Mirror/zeek
1
0
Fork 0
mirror of https://github.com/zeek/zeek.git synced 2025-10-02 14:48:21 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 2

Merge remote-tracking branch 'origin/topic/awelzel/docker-trixie'

Browse source 
* origin/topic/awelzel/docker-trixie:
  ci: Run zeekctl and builtin tasks with Debian 13, too
  ci: Prepend timestamps to output
  ci: Enable Spicy for arm_debian13
  ci: Add Debian 13.0 (trixie)
  docker: Bump to debian:trixie-slim
This commit is contained in:
Arne Welzel 2025-08-13 21:20:50 +02:00
commit 63574b9fd4
6 changed files with 50 additions and 31 deletions
Download patch file Download diff file Expand all files Collapse all files

41
.cirrus.yml
View file

@ -142,6 +142,7 @@ ci_template: &CI_TEMPLATE
env: env:
CIRRUS_WORKING_DIR: /zeek CIRRUS_WORKING_DIR: /zeek
CIRRUS_LOG_TIMESTAMP: true
ZEEK_CI_CPUS: *CPUS ZEEK_CI_CPUS: *CPUS
ZEEK_CI_BTEST_JOBS: *BTEST_JOBS ZEEK_CI_BTEST_JOBS: *BTEST_JOBS
ZEEK_CI_BTEST_RETRIES: *BTEST_RETRIES ZEEK_CI_BTEST_RETRIES: *BTEST_RETRIES
@ -208,51 +209,49 @@ centosstream9_task:
<< : *RESOURCES_TEMPLATE << : *RESOURCES_TEMPLATE
<< : *CI_TEMPLATE << : *CI_TEMPLATE
debian12_task: debian13_task:
container: container:
# Debian 12 (bookworm) EOL: TBD # Debian 13 (trixie) EOL: TBD
dockerfile: ci/debian-12/Dockerfile dockerfile: ci/debian-13/Dockerfile
<< : *RESOURCES_TEMPLATE << : *RESOURCES_TEMPLATE
<< : *CI_TEMPLATE << : *CI_TEMPLATE
arm_debian12_task: arm_debian13_task:
arm_container: arm_container:
# Debian 12 (bookworm) EOL: TBD # Debian 13 (trixie) EOL: TBD
dockerfile: ci/debian-12/Dockerfile dockerfile: ci/debian-13/Dockerfile
<< : *RESOURCES_TEMPLATE << : *RESOURCES_TEMPLATE
<< : *CI_TEMPLATE << : *CI_TEMPLATE
env:
ZEEK_CI_CONFIGURE_FLAGS: *NO_SPICY_CONFIG
debian12_static_task: debian13_static_task:
container: container:
# Just use a recent/common distro to run a static compile test. # Just use a recent/common distro to run a static compile test.
# Debian 12 (bookworm) EOL: TBD # Debian 13 (trixie) EOL: TBD
dockerfile: ci/debian-12/Dockerfile dockerfile: ci/debian-13/Dockerfile
<< : *RESOURCES_TEMPLATE << : *RESOURCES_TEMPLATE
<< : *CI_TEMPLATE << : *CI_TEMPLATE
<< : *SKIP_TASK_ON_PR << : *SKIP_TASK_ON_PR
env: env:
ZEEK_CI_CONFIGURE_FLAGS: *STATIC_CONFIG ZEEK_CI_CONFIGURE_FLAGS: *STATIC_CONFIG
debian12_binary_task: debian13_binary_task:
container: container:
# Just use a recent/common distro to run binary mode compile test. # Just use a recent/common distro to run binary mode compile test.
# As of 2024-03, the used configure flags are equivalent to the flags # As of 2024-03, the used configure flags are equivalent to the flags
# that we use to create binary packages. # that we use to create binary packages.
# Just use a recent/common distro to run a static compile test. # Just use a recent/common distro to run a static compile test.
# Debian 12 (bookworm) EOL: TBD # Debian 13 (trixie) EOL: TBD
dockerfile: ci/debian-12/Dockerfile dockerfile: ci/debian-13/Dockerfile
<< : *RESOURCES_TEMPLATE << : *RESOURCES_TEMPLATE
<< : *CI_TEMPLATE << : *CI_TEMPLATE
<< : *SKIP_TASK_ON_PR << : *SKIP_TASK_ON_PR
env: env:
ZEEK_CI_CONFIGURE_FLAGS: *BINARY_CONFIG ZEEK_CI_CONFIGURE_FLAGS: *BINARY_CONFIG
debian11_task: debian12_task:
container: container:
# Debian 11 EOL: June 2026 # Debian 12 (bookworm) EOL: TBD
dockerfile: ci/debian-11/Dockerfile dockerfile: ci/debian-12/Dockerfile
<< : *RESOURCES_TEMPLATE << : *RESOURCES_TEMPLATE
<< : *CI_TEMPLATE << : *CI_TEMPLATE
<< : *SKIP_TASK_ON_PR << : *SKIP_TASK_ON_PR
@ -797,8 +796,8 @@ zeekctl_debian12_task:
$CIRRUS_BRANCH =~ 'release/.*' ) $CIRRUS_BRANCH =~ 'release/.*' )
) )
container: container:
# Debian 12 (bookworm) EOL: TBD # Debian 13 (trixie) EOL: TBD
dockerfile: ci/debian-12/Dockerfile dockerfile: ci/debian-13/Dockerfile
<< : *RESOURCES_TEMPLATE << : *RESOURCES_TEMPLATE
sync_submodules_script: git submodule update --recursive --init sync_submodules_script: git submodule update --recursive --init
always: always:
@ -821,8 +820,8 @@ include_plugins_debian12_task:
cpu: *CPUS cpu: *CPUS
memory: *MEMORY memory: *MEMORY
container: container:
# Debian 12 (bookworm) EOL: TBD # Debian 13 (trixie) EOL: TBD
dockerfile: ci/debian-12/Dockerfile dockerfile: ci/debian-13/Dockerfile
<< : *RESOURCES_TEMPLATE << : *RESOURCES_TEMPLATE
sync_submodules_script: git submodule update --recursive --init sync_submodules_script: git submodule update --recursive --init
fetch_external_plugins_script: fetch_external_plugins_script:

12
CHANGES
View file

@ -1,3 +1,15 @@
8.1.0-dev.56 | 2025-08-13 21:20:50 +0200
* ci: Run zeekctl and builtin tasks with Debian 13, too (Arne Welzel, Corelight)
* ci: Prepend timestamps to output (Arne Welzel, Corelight)
* ci: Enable Spicy for arm_debian13 (Arne Welzel, Corelight)
* ci: Add Debian 13.0 (trixie) (Arne Welzel, Corelight)
* docker: Bump to debian:trixie-slim (Arne Welzel, Corelight)
8.1.0-dev.50 | 2025-08-12 17:42:46 -0700 8.1.0-dev.50 | 2025-08-12 17:42:46 -0700
* Add NEWS entry for field length limiting (Tim Wojtulewicz, Corelight) * Add NEWS entry for field length limiting (Tim Wojtulewicz, Corelight)

2
VERSION
View file

@ -1 +1 @@
8.1.0-dev.50 8.1.0-dev.56

14
ci/debian-11/Dockerfile → ci/debian-13/Dockerfile
View file

@ -1,32 +1,36 @@
FROM debian:11 FROM debian:13
ENV DEBIAN_FRONTEND="noninteractive" TZ="America/Los_Angeles" ENV DEBIAN_FRONTEND="noninteractive" TZ="America/Los_Angeles"
# A version field to invalidate Cirrus's build cache when needed, as suggested in # A version field to invalidate Cirrus's build cache when needed, as suggested in
# https://github.com/cirruslabs/cirrus-ci-docs/issues/544#issuecomment-566066822 # https://github.com/cirruslabs/cirrus-ci-docs/issues/544#issuecomment-566066822
ENV DOCKERFILE_VERSION 20241024 ENV DOCKERFILE_VERSION 20250813
RUN apt-get update && apt-get -y install \ RUN apt-get update && apt-get -y install \
bison \ bison \
bsdmainutils \ bsdmainutils \
ccache \ ccache \
cmake \ cmake \
cppzmq-dev \
curl \ curl \
dnsmasq \
flex \ flex \
g++ \ g++ \
gcc \ gcc \
git \ git \
jq \ jq \
libkrb5-dev \ libkrb5-dev \
libnats-dev \
libnode-dev \ libnode-dev \
libpcap-dev \ libpcap-dev \
librdkafka-dev \
libssl-dev \ libssl-dev \
libuv1-dev \ libuv1-dev \
libzmq3-dev \
make \ make \
python3 \ python3 \
python3-dev \ python3-dev \
python3-pip\ python3-pip\
python3-websockets \
sqlite3 \ sqlite3 \
swig \ swig \
wget \ wget \
@ -35,4 +39,6 @@ RUN apt-get update && apt-get -y install \
&& apt autoclean \ && apt autoclean \
&& rm -rf /var/lib/apt/lists/* && rm -rf /var/lib/apt/lists/*
RUN pip3 install websockets junit2html # Debian trixie really doesn't like using pip to install system wide stuff, but
# doesn't seem there's a python3-junit2html package, so not sure what we'd break.
RUN pip3 install --break-system-packages junit2html

5
docker/builder.Dockerfile
View file

@ -1,7 +1,7 @@
# See the file "COPYING" in the main distribution directory for copyright. # See the file "COPYING" in the main distribution directory for copyright.
# Layer to build Zeek. # Layer to build Zeek.
FROM debian:bookworm-slim FROM debian:13-slim
# Make the shell split commands in the log so we can determine reasons for # Make the shell split commands in the log so we can determine reasons for
# failures more easily. # failures more easily.
@ -16,6 +16,7 @@ RUN echo 'Acquire::https::timeout "180";' >> /etc/apt/apt.conf.d/99-timeouts
# Configure system for build. # Configure system for build.
RUN apt-get -q update \ RUN apt-get -q update \
&& apt-get upgrade -q -y \
&& apt-get install -q -y --no-install-recommends \ && apt-get install -q -y --no-install-recommends \
bind9 \ bind9 \
bison \ bison \
@ -36,7 +37,7 @@ RUN apt-get -q update \
libz-dev \ libz-dev \
make \ make \
python3-minimal \ python3-minimal \
python3.11-dev \ python3-dev \
swig \ swig \
ninja-build \ ninja-build \
python3-pip \ python3-pip \

7
docker/final.Dockerfile
View file

@ -1,7 +1,7 @@
# See the file "COPYING" in the main distribution directory for copyright. # See the file "COPYING" in the main distribution directory for copyright.
# Final layer containing all artifacts. # Final layer containing all artifacts.
FROM debian:bookworm-slim FROM debian:13-slim
# Make the shell split commands in the log so we can determine reasons for # Make the shell split commands in the log so we can determine reasons for
# failures more easily. # failures more easily.
@ -15,14 +15,15 @@ RUN echo 'Acquire::http::timeout "180";' > /etc/apt/apt.conf.d/99-timeouts
RUN echo 'Acquire::https::timeout "180";' >> /etc/apt/apt.conf.d/99-timeouts RUN echo 'Acquire::https::timeout "180";' >> /etc/apt/apt.conf.d/99-timeouts
RUN apt-get -q update \ RUN apt-get -q update \
&& apt-get upgrade -q -y \
&& apt-get install -q -y --no-install-recommends \ && apt-get install -q -y --no-install-recommends \
ca-certificates \ ca-certificates \
git \ git \
jq \ jq \
libmaxminddb0 \ libmaxminddb0 \
libnode108 \ libnode115 \
libpcap0.8 \ libpcap0.8 \
libpython3.11 \ libpython3.13 \
libssl3 \ libssl3 \
libuv1 \ libuv1 \
libz1 \ libz1 \