Project

General

Profile

Actions

Bug #2691

open

Error thrown with -o option

Added by Shivani Bhardwaj about 6 years ago. Updated about 2 years ago.

Status:
Assigned
Priority:
Low
Target version:
Affected Versions:
Effort:
Difficulty:
Label:

Description

If a directory is not owned or managed by suricata-update, it throws an error. This happens because following the usual procedure in order to see if there has been any change in the rule files in a given directory, it tries to hash all the contents of the directory and match against that.

Steps to reproduce

./bin/suricata-update  -o /tmp

Actual output

Attached


Files

output.txt (16.4 KB) output.txt Shivani Bhardwaj, 11/20/2018 04:01 PM

Related issues 1 (0 open1 closed)

Blocked by Suricata-Update - Bug #2688: filemd5 files are not migrated /w rulesClosedShivani BhardwajActions
Actions #1

Updated by Shivani Bhardwaj almost 6 years ago

  • Status changed from New to Assigned
  • Assignee changed from Jason Ish to Shivani Bhardwaj
  • Target version set to TBD
Actions #2

Updated by Shivani Bhardwaj over 5 years ago

  • Status changed from Assigned to Feedback
Actions #3

Updated by Jason Ish about 5 years ago

This isn't something we see coming up in generate usage of Suricata-Update so I'm not sure about the priority. Plus, needing to move in files for datasets, and md5's (https://redmine.openinfosecfoundation.org/issues/2688) are going to complicate things.

I wonder if the answer is to drop a cookie. When running, if the output directory does not exist, create it, and drop a cookie file (.suricata-update). If its empty, drop the cookie file. Otherwise check if the cookie exists, and refuse to run if not with a meaningful error message.

Actions #4

Updated by Shivani Bhardwaj about 5 years ago

I wonder if the answer is to drop a cookie. When running, if the output directory does not exist, create it, and drop a cookie file (.suricata-update). If its empty, drop the cookie file. Otherwise check if the cookie exists, and refuse to run if not with a meaningful error message.

This makes sense. Should this work be carried on or dropped or halted till #2688 is addressed?

Actions #5

Updated by Jason Ish about 5 years ago

Shivani Bhardwaj wrote:

I wonder if the answer is to drop a cookie. When running, if the output directory does not exist, create it, and drop a cookie file (.suricata-update). If its empty, drop the cookie file. Otherwise check if the cookie exists, and refuse to run if not with a meaningful error message.

This makes sense. Should this work be carried on or dropped or halted till #2688 is addressed?

Lets hold off until #2688 is addressed.

Actions #6

Updated by Jason Ish about 5 years ago

  • Blocked by Bug #2688: filemd5 files are not migrated /w rules added
Actions #7

Updated by Shivani Bhardwaj almost 5 years ago

  • Status changed from Feedback to Assigned
Actions #8

Updated by Jason Ish about 3 years ago

  • Priority changed from Normal to Low
Actions

Also available in: Atom PDF