Support #2799
closedSpec file for suricata 4.x build
Description
Hello,
My team has had issues with suricata 4.1.0, 4.1.1, 4.1.2 build issues. Ticket 2769 describes this.
https://redmine.openinfosecfoundation.org/issues/2769
We build this as an rpm using rpmbuild.
rpmbuild requires a spec file that determines ./configure options and other variables in the build like attr. If it's possible for the oisf team to share their spec -- and they tell us the issues we're seeing are not present on their builds -- it would help us in a known-good sense to troubleshoot this. We need to get in line with a working system. I am attaching our spec file. It's been worked on over the years and could have critical entries missing.
The issue we are seeing, btw, are rule misfires. The set of rules experiencing this issue on 4.x are not seeing the same problem on our current working build 3.0. Looked around on your site and did not see a spec. Do see this out on the Internet:
https://src.fedoraproject.org/rpms/suricata/blob/master/f/suricata.spec
https://github.com/jasonish/fedora-suricata/blob/master/suricata.spec
https://github.com/jasonish/suricata-rpms/blob/master/stable/suricata.spec
but again, what is correct?
Files
Updated by Jason Ish about 5 years ago
The OISF does not maintain their own spec file. The best example of one is probably the spec file maintained as part of Fedora/EPEL which can be found at https://src.fedoraproject.org/rpms/suricata/tree/master.
I also maintain my own RPM spec files here: https://github.com/jasonish/suricata-rpms
But they are based on the Fedora ones and are usually close to in sync, sometimes ahead and sometimes behind. But the compile options are all the same. But I seen you've pointed those ones out above.
Updated by Charles Dillard about 5 years ago
Jason Ish wrote:
The OISF does not maintain their own spec file. The best example of one is probably the spec file maintained as part of Fedora/EPEL which can be found at https://src.fedoraproject.org/rpms/suricata/tree/master.
I also maintain my own RPM spec files here: https://github.com/jasonish/suricata-rpms
But they are based on the Fedora ones and are usually close to in sync, sometimes ahead and sometimes behind. But the compile options are all the same. But I seen you've pointed those ones out above.
Thanks Jason, I've seen a few of your files....we don't use fedora but it could be a template to check our configs.
Updated by Andreas Herz almost 5 years ago
- Tracker changed from Bug to Support
- Assignee set to Community Ticket
- Target version set to Support