dns-tcp-www-google-com: v2 and v3 tests

author Jason Ish <jason.ish@oisf.net>

Fri, 5 Jul 2024 00:58:36 +0000 (18:58 -0600)

committer Victor Julien <victor@inliniac.net>

Tue, 9 Jul 2024 10:15:24 +0000 (12:15 +0200)
author Jason Ish <jason.ish@oisf.net>
Fri, 5 Jul 2024 00:58:36 +0000 (18:58 -0600)
committer Victor Julien <victor@inliniac.net>
Tue, 9 Jul 2024 10:15:24 +0000 (12:15 +0200)
diff --git a/tests/dns-tcp-www-google-com/README.md b/tests/dns/dns-tcp-www-google-com/README.md

similarity index 100%

rename from tests/dns-tcp-www-google-com/README.md

rename to tests/dns/dns-tcp-www-google-com/README.md
diff --git a/tests/dns-tcp-www-google-com/suricata.yaml b/tests/dns/dns-tcp-www-google-com/suricata.yaml

similarity index 100%

rename from tests/dns-tcp-www-google-com/suricata.yaml

rename to tests/dns/dns-tcp-www-google-com/suricata.yaml
diff --git a/tests/dns/dns-tcp-www-google-com/test.yaml b/tests/dns/dns-tcp-www-google-com/test.yaml

new file mode 100644 (file)

index 0000000..6f75754
--- /dev/null
+++ b/tests/dns/dns-tcp-www-google-com/test.yaml
@@ -0,0 +1,20 @@
+requires:
+  min-version: 8
+
+pcap: ../../dns-tcp-www-google-com-v1/dns.pcap
+
+checks:
+  - filter:
+      count: 1
+      match:
+        src_ip: "10.16.1.11"
+        dest_ip: "8.8.4.4"
+        event_type: dns
+        dns.type: request
+  - filter:
+      count: 1
+      match:
+        src_ip: "10.16.1.11"
+        dest_ip: "8.8.4.4"
+        event_type: dns
+        dns.type: response
diff --git a/tests/dns/v2/dns-tcp-www-google-com/README.md b/tests/dns/v2/dns-tcp-www-google-com/README.md

new file mode 100644 (file)

index 0000000..d1db12d
--- /dev/null
+++ b/tests/dns/v2/dns-tcp-www-google-com/README.md
@@ -0,0 +1,2 @@
+A basic TCP DNS test that sends one request with a response that
+contains multiple answers.
diff --git a/tests/dns/v2/dns-tcp-www-google-com/suricata.yaml b/tests/dns/v2/dns-tcp-www-google-com/suricata.yaml

new file mode 100644 (file)

index 0000000..bb13777
--- /dev/null
+++ b/tests/dns/v2/dns-tcp-www-google-com/suricata.yaml
@@ -0,0 +1,13 @@
+%YAML 1.1
+---
+
+# Remove stats logging.
+stats:
+  enabled: no
+
+outputs:
+  - eve-log:
+      enabled: yes
+      types:
+        - dns:
+            version: 2
diff --git a/tests/dns-tcp-www-google-com/test.yaml b/tests/dns/v2/dns-tcp-www-google-com/test.yaml

similarity index 77%

rename from tests/dns-tcp-www-google-com/test.yaml

rename to tests/dns/v2/dns-tcp-www-google-com/test.yaml

index 9dbe5d5bd46102dea729d0a28a837c243a4cdc89..b9331008e6fbce4c03135eeef5a5b4258bf8e370 100644 (file)
--- a/tests/dns-tcp-www-google-com/test.yaml
+++ b/tests/dns/v2/dns-tcp-www-google-com/test.yaml
@@ -1,8 +1,4 @@
-pcap: ../dns-tcp-www-google-com-v1/dns.pcap
-
-requires:
-  features:
-    - HAVE_LIBJANSSON
+pcap: ../../../dns-tcp-www-google-com-v1/dns.pcap
  
  checks:
    - filter:
author	Jason Ish <jason.ish@oisf.net>
	Fri, 5 Jul 2024 00:58:36 +0000 (18:58 -0600)
committer	Victor Julien <victor@inliniac.net>
	Tue, 9 Jul 2024 10:15:24 +0000 (12:15 +0200)
tests/dns/dns-tcp-www-google-com/README.md	[moved from tests/dns-tcp-www-google-com/README.md with 100% similarity]	patch \| blob \| blame \| history
tests/dns/dns-tcp-www-google-com/suricata.yaml	[moved from tests/dns-tcp-www-google-com/suricata.yaml with 100% similarity]	patch \| blob \| blame \| history
tests/dns/dns-tcp-www-google-com/test.yaml	[new file with mode: 0644]	patch \| blob
tests/dns/v2/dns-tcp-www-google-com/README.md	[new file with mode: 0644]	patch \| blob
tests/dns/v2/dns-tcp-www-google-com/suricata.yaml	[new file with mode: 0644]	patch \| blob
tests/dns/v2/dns-tcp-www-google-com/test.yaml	[moved from tests/dns-tcp-www-google-com/test.yaml with 77% similarity]	patch \| blob \| blame \| history