tests/midstream: update test with midstream-policy

author Juliana Fajardini <jufajardini@oisf.net>

Tue, 30 May 2023 22:12:14 +0000 (19:12 -0300)

committer Juliana Fajardini <jufajardini@oisf.net>

Tue, 13 Jun 2023 13:37:15 +0000 (10:37 -0300)
author Juliana Fajardini <jufajardini@oisf.net>
Tue, 30 May 2023 22:12:14 +0000 (19:12 -0300)
committer Juliana Fajardini <jufajardini@oisf.net>
Tue, 13 Jun 2023 13:37:15 +0000 (10:37 -0300)
diff --git a/tests/bug-2491-02/test.yaml b/tests/bug-2491-02/test.yaml

index d403ee8ae6a27957ac906ea0e566feb6f614c6e2..d96342920a66e04b63e9978e6da020fd93fd2822 100644 (file)
--- a/tests/bug-2491-02/test.yaml
+++ b/tests/bug-2491-02/test.yaml
@@ -4,7 +4,7 @@ requires:
  args:
  - --set stream.async-oneside=true
  - --set stream.midstream=true
-- --set stream.midstream-policy=drop-flow
+- --set stream.midstream-policy=ignore
  
  checks:
    - filter:
diff --git a/tests/exception-policy-midstream-03/README.md b/tests/exception-policy-midstream-03/README.md

index 1c1f48d09d73244de2079403819110e04a2011e7..0875bfa7934303dfe32c32776aff1537eef9d1f4 100644 (file)
--- a/tests/exception-policy-midstream-03/README.md
+++ b/tests/exception-policy-midstream-03/README.md
@@ -1,14 +1,15 @@
  # Test
  
  Check that Suricata behaves as expected with no midstream-policy set (that is,
-with default behavior), in IPS mode, in a stream first seen by Suricata in
-SYNACK stage.
+with default behavior) and midstream enabled, in IPS mode, in a stream first
+seen by Suricata in SYNACK stage.
  
  # Behavior
  
  With midstream true but no exception policy for midstream set we expect to see
  alerts and ``http`` events logged, as the portion of the flow available will be
-inspected and no exception policy for midstream will be applied.
+inspected and no exception policy for midstream will be applied, as with
+midstream enabled, "auto" is set to "ignore" in IPS mode as well.
  
  # Pcap
  
diff --git a/tests/exception-policy-midstream-03/suricata.yaml b/tests/exception-policy-midstream-03/suricata.yaml

index 49d9203a7ee6628df3b754bdb056bf6f7779431c..1d909b80a1d3065fa69194eb9e7cf39a016f80a5 100644 (file)
--- a/tests/exception-policy-midstream-03/suricata.yaml
+++ b/tests/exception-policy-midstream-03/suricata.yaml
@@ -15,3 +15,12 @@ outputs:
              http: yes
          - flow
          - http
+
+logging:
+  default-log-level: notice
+  outputs:
+  - file:
+      enabled: yes
+      level: notice
+      filename: suricata.json
+      type: json
author	Juliana Fajardini <jufajardini@oisf.net>
	Tue, 30 May 2023 22:12:14 +0000 (19:12 -0300)
committer	Juliana Fajardini <jufajardini@oisf.net>
	Tue, 13 Jun 2023 13:37:15 +0000 (10:37 -0300)
tests/bug-2491-02/test.yaml		patch \| blob \| blame \| history
tests/exception-policy-midstream-03/README.md		patch \| blob \| blame \| history
tests/exception-policy-midstream-03/suricata.yaml		patch \| blob \| blame \| history