 20.04 (unsupported rust) (push) Has been cancelled
Details
builds / Ubuntu 22.04 (Debug Validation) (push) Has been cancelled
Details
builds / Ubuntu 22.04 (Fuzz) (push) Has been cancelled
Details
builds / Ubuntu 22.04 (Netmap build) (push) Has been cancelled
Details
builds / Ubuntu 22.04 (Minimal/Recommended Build) (push) Has been cancelled
Details
builds / Ubuntu 22.04 (DPDK Build) (push) Has been cancelled
Details
builds / Debian 12 (xdp) (push) Has been cancelled
Details
builds / Debian 13 (xdp) (push) Has been cancelled
Details
builds / Ubuntu 22.04 Dist Builder (push) Has been cancelled
Details
builds / Debian 12 MSRV (push) Has been cancelled
Details
builds / Debian 11 (push) Has been cancelled
Details
builds / MacOS Latest (push) Has been cancelled
Details
builds / FreeBSD 15.0 (push) Has been cancelled
Details
builds / Windows MSYS2 MINGW64 (NPcap) (push) Has been cancelled
Details
builds / Windows MSYS2 MINGW64 (libpcap) (push) Has been cancelled
Details
builds / Windows MSYS2 UCRT64 (libpcap) (push) Has been cancelled
Details
builds / Windows MSYS2 MINGW64 (WinDivert) (push) Has been cancelled
Details
builds / PF_RING (push) Has been cancelled
Details
docs / Ubuntu 22.04 Dist Builder (push) Has been cancelled
Details 
Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action) from 6.0.0 to 6.0.1.
- [Release notes](https://github.com/codecov/codecov-action/releases)
- [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md)
- [Commits](57e3a136b7...e79a6962e0)

---
updated-dependencies:
- dependency-name: codecov/codecov-action
  dependency-version: 6.0.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2026-06-03 18:02:25 +00:00
dependabot[bot]
aa24d7022b github-actions: bump github/codeql-action from 4.35.3 to 4.36.1 
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 4.35.3 to 4.36.1.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Commits](https://github.com/github/codeql-action/compare/v4.35.3...v4.36.1)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-version: 4.36.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2026-06-03 18:02:24 +00:00
dependabot[bot]
87a1521019 github-actions: bump actions/checkout from 6.0.2 to 6.0.3 
Bumps [actions/checkout](https://github.com/actions/checkout) from 6.0.2 to 6.0.3.
- [Release notes](https://github.com/actions/checkout/releases)
- [Commits](https://github.com/actions/checkout/compare/v6.0.2...v6.0.3)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-version: 6.0.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2026-06-03 18:02:24 +00:00
dependabot[bot]
9febbf6149 github-actions: bump vmactions/freebsd-vm from 1.4.5 to 1.4.6 
Bumps [vmactions/freebsd-vm](https://github.com/vmactions/freebsd-vm) from 1.4.5 to 1.4.6.
- [Release notes](https://github.com/vmactions/freebsd-vm/releases)
- [Commits](d1e6581156...a6de9343ef)

---
updated-dependencies:
- dependency-name: vmactions/freebsd-vm
  dependency-version: 1.4.6
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2026-06-03 18:02:23 +00:00
Philippe Antoine
c8a86cdffa ci: move rustfmt to a helper script 2026-06-02 21:16:52 +00:00
Jason Ish
7ec82740cd github-ci: cancel previous nix workflow for branch 
On push, cancel previous nix workflows for the same branch.
 2026-06-02 06:26:12 +00:00
Jason Ish
c0fd86f5b6 github-ci: close PRs updated after being opened 
Enforce our policy of requiring a new pull request whenever changes are
made to an existing one. On any push to an open, non-draft pull request
the workflow comments with the policy and closes the pull request.
 2026-06-02 06:26:12 +00:00
Jason Ish
3806bf4260 util-time: relocate timestamp format unit test from log-cf-common 
log-cf-common is not longer needed with the removal of http-log, but this test
is still valid, so move until util-time.
 2026-06-02 06:26:11 +00:00
Victor Julien
781bd5184e clang-format: support clang 17 
Update Github CI runner to use it.

Bump to Ubuntu 24.04 as well.
 2026-05-29 15:18:50 +00:00
Philippe Antoine
73193c7e6a rust: format pgsql files 
Ticket: 3836
 2026-05-29 15:18:49 +00:00
Philippe Antoine
3bfe6cf4b9 rust: format nfs files 
Ticket: 3836
 2026-05-29 15:18:49 +00:00
Jason Ish
f269e22b67 github-ci: add coverage reporting for the rust example plugin 
Should help reporting coverage on the ffi wrappers only used by plugins.
 2026-05-28 20:49:56 +00:00
Philippe Antoine
07112bc7ae rust: format mqtt files 
Ticket: 3836
 2026-05-28 20:49:56 +00:00
Philippe Antoine
844f2effa3 rust: format modbus files 
Ticket: 3836
 2026-05-28 20:49:56 +00:00
Philippe Antoine
db019ebefe rust: format ike files 
Ticket: 3836
 2026-05-28 20:49:56 +00:00
Philippe Antoine
bcc1e6ae32 rust: format http2 files 
Ticket: 3836
 2026-05-25 16:20:24 +00:00
Philippe Antoine
a35760db9b rust: enforce already formatted directories in CI
Some checks failed
builds / AlmaLinux 9 (no jansson) (push) Has been cancelled
Details
builds / AlmaLinux 9 (Minimal/Recommended Build) (push) Has been cancelled
Details
builds / Ubuntu 24.04 (cocci) (push) Has been cancelled
Details
builds / Ubuntu 24.04 (RUSTC+CARGO vars) (push) Has been cancelled
Details
builds / Ubuntu 24.04 (unittests coverage) (push) Has been cancelled
Details
builds / Ubuntu 24.04 (unix socket mode coverage) (push) Has been cancelled
Details
builds / Ubuntu 24.04 (afpacket and dpdk coverage) (push) Has been cancelled
Details
builds / Ubuntu 24.04 (pcap unix socket ASAN) (push) Has been cancelled
Details
builds / Ubuntu 24.04 (afpacket IPS tests in namespaces) (push) Has been cancelled
Details
builds / Ubuntu 24.04 (afpacket and dpdk live tests with ASAN) (push) Has been cancelled
Details
builds / Ubuntu 24.04 (fuzz corpus coverage) (push) Has been cancelled
Details
builds / Ubuntu 20.04 (-DNDEBUG) (push) Has been cancelled
Details
builds / Ubuntu 20.04 (unsupported rust) (push) Has been cancelled
Details
builds / Ubuntu 22.04 (Debug Validation) (push) Has been cancelled
Details
builds / Ubuntu 22.04 (Fuzz) (push) Has been cancelled
Details
builds / Ubuntu 22.04 (Netmap build) (push) Has been cancelled
Details
builds / Ubuntu 22.04 (Minimal/Recommended Build) (push) Has been cancelled
Details
builds / Ubuntu 22.04 (DPDK Build) (push) Has been cancelled
Details
builds / Debian 12 (xdp) (push) Has been cancelled
Details
builds / Debian 13 (xdp) (push) Has been cancelled
Details
builds / Ubuntu 22.04 Dist Builder (push) Has been cancelled
Details
builds / Debian 12 MSRV (push) Has been cancelled
Details
builds / Debian 11 (push) Has been cancelled
Details
builds / MacOS Latest (push) Has been cancelled
Details
builds / FreeBSD 15.0 (push) Has been cancelled
Details
builds / Windows MSYS2 MINGW64 (NPcap) (push) Has been cancelled
Details
builds / Windows MSYS2 MINGW64 (libpcap) (push) Has been cancelled
Details
builds / Windows MSYS2 UCRT64 (libpcap) (push) Has been cancelled
Details
builds / Windows MSYS2 MINGW64 (WinDivert) (push) Has been cancelled
Details
builds / PF_RING (push) Has been cancelled
Details
2026-05-23 18:01:39 +00:00
Philippe Antoine
1070e733d8 rust: format websocket files 
Ticket: 3836
 2026-05-23 18:01:39 +00:00
Philippe Antoine
89e5332d88 rust: format utils files 
Ticket: 3836
 2026-05-23 18:01:39 +00:00
Philippe Antoine
edf29b0000 rust: format ssh files 
Ticket: 3836
 2026-05-23 18:01:39 +00:00
Philippe Antoine
fe27a2159c rust: format rfb files 
Ticket: 3836
 2026-05-23 18:01:39 +00:00
Philippe Antoine
5cca346f16 rust: format quic files 
Ticket: 3836
 2026-05-23 18:01:39 +00:00
Philippe Antoine
415360d9e8 rust: format ntp files 
Ticket: 3836
 2026-05-23 18:01:39 +00:00
Philippe Antoine
fa864f9c2f rust: format mime files 
Ticket: 3836
 2026-05-23 18:01:39 +00:00
Philippe Antoine
2cfcaec1b0 rust: format ldap files 
Ticket: 3836
 2026-05-23 18:01:39 +00:00
Philippe Antoine
64e7c671cc rust: format ftp files 
Ticket: 3836
 2026-05-23 18:01:38 +00:00
Philippe Antoine
f217e249cb rust: format ffi files 
Ticket: 3836
 2026-05-23 18:01:38 +00:00
Philippe Antoine
f7c14809f4 rust: format enip files 
Ticket: 3836
 2026-05-23 18:01:38 +00:00
Philippe Antoine
e526eb8e2b rust: format bittorrent_dht files 
Ticket: 3836
 2026-05-23 18:01:38 +00:00
Philippe Antoine
f5ac0e201c rust: format asn1 files 
Ticket: 3836
 2026-05-23 18:01:38 +00:00
Philippe Antoine
1ced97bdbb rust: format applayertemplate files 
Ticket: 3836
 2026-05-23 18:01:38 +00:00
Jason Ish
57f76a2462 github-ci: update Fedora builds to Fedora 44
Some checks failed
builds / AlmaLinux 9 (no jansson) (push) Has been cancelled
Details
builds / AlmaLinux 9 (Minimal/Recommended Build) (push) Has been cancelled
Details
builds / Ubuntu 24.04 (cocci) (push) Has been cancelled
Details
builds / Ubuntu 24.04 (RUSTC+CARGO vars) (push) Has been cancelled
Details
builds / Ubuntu 24.04 (unittests coverage) (push) Has been cancelled
Details
builds / Ubuntu 24.04 (unix socket mode coverage) (push) Has been cancelled
Details
builds / Ubuntu 24.04 (afpacket and dpdk coverage) (push) Has been cancelled
Details
builds / Ubuntu 24.04 (pcap unix socket ASAN) (push) Has been cancelled
Details
builds / Ubuntu 24.04 (afpacket IPS tests in namespaces) (push) Has been cancelled
Details
builds / Ubuntu 24.04 (afpacket and dpdk live tests with ASAN) (push) Has been cancelled
Details
builds / Ubuntu 24.04 (fuzz corpus coverage) (push) Has been cancelled
Details
builds / Ubuntu 20.04 (-DNDEBUG) (push) Has been cancelled
Details
builds / Ubuntu 20.04 (unsupported rust) (push) Has been cancelled
Details
builds / Ubuntu 22.04 (Debug Validation) (push) Has been cancelled
Details
builds / Ubuntu 22.04 (Fuzz) (push) Has been cancelled
Details
builds / Ubuntu 22.04 (Netmap build) (push) Has been cancelled
Details
builds / Ubuntu 22.04 (Minimal/Recommended Build) (push) Has been cancelled
Details
builds / Ubuntu 22.04 (DPDK Build) (push) Has been cancelled
Details
builds / Debian 12 (xdp) (push) Has been cancelled
Details
builds / Debian 13 (xdp) (push) Has been cancelled
Details
builds / Ubuntu 22.04 Dist Builder (push) Has been cancelled
Details
builds / Debian 12 MSRV (push) Has been cancelled
Details
builds / Debian 11 (push) Has been cancelled
Details
builds / MacOS Latest (push) Has been cancelled
Details
builds / FreeBSD 15.0 (push) Has been cancelled
Details
builds / Windows MSYS2 MINGW64 (NPcap) (push) Has been cancelled
Details
builds / Windows MSYS2 MINGW64 (libpcap) (push) Has been cancelled
Details
builds / Windows MSYS2 UCRT64 (libpcap) (push) Has been cancelled
Details
builds / Windows MSYS2 MINGW64 (WinDivert) (push) Has been cancelled
Details
builds / PF_RING (push) Has been cancelled
Details
2026-05-20 17:57:53 +00:00
Victor Julien
95b7f2b998 scan-build: support taint filtering 
Support scan-build's taint filtering logic. Adds a yaml config to mark
a dedicated debug validation function as filtering a taint.

Use to suppress warnings in reference, threshold and classification file
handling.

Ticket: #3153.
 2026-05-19 17:57:46 +02:00
Victor Julien
fbaaa9dcae github-actions: update scan-build to clang-22 
Run it on Ubuntu 26.04.

Update enabled checkers.

Ticket: #3153.
 2026-05-19 17:57:46 +02:00
Lukas Sismis
7b0afb3bbd github-ci: add FreeBSD build test 
Expand the Github-CI build coverage by adding another OS that
Suricata targets.

Ticket: 8487
 2026-05-16 05:41:54 +00:00
Jason Ish
aa4946547b github-ci: check formatting and clippy on example rust plugin 2026-05-09 04:17:39 +00:00
Philippe Antoine
5bbe99188b ci: update rust version to 1.95 2026-05-06 18:58:47 +00:00
Philippe Antoine
891b17277e ci: check dist rules 
So that we catch if we add a typo like
app-layer-event:snmp.version_mismatchZZZ;
 2026-05-05 20:56:25 +02:00
dependabot[bot]
98979dbfe9 github-actions: bump actions/github-script from 8.0.0 to 9.0.0 
Bumps [actions/github-script](https://github.com/actions/github-script) from 8.0.0 to 9.0.0.
- [Release notes](https://github.com/actions/github-script/releases)
- [Commits](ed597411d8...3a2844b7e9)

---
updated-dependencies:
- dependency-name: actions/github-script
  dependency-version: 9.0.0
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2026-05-04 20:27:38 +00:00
dependabot[bot]
00b5c2f579 github-actions: bump actions/upload-artifact from 7.0.0 to 7.0.1 
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 7.0.0 to 7.0.1.
- [Release notes](https://github.com/actions/upload-artifact/releases)
- [Commits](https://github.com/actions/upload-artifact/compare/v7...v7.0.1)

---
updated-dependencies:
- dependency-name: actions/upload-artifact
  dependency-version: 7.0.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2026-05-04 20:27:38 +00:00
dependabot[bot]
5dcdcf0de2 github-actions: bump github/codeql-action from 4.35.1 to 4.35.3 
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 4.35.1 to 4.35.3.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Commits](https://github.com/github/codeql-action/compare/v4.35.1...v4.35.3)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-version: 4.35.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2026-05-04 20:27:37 +00:00
Jason Ish
cdb02a2779 rust/dns: rustfmt 2026-04-30 05:38:07 +00:00
Philippe Antoine
adc0f18463 doc/ci: check keyword links 
Ticket: 8257
 2026-04-30 05:38:05 +00:00
Jason Ish
f5bf76c0ee examples/plugins/rust: add a rust example plugin 
Only demonstrates EVE callbacks for now, but I plan to turn this into a
show case of a variety of callbacks a Rust plugin can do as we add Rust
bindings to the ffi crate.
 2026-04-16 05:58:15 +00:00
Philippe Antoine
42a85c37f1 scripts: add script to check rules in doc 
Ticket: 8372

and run it in github CI
 2026-04-16 05:58:14 +00:00
Jason Ish
be36e67f52 rust: suppress cargo audit for RUSTSEC-2026-0097
Some checks failed
builds / AlmaLinux 9 (no jansson) (push) Has been cancelled
Details
builds / AlmaLinux 9 (Minimal/Recommended Build) (push) Has been cancelled
Details
builds / Ubuntu 24.04 (cocci) (push) Has been cancelled
Details
builds / Ubuntu 24.04 (RUSTC+CARGO vars) (push) Has been cancelled
Details
builds / Ubuntu 24.04 (unittests coverage) (push) Has been cancelled
Details
builds / Ubuntu 24.04 (unix socket mode coverage) (push) Has been cancelled
Details
builds / Ubuntu 24.04 (afpacket and dpdk coverage) (push) Has been cancelled
Details
builds / Ubuntu 24.04 (pcap unix socket ASAN) (push) Has been cancelled
Details
builds / Ubuntu 24.04 (afpacket IPS tests in namespaces) (push) Has been cancelled
Details
builds / Ubuntu 24.04 (afpacket and dpdk live tests with ASAN) (push) Has been cancelled
Details
builds / Ubuntu 24.04 (fuzz corpus coverage) (push) Has been cancelled
Details
builds / Ubuntu 20.04 (-DNDEBUG) (push) Has been cancelled
Details
builds / Ubuntu 20.04 (unsupported rust) (push) Has been cancelled
Details
builds / Ubuntu 22.04 (Debug Validation) (push) Has been cancelled
Details
builds / Ubuntu 22.04 (Fuzz) (push) Has been cancelled
Details
builds / Ubuntu 22.04 (Netmap build) (push) Has been cancelled
Details
builds / Ubuntu 22.04 (Minimal/Recommended Build) (push) Has been cancelled
Details
builds / Ubuntu 22.04 (DPDK Build) (push) Has been cancelled
Details
builds / Debian 12 (xdp) (push) Has been cancelled
Details
builds / Debian 13 (xdp) (push) Has been cancelled
Details
builds / Ubuntu 22.04 Dist Builder (push) Has been cancelled
Details
builds / Debian 12 MSRV (push) Has been cancelled
Details
builds / Debian 11 (push) Has been cancelled
Details
builds / MacOS Latest (push) Has been cancelled
Details
builds / Windows MSYS2 MINGW64 (NPcap) (push) Has been cancelled
Details
builds / Windows MSYS2 MINGW64 (libpcap) (push) Has been cancelled
Details
builds / Windows MSYS2 UCRT64 (libpcap) (push) Has been cancelled
Details
builds / Windows MSYS2 MINGW64 (WinDivert) (push) Has been cancelled
Details
builds / PF_RING (push) Has been cancelled
Details
docs / Ubuntu 22.04 Dist Builder (push) Has been cancelled
Details 
Per https://rustsec.org/advisories/RUSTSEC-2026-0097,
this issue it not applicable unless the "log" and "thread_rng"
features of rand are enabled.  "log" is not enabled in our
dependency chain.

Updating to the fixed version of rand requires an MSRV of 1.85.

Ticket: #8467
 2026-04-13 05:01:54 +00:00
Jason Ish
a11aaadd86 plugins: add --plugin command line option to load plugins 
Add --plugin <PATH> to load an additional plugin from the command
line. This is more convenient than "--set plugins.X" especially when
you may already have a plugins loaded and you want to load an
additional one.

Ticket: 8463
 2026-04-13 05:01:53 +00:00
Jason Ish
ecffd6cd54 github-ci: deny warnings in clippy check 
We currently have some clippy warnings in the ffi crate. They output to
to the terminal but clippy exits with a success code. Typically we want
to fix this, so deny warnings which will cause clippy to exit with an
error code, failing ci.
 2026-04-06 12:38:06 -06:00
Jason Ish
70994426d3 github-ci: add --workspace to cargo clippy --fix 
--fix doesn't appear to apply to all sub-crates unless --workspace is
provided.
 2026-04-06 12:05:49 -06:00