From: Eric Leblond <el@stamus-networks.com>
Date: Sun, 25 Sep 2022 17:39:59 +0000 (+0200)
Subject: bug78: relax flow checking
X-Git-Tag: suricata-6.0.8^0
X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=01be874db1faee237f2ab859d942d489e9b02d66;p=thirdparty%2Fsuricata-verify.git

bug78: relax flow checking
---

diff --git a/tests/bug-78-http-uri/test.yaml b/tests/bug-78-http-uri/test.yaml
index 765abc885..14189aff2 100644
--- a/tests/bug-78-http-uri/test.yaml
+++ b/tests/bug-78-http-uri/test.yaml
@@ -16,12 +16,11 @@ checks:
       dest_ip: 208.69.36.231
       dest_port: 80
       event_type: alert
-      flow:
-        bytes_toclient: 1588
-        bytes_toserver: 379
-        pkts_toclient: 2
-        pkts_toserver: 4
-        start: 2009-10-16T16:44:16.083524+0000
+      flow.bytes_toclient: 1588
+      flow.bytes_toserver: 379
+      flow.pkts_toclient: 2
+      flow.pkts_toserver: 4
+      flow.start: 2009-10-16T16:44:16.083524+0000
       http:
         hostname: www.google.com
         http_content_type: text/html
@@ -43,17 +42,16 @@ checks:
       dest_ip: 208.69.36.231
       dest_port: 80
       event_type: flow
-      flow:
-        age: 0
-        alerted: true
-        bytes_toclient: 5453
-        bytes_toserver: 607
-        end: 2009-10-16T16:44:16.185868+0000
-        pkts_toclient: 5
-        pkts_toserver: 8
-        reason: shutdown
-        start: 2009-10-16T16:44:16.083524+0000
-        state: closed
+      flow.age: 0
+      flow.alerted: true
+      flow.bytes_toclient: 5453
+      flow.bytes_toserver: 607
+      flow.end: 2009-10-16T16:44:16.185868+0000
+      flow.pkts_toclient: 5
+      flow.pkts_toserver: 8
+      flow.reason: shutdown
+      flow.start: 2009-10-16T16:44:16.083524+0000
+      flow.state: closed
       proto: TCP
       src_ip: 192.168.2.3
       src_port: 37010
diff --git a/tests/bug-78-uricontent/test.yaml b/tests/bug-78-uricontent/test.yaml
index 765abc885..14189aff2 100644
--- a/tests/bug-78-uricontent/test.yaml
+++ b/tests/bug-78-uricontent/test.yaml
@@ -16,12 +16,11 @@ checks:
       dest_ip: 208.69.36.231
       dest_port: 80
       event_type: alert
-      flow:
-        bytes_toclient: 1588
-        bytes_toserver: 379
-        pkts_toclient: 2
-        pkts_toserver: 4
-        start: 2009-10-16T16:44:16.083524+0000
+      flow.bytes_toclient: 1588
+      flow.bytes_toserver: 379
+      flow.pkts_toclient: 2
+      flow.pkts_toserver: 4
+      flow.start: 2009-10-16T16:44:16.083524+0000
       http:
         hostname: www.google.com
         http_content_type: text/html
@@ -43,17 +42,16 @@ checks:
       dest_ip: 208.69.36.231
       dest_port: 80
       event_type: flow
-      flow:
-        age: 0
-        alerted: true
-        bytes_toclient: 5453
-        bytes_toserver: 607
-        end: 2009-10-16T16:44:16.185868+0000
-        pkts_toclient: 5
-        pkts_toserver: 8
-        reason: shutdown
-        start: 2009-10-16T16:44:16.083524+0000
-        state: closed
+      flow.age: 0
+      flow.alerted: true
+      flow.bytes_toclient: 5453
+      flow.bytes_toserver: 607
+      flow.end: 2009-10-16T16:44:16.185868+0000
+      flow.pkts_toclient: 5
+      flow.pkts_toserver: 8
+      flow.reason: shutdown
+      flow.start: 2009-10-16T16:44:16.083524+0000
+      flow.state: closed
       proto: TCP
       src_ip: 192.168.2.3
       src_port: 37010