Running Slack64-current (plus AlienBob's Plasma 5). On another machine some years ago I had snort set up feeding to barnyard2 and to mysql. Worked fine. On a different machine now I have snort and pulled pork installed and seem to be running fine. I installed barnyard2 and got to the point of setting up the snort database in Mariadb-10.2.9. Running the supplied schema threw some errors so I created the db and populated it with tables manually using phpMyAdmin. It appears that the barnyard schema was written a while back and I got errors trying to create two of the tables (everything else went without a hitch) -

CREATE TABLE reference ( ref_id INT UNSIGNED NOT NULL AUTO_INCREMENT,
ref_system_id INT UNSIGNED NOT NULL,
ref_tag TEXT NOT NULL,
PRIMARY KEY (ref_id));

gave error -

Error

SQL query:

CREATE TABLE reference ( ref_id INT UNSIGNED NOT NULL AUTO_INCREMENT,
ref_system_id INT UNSIGNED NOT NULL,
ref_tag TEXT NOT NULL,
PRIMARY KEY (ref_id))

MySQL said: Documentation
#1064 - You have an error in your SQL syntax; check the manual that corresponds to your MariaDB server version for the right syntax to use near 'ref_system_id INT UNSIGNED NOT NULL,
ref_tag ' at line 2


and

CREATE TABLE reference_system ( ref_system_id INT UNSIGNED NOT NULL AUTO_INCREMENT,
ref_system_name VARCHAR(20),
PRIMARY KEY (ref_system_id));


gave -

Error

SQL query:

CREATE TABLE reference_system ( ref_system_id INT UNSIGNED NOT NULL AUTO_INCREMENT,
ref_system_name VARCHAR(20),
PRIMARY KEY (ref_system_id))

MySQL said: Documentation
#1064 - You have an error in your SQL syntax; check the manual that corresponds to your MariaDB server version for the right syntax to use near 'ref_system_id INT UNSIGNED NOT NULL AUTO_INCREMENT,
' at line 1


Can anyone that is familiar with updated versions of MariaDB please have a look and heopfully let me know the proper syntax to create these two tables??? Thanks in advance

3rensho --

I didn't see any issues with your SQL Code.

So I cut-n-pasted your Scripts directly from your LQ Post into a newly created DB and it worked fine.

Session below.

Maybe it is an issue with phpMyAdmin and mariadb ?

What happens if you paste your code directly into the mysql client ?

EDIT: I am running Slackware64 14.2 + Multilib with mariadb 10.0.32:
HTH.

-- kjh

Hello, thank you for giving it a try and reporting the results. I gave it a go just now directly in mysql but alas it resulted in the same error.

MariaDB [snort]> CREATE TABLE reference ( ref_id INT UNSIGNED NOT NULL AUTO_INCREMENT,
-> ref_system_id INT UNSIGNED NOT NULL,
-> ref_tag TEXT NOT NULL,
-> PRIMARY KEY (ref_id));
ERROR 1064 (42000): You have an error in your SQL syntax; check the manual that corresponds to your MariaDB server version for the right syntax to use near 'ref_system_id INT UNSIGNED NOT NULL,
ref_tag ' at line 2
MariaDB [snort]>

Must be some change in 10.2.9

Git it sorted. I found the same schema at https://github.com/firnsy/barnyard2/...s/create_mysql and even though it looks identical to the one supplied with Barnyard2 the one from github works fine in mysql. Must be some subtle bit that I can't see in the schema supplied with Barnyard2. Anyway, alles paletti.

Good deal 3rensho !

One very subtle change for the two tables over in the SCHEMA that you linked is that `ref_system_id` is quoted with back-ticks:
Odd ... ref_system_id doesn't appear to be a reserved word, but SQL Engines can be mysterious at times

Thanks for the feedback !

-- kjh

Good catch. I have Barnyard2 dying after starting now due to back ticks -

[SystemPullDataStore()]: Failed exeuting query [SELECT ref_system_id, ref_system_name FROM reference_system;] , will retry
[CacheSynchronize()]:, SystemCacheSyncronize() call failed.

but with backticks -

MariaDB [snort]> SELECT `ref_system_id`, `ref_system_name` FROM `reference_system`;
Empty set (0.00 sec)

Barnyard2 needs updating for use with updated MariaDB.