Snort mailing list archives

Previous By Date Next
Previous By Thread Next

Re: snort3 can't build fully thus i think remove my subscribing of snort because i can't build both snort

From: Dorian ROSSE via Snort-devel <snort-devel () lists snort org>
Date: Tue, 9 Aug 2022 13:41:32 +0000
That meaning I copy past both line of command in the e-mail without share by file ?

Thanks you in advance for your time,

Regards.


Dorian Rosse.
________________________________
From: Russ Combs (rucombs) <rucombs () cisco com>
Sent: Tuesday, August 9, 2022 3:39:24 PM
To: Dorian ROSSE <dorianbrice () hotmail fr>; snort-devel () lists snort org <snort-devel () lists snort org>
Subject: Re: snort3 can't build fully thus i think remove my subscribing of snort because i can't build both snort

No attachment. You can try to send to me direct if that helps.
________________________________
From: Dorian ROSSE <dorianbrice () hotmail fr>
Sent: Tuesday, August 9, 2022 8:33 AM
To: Russ Combs (rucombs) <rucombs () cisco com>; snort-devel () lists snort org <snort-devel () lists snort org>
Subject: RE: snort3 can't build fully thus i think remove my subscribing of snort because i can't build both snort

have you received cmake.out ? because i don't get an error when i attach the attachment cmake.out but i don't see the 
file in the e-mail,

i get an error when i attach make.out thus now you can't receive make.out however i hope later be able to send the 
attachment make.out,

thanks you in advance for your time,

regards.


Dorian ROSSE.
________________________________
De : Dorian ROSSE <dorianbrice () hotmail fr>
Envoyé : mardi 9 août 2022 14:29
À : Russ Combs (rucombs) <rucombs () cisco com>; snort-devel () lists snort org <snort-devel () lists snort org>
Objet : RE: snort3 can't build fully thus i think remove my subscribing of snort because i can't build both snort

russ,


i can't add in attachment make.out and the file cmake.out doesn't appear in my e-mail i want to send to your thus i 
send the e-mail but maybe you won't have bot attachment,

i hope you will receive both attachment,

thanks you in advance for your time,

regards.


Dorian ROSSE.
________________________________
De : Russ Combs (rucombs) <rucombs () cisco com>
Envoyé : mardi 9 août 2022 13:02
À : Dorian ROSSE <dorianbrice () hotmail fr>; snort-devel () lists snort org <snort-devel () lists snort org>
Objet : Re: snort3 can't build fully thus i think remove my subscribing of snort because i can't build both snort

Completely remove sudo from before your command lines. Remove it from before configure_cmake.sh and make and from 
before cmake.out and make.out.

You should not need sudo at all for cmake and make. Only make install would typically need sudo and that's only if you 
are installing to system directories (as you are).

________________________________
From: Dorian ROSSE <dorianbrice () hotmail fr>
Sent: Tuesday, August 9, 2022 5:05 AM
To: Russ Combs (rucombs) <rucombs () cisco com>; snort-devel () lists snort org <snort-devel () lists snort org>
Subject: RE: snort3 can't build fully thus i think remove my subscribing of snort because i can't build both snort

russ,


how to run yours line of commands asked? :

'''sudo ./configure_cmake.sh --prefix=/usr/bin/  --with-luajit-libraries=~/snort_src/LuaJIT-2.0.5/  
--with-luajit-includes=~/snort_src/LuaJIT-2.0.5/  --enable-jemalloc --with-openssl=~/snort_src/openssl-1.1.1q/  
--with-daq-includes=~/snort_src/libdaq-3.0.9/include  --with-daq-libraries=~/snort_src/libdaq-3.0.9/  
--with-hyperscan-includes=~/snort_src/hyperscan-5.4.0  --with-hyperscan-libraries=~/snort_src/hyperscan-5.4.0  
--with-pcre-libraries=~/snort_src/pcre-8.45/  --with-pcre-includes=~/snort_src/pcre-8.45/  
--with-dnet-libraries=~/snort_src/libdnet-1.11/  --with-dnet-includes=~/snort_src/libdnet-1.11/  
--with-iconv-libraries=~/snort_src/libiconv-1.17/  --with-iconv-includes=~/snort_src/libiconv-1.17/  
--with-pcap-libraries=~/snort_src/libpcap-1.10.1/  --with-pcap-includes=~/snort_src/libpcap-1.10.1/  
--with-uuid-libraries=~/snort_src/uuid/  --with-uuid-includes=~/snort_src/uuid/ &> sudo cmake.out
bash: sudo: Permission non accordée

~/snort_src/snort3-3.1.36.0$ sudo configure_cmake.sh <args> &> sudo cmake.out
bash: erreur de syntaxe près du symbole inattendu « &> »

~/snort_src/snort3-3.1.36.0/build$ sudo make VERBOSE=1 &> make.out
bash: make.out: Permission non accordée
'''

then i have repeat yours ask by create both files empty with the line of command touch but that doesn't repair the 
problems,

a lot of the errors are errors daq also i have put libdaq instead the args variable but i seem not be the real sudo :

'''~/snort_src/snort3-3.1.36.0/build$ sudo configure_cmake.sh libdaq-3.0.9 &> sudo cmake.out
bash: sudo: Permission non accordée
~/snort_src/snort3-3.1.36.0/build$ cd ..
~/snort_src/snort3-3.1.36.0$ sudo configure_cmake.sh libdaq-3.0.9 &> sudo cmake.out
bash: sudo: Permission non accordée
~/snort_src/snort3-3.1.36.0$ sudo configure_cmake.sh libdaq &> sudo cmake.out
bash: sudo: Permission non accordée
'''

i don't understand why i keep an error about sudo a lot of time i have a popup on my system who ask my password the 
first time i was get this popup i was type my password but this is an error this popup this never end,

thanks you in advance russ to repair snort3,

regards.


Dorian ROSSE.

________________________________
De : Russ Combs (rucombs) <rucombs () cisco com>
Envoyé : mardi 9 août 2022 01:57
À : snort-devel () lists snort org <snort-devel () lists snort org>; Dorian ROSSE <dorianbrice () hotmail fr>
Objet : Re: snort3 can't build fully thus i think remove my subscribing of snort because i can't build both snort

Dorian,

If you are just starting out, I suggest focusing on Snort 3. That will cut your problems in half. 😉

You most likely need to add include/ to your daq-includes like this: 
--with-daq-includes=~/snort_src/libdaq-3.0.9/include. It is probably finding includes for the wrong version.

Also, you should configure for either tcmalloc or jemalloc, not both. jemalloc is required for memory management and is 
highly recommended.

Make the above changes and send cmake.out and make.out for further assistance with Snort 3.

$ configure_cmake.sh <args> &> cmake.out
$ cd build/
$ make VERBOSE=1 &> make.out

Thanks
Russ

________________________________
From: Snort-devel <snort-devel-bounces () lists snort org> on behalf of Dorian ROSSE via Snort-devel <snort-devel () 
lists snort org>
Sent: Sunday, August 7, 2022 9:11 AM
To: snort-devel () lists snort org <snort-devel () lists snort org>
Subject: [Snort-devel] snort3 can't build fully thus i think remove my subscribing of snort because i can't build both 
snort

hello,


snort3 can't build fully thus i think remove my subscribing of snort because i can't build both snort,

the error happening when i launch line of command following :

'''sudo ./configure_cmake.sh --prefix=/usr/bin/  --with-luajit-libraries=~/snort_src/LuaJIT-2.0.5/  
--with-luajit-includes=~/snort_src/LuaJIT-2.0.5/  --enable-tcmalloc --enable-jemalloc 
--with-openssl=~/snort_src/openssl-1.1.1q/  --with-daq-includes=~/snort_src/libdaq-3.0.9/  
--with-daq-libraries=~/snort_src/libdaq-3.0.9/  --with-hyperscan-includes=~/snort_src/hyperscan-5.4.0  
--with-hyperscan-libraries=~/snort_src/hyperscan-5.4.0  --with-pcre-libraries=~/snort_src/pcre-8.45/  
--with-pcre-includes=~/snort_src/pcre-8.45/  --with-dnet-libraries=~/snort_src/libdnet-1.11/  
--with-dnet-includes=~/snort_src/libdnet-1.11/  --with-iconv-libraries=~/snort_src/libiconv-1.17/  
--with-iconv-includes=~/snort_src/libiconv-1.17/  --with-pcap-libraries=~/snort_src/libpcap-1.10.1/  
--with-pcap-includes=~/snort_src/libpcap-1.10.1/  --with-uuid-libraries=~/snort_src/uuid/  
--with-uuid-includes=~/snort_src/uuid/  && cd build && sudo make -j 4 && sudo make -j 4 install

'''

'''-- Build files have been written to: /home/dorianrosse/snort_src/snort3-3.1.36.0/build
Consolidate compiler generated dependencies of target tcp_connector
Consolidate compiler generated dependencies of target codecs
Consolidate compiler generated dependencies of target root_codecs
Consolidate compiler generated dependencies of target ips_actions
[  1%] Built target tcp_connector
[  1%] Building CXX object src/codecs/root/CMakeFiles/root_codecs.dir/cd_eth.cc.o
[  1%] Built target codecs
Consolidate compiler generated dependencies of target link_codecs
Consolidate compiler generated dependencies of target ip_codecs
[  1%] Building CXX object src/actions/CMakeFiles/ips_actions.dir/act_alert.cc.o
[  1%] Building CXX object src/codecs/link/CMakeFiles/link_codecs.dir/cd_vlan.cc.o
[  1%] Building CXX object src/codecs/ip/CMakeFiles/ip_codecs.dir/cd_ipv4.cc.o
/home/dorianrosse/snort_src/snort3-3.1.36.0/src/codecs/link/cd_vlan.cc: In member function ‘virtual bool 
{anonymous}::VlanCodec::decode(const snort::RawData&, snort::CodecData&, DecodeData&)’:
/home/dorianrosse/snort_src/snort3-3.1.36.0/src/codecs/link/cd_vlan.cc:99:32: error: ‘daq_msg_get_pkthdr’ was not 
declared in this scope
   99 |     const DAQ_PktHdr_t* pkth = daq_msg_get_pkthdr(raw.daq_msg);
      |                                ^~~~~~~~~~~~~~~~~~
/home/dorianrosse/snort_src/snort3-3.1.36.0/src/codecs/link/cd_vlan.cc:100:23: error: ‘DAQ_PKT_FLAG_IGNORE_VLAN’ was 
not declared in this scope
  100 |     if (pkth->flags & DAQ_PKT_FLAG_IGNORE_VLAN)
      |                       ^~~~~~~~~~~~~~~~~~~~~~~~
make[2]: *** [src/codecs/link/CMakeFiles/link_codecs.dir/build.make:202 : 
src/codecs/link/CMakeFiles/link_codecs.dir/cd_vlan.cc.o] Erreur 1
make[1]: *** [CMakeFiles/Makefile2:2812 : src/codecs/link/CMakeFiles/link_codecs.dir/all] Erreur 2
make[1]: *** Attente des tâches non terminées....
[  1%] Building CXX object src/actions/CMakeFiles/ips_actions.dir/act_block.cc.o
In file included from /home/dorianrosse/snort_src/snort3-3.1.36.0/src/protocols/packet_manager.h:31,
                 from /home/dorianrosse/snort_src/snort3-3.1.36.0/src/codecs/root/cd_eth.cc:32:
/home/dorianrosse/snort_src/snort3-3.1.36.0/src/protocols/packet.h:146:5: error: ‘DAQ_Msg_h’ does not name a type
  146 |     DAQ_Msg_h daq_msg;              // DAQ message this packet came from
      |     ^~~~~~~~~
/home/dorianrosse/snort_src/snort3-3.1.36.0/src/protocols/packet.h: In member function ‘bool 
snort::Packet::is_inter_group_flow() const’:
/home/dorianrosse/snort_src/snort3-3.1.36.0/src/protocols/packet.h:337:29: error: ‘DAQ_PKT_FLAG_SIGNIFICANT_GROUPS’ was 
not declared in this scope
  337 |     { return (pkth->flags & DAQ_PKT_FLAG_SIGNIFICANT_GROUPS) != 0; }
      |                             ^~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
In file included from /home/dorianrosse/snort_src/snort3-3.1.36.0/src/actions/act_alert.cc:26:
/home/dorianrosse/snort_src/snort3-3.1.36.0/src/protocols/packet.h:146:5: error: ‘DAQ_Msg_h’ does not name a type
  146 |     DAQ_Msg_h daq_msg;              // DAQ message this packet came from
      |     ^~~~~~~~~
/home/dorianrosse/snort_src/snort3-3.1.36.0/src/protocols/packet.h: In member function ‘bool 
snort::Packet::is_inter_group_flow() const’:
/home/dorianrosse/snort_src/snort3-3.1.36.0/src/protocols/packet.h:337:29: error: ‘DAQ_PKT_FLAG_SIGNIFICANT_GROUPS’ was 
not declared in this scope
  337 |     { return (pkth->flags & DAQ_PKT_FLAG_SIGNIFICANT_GROUPS) != 0; }
      |                             ^~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
make[2]: *** [src/actions/CMakeFiles/ips_actions.dir/build.make:104 : 
src/actions/CMakeFiles/ips_actions.dir/act_alert.cc.o] Erreur 1
make[2]: *** Attente des tâches non terminées....
[  1%] Building CXX object src/codecs/ip/CMakeFiles/ip_codecs.dir/cd_tcp.cc.o
make[2]: *** [src/codecs/root/CMakeFiles/root_codecs.dir/build.make:76 : 
src/codecs/root/CMakeFiles/root_codecs.dir/cd_eth.cc.o] Erreur 1
make[1]: *** [CMakeFiles/Makefile2:2786 : src/codecs/root/CMakeFiles/root_codecs.dir/all] Erreur 2
/home/dorianrosse/snort_src/snort3-3.1.36.0/src/codecs/ip/cd_ipv4.cc: In member function ‘bool 
{anonymous}::Ipv4Codec::valid_checksum_from_daq(const snort::RawData&)’:
/home/dorianrosse/snort_src/snort3-3.1.36.0/src/codecs/ip/cd_ipv4.cc:135:11: error: ‘DAQ_PktDecodeData_t’ does not name 
a type
  135 |     const DAQ_PktDecodeData_t* pdd =
      |           ^~~~~~~~~~~~~~~~~~~
[  1%] Building CXX object src/codecs/ip/CMakeFiles/ip_codecs.dir/cd_auth.cc.o
/home/dorianrosse/snort_src/snort3-3.1.36.0/src/codecs/ip/cd_ipv4.cc:137:10: error: ‘pdd’ was not declared in this scope
  137 |     if (!pdd || !pdd->flags.bits.l3_checksum || !pdd->flags.bits.ipv4 || !pdd->flags.bits.l3)
      |          ^~~
/home/dorianrosse/snort_src/snort3-3.1.36.0/src/codecs/ip/cd_ipv4.cc:140:9: error: ‘pdd’ was not declared in this scope
  140 |     if (pdd->l3_offset != DAQ_PKT_DECODE_OFFSET_INVALID)
      |         ^~~
/home/dorianrosse/snort_src/snort3-3.1.36.0/src/codecs/ip/cd_ipv4.cc:140:27: error: ‘DAQ_PKT_DECODE_OFFSET_INVALID’ was 
not declared in this scope
  140 |     if (pdd->l3_offset != DAQ_PKT_DECODE_OFFSET_INVALID)
      |                           ^~~~~~~~~~~~~~~~~~~~~~~~~~~~~
/home/dorianrosse/snort_src/snort3-3.1.36.0/src/codecs/ip/cd_ipv4.cc:142:31: error: ‘daq_msg_get_data’ was not declared 
in this scope
  142 |         const uint8_t* data = daq_msg_get_data(raw.daq_msg);
      |                               ^~~~~~~~~~~~~~~~
/home/dorianrosse/snort_src/snort3-3.1.36.0/src/codecs/ip/cd_ipv4.cc: In member function ‘virtual bool 
{anonymous}::Ipv4Codec::decode(const snort::RawData&, snort::CodecData&, DecodeData&)’:
/home/dorianrosse/snort_src/snort3-3.1.36.0/src/codecs/ip/cd_ipv4.cc:245:11: error: ‘DAQ_NAPTInfo_t’ does not name a 
type; did you mean ‘DAQ_VPN_Info_t’?
  245 |     const DAQ_NAPTInfo_t* napti = (const DAQ_NAPTInfo_t*) daq_msg_get_meta(raw.daq_msg, DAQ_PKT_META_NAPT_INFO);
      |           ^~~~~~~~~~~~~~
      |           DAQ_VPN_Info_t
/home/dorianrosse/snort_src/snort3-3.1.36.0/src/codecs/ip/cd_ipv4.cc:246:9: error: ‘napti’ was not declared in this 
scope
  246 |     if (napti && codec.ip_layer_cnt == napti->ip_layer)
      |         ^~~~~
/home/dorianrosse/snort_src/snort3-3.1.36.0/src/codecs/ip/cd_ipv4.cc:250:40: error: ‘daq_napt_info_src_addr_family’ was 
not declared in this scope
  250 |         real_src.set(&napti->src_addr, daq_napt_info_src_addr_family(napti));
      |                                        ^~~~~~~~~~~~~~~~~~~~~~~~~~~~~
/home/dorianrosse/snort_src/snort3-3.1.36.0/src/codecs/ip/cd_ipv4.cc:251:40: error: ‘daq_napt_info_dst_addr_family’ was 
not declared in this scope
  251 |         real_dst.set(&napti->dst_addr, daq_napt_info_dst_addr_family(napti));
      |                                        ^~~~~~~~~~~~~~~~~~~~~~~~~~~~~
make[2]: *** [src/codecs/ip/CMakeFiles/ip_codecs.dir/build.make:76 : 
src/codecs/ip/CMakeFiles/ip_codecs.dir/cd_ipv4.cc.o] Erreur 1
make[2]: *** Attente des tâches non terminées....
In file included from /home/dorianrosse/snort_src/snort3-3.1.36.0/src/protocols/packet_manager.h:31,
                 from /home/dorianrosse/snort_src/snort3-3.1.36.0/src/packet_io/active.h:27,
                 from /home/dorianrosse/snort_src/snort3-3.1.36.0/src/actions/act_block.cc:26:
/home/dorianrosse/snort_src/snort3-3.1.36.0/src/protocols/packet.h:146:5: error: ‘DAQ_Msg_h’ does not name a type
  146 |     DAQ_Msg_h daq_msg;              // DAQ message this packet came from
      |     ^~~~~~~~~
/home/dorianrosse/snort_src/snort3-3.1.36.0/src/protocols/packet.h: In member function ‘bool 
snort::Packet::is_inter_group_flow() const’:
/home/dorianrosse/snort_src/snort3-3.1.36.0/src/protocols/packet.h:337:29: error: ‘DAQ_PKT_FLAG_SIGNIFICANT_GROUPS’ was 
not declared in this scope
  337 |     { return (pkth->flags & DAQ_PKT_FLAG_SIGNIFICANT_GROUPS) != 0; }
      |                             ^~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
In file included from /home/dorianrosse/snort_src/snort3-3.1.36.0/src/actions/act_block.cc:26:
/home/dorianrosse/snort_src/snort3-3.1.36.0/src/packet_io/active.h: At global scope:
/home/dorianrosse/snort_src/snort3-3.1.36.0/src/packet_io/active.h:212:25: error: ‘DAQ_Msg_h’ has not been declared
  212 |     static int send_eth(DAQ_Msg_h, int, const uint8_t* buf, uint32_t len);
      |                         ^~~~~~~~~
/home/dorianrosse/snort_src/snort3-3.1.36.0/src/packet_io/active.h:213:24: error: ‘DAQ_Msg_h’ has not been declared
  213 |     static int send_ip(DAQ_Msg_h, int, const uint8_t* buf, uint32_t len);
      |                        ^~~~~~~~~
make[2]: *** [src/actions/CMakeFiles/ips_actions.dir/build.make:118 : 
src/actions/CMakeFiles/ips_actions.dir/act_block.cc.o] Erreur 1
make[1]: *** [CMakeFiles/Makefile2:2734 : src/actions/CMakeFiles/ips_actions.dir/all] Erreur 2
/home/dorianrosse/snort_src/snort3-3.1.36.0/src/codecs/ip/cd_tcp.cc: In member function ‘bool 
{anonymous}::TcpCodec::valid_checksum_from_daq(const snort::RawData&)’:
/home/dorianrosse/snort_src/snort3-3.1.36.0/src/codecs/ip/cd_tcp.cc:156:11: error: ‘DAQ_PktDecodeData_t’ does not name 
a type
  156 |     const DAQ_PktDecodeData_t* pdd =
      |           ^~~~~~~~~~~~~~~~~~~
/home/dorianrosse/snort_src/snort3-3.1.36.0/src/codecs/ip/cd_tcp.cc:158:10: error: ‘pdd’ was not declared in this scope
  158 |     if (!pdd || !pdd->flags.bits.l4_checksum || !pdd->flags.bits.tcp || !pdd->flags.bits.l4)
      |          ^~~
/home/dorianrosse/snort_src/snort3-3.1.36.0/src/codecs/ip/cd_tcp.cc:161:9: error: ‘pdd’ was not declared in this scope
  161 |     if (pdd->l4_offset != DAQ_PKT_DECODE_OFFSET_INVALID)
      |         ^~~
/home/dorianrosse/snort_src/snort3-3.1.36.0/src/codecs/ip/cd_tcp.cc:161:27: error: ‘DAQ_PKT_DECODE_OFFSET_INVALID’ was 
not declared in this scope
  161 |     if (pdd->l4_offset != DAQ_PKT_DECODE_OFFSET_INVALID)
      |                           ^~~~~~~~~~~~~~~~~~~~~~~~~~~~~
/home/dorianrosse/snort_src/snort3-3.1.36.0/src/codecs/ip/cd_tcp.cc:163:31: error: ‘daq_msg_get_data’ was not declared 
in this scope
  163 |         const uint8_t* data = daq_msg_get_data(raw.daq_msg);
      |                               ^~~~~~~~~~~~~~~~
/home/dorianrosse/snort_src/snort3-3.1.36.0/src/codecs/ip/cd_tcp.cc: In member function ‘virtual bool 
{anonymous}::TcpCodec::decode(const snort::RawData&, snort::CodecData&, DecodeData&)’:
/home/dorianrosse/snort_src/snort3-3.1.36.0/src/codecs/ip/cd_tcp.cc:274:11: error: ‘DAQ_NAPTInfo_t’ does not name a 
type; did you mean ‘DAQ_VPN_Info_t’?
  274 |     const DAQ_NAPTInfo_t* napti = (const DAQ_NAPTInfo_t*) daq_msg_get_meta(raw.daq_msg, DAQ_PKT_META_NAPT_INFO);
      |           ^~~~~~~~~~~~~~
      |           DAQ_VPN_Info_t
/home/dorianrosse/snort_src/snort3-3.1.36.0/src/codecs/ip/cd_tcp.cc:275:9: error: ‘napti’ was not declared in this scope
  275 |     if (napti && codec.ip_layer_cnt == napti->ip_layer)
      |         ^~~~~
make[2]: *** [src/codecs/ip/CMakeFiles/ip_codecs.dir/build.make:104 : 
src/codecs/ip/CMakeFiles/ip_codecs.dir/cd_tcp.cc.o] Erreur 1
make[1]: *** [CMakeFiles/Makefile2:2838 : src/codecs/ip/CMakeFiles/ip_codecs.dir/all] Erreur 2
make: *** [Makefile:156 : all] Erreur 2
'''

thanks you in advance to help myself fully repair one of both snort or else i remove my subscribing of snort,

regards.


Dorian ROSSE.

_______________________________________________
Snort-devel mailing list
Snort-devel () lists snort org
https://lists.snort.org/mailman/listinfo/snort-devel

Please visit http://blog.snort.org for the latest news about Snort!
Previous By Date Next
Previous By Thread Next

Current thread: