https://redmine.openinfosecfoundation.org/https://redmine.openinfosecfoundation.org/favicon.ico?17011170022022-11-30T13:54:08ZOpen Information Security FoundationSuricata-Update - Bug #5722: suricata-update releases missing from PyPIhttps://redmine.openinfosecfoundation.org/issues/5722?journal_id=257882022-11-30T13:54:08ZJason Ishjason.ish@oisf.net
<ul></ul><p>I hope to get this fixed up soon, but for now, and I'll update the documentation for this as well, the recommended way to install Suricata-Update is as bundled with Suricata.</p>
<p>From what I can tell, PyPi stopped accepting our distutils created bundles, so we have to move to something more modern.</p> Suricata-Update - Bug #5722: suricata-update releases missing from PyPIhttps://redmine.openinfosecfoundation.org/issues/5722?journal_id=257892022-11-30T14:19:52ZBradley Solomon
<ul></ul><p>Jason Ish wrote in <a href="#note-1">#note-1</a>:</p>
<blockquote>
<p>I hope to get this fixed up soon, but for now, and I'll update the documentation for this as well, the recommended way to install Suricata-Update is as bundled with Suricata.</p>
<p>From what I can tell, PyPi stopped accepting our distutils created bundles, so we have to move to something more modern.</p>
</blockquote>
<p>Actually, it's not bundled with Suricata. Reproducible on python:3.9-slim-buster Docker image:</p>
<p><code><br />echo "deb http://http.debian.net/debian buster-backports main" > \<br /> /etc/apt/sources.list.d/backports.list && \<br /> apt-get update -y && apt-get install -y --no-install-recommends \<br /> curl=7.64.0-4+deb10u3 \<br /> git=1:2.20.1-2+deb10u4 \<br /> git-man=1:2.20.1-2+deb10u4 \<br /> libcurl4=7.64.0-4+deb10u3 \<br /> suricata=1:6.0.1-2~bpo10+1 -t buster-backports && \<br /> apt-get clean && \<br /> rm -rf /var/lib/apt/lists/*<br /></code></p>
<p>Then <code>find / -name 'suricata-update' -type f</code> returns 0 results when run as root.</p>
<p>Secondly the installation of Suricata 6.x from source is also outright broken on Debian, per <a class="external" href="https://github.com/rusticata/der-parser/issues/36">https://github.com/rusticata/der-parser/issues/36</a>.</p> Suricata-Update - Bug #5722: suricata-update releases missing from PyPIhttps://redmine.openinfosecfoundation.org/issues/5722?journal_id=257902022-11-30T14:22:10ZBradley Solomon
<ul></ul><p>OISF is a well-funded organization. What's the excuse for using outdated distutils for years after setuptools became the de-facto tool? I don't even see an open pull request.</p> Suricata-Update - Bug #5722: suricata-update releases missing from PyPIhttps://redmine.openinfosecfoundation.org/issues/5722?journal_id=257912022-11-30T14:39:00ZJason Ishjason.ish@oisf.net
<ul></ul><p>Bradley Solomon wrote in <a href="#note-2">#note-2</a>:</p>
<blockquote>
<p>Jason Ish wrote in <a href="#note-1">#note-1</a>:</p>
<blockquote>
<p>I hope to get this fixed up soon, but for now, and I'll update the documentation for this as well, the recommended way to install Suricata-Update is as bundled with Suricata.</p>
<p>From what I can tell, PyPi stopped accepting our distutils created bundles, so we have to move to something more modern.</p>
</blockquote>
<p>Actually, it's not bundled with Suricata. Reproducible on python:3.9-slim-buster Docker image:</p>
<p><code><br />echo "deb http://http.debian.net/debian buster-backports main" > \<br />/etc/apt/sources.list.d/backports.list && \<br />apt-get update -y && apt-get install -y --no-install-recommends \<br />curl=7.64.0-4+deb10u3 \<br />git=1:2.20.1-2+deb10u4 \<br />git-man=1:2.20.1-2+deb10u4 \<br />libcurl4=7.64.0-4+deb10u3 \<br />suricata=1:6.0.1-2~bpo10+1 -t buster-backports && \<br />apt-get clean && \<br />rm -rf /var/lib/apt/lists/*<br /></code></p>
<p>Then <code>find / -name 'suricata-update' -type f</code> returns 0 results when run as root.</p>
<p>Secondly the installation of Suricata 6.x from source is also outright broken on Debian, per <a class="external" href="https://github.com/rusticata/der-parser/issues/36">https://github.com/rusticata/der-parser/issues/36</a>.</p>
</blockquote>
<p>Debian unbundles it.</p> Suricata-Update - Bug #5722: suricata-update releases missing from PyPIhttps://redmine.openinfosecfoundation.org/issues/5722?journal_id=257922022-11-30T14:40:42ZBradley Solomon
<ul></ul><blockquote>
<p>Debian unbundles it.</p>
</blockquote>
<p>So the recommended install method on Debian would be ... what, exactly?</p>
<p><code>python3 -m pip install https://github.com/OISF/suricata-update/archive/refs/tags/1.2.6.tar.gz</code> it is, for lack of a better option.</p> Suricata-Update - Bug #5722: suricata-update releases missing from PyPIhttps://redmine.openinfosecfoundation.org/issues/5722?journal_id=257932022-11-30T14:42:48ZVictor Julienvictor@inliniac.net
<ul></ul><p>Bradley Solomon wrote in <a href="#note-3">#note-3</a>:</p>
<blockquote>
<p>OISF is a well-funded organization. What's the excuse for using outdated distutils for years after setuptools became the de-facto tool? I don't even see an open pull request.</p>
</blockquote>
<p>Please behave yourself professionally in this forum. OISF doesn't owe you any excuse or explanation. We're happy discuss reasons and point to prior discussions, but not in this way.</p> Suricata-Update - Bug #5722: suricata-update releases missing from PyPIhttps://redmine.openinfosecfoundation.org/issues/5722?journal_id=257942022-11-30T14:53:58ZJason Ishjason.ish@oisf.net
<ul></ul><p>Bradley Solomon wrote in <a href="#note-5">#note-5</a>:</p>
<blockquote><blockquote>
<p>Debian unbundles it.</p>
</blockquote>
<p>So the recommended install method on Debian would be ... what, exactly?</p>
<p><code>python3 -m pip install https://github.com/OISF/suricata-update/archive/refs/tags/1.2.6.tar.gz</code> it is, for lack of a better option.</p>
</blockquote>
<p>See <a class="external" href="https://suricata.readthedocs.io/en/suricata-6.0.9/install.html#debian">https://suricata.readthedocs.io/en/suricata-6.0.9/install.html#debian</a>. Adapt as needed for your Debian version. But packaging for Debian is a Debian detail, not Suricata.</p> Suricata-Update - Bug #5722: suricata-update releases missing from PyPIhttps://redmine.openinfosecfoundation.org/issues/5722?journal_id=258002022-11-30T22:41:22ZJason Ishjason.ish@oisf.net
<ul><li><strong>Status</strong> changed from <i>New</i> to <i>Closed</i></li><li><strong>Assignee</strong> changed from <i>Shivani Bhardwaj</i> to <i>Jason Ish</i></li></ul><p>Pushed to PyPI with Twine. Documentation updated to note that Suricata-Update is best installed bundled with Suricata, as its released bundled with Suricata.</p>