]> git.ipfire.org Git - thirdparty/suricata-verify.git/commitdiff
projects / thirdparty / suricata-verify.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: 749274a)
tests: add simple sctp decoder test 404/head
authorVictor Julien <victor@inliniac.net>
Mon, 18 Jan 2021 07:47:19 +0000 (08:47 +0100)
committerVictor Julien <victor@inliniac.net>
Mon, 18 Jan 2021 07:47:19 +0000 (08:47 +0100)
tests/decode-sctp-01/README.md [new file with mode: 0644] patch | blob
tests/decode-sctp-01/input.pcap [new file with mode: 0644] patch | blob
tests/decode-sctp-01/test.rules [new file with mode: 0644] patch | blob
tests/decode-sctp-01/test.yaml [new file with mode: 0644] patch | blob

diff --git a/tests/decode-sctp-01/README.md b/tests/decode-sctp-01/README.md
new file mode 100644 (file)
index 0000000..651f696
--- /dev/null
+++ b/tests/decode-sctp-01/README.md
@@ -0,0 +1,4 @@
+PCAP
+====
+
+https://redmine.openinfosecfoundation.org/issues/1370
diff --git a/tests/decode-sctp-01/input.pcap b/tests/decode-sctp-01/input.pcap
new file mode 100644 (file)
index 0000000..c6623cf
Binary files /dev/null and b/tests/decode-sctp-01/input.pcap differ
diff --git a/tests/decode-sctp-01/test.rules b/tests/decode-sctp-01/test.rules
new file mode 100644 (file)
index 0000000..48e5e12
--- /dev/null
+++ b/tests/decode-sctp-01/test.rules
@@ -0,0 +1 @@
+alert sctp any 7 -> any 7 (sid:1;)
diff --git a/tests/decode-sctp-01/test.yaml b/tests/decode-sctp-01/test.yaml
new file mode 100644 (file)
index 0000000..5306529
--- /dev/null
+++ b/tests/decode-sctp-01/test.yaml
@@ -0,0 +1,26 @@
+# *** Add configuration here ***
+
+args:
+- -k none
+
+checks:
+- filter:
+    count: 1
+    match:
+      dest_ip: 192.168.170.8
+      dest_port: 7
+      event_type: alert
+      proto: SCTP
+      src_ip: 192.168.170.56
+      src_port: 7
+      alert.signature_id: 1
+
+- filter:
+    count: 1
+    match:
+      dest_ip: 192.168.170.8
+      dest_port: 7
+      event_type: flow
+      proto: SCTP
+      src_ip: 192.168.170.56
+      src_port: 7
Mirror of https://github.com/OISF/suricata-verify.git