[Snort-devel] few errors with libdaq (DAQ 3 for Snort 3)

Noah Dietrich noah_dietrich at 86penny.org
Sun Jun 2 01:10:42 EDT 2019


Hello,
I am trying to install the new DAQ 3 from github, and i am running into a
few problems.  Everything works fine with DAQ 2.2.2.

1. snort 3 can not find  DAQ3 (but installs fine with daq 2.2.2)
2. DAQ3 can not detect netmap (but daq 2.2.2 does)

Detailed information below

#-----------------------------------------------------------------------
#   1.  Snort 3 can not find DAQ 3:
#-----------------------------------------------------------------------
DAQ 3 is installed as follows with no issues:

cd ~/snort_src
git clone git://github.com/snort3/libdaq.git
cd libdaq
./bootstrap
./configure --with-netmap-includes=/usr/local/include/
make
sudo make install
sudo ldconfig


When i go to install Snort3 as follows:

cd ~/snort_src
git clone git://github.com/snortadmin/snort3.git
cd snort3
./configure_cmake.sh --prefix=/usr/local --enable-tcmalloc

I get this error:

CMake Error at cmake/FindDAQ.cmake:35 (message):
          ERROR! Cannot find LibDAQ's static libraries!  Make sure the
binary  file `daq-modules-config` is in your path.
Call Stack (most recent call first):
  cmake/include_libraries.cmake:4 (find_package)
  CMakeLists.txt:22 (include)

CMake Error at
/usr/share/cmake-3.13/Modules/FindPackageHandleStandardArgs.cmake:137
(message):
      ERROR! Cannot find LibDAQ.  Go get it from
http://snort.org/snort-downloads or use the --with-daq-* options if you
have it installed in an unusual place.
   (missing: DAQ_LIBRARY DAQ_LIBRARIES)
Call Stack (most recent call first):
  /usr/share/cmake-3.13/Modules/FindPackageHandleStandardArgs.cmake:378
(_FPHSA_FAILURE_MESSAGE)
  cmake/FindDAQ.cmake:56 (find_package_handle_standard_args)
  cmake/include_libraries.cmake:4 (find_package)
  CMakeLists.txt:22 (include)

-- Configuring incomplete, errors occurred!
See also "/home/noah/snort_src/snort3/build/CMakeFiles/CMakeOutput.log".
See also "/home/noah/snort_src/snort3/build/CMakeFiles/CMakeError.log".


These steps work just fine when using DAQ 2.2.2, but don't work for DAQ 3.
I tried manually specifying the DAQ library and include paths explicitly
when configuring the snort3 install, but that did not help:

./configure_cmake.sh --prefix=/usr/local --enable-tcmalloc
--with-daq-includes=/usr/local/include --with-daq-libraries=/usr/local/lib


I have attached CMakeError.log and CMakeOutputl.log

#-----------------------------------------------------------------------
#   2. DAQ3 can not detect netmap
#-----------------------------------------------------------------------
When i install DAQ 2.2.2, it correctly detects the netmap module:

./configure
...

checking for net/netmap.h... yes
checking for net/netmap_user.h... yes
checking whether NETMAP_API is declared... yes

...

Build AFPacket DAQ module.. : yes
Build Dump DAQ module...... : yes
Build IPFW DAQ module...... : yes
Build IPQ DAQ module....... : no
Build NFQ DAQ module....... : yes
Build PCAP DAQ module...... : yes
Build netmap DAQ module.... : yes

...

However, if i try the exact same thing with DAQ3, it doesn't detect netmap:

./configure
...
checking for net/netmap.h... no
checking for net/netmap_user.h... yes
checking whether NETMAP_API is declared... no
...
    Build AFPacket DAQ module.. : yes
    Build BPF DAQ module....... : yes
    Build Dump DAQ module...... : yes
    Build FST DAQ module....... : yes
    Build IPFW DAQ module...... : no
    Build NFQ DAQ module....... : yes
    Build PCAP DAQ module...... : yes
  *  Build netmap DAQ module.... : no*
    Build Trace DAQ module..... : yes


i tried explicitly pointing to netmap, but that did not help:

./configure --with-netmap-includes=/usr/local/include/net

Verifying the netmap files are where they're supposed to be:

 noah at snort3: $ *ls -l /usr/local/include/net/*
total 84
-rw-r--r-- 1 root root 33783 Jun  2 06:41 *netmap.h*
-rw-r--r-- 1 root root  9720 Jun  2 06:41 netmap_legacy.h
-rw-r--r-- 1 root root 31043 Jun  2 06:41 netmap_user.h
-rw-r--r-- 1 root root  3981 Jun  2 06:41 netmap_virt.h



Thank you,
Noah
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.snort.org/pipermail/snort-devel/attachments/20190602/6c804ee5/attachment-0001.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: CMakeError.log
Type: text/x-log
Size: 2600 bytes
Desc: not available
URL: <https://lists.snort.org/pipermail/snort-devel/attachments/20190602/6c804ee5/attachment-0002.bin>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: CMakeOutput.log
Type: text/x-log
Size: 50350 bytes
Desc: not available
URL: <https://lists.snort.org/pipermail/snort-devel/attachments/20190602/6c804ee5/attachment-0003.bin>


More information about the Snort-devel mailing list