]> git.ipfire.org Git - thirdparty/suricata-verify.git/commitdiff
projects / thirdparty / suricata-verify.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: 3c1b017)
tests: add bug 5578 parsing test
authorVictor Julien <victor@inliniac.net>
Tue, 4 Jul 2023 09:39:28 +0000 (11:39 +0200)
committerVictor Julien <victor@inliniac.net>
Fri, 26 Apr 2024 08:33:40 +0000 (10:33 +0200)
tests/rules/dsize/README.md [new file with mode: 0644] patch | blob
tests/rules/dsize/test.rules [new file with mode: 0644] patch | blob
tests/rules/dsize/test.yaml [new file with mode: 0644] patch | blob

diff --git a/tests/rules/dsize/README.md b/tests/rules/dsize/README.md
new file mode 100644 (file)
index 0000000..6788aa1
--- /dev/null
+++ b/tests/rules/dsize/README.md
@@ -0,0 +1,11 @@
+# Test Description
+
+Engine analysis output for dsize drop rule.
+
+## PCAP
+
+Unneeded
+
+## Related tickets
+
+https://redmine.openinfosecfoundation.org/issues/5578
diff --git a/tests/rules/dsize/test.rules b/tests/rules/dsize/test.rules
new file mode 100644 (file)
index 0000000..b5a9c0f
--- /dev/null
+++ b/tests/rules/dsize/test.rules
@@ -0,0 +1 @@
+drop http any any -> any any (dsize:0; sid:1;)
diff --git a/tests/rules/dsize/test.yaml b/tests/rules/dsize/test.yaml
new file mode 100644 (file)
index 0000000..6901a5a
--- /dev/null
+++ b/tests/rules/dsize/test.yaml
@@ -0,0 +1,20 @@
+requires:
+    min-version: 7.0.0
+    pcap: false
+
+args:
+    - --engine-analysis
+
+checks:
+- filter:
+    filename: rules.json
+    count: 1
+    match:
+      id: 1
+      app_proto: "http_any"
+      requirements[0]: "no_payload"
+      requirements[1]: "flow"
+      pkt_engines[0].name: "packet"
+      pkt_engines[0].is_mpm: false
+      type: "pkt"
+      lists.packet.matches[0].name: "dsize" 
Mirror of https://github.com/OISF/suricata-verify.git