]> git.ipfire.org Git - thirdparty/suricata-verify.git/commitdiff
projects / thirdparty / suricata-verify.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: 787b9ca)
tests: fix exception policy tests 1338/head
authorVictor Julien <victor@inliniac.net>
Sun, 30 Jul 2023 12:05:26 +0000 (14:05 +0200)
committerVictor Julien <victor@inliniac.net>
Sun, 30 Jul 2023 12:06:22 +0000 (14:06 +0200)
No need for elaborate checks for 6 and 7 for things that shouldn't
happen and can be checked in a simpler way.

Also, don't expect drops in IDS mode.

tests/exception-policy-default-01/test.yaml patch | blob | blame | history
tests/exception-policy-default-04/test.yaml patch | blob | blame | history

diff --git a/tests/exception-policy-default-01/test.yaml b/tests/exception-policy-default-01/test.yaml
index a84a6ac827aed17d4cd5f5deace0ac41c1c78b59..fdb279851700ac362b89c4902c7c329c4c7274a6 100644 (file)
--- a/tests/exception-policy-default-01/test.yaml
+++ b/tests/exception-policy-default-01/test.yaml
@@ -14,24 +14,11 @@ checks:
       match:
         event_type: alert
   - filter:
-      lt-version: 7
       count: 0
       match:
         event_type: drop
   - filter:
-      min-version: 7
       count: 1
-      match:
-        event_type: drop
-  - filter:
-      lt-version: 7
-      count: 1
-      match:
-        event_type: tls
-        tls.sni: example.com
-  - filter:
-      min-version: 7
-      count: 0
       match:
         event_type: tls
         tls.sni: example.com
diff --git a/tests/exception-policy-default-04/test.yaml b/tests/exception-policy-default-04/test.yaml
index 71655caedc3226af84c20043a7d52fce74f7ab9d..cff7eab3e91dfe5576aca558ae2a3a52918c2b21 100644 (file)
--- a/tests/exception-policy-default-04/test.yaml
+++ b/tests/exception-policy-default-04/test.yaml
@@ -1,18 +1,10 @@
 checks:
   - filter:
-      min-version: 7
-      count: 0
-      match:
-        event_type: alert
-  - filter:
-      min-version: 7
       count: 1
       match:
-        event_type: drop
-        drop.reason: stream midstream
+        event_type: alert
   - filter:
-      min-version: 7
-      count: 9
+      count: 0
       match:
         event_type: drop
   - filter:
@@ -21,8 +13,7 @@ checks:
         event_type: flow
         flow.state: bypassed
   - filter:
-      min-version: 7
-      count: 1
+      count: 0
       match:
         event_type: flow
         flow.action: drop
@@ -30,24 +21,6 @@ checks:
       count: 0
       match:
         event_type: http
-  # checks for Suricata 6
-  - filter:
-      lt-version: 7
-      count: 1
-      match:
-        event_type: alert
-  - filter:
-      lt-version: 7
-      count: 0
-      match:
-        event_type: drop
-        drop.reason: stream error
-  - filter:
-      lt-version: 7
-      count: 0
-      match:
-        event_type: flow
-        flow.action: drop
   - filter:
       filename: suricata.json
       lt-version: 7
Mirror of https://github.com/OISF/suricata-verify.git