diff --git a/snort3/Dockerfile b/snort3/Dockerfile index 599be5d..30045fa 100644 --- a/snort3/Dockerfile +++ b/snort3/Dockerfile @@ -5,9 +5,14 @@ FROM ubuntu:22.04 MAINTAINER EasyPi Software Foundation -ARG SNORT_VERSION=3.1.38.0 -ARG LIBDAQ_VERSION=3.0.8 +ARG SNORT_VERSION=3.1.42.0 +ARG LIBDAQ_VERSION=3.0.9 ARG LIBDNET_VERSION=1.16.1 +ARG PCRE_VERSION=8.45 +ARG GPERTOOLS_VERSION=2.10 +ARG RAGEL_VERSION=6.10 +ARG HYPERSCAN_VERSION=5.4.0 +ARG FLATBUFFERS_VERSION=22.9.29 ARG DEBIAN_FRONTEND=noninteractive @@ -44,11 +49,64 @@ RUN set -xe \ && cd .. \ && rm -rf libdnet +RUN set -xe \ + && mkdir -p pcre \ + && cd pcre \ + && curl -sSL https://sourceforge.net/projects/pcre/files/pcre/$PCRE_VERSION/pcre-$PCRE_VERSION.tar.gz | tar xz --strip 1 \ + && ./configure \ + && make -j7 \ + && make install \ + && cd .. \ + && rm -rf pcre + +RUN set -xe \ + && mkdir -p gperftools \ + && cd gperftools \ + && curl -sSL wget https://github.com/gperftools/gperftools/releases/download/gperftools-$GPERTOOLS_VERSION/gperftools-$GPERTOOLS_VERSION.tar.gz | tar xz --strip 1 \ + && ./configure \ + && make -j7 \ + && make install \ + && cd .. \ + && rm -rf gperftools + +RUN set -xe \ + && mkdir -p ragel \ + && cd ragel \ + && curl -sSL http://www.colm.net/files/ragel/ragel-$RAGEL_VERSION.tar.gz | tar xz --strip 1 \ + && ./configure \ + && make -j7 \ + && make install \ + && cd .. \ + && rm -rf ragel + +RUN set -xe \ + && mkdir -p hyperscan/build \ + && cd hyperscan \ + && curl -sSL https://github.com/intel/hyperscan/archive/refs/tags/v$HYPERSCAN_VERSION.tar.gz | tar xz --strip 1 \ + && curl -sSL https://boostorg.jfrog.io/artifactory/main/release/1.78.0/source/boost_1_78_0.tar.gz | tar xz \ + && cd build \ + && cmake -DCMAKE_INSTALL_PREFIX=/usr/local -DBOOST_ROOT=../boost_1_78_0/ .. \ + && make -j7 \ + && make install \ + && cd .. \ + && rm -rf hyperscan + +RUN set -xe \ + && mkdir -p flatbuffers/build \ + && cd flatbuffers \ + && curl -sSL https://github.com/google/flatbuffers/archive/refs/tags/v$FLATBUFFERS_VERSION.tar.gz | tar xz --strip 1 \ + && cd build \ + && cmake .. \ + && make -j7 \ + && make install \ + && cd .. \ + && rm -rf flatbuffers + RUN set -xe \ && mkdir -p snort3 \ && cd snort3 \ && curl -sSL https://github.com/snort3/snort3/archive/$SNORT_VERSION.tar.gz | tar -xz --strip 1 \ - && ./configure_cmake.sh --prefix=/usr/local \ + && ./configure_cmake.sh --prefix=/usr/local --enable-tcmalloc \ && cd build \ && make -j7 \ && make install \ diff --git a/snort3/README.md b/snort3/README.md index da6f5d4..2da0590 100644 --- a/snort3/README.md +++ b/snort3/README.md @@ -1,5 +1,5 @@ -snort3 -====== +snort3 (not ready) +================== [Snort 3][1] is the next step in our yearslong journey of protecting users' networks from unwanted traffic, malicious software and spam and phishing documents.